This paper examines the role of cryptography as an enabling technology across five key domains of the modern information society: wireless networks, smart cards, content delivery services, e-commerce, and healthcare. Beginning with foundational definitions of cryptographic concepts — including plaintext, ciphertext, encryption algorithms, and decryption keys — the paper traces how specific cryptographic systems such as WEP, WPA, elliptic curve cryptography, digital certificates, and public key encryption (PKE) are deployed in each domain. The discussion draws on peer-reviewed sources and trade literature to demonstrate that cryptography is not merely a technical safeguard but a foundational requirement for the continued growth and security of information technology applications.
The paper demonstrates effective use of comparative synthesis: rather than treating each technology in isolation, it builds a cumulative argument that cryptography functions as a universal enabling mechanism across distinct fields. By returning to core concepts (keys, algorithms, authentication) in each new domain, the writer shows how a single underlying technology adapts to different security challenges — a technique well suited to survey-style research papers.
The paper opens with a definitional introduction establishing core cryptographic vocabulary. Five thematic body sections follow — wireless networks, smart cards (subdivided into financial and identification uses), content delivery, e-commerce, and healthcare — each self-contained but linked by shared terminology. A summary conclusion recaps the findings domain by domain before restating the thesis. This structure makes the paper suitable as a reference overview for readers unfamiliar with applied cryptography.
Information systems technology has become an essential aspect of business and industry in recent years. As a result, organizations and individuals alike have formulated ways to keep information secure and private. Cryptography is vital to the development of the ever-growing information technology world. This paper focuses on the role of cryptography in wireless networks, smart cards, content delivery services, e-commerce, and healthcare. The discussion will demonstrate that cryptography is an enabling technology vital for the development of the information society, including applications such as smart cards (for identification and financial transactions), content delivery services (pay-per-view audio/video), and wireless networks.
Cryptography is defined as "the science of designing cipher systems, whereas cryptanalysis is the name given to the process of deducing information about plaintext from the ciphertext without being given the appropriate key. Cryptology is the collective term for both cryptography and cryptanalysis" (Murphy & Piper, 2002).
Murphy and Piper (2002) also explain that the purpose of a cipher system is to hide private or confidential information in a manner that makes it impossible to understand. There are two primary uses for a cipher system: to securely store data and to broadcast data over an insecure channel. Cipher systems do not prevent people from accessing data, but they do guarantee that an unauthorized individual will not be able to decipher it.
The concealed information is referred to as the plaintext, and the process of disguising the information is referred to as encryption. The encrypted plaintext is known as ciphertext or cryptogram, while the guidelines used to encrypt plaintext constitute the encryption algorithm (Murphy & Piper, 2002). In most cases, the algorithm's ability to function depends upon the encryption key, which is input to the algorithm alongside the message. A decryption algorithm must also be present to allow the recipient to recover the message from the cryptogram. When the decryption algorithm is used with the proper decryption key, the plaintext is recovered from the ciphertext. The guidelines constituting a cryptographic algorithm are typically very complex and require careful design (Murphy & Piper, 2002).
An individual who intercepts a message is referred to as an interceptor, also called an enemy, eavesdropper, or adversary (Murphy & Piper, 2002). It is worth noting that an interceptor is not always a malicious actor. Even if an interceptor understands the decryption algorithm, they typically do not know the decryption key, which makes it difficult for them to understand the plaintext (Murphy & Piper, 2002).
In recent years, wireless networks have become a vital source of communication for businesses and home users. Wireless networks are popular because they provide greater mobility and access to information, and they can be found in airports, coffee shops, and many other public places. Although wireless networks are extremely popular, they can also be difficult to secure. Several studies have shown that wireless networks leave users open to many vulnerabilities. Cryptography has long been used to address this issue.
Initially, a cryptography technology known as Wired Equivalent Privacy (WEP) was utilized. WEP offered little protection to wireless networks and their users. According to Piazza (2003):
"Academicians and security experts began exposing the gaping holes in WEP not long after the standard was released in late 1999 by the Institute of Electrical and Electronics Engineers (IEEE). Ken Evans, vice president of marketing and product management at Fortress Technologies, says that WEP's biggest flaw was what he calls a bad implementation of good cryptography. 'Think of a keychain with only four keys,' he says, referring to WEP's rotation of only four encryption keys. 'It's pretty easy for someone, once they find the right key, to open all the doors'" (Piazza, 2003).
Once the key is found and an individual has the time and processing power, he or she will have access to the data transmission and will be able to decipher information about the wireless network and its users, including the internet protocol (IP) address (Piazza, 2003). Once the IP address is known, the network becomes extremely vulnerable.
To combat the problems associated with WEP, Wi-Fi Protected Access (WPA) was developed as a temporary solution until a better-designed protocol could be implemented (Piazza, 2003). WPA addressed the aforementioned security issues by presenting a larger number of keys in a more frequent rotation, thus making it significantly more difficult for an individual to gain access to and decipher the encryption during transmission (Piazza, 2003). WPA is also designed to provide strong user authentication, which begins prior to encryption. Furthermore, WPA was a popular choice because it could be upgraded, meaning users would not have to purchase new hardware to receive more advanced security options (Piazza, 2003).
The design of WPA drew from the IEEE protocol known as 802.11i. This protocol was significant because it provided a more intensive level of encryption known as the Advanced Encryption Standard (AES) (Piazza, 2003). AES provided slightly better security, but WPA solved the fundamental vulnerability of wireless networks (Piazza, 2003).
Cryptography plays an important role in securing wireless networks, which are a vital communications tool in an increasingly global world. Without cryptography, information could easily fall into the hands of individuals who would cause harm to businesses and individuals alike. Businesses use wireless networks to share sensitive information over significant distances — for instance, to email confidential data or to complete purchases. If the network is not secured with appropriate cryptography, competitors may be able to obtain sensitive business information, resulting in the loss of competitive advantage.
The use of cryptography for wireless networks is equally important for individual users. People increasingly use the internet to access bank accounts, pay bills, and make purchases, meaning that banking and credit card information is constantly transmitted online. Cryptography secures this information and ensures it is not stolen or used by unauthorized persons.
In addition to wireless networks, smart cards have become vitally important information systems technology. Smart cards were first developed in the mid-1970s and are cards that contain a computer chip (Misra et al., 2004). Smart cards are comparable to debit or credit cards, but they differ in that they permit the user to store, secure, and update information during a transaction. Smart cards are also able to store greater amounts of information than a standard credit card and can make basic decisions during a transaction (Misra et al., 2004).
There are two primary types of smart cards: memory cards and microprocessor cards. Memory cards are designed to store data and are comparable to a small floppy disk. Microprocessor cards are composed of a central processing unit (CPU) that allows them to process data, conduct interim calculations, provide security, and store data (Misra et al., 2004). The information stored in a smart card is secured through well-designed encryption. A number of microprocessor cards can also perform various functions on a single card, improving flexibility and user appeal. A card reader must be present to read a smart card (Misra et al., 2004).
One notable type of smart card is the Electronic Purse — a smart card containing an electronic counterpart to cash and regarded as a replacement for a traditional wallet (Misra et al., 2004). Electronic purses usually take the form of debit cards preloaded with a sum of money that can be used to purchase goods and services, and they can be reloaded using ATM machines or traditional bank tellers if the card is connected to a banking account. Equipment including point-of-sale (POS) terminals, ATMs, and smart card kiosks can be outfitted with card readers (Misra et al., 2004). Each time the user completes a transaction, the card reader debits or credits the corresponding value from or to the card.
Smart cards are most commonly used as stored value cards, which can be utilized at the point of purchase and are preloaded with a certain amount of money. These cards can be discarded after use; however, most stored value cards can be reloaded and used repeatedly (Misra et al., 2004). Stored value cards are popular as gifts and are commonly referred to as gift cards.
Smart cards that do not require physical contact with a reader — known as contactless cards — can be used for applications such as highway tolls, where a motorist does not need to stop to pay. "Since smart cards can be used to hold any kind of information, we can expect to see applications of this medium grow in the future" (Misra et al., 2004, p. 15).
The original purpose of smart cards was to reduce reliance on paper forms of money such as cash and checks. Although smart cards have not yet replaced cash and checks, their prevalence has grown substantially. Orders for smart cards increased from 1.79 billion in 2000 to 2.55 billion in 2002, and the number of cards distributed internationally increased from 900 million in 1997 to 6.31 billion in 2003 (Misra et al., 2004). Smart cards are utilized across several industries, including transportation, healthcare, and banking (Misra et al., 2004).
As a result of the increased use of smart cards in all their various forms, there has been a concerted effort to develop encryption systems that reduce the likelihood of fraud. Cryptography is often used to secure the information stored on a card or to ensure the card cannot be used by an unauthorized person.
In addition to financial transactions, smart cards can also be used for identification purposes. This use is common in both business settings and government facilities. An identification smart card contains a chip that identifies the cardholder and may grant access to various parts of an office or to the organization's computer system. In some cases, these cards are also used by employees to clock in and out of work. The primary purpose of using smart cards for identification is organizational security — a concern that has taken on heightened importance at government facilities in the post-9/11 environment.
According to Piazza (2005), smart cards used for identification are among the most technologically advanced devices available. In some cases, they even contain biometric information to authenticate an individual's access to a building or classified information. Biometrics includes iris scans, fingerprinting, and facial recognition (Piazza, 2005), as well as newer technologies capable of analyzing vein structure, odor, and gait (Piazza, 2005).
Because smart cards can hold extremely sensitive information, encryption is essential. Cryptography provides the security needed to prevent unauthorized parties from deciphering this information. One cryptographic system widely used for smart card security is elliptic curve cryptography. According to Al-Kayali (2004), elliptic curve cryptosystems have grown tremendously in popularity for securing smart cards. Elliptic curve cryptography is a type of "public-key cryptography based on the algebraic structure of elliptic curves over finite fields (ECC)." Although complex, it is considered highly resistant to manipulation and therefore provides very strong security for smart card systems.
It is evident that smart cards are increasing in popularity in both the electronic cash and identification spheres. In the years to come, there will most likely be an increased emphasis on securing this type of technology, and different forms of cryptography will continue to be developed to ensure that private information on smart cards remains protected.
Al-Kayali, A. (2004). Elliptic curve cryptography and smart cards. GIAC Security Essentials Certification (GSEC). Retrieved from http://www.sans.org/reading_room/whitepapers/vpns/1378.php
Frauenfelder, M. (2005). Make: Technology on your time. O'Reilly.
Misra, S. K., Javalgi, R., & Scherer, R. F. (2004). Global electronic money and related issues. Review of Business, 25(2), 15+.
Mitrou, N. (2004). Networking 2004: Networking technologies, services, and protocols. Springer.
Murphy, S., & Piper, F. (2002). Cryptography: A very short introduction. Oxford University Press.
Piazza, P. (2003, May). Wireless security gets a new set of keys. Security Management, 47, 36+.
Piazza, P. (2005, January). The smart cards are coming. Really. Security Management, 49, 40+.
Sharma, S. K., Gupta, J. N. D., & Wickramasinghe, N. (2005). Creating knowledge-based healthcare organizations. Idea Group Inc.
Smith, G. E. (2004). Control and security of ecommerce. John Wiley and Sons.
Talukdar, A. S. (2003). Electronic signatures in e-healthcare: The need for a federal standard. Journal of Law and Health, 18(1), 95+.
You’re 60% through this paper. Sign up to read the remaining 2 sections.
Sign Up Now — Instant Access Already a member? Log inAlways verify citation format against your institution’s current style guide requirements.