Symmetric Encryption

Imagine you and a friend invent a secret code: shift every letter forward by 3 (A→D, B→E, Z→C). The same rule both scrambles and unscrambles messages. That's symmetric encryption — one key, used both ways.

Modern symmetric ciphers like AES are incomparably more complex, but the core idea is the same: both sides share one secret, and that secret transforms data in a way that is computationally impossible to reverse without it. The math is a one-way street — easy with the key, impenetrable without it.

AES (Advanced Encryption Standard) is a block cipher: it processes data in fixed 128-bit blocks using a key of 128, 192, or 256 bits. Each block passes through 10–14 rounds of four operations:

1. SubBytes — each byte is replaced using a fixed substitution table (S-box)
2. ShiftRows — rows of the 4×4 byte matrix are cyclically shifted
3. MixColumns — columns are multiplied over a Galois field (provides diffusion)
4. AddRoundKey — block is XORed with the round key derived from the master key

Security relies on confusion (SubBytes obscures the relationship between key and ciphertext) and diffusion (MixColumns + ShiftRows spread each bit's influence across the entire block). Modern CPUs include AES-NI hardware instructions enabling multi-gigabyte-per-second encryption.