๐ Public Key Cryptography Asymmetric Cryptography
A way to secure information using a matched pair of keys: a public key you can share with anyone, and a private key you keep secret. It's the math that makes crypto wallets, digital signatures, and even the padlock in your browser bar work.
๐ฎ The simple version โ a mailbox with two parts
Picture a mailbox on the street. The slot on top is open to everyone, so anyone can drop a letter in. But only the owner holds the key that opens the box to read what's inside. Public key cryptography works the same way. The public key is the slot you hand out freely; the private key is the key in your pocket. The two are created together and mathematically linked, yet it is computationally infeasible to figure out the private key just by looking at the public one.
๐ Two jobs the key pair can do
The pair runs in two directions, and that's the whole trick. Locking with one key means only the other can unlock.
| Direction | What it gives you |
|---|---|
| ๐ Lock with public key | Only the matching private key can open it โ private messaging (confidentiality) |
| โ๏ธ Sign with private key | Anyone with the public key can verify it's genuine and unchanged โ digital signatures (identity) |
๐จ The big win over older "single shared secret" encryption: two strangers can talk securely without ever swapping a secret first. The private key never has to travel, so there's nothing to intercept on the way.
๐ช Why crypto can't exist without it
This is the part beginners actually touch every day. A crypto wallet is, at heart, a private key. The matching public key is run through a hash function to produce your receiving address โ the short string you hand out to get paid. Sending coins means signing the transaction with your private key, and every node on the network checks that signature against your public key before accepting it. Control the private key and you control the coins. That's the meaning behind the phrase "not your keys, not your coins."
Bitcoin and Ethereum both sign transactions with ECDSA on the same secp256k1 elliptic curve. Their addresses are hashed forms of the public key: Bitcoin runs SHA-256 then RIPEMD-160, while Ethereum takes the last 20 bytes of a Keccak-256 hash. So the address you see is not the raw public key โ it's a shortened fingerprint of it.
๐จ Things beginners should know
- ๐ Address โ private key โ Your address (a hashed public key) is safe to post anywhere; the private key and its backup seed phrase are not
- ๐ One-way math โ You can't recover the private key from the public key or address, but anyone who gets your private key gets everything
- ๐ You already use it โ The same idea secures HTTPS, secure email, and the padlock icon in your browser, not just crypto
- ๐ญ Looking ahead โ Future quantum computers could threaten today's algorithms, which is why work on post-quantum standards has begun; it is not yet in mainstream wallets
โ FAQ
- Is it dangerous to share my public key or wallet address?
- No. The public key (and the address derived from it) is meant to be shared โ it's how others send you coins and how anyone can check your signatures. You cannot work backward from a public key to the private key. The only thing you must never share is the private key itself.
- What's the difference between a public key and a private key?
- They're a matched pair created together. The private key is the secret you keep; the public key is derived from it and shared freely. Data encrypted with the public key can only be opened by the private key, and data signed by the private key can be verified by anyone holding the public key.
- How does this relate to a crypto wallet?
- A wallet is essentially a private key. Your receiving address is a shortened, hashed form of the matching public key. Spending coins means signing a transaction with the private key, which network nodes verify using the public key. That's why people say 'not your keys, not your coins.'