3

I often encounter the phrase "I am not a cryptographer". Is there a generally accepted definition for who is a cryptographer? What qualifications would be expected?

For instance, should that person be expected to hold a relevant degree, or to have published $N$ papers?

Alternatively, would someone performing cryptanalysis or analysis of cryptographic protocols in a professional capacity be considered a "cryptographer", even without the academic background?

otus
  • 32,132
  • 5
  • 70
  • 165
Tim McLean
  • 2,834
  • 1
  • 14
  • 26
  • 5
    Why do people always want to draw lines everywhere? Isn't the world more fun without them? – Maarten Bodewes Sep 26 '15 at 02:21
  • Agreed :) Some context: a friend asked me whether it would be acceptable to claim in a professional context that he is a "cryptographer". I wasn't sure how to respond. – Tim McLean Sep 26 '15 at 04:32
  • (I phrased the question more generally so that it could also be helpful to others in the future) – Tim McLean Sep 26 '15 at 04:34
  • 3
    People who state "I am not a cryptographer" in a question here, probably don't imply anything, but that they would appreciate an answer that only requires basic prior knowledge of the subject. Possibly, it might also be an appeal to the ego of any expert prepared to answer. Flattery is the simplest form of manipulation. – Henrick Hellström Sep 26 '15 at 07:36

1 Answers1

6

I had a similar conundrum myself when I accepted a position doing very crypto-specific engineering work in industry. They asked me what my title should be, and I didn't really know. I asked my undergrad advisor and he said, effectively, that someone who

  • builds cryptosystems, and
  • proves them secure in a precise way, using
  • modern proof techniques and security reductions

is a cryptographer. Cryptographers also publish attacks from time to time, but most people would call an attack-focused researcher a 'cryptanalyst'.

In my mind, the important difference between a cryptographer and someone who otherwise works in security is precision in definitions and arguments.

I should state, though, that this distinction is rarely useful in practice, because really good ideas can come from pretty much anywhere. Don't get hung up on terminology.

pg1989
  • 4,636
  • 23
  • 42