Cryptography 101: Public Key, Private Key, and How They Work Together

How AES-256 and Public Key Cryptography Work Together to Protect Sensitive Data

AES-256 encryption is widely regarded as the strongest symmetric encryption algorithm available. But there’s a problem it can’t solve on its own: how do two parties securely share the key that unlocks the data in the first place? Sending an AES-256 key over an unprotected channel would defeat the purpose of encrypting the data at all.

That’s where public key cryptography comes in. The two work as a pair—AES-256 handles the heavy lifting of encrypting data at rest and in transit, while public/private key pairs handle secure key exchange and identity authentication. Understanding how they work together is fundamental to evaluating any platform’s encryption claims, and it’s directly relevant to compliance requirements under CMMC, FedRAMP, and HIPAA.

Executive Summary

Main Idea: AES-256 (symmetric encryption) and public/private key cryptography (asymmetric encryption) are not competing standards—they are complementary layers that together provide both performance and security for sensitive data exchange.

Why You Should Care: Compliance frameworks including CMMC 2.0 and FedRAMP don’t just require encryption—they require FIPS-validated encryption with sound key management. An organization can implement AES-256 correctly and still fail an assessment if the key management layer is weak. Knowing how these two types of encryption work together helps you evaluate whether a platform’s encryption architecture is genuinely sound or just checkbox-compliant.

Key Takeaways

1. AES-256 is symmetric encryption—the same key encrypts and decrypts data.

AES-256 uses a single 256-bit key for both encryption and decryption. Its speed and computational efficiency make it the right tool for encrypting large volumes of data at rest and in transit. NIST selected AES as the federal encryption standard, and it remains the algorithm required by FIPS 140-3—the current benchmark for cryptographic module validation in government and regulated industries.

2. Public key cryptography solves the key distribution problem AES-256 can’t.

You can’t send an AES-256 key over an unencrypted channel. Public key cryptography (also called asymmetric encryption) solves this: one party encrypts the AES session key using the other party’s public key, and only the corresponding private key can decrypt it. This is how TLS establishes a secure connection before any data moves.

3. The two types of encryption work in sequence, not in isolation.

In practice, public key cryptography handles the handshake—authenticating identity and exchanging the symmetric key. AES-256 then takes over for the actual data transfer. This hybrid approach combines the security strengths of asymmetric cryptography with the performance strengths of symmetric encryption.

4. Encryption is only as strong as its key management.

AES-256 with weak key management is not a secure system. If encryption keys are stored on the same server as the encrypted data, a single compromise exposes both. CMMC assessors examine key generation, storage, rotation, and destruction—not just whether encryption is present. Who owns and controls the keys determines the actual security boundary.

5. Customer-owned encryption keys are the meaningful differentiator, not the algorithm itself.

Most enterprise platforms offer AES-256. What separates them is who controls the keys. Customer-owned encryption keys mean the vendor is technically incapable of decrypting your data—even in response to a legal request. That distinction carries significant weight under CMMC Level 3, FedRAMP High, and post-Schrems II GDPR requirements.

What AES-256 Does—and What It Doesn’t

AES-256 is a symmetric block cipher. It takes plaintext, runs it through 14 rounds of substitution, transposition, and mixing operations using a 256-bit key, and produces ciphertext that is computationally infeasible to reverse without that key. The same key decrypts the data.

It’s fast, it’s well-tested, and it’s the algorithm the NSA approved for protecting classified information. FIPS 140-3—the current federal standard for cryptographic modules—requires AES for data at rest. Every serious compliance framework points to it.

But AES-256 has one structural limitation: both parties need the same key. If you’re encrypting data on your own server that only you access, that’s not a problem. The moment you need to share encrypted data with someone else, you face the key distribution problem: how do you get the key to the other party without exposing it in transit?

That’s where public key cryptography enters.

How Public Key Cryptography Works

Public key cryptography uses a mathematically linked pair of keys. The public key is freely distributed—anyone can have it. The private key is kept secret by its owner. Data encrypted with the public key can only be decrypted by the corresponding private key.

This solves the distribution problem. If you want to send a sensitive key to a business partner, you encrypt it using their public key. Only they can decrypt it, because only they hold the matching private key. The public key can travel over an unprotected channel without risk—intercepting it gives an attacker nothing useful.

The RSA algorithm is the most widely deployed implementation of public key cryptography. It relies on the mathematical difficulty of factoring very large numbers—a problem that remains computationally infeasible with current technology at the key sizes in use today.

Public key cryptography also enables digital signatures: a sender encrypts a hash of a message using their private key. Any recipient can verify the signature using the sender’s public key, confirming both the identity of the sender and that the message hasn’t been altered in transit. This is the basis for TLS certificate validation, code signing, and S/MIME email authentication.

How the Two Work Together in Practice

Every time your browser connects to an HTTPS site, it runs a version of this sequence:

  1. The server presents its digital certificate, which contains its public key and is signed by a trusted Certificate Authority.
  2. The client verifies the certificate and uses the server’s public key to securely negotiate a shared symmetric key.
  3. From that point on, all data in the session is encrypted using AES—fast, efficient, and protected by a key that only the two parties hold.

This is the Diffie-Hellman key exchange, and variants of it underpin virtually every secure communication protocol in use today: TLS, IPsec, SSH, and S/MIME all follow the same pattern. Public key cryptography authenticates and exchanges. AES-256 encrypts the data itself.

The reason the handoff happens is performance. Asymmetric encryption is computationally expensive—it’s not practical for encrypting large files or sustained data streams. AES-256 handles bulk encryption orders of magnitude faster. The hybrid model gets the security benefits of both.

Where Key Management Becomes a Compliance Issue

Once you understand that encryption operates in two layers—key exchange and data encryption—it becomes clear why compliance frameworks don’t just ask “do you use AES-256?” They ask who controls the keys, how they’re stored, how they’re rotated, and what happens when they’re destroyed.

Under CMMC 2.0, controls SC.L2-3.13.8 and SC.L2-3.13.16 require cryptographic protection of CUI in transit and at rest using FIPS-validated modules. CMMC assessors examine key management documentation in the System Security Plan—not just the algorithm in use. A system that encrypts CUI with AES-256 but stores the encryption keys in a configuration file on the same server is not a secure system, and it will not pass scrutiny.

The same logic applies under FedRAMP and HIPAA. HIPAA breach notification safe harbor only applies when PHI was encrypted and the encryption keys remained secure. If a cloud provider holds your encryption keys, their compromise—or a legal order directed at them—potentially exposes your data even if AES-256 was in place.

This is why customer-owned encryption keys are not a premium feature. For organizations in regulated industries, they’re a compliance prerequisite.

What Makes an Encryption Architecture Genuinely Sound

Evaluating a platform’s encryption claims means looking beyond “AES-256 at rest, TLS in transit.” The meaningful questions are:

Who owns the keys? Provider-managed keys mean the vendor can decrypt your data. Customer-owned keys mean they cannot—technically, not just contractually. If a government subpoena is served on the vendor, customer-owned keys leave the vendor with nothing to produce.

What cryptographic module validation does the platform hold? FIPS 140-2 has been superseded by FIPS 140-3. A platform still citing only 140-2 validation may not meet current federal requirements for systems handling CUI or PHI at higher sensitivity tiers.

Is the key exchange layer protected? TLS 1.0 and 1.1 contain known vulnerabilities. NIST’s current guidance requires TLS 1.2 as the minimum, with TLS 1.3 preferred. Platforms that don’t enforce minimum TLS versions expose the key exchange layer even when AES-256 protects the data itself.

Is encryption applied consistently across all channels? A platform that encrypts file sharing but sends email in cleartext, or applies encryption to uploads but not to API traffic, has gaps that create real exposure regardless of the algorithm in use on protected channels.

How Kiteworks Addresses Encryption Across the Full Stack

Kiteworks implements AES-256 encryption for data at rest and TLS 1.2 (with the ability to enforce TLS 1.3) for data in transit across all channels—secure email, secure file sharing, managed file transfer, SFTP, and secure data forms. The platform’s cryptographic module holds FIPS 140-3 Level 1 validation—the current standard, not the superseded 140-2.

Kiteworks applies double encryption: data is encrypted at both the file and disk levels. Emails are encrypted and decrypted automatically through the Email Protection Gateway; recipients use their native email clients with no additional software or training required. All file transfers include an integrity check using an MD5 hash digital fingerprint.

On key ownership: Kiteworks customers own their encryption keys. Kiteworks never possesses the keys and cannot be compelled to produce customer data—because it is technically incapable of decrypting it. This architecture directly addresses the compliance scenarios where key control determines whether encryption is meaningful: CMMC Level 3, FedRAMP High, and GDPR data sovereignty requirements post-Schrems II.

For organizations requiring additional key protection, Kiteworks integrates with Hardware Security Modules (HSMs) from Thales and AWS Key Management Service—tamper-resistant hardware that prevents key extraction even from a fully compromised server.

The result is a platform where the encryption architecture—not just the algorithm—is designed for regulated industries. Kiteworks supports nearly 90% of CMMC Level 2 requirements out of the box and holds FedRAMP Moderate Authorization with High Ready status.

To see how Kiteworks handles encryption across your specific compliance requirements, schedule a custom demo.

Frequently Asked Questions

AES-256 is symmetric encryption—the same key encrypts and decrypts data. It’s fast and efficient for large data volumes, making it the standard for encrypting files and databases. Public key encryption (asymmetric encryption) uses a mathematically linked key pair: a public key for encryption and a private key for decryption. It’s used primarily for key exchange and digital signatures, not bulk data encryption. In practice, the two work together: public key cryptography secures the exchange of an AES session key, which then encrypts the actual data.

AES-256 requires both parties to share the same key, but securely distributing that key over an untrusted network is a problem symmetric encryption cannot solve on its own. Sending the AES key in plaintext would expose it to interception. Public key cryptography solves this by allowing one party to encrypt the AES key using the recipient’s public key—only the recipient’s private key can decrypt it. TLS uses this hybrid model to establish secure sessions before any data is transmitted.

FIPS 140-3 is the federal standard for cryptographic module validation. It specifies requirements for hardware and software implementations of cryptographic algorithms—including AES. Holding FIPS 140-3 validation doesn’t just mean using AES-256; it means the entire cryptographic module—key generation, storage, and management—has been independently tested and certified to meet federal standards. CMMC Level 2 and FedRAMP require FIPS-validated cryptographic modules, not simply FIPS-approved algorithms. FIPS 140-3 supersedes FIPS 140-2 as the current benchmark.

With provider-managed keys, the cloud vendor holds the technical ability to decrypt your data—and can be compelled to do so under legal process, including the U.S. CLOUD Act. Customer-owned encryption keys remove that ability entirely. The vendor never possesses the keys and cannot decrypt the data regardless of any legal request. For organizations subject to CMMC Level 3, FedRAMP High, or GDPR data sovereignty requirements, the distinction between managing keys and owning them is the difference between genuine data control and a contractual assurance that a court order can override.

Kiteworks uses TLS (which relies on public key cryptography for its key exchange and authentication handshake) to protect all data in transit. For secure email, Kiteworks supports S/MIME, which uses public key infrastructure to authenticate senders and encrypt message content end-to-end. The platform’s Email Protection Gateway automates encryption and decryption so recipients receive messages in their native email clients without additional software. All underlying cryptographic operations are performed within a FIPS 140-3 validated module, and encryption keys remain solely in the customer’s control.

Get started.

It’s easy to start ensuring regulatory compliance and effectively managing risk with Kiteworks. Join the thousands of organizations who are confident in how they exchange private data between people, machines, and systems. Get started today.

Table of Content
Share
Tweet
Share
Explore Kiteworks