Timeline of cryptography

Last updated January 29, 2025

Below is a timeline of notable events related to cryptography.

B.C.

36th century – The Sumerians develop cuneiform writing and the Egyptians develop hieroglyphic writing.
16th century – The Phoenicians develop an alphabet
600-500 – Hebrew scholars make use of simple monoalphabetic substitution ciphers (such as the Atbash cipher)
c. 400 – Spartan use of scytale (alleged)
c. 400 – Herodotus reports use of steganography in reports to Greece from Persia (tattoo on shaved head)
100-1 A.D.- Notable Roman ciphers such as the Caesar cipher.

1–1799 A.D.

801–873 A.D. – Cryptanalysis and frequency analysis leading to techniques for breaking monoalphabetic substitution ciphers are developed in A Manuscript on Deciphering Cryptographic Messages by the Muslim mathematician, Al-Kindi (Alkindus), who may have been inspired by textual analysis of the Qur'an. He also covers methods of encipherments, cryptanalysis of certain encipherments, and statistical analysis of letters and letter combinations in Arabic.
1450 – The Chinese develop wooden block movable type printing.
1450–1520 – The Voynich manuscript, an example of a possibly encoded illustrated book, is written.
1466 – Leon Battista Alberti invents polyalphabetic cipher, also first known mechanical cipher machine
1518 – Johannes Trithemius' book on cryptology
1553 – Bellaso invents Vigenère cipher
1585 – Vigenère's book on ciphers
1586 – Cryptanalysis used by spymaster Sir Francis Walsingham to implicate Mary, Queen of Scots, in the Babington Plot to murder Elizabeth I of England. Queen Mary was eventually executed.
1641 – Wilkins' Mercury (English book on cryptology)
1793 – Claude Chappe establishes the first long-distance semaphore telegraph line
1795 – Thomas Jefferson invents the Jefferson disk cipher, reinvented over 100 years later by Etienne Bazeries

1800–1899

1809–14 George Scovell's work on Napoleonic ciphers during the Peninsular War
1831 – Joseph Henry proposes and builds an electric telegraph
1835 – Samuel Morse develops the Morse code
1854 – Charles Wheatstone invents the Playfair cipher
c. 1854 – Babbage's method for breaking polyalphabetic ciphers (pub 1863 by Kasiski)
1855 – For the English side in Crimean War, Charles Babbage broke Vigenère's autokey cipher (the 'unbreakable cipher' of the time) as well as the much weaker cipher that is called Vigenère cipher today. Due to secrecy it was also discovered and attributed somewhat later to the Prussian Friedrich Kasiski.
1883 – Auguste Kerckhoffs' La Cryptographie militare published, containing his celebrated laws of cryptography
1885 – Beale ciphers published
1894 – The Dreyfus Affair in France involves the use of cryptography, and its misuse, in regard to false documents.

1900–1949

1916-1922 – William Friedman and Elizebeth Smith Friedman apply statistics to cryptanalysis (coincidence counting, etc.), write Riverbank Publications
1917 – Gilbert Vernam develops first practical implementation of a teletype cipher, now known as a stream cipher and, later, with Joseph Mauborgne the one-time pad
1917 – Zimmermann telegram intercepted and decrypted, advancing U.S. entry into World War I
1919 – Weimar Germany Foreign Office adopts (a manual) one-time pad for some traffic
1919 – Edward Hebern invents/patents first rotor machine design—Damm, Scherbius and Koch follow with patents the same year
1921 – Washington Naval Conference – U.S. negotiating team aided by decryption of Japanese diplomatic telegrams
c. 1924 – MI8 (Herbert Yardley, et al.) provide breaks of assorted traffic in support of US position at Washington Naval Conference
c. 1932 – first break of German Army Enigma by Marian Rejewski in Poland
1929 – United States Secretary of State Henry L. Stimson shuts down State Department cryptanalysis "Black Chamber", saying "Gentlemen do not read each other's mail."
1931 –The American Black Chamber by Herbert O. Yardley is published, revealing much about American cryptography
1940 – Break of Japan's PURPLE machine cipher by SIS team
December 7, 1941 – attack on Pearl Harbor; U.S. Navy base at Pearl Harbor in Oahu is surprised by Japanese attack, despite U.S. breaking of Japanese codes. U.S. enters World War II.
June 1942 – Battle of Midway where U.S. partial break into Dec 41 edition of JN-25 leads to turning-point victory over Japan
April 1943 – Admiral Yamamoto, architect of Pearl Harbor attack, is assassinated by U.S. forces who know his itinerary from decoded messages
April 1943 – Max Newman, Wynn-Williams, and their team (including Alan Turing) at the secret Government Code and Cypher School ('Station X'), Bletchley Park, Bletchley, England, complete the "Heath Robinson". This is a specialized machine for cipher-breaking, not a general-purpose calculator or computer.
December 1943 – The Colossus computer was built, by Thomas Flowers at The Post Office Research Laboratories in London, to crack the German Lorenz cipher (SZ42). Colossus was used at Bletchley Park during World War II – as a successor to April's 'Robinson's. Although 10 were eventually built, unfortunately they were destroyed immediately after they had finished their work – it was so advanced that there was to be no possibility of its design falling into the wrong hands.
1944 – Patent application filed on SIGABA code machine used by U.S. in World War II. Kept secret, it finally issues in 2001
1946 – The Venona project's first break into Soviet espionage traffic from the early 1940s
1948 – Claude Shannon writes a paper that establishes the mathematical basis of information theory.
1949 – Shannon's Communication Theory of Secrecy Systems published in Bell Labs Technical Journal

1950–1999

1951 – U.S. National Security Agency founded. KL-7 rotor machine introduced sometime thereafter.
1957 – First production order for KW-26 electronic encryption system.
August 1964 – Gulf of Tonkin Incident leads U.S. into Vietnam War, possibly due to misinterpretation of signals intelligence by NSA.
1967 – David Kahn's The Codebreakers is published.
1968 – John Anthony Walker walks into the Soviet Union's embassy in Washington and sells information on KL-7 cipher machine. The Walker spy ring operates until 1985.
1969 – The first hosts of ARPANET, Internet's ancestor, are connected.
1970 – Using quantum states to encode information is first proposed: Stephen Wiesner invents conjugate coding and applies it to design “money physically impossible to counterfeit” (still technologically unfeasible today).
1974? – Horst Feistel develops Feistel network block cipher design.
1976 – The Data Encryption Standard published as an official Federal Information Processing Standard (FIPS) for the United States.
1976 – Diffie and Hellman publish New Directions in Cryptography .
1977 – RSA public key encryption invented.
1978 – Robert McEliece invents the McEliece cryptosystem, the first asymmetric encryption algorithm to use randomization in the encryption process.
1981 – Richard Feynman proposed quantum computers. The main application he had in mind was the simulation of quantum systems, but he also mentioned the possibility of solving other problems.
1984 – Based on Stephen Wiesner's idea from the 1970s, Charles Bennett and Gilles Brassard design the first quantum cryptography protocol, BB84.
1985 – Walker spy ring uncovered. Remaining KL-7's withdrawn from service.
1986 – After an increasing number of break-ins to government and corporate computers, United States Congress passes the Computer Fraud and Abuse Act , which makes it a crime to break into computer systems. The law, however, does not cover juveniles.
1988 – African National Congress uses computer-based one-time pads to build a network inside South Africa.
1989 – Tim Berners-Lee and Robert Cailliau built the prototype system which became the World Wide Web at CERN.
1989 – Quantum cryptography experimentally demonstrated in a proof-of-the-principle experiment by Charles Bennett et al.
1991 – Phil Zimmermann releases the public key encryption program PGP along with its source code, which quickly appears on the Internet.
1994 – Bruce Schneier's Applied Cryptography is published.
1994 – Secure Sockets Layer (SSL) encryption protocol released by Netscape.
1994 – Peter Shor devises an algorithm which lets quantum computers determine the factorization of large integers quickly. This is the first interesting problem for which quantum computers promise a significant speed-up, and it therefore generates a lot of interest in quantum computers.
1994 – DNA computing proof of concept on toy travelling salesman problem; a method for input/output still to be determined.
1994 – Russian crackers siphon $10 million from Citibank and transfer the money to bank accounts around the world. Vladimir Levin, the 30-year-old ringleader, uses his work laptop after hours to transfer the funds to accounts in Finland and Israel. Levin stands trial in the United States and is sentenced to three years in prison. Authorities recover all but $400,000 of the stolen money.
1994 – Formerly proprietary, but un-patented, RC4 cipher algorithm is published on the Internet.
1994 – First RSA Factoring Challenge from 1977 is decrypted as The Magic Words are Squeamish Ossifrage.
1995 – NSA publishes the SHA1 hash algorithm as part of its Digital Signature Standard.
July 1997 – OpenPGP specification (RFC 2440) released
1997 – Ciphersaber, an encryption system based on RC4 that is simple enough to be reconstructed from memory, is published on Usenet.
October 1998 – Digital Millennium Copyright Act (DMCA) becomes law in U.S., criminalizing production and dissemination of technology that can circumvent technical measures taken to protect copyright.
October 1999 – DeCSS, a computer program capable of decrypting content on a DVD, is published on the Internet.

2000 and beyond

January 14, 2000 – U.S. Government announce restrictions on export of cryptography are relaxed (although not removed). This allows many US companies to stop the long running process of having to create US and international copies of their software.
March 2000 – President of the United States Bill Clinton says he doesn't use e-mail to communicate with his daughter, Chelsea Clinton, at college because he doesn't think the medium is secure.
September 6, 2000 – RSA Security Inc. released their RSA algorithm into the public domain, a few days in advance of their U.S. patent 4,405,829 expiring. Following the relaxation of the U.S. government export restrictions, this removed one of the last barriers to the worldwide distribution of much software based on cryptographic systems
2000 – UK Regulation of Investigatory Powers Act requires anyone to supply their cryptographic key to a duly authorized person on request
2001 – Belgian Rijndael algorithm selected as the U.S. Advanced Encryption Standard (AES) after a five-year public search process by National Institute of Standards and Technology (NIST)
2001 – Scott Fluhrer, Itsik Mantin and Adi Shamir publish an attack on WiFi's Wired Equivalent Privacy security layer
September 11, 2001 – U.S. response to terrorist attacks hampered by lack of secure communications
November 2001 – Microsoft and its allies vow to end "full disclosure" of security vulnerabilities by replacing it with "responsible" disclosure guidelines
2002 – NESSIE project releases final report / selections
August 2002, PGP Corporation formed, purchasing assets from NAI.
2003 – CRYPTREC project releases 2003 report / recommendations
2004 – The hash MD5 is shown to be vulnerable to practical collision attack
2004 – The first commercial quantum cryptography system becomes available from id Quantique.
2005 – Potential for attacks on SHA1 demonstrated
2005 – Agents from the U.S. FBI demonstrate their ability to crack WEP using publicly available tools
May 1, 2007 – Users swamp Digg.com with copies of a 128-bit key to the AACS system used to protect HD DVD and Blu-ray video discs. The user revolt was a response to Digg's decision, subsequently reversed, to remove the keys, per demands from the motion picture industry that cited the U.S. DMCA anti-circumvention provisions.^[1]
November 2, 2007 – NIST hash function competition announced.
2009 – Bitcoin network was launched.
2010 – The master key for High-bandwidth Digital Content Protection (HDCP) and the private signing key for the Sony PlayStation 3 game console are recovered and published using separate cryptoanalytic attacks. PGP Corp. is acquired by Symantec.
2012 – NIST selects the Keccak algorithm as the winner of its SHA-3 hash function competition.
2013 – Edward Snowden discloses a vast trove of classified documents from NSA. See Global surveillance disclosures (2013–present)
2013 – Dual_EC_DRBG is discovered to have a NSA backdoor.
2013 – NSA publishes Simon and Speck lightweight block ciphers.
2014 – The Password Hashing Competition accepts 24 entries.
2015 – Year by which NIST suggests that 80-bit keys be phased out.
2024 – August 13th 2024 - NIST releases first 3 finalized post-quantum encryption standards.^[2]

Related Research Articles

The Advanced Encryption Standard (AES), also known by its original name Rijndael, is a specification for the encryption of electronic data established by the U.S. National Institute of Standards and Technology (NIST) in 2001.

In cryptography, a block cipher is a deterministic algorithm that operates on fixed-length groups of bits, called blocks. Block ciphers are the elementary building blocks of many cryptographic protocols. They are ubiquitous in the storage and exchange of data, where such data is secured and authenticated via encryption.

<span class="mw-page-title-main">Cryptanalysis</span> Study of analyzing information systems in order to discover their hidden aspects

Cryptanalysis refers to the process of analyzing information systems in order to understand hidden aspects of the systems. Cryptanalysis is used to breach cryptographic security systems and gain access to the contents of encrypted messages, even if the cryptographic key is unknown.

In cryptography, key size or key length refers to the number of bits in a key used by a cryptographic algorithm.

The Data Encryption Standard is a symmetric-key algorithm for the encryption of digital data. Although its short key length of 56 bits makes it too insecure for modern applications, it has been highly influential in the advancement of cryptography.

Elliptic-curve cryptography (ECC) is an approach to public-key cryptography based on the algebraic structure of elliptic curves over finite fields. ECC allows smaller keys to provide equivalent security, compared to cryptosystems based on modular exponentiation in Galois fields, such as the RSA cryptosystem and ElGamal cryptosystem.

In cryptography, encryption is the process of transforming information in a way that, ideally, only authorized parties can decode. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext. Despite its goal, encryption does not itself prevent interference but denies the intelligible content to a would-be interceptor.

In cryptography, the one-time pad (OTP) is an encryption technique that cannot be cracked, but requires the use of a single-use pre-shared key that is larger than or equal to the size of the message being sent. In this technique, a plaintext is paired with a random secret key. Then, each bit or character of the plaintext is encrypted by combining it with the corresponding bit or character from the pad using modular addition.

Symmetric-key algorithms are algorithms for cryptography that use the same cryptographic keys for both the encryption of plaintext and the decryption of ciphertext. The keys may be identical, or there may be a simple transformation to go between the two keys. The keys, in practice, represent a shared secret between two or more parties that can be used to maintain a private information link. The requirement that both parties have access to the secret key is one of the main drawbacks of symmetric-key encryption, in comparison to public-key encryption. However, symmetric-key encryption algorithms are usually better for bulk encryption. With exception of the one-time pad they have a smaller key size, which means less storage space and faster transmission. Due to this, asymmetric-key encryption is often used to exchange the secret key for symmetric-key encryption.

In cryptography, ciphertext or cyphertext is the result of encryption performed on plaintext using an algorithm, called a cipher. Ciphertext is also known as encrypted or encoded information because it contains a form of the original plaintext that is unreadable by a human or computer without the proper cipher to decrypt it. This process prevents the loss of sensitive information via hacking. Decryption, the inverse of encryption, is the process of turning ciphertext into readable plaintext. Ciphertext is not to be confused with codetext because the latter is a result of a code, not a cipher.

Articles related to cryptography include:

In cryptography, Skipjack is a block cipher—an algorithm for encryption—developed by the U.S. National Security Agency (NSA). Initially classified, it was originally intended for use in the controversial Clipper chip. Subsequently, the algorithm was declassified.

Cryptography, the use of codes and ciphers to protect secrets, began thousands of years ago. Until recent decades, it has been the story of what might be called classical cryptography — that is, of methods of encryption that use pen and paper, or perhaps simple mechanical aids. In the early 20th century, the invention of complex mechanical and electromechanical machines, such as the Enigma rotor machine, provided more sophisticated and efficient means of encryption; and the subsequent introduction of electronics and computing has allowed elaborate schemes of still greater complexity, most of which are entirely unsuited to pen and paper.

In cryptography, Camellia is a symmetric key block cipher with a block size of 128 bits and key sizes of 128, 192 and 256 bits. It was jointly developed by Mitsubishi Electric and NTT of Japan. The cipher has been approved for use by the ISO/IEC, the European Union's NESSIE project and the Japanese CRYPTREC project. The cipher has security levels and processing abilities comparable to the Advanced Encryption Standard.

NSA Suite B Cryptography was a set of cryptographic algorithms promulgated by the National Security Agency as part of its Cryptographic Modernization Program. It was to serve as an interoperable cryptographic base for both unclassified information and most classified information.

Strong cryptography or cryptographically strong are general terms used to designate the cryptographic algorithms that, when used correctly, provide a very high level of protection against any eavesdropper, including the government agencies. There is no precise definition of the boundary line between the strong cryptography and (breakable) weak cryptography, as this border constantly shifts due to improvements in hardware and cryptanalysis techniques. These improvements eventually place the capabilities once available only to the NSA within the reach of a skilled individual, so in practice there are only two levels of cryptographic security, "cryptography that will stop your kid sister from reading your files, and cryptography that will stop major governments from reading your files".

<span class="mw-page-title-main">Cryptography</span> Practice and study of secure communication techniques

Cryptography, or cryptology, is the practice and study of techniques for secure communication in the presence of adversarial behavior. More generally, cryptography is about constructing and analyzing protocols that prevent third parties or the public from reading private messages. Modern cryptography exists at the intersection of the disciplines of mathematics, computer science, information security, electrical engineering, digital signal processing, physics, and others. Core concepts related to information security are also central to cryptography. Practical applications of cryptography include electronic commerce, chip-based payment cards, digital currencies, computer passwords, and military communications.

The following outline is provided as an overview of and topical guide to cryptography:

In cryptography, security level is a measure of the strength that a cryptographic primitive — such as a cipher or hash function — achieves. Security level is usually expressed as a number of "bits of security", where n-bit security means that the attacker would have to perform 2ⁿ operations to break it, but other methods have been proposed that more closely model the costs for an attacker. This allows for convenient comparison between algorithms and is useful when combining multiple primitives in a hybrid cryptosystem, so there is no clear weakest link. For example, AES-128 is designed to offer a 128-bit security level, which is considered roughly equivalent to a RSA using 3072-bit key.

References

↑ Sumner Lemon (2 May 2007). "Digg bends to users' will on AACS encryption key". InfoWorld. Retrieved 13 November 2016.
↑ Chad Boutin (13 August 2024). "NIST post-quantum encryption standards". NIST.gov. Retrieved 19 August 2024.

External links

Timeline of Cipher Machines Archived 2021-10-06 at the Wayback Machine

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] Sumner Lemon (2 May 2007). "Digg bends to users' will on AACS encryption key". InfoWorld. Retrieved 13 November 2016.

[2] Chad Boutin (13 August 2024). "NIST post-quantum encryption standards". NIST.gov. Retrieved 19 August 2024.

[1]

[2]

v t e Timelines of computing
Computing	Before 1950 1950–1979 1980s 1990s 2000s 2010s 2020s Scientific Women in computing
Computer science	Algorithms Artificial intelligence Binary prefixes Cryptography Machine learning Quantum computing and communication
Software	Free and open-source software Hypertext technology Operating systems DOS family Windows Linux Programming languages Virtualization development Malware
Internet	Internet conflicts Web browsers Web search engines
Notable people	Kathleen Antonelli John Vincent Atanasoff Charles Babbage John Backus Jean Bartik George Boole Vint Cerf John Cocke Stephen Cook Edsger W. Dijkstra J. Presper Eckert Adele Goldstine Lois Haibt Betty Holberton Margaret Hamilton Grace Hopper David A. Huffman Bob Kahn Brian Kernighan Andrew Koenig Semyon Korsakov Nancy Leveson Ada Lovelace Donald Knuth Joseph Kruskal Douglas McIlroy Marlyn Meltzer John von Neumann Klára Dán von Neumann Dennis Ritchie Guido van Rossum Claude Shannon Frances Spence Bjarne Stroustrup Ruth Teitelbaum Ken Thompson Linus Torvalds Alan Turing Paul Vixie Larry Wall Stephen Wolfram Niklaus Wirth Steve Wozniak Konrad Zuse