ThinkableWhat is this?

Public Key Cryptography

The Lock Anyone Can Close, But Only You Can Open

Every time you send a message, buy something online, or log into anything, your security depends on a mathematical trick so elegant it took humanity thousands of years to discover — and it works by making a secret public.

The Idea

For most of human history, secure communication required a shared secret. You and I must both know the same password before we can exchange anything private. This sounds obvious — until you realise the problem it creates: how do you share that password in the first place? If someone is listening, they intercept the handoff. This is called the key distribution problem, and it haunted cryptographers for millennia. Public key cryptography, developed in the 1970s, solved it with a conceptual leap: what if you could split a key into two mathematically linked halves — one you publish openly, one you never reveal to anyone? Your public key is like a padlock you hand out freely. Anyone can click it shut around a message. But only your private key can open it. You never have to share the private half, so there is nothing to intercept. The underlying mathematics relies on problems that are easy to perform in one direction but computationally catastrophic to reverse. Multiplying two enormous prime numbers together takes a fraction of a second. Factoring the result back into those primes — without knowing them in advance — would take the best computers longer than the age of the universe. Asymmetry is the whole trick: the math runs fast forward and nearly stops in reverse. This is why the system works even when half the key is public knowledge. Knowing the padlock tells you almost nothing useful about the key that opens it.

In the World

In 1976, Whitfield Diffie and Martin Hellman published a paper called 'New Directions in Cryptography.' They did not have a complete system yet — just a proof that the key distribution problem was solvable in principle. It was a conceptual grenade. The intelligence community, which had been sitting on related classified work, was rattled. A year later, three researchers at MIT — Ron Rivest, Adi Shamir, and Leonard Adleman — built the first practical implementation. RSA, named after their initials, became the foundation of secure internet commerce. When you see 'https' in your browser bar, RSA's intellectual descendants are doing the work. What makes the origin story quietly remarkable is where the insight came from. Diffie had no institutional funding and no government clearance. He was essentially a freelance thinker obsessed with the privacy implications of a coming digital world, driving around the country meeting anyone who thought seriously about cryptography. He and Hellman were academics at Stanford working on a problem the establishment believed either unsolvable or unnecessary. The solution that now underpins trillions in online transactions annually, the security of medical records, and the privacy of billions of private messages — emerged from intellectual stubbornness and a hunch that the problem mattered before most people knew a problem existed.

Why It Matters

Understanding public key cryptography reframes how you think about trust online. Most people operate with a vague sense that 'the internet is secure' or 'this site has a padlock icon,' without any model for why. Once you understand the underlying logic — that security can be built from mathematical asymmetry rather than shared secrets — you start to see the architecture of digital trust more clearly. It also sharpens your intuition about where the system is fragile. The math itself is robust; the vulnerabilities tend to live elsewhere — in how private keys are stored, in certificate authorities that can be compromised, in quantum computers that may one day close the asymmetry gap. Knowing the principle helps you ask better questions: not just 'is this encrypted?' but 'where is the private key, who holds it, and what happens if that changes?' Perhaps most importantly, it is a reminder that some of the most consequential infrastructure in the world rests on ideas, not just engineering — and that those ideas often came from people working outside the system, simply because the question interested them.

A Question to Ponder

If the security of nearly all digital communication rests on mathematical problems we believe are hard to reverse — but haven't proven impossible to reverse — how much of modern trust is built on confident assumptions rather than certainty?

Get a new one of these every morning.

Start learning with Thinkable
One topic like this, every day.Start free