Skip to main content
CipherChronicle

Cryptography glossary

Cryptology

Also known as : Science of secrecy

Cryptology is the science of secrecy in the broad sense. From Greek kruptos (“hidden”) and logos (“study”), it covers everything related to concealing, transforming and revealing information. Three branches traditionally make it up, and you should keep them straight to avoid confusing the tools with the discipline that frames them.

Three branches, three angles of attack

  • Cryptography: designing procedures to make a message unintelligible to anyone without the key. The defensive stance — that of the cipher’s inventor.
  • Cryptanalysis: recovering the plaintext without the key. The attack, the exact reverse of cryptography. The cryptanalyst publishes results — that’s what separates the scientist from the thief.
  • Steganography: hiding the very existence of the message (invisible ink, microdots, the last bit of a digital image, words hidden in a song…). Where cryptography makes things unreadable, steganography makes them invisible. An agent carrying an encrypted file draws attention; the same message hidden in a picture of their dog goes unnoticed.

Some taxonomies add a fourth branch, coding theory (Reed-Solomon, Hamming codes for error correction). Strictly speaking that’s not secrecy, but those codes share the mathematical toolbox of cryptology (finite fields, generator matrices) and frequently cross paths with its problems.

Cryptology versus cryptography: which to use?

The term cryptology is more academic than cryptography, which in everyday usage often covers all three. Universities, research labs and specialized agencies (NSA, GCHQ, ANSSI, DGSE…) use “cryptology” to describe their craft — which necessarily includes both faces, defense and attack. A cryptologist who can’t attack also can’t judge the soundness of what they propose.

In the general public and the software industry, however, people more often say “crypto” — which is usually shorthand for cryptography alone, or sometimes confused with cryptocurrencies (which use cryptology but aren’t synonymous with it). Both usages coexist; context generally clarifies.

A discipline split between theory and practice

Modern cryptology occupies two distinct seats in research:

  • Theoretical: studying mathematical foundations (number theory, elliptic curves, lattice problems) and proving security bounds. This is where future post-quantum algorithms are being built.
  • Applied: implementing, optimizing and auditing real cryptographic code. This is where you find implementation flaws (Heartbleed, ROCA, Log4Shell). A system’s security depends as much on the algorithm as on the quality of the code that runs it.

The two worlds talk constantly. A theoretical weakness in a scheme triggers an applied migration; a side-channel attack measured in a lab forces theorists to model stronger adversaries.

Training and careers

Becoming a cryptologist usually means a master’s degree in applied math or computer science with a crypto specialization (in France: Rennes, Limoges, Bordeaux, Saclay; in the US: top CS programs with crypto faculty), often followed by a PhD. Career paths cover academic research, government agencies, security software vendors, banks, telecom operators, and more recently the blockchain industry. The shortage is global: a competent cryptologist places easily.

For the curious learner or teacher, the entry point isn’t a master’s degree — it’s a pencil. Historical ciphers are precisely the best pedagogy: they teach the concepts (substitution, permutation, key space, frequency) on objects a human can manipulate, without depending on an opaque library.

CipherChronicle’s role

CipherChronicle lives at the boundary between cryptography (you learn to build ciphers) and cryptanalysis (you learn to break them). That’s what makes historical ciphers so educational: their weaknesses are exhibitable and exploitable with a pencil. The platform doesn’t touch steganography, which would require different tooling (image and audio manipulation).

A discipline shaped by wars and treaties

Cryptology has always lived close to power. The Renaissance Italian city-states had their cifranti — court cryptographers paid by the Doge or the Pope. The British Royal Navy formalized the role of Admiralty cipher clerk in the 18th century. Modern intelligence agencies (NSA, GCHQ, ANSSI, BSI) have entire cryptology divisions whose budgets dwarf the entire academic field. The historical pendulum swings between civilian openness (when cryptology serves commerce, scholarship and personal privacy) and state secrecy (when it shores up military and intelligence operations). Today’s regulatory frameworks — export controls on strong encryption, lawful-access debates, post-quantum migration plans — are the latest swing of that pendulum.

Key takeaways:

  • Cryptology covers cryptography + cryptanalysis + steganography. Conflating the three is the beginner’s first mistake.
  • The term is more common in research and agencies; the general public says “crypto” — almost always meaning just cryptography, or cryptocurrencies.
  • Building and attacking are inseparable: a cryptologist who only knows how to build can’t evaluate the soundness of what they ship.
  • Historical ciphers are the best schoolroom: you see, by hand, how a cipher is built and how it falls.

← Whole glossary