AES (Advanced Encryption Standard) is the most widely used symmetric encryption algorithm. It's a block cipher that encrypts binary data in fixed 128-bit blocks using a single shared key, available in 128-, 192-, or 256-bit lengths.
AES, the Advanced Encryption Standard, is the workhorse symmetric encryption algorithm you'll meet in Unit 5. "Symmetric" means the same key both locks (encrypts) and unlocks (decrypts) the data. You take your plaintext, combine it with a secret key, and out comes scrambled ciphertext that's useless to anyone without that key.
Two details matter for the exam. First, AES is a block cipher, so it chops data into fixed 128-bit chunks (16 bytes) and encrypts one block at a time. Second, AES works with keys of three sizes: 128, 192, or 256 bits. Longer keys are harder to crack because there are far more possible keys to guess, but they also take more time to encrypt and decrypt. That tradeoff between security and speed is a classic AP talking point. In the real world, AES is everywhere, securing your Wi-Fi, your HTTPS browsing, files encrypted on a hard drive, and even encryption built right into the processor.
AES lives in Topic 5.3 (Protecting Stored Data with Cryptography) inside Unit 5: Securing Applications and Data. It's the concrete example behind two learning objectives: AP Cybersecurity 5.3.A (explain how encryption protects files) and AP Cybersecurity 5.3.B (apply symmetric encryption to encrypt and decrypt data). When the CED says "the most common symmetric encryption algorithm," it means AES specifically. Knowing AES is how you prove you understand the bigger idea of confidentiality: keeping stored data secret from anyone who shouldn't read it.
Keep studying AP Cybersecurity Unit 5
Visual cheatsheet
view gallerySymmetric vs. cryptographic hash functions like SHA-256 (Unit 5)
AES is reversible, you can decrypt ciphertext back to plaintext with the key. Hash functions like SHA-256 and MD5 are one-way, designed never to be reversed. AES hides data so you can recover it later; hashing fingerprints data so you can verify it hasn't changed.
Encryption and decryption (Unit 5)
AES is the algorithm that actually performs encryption and decryption. Encryption turns plaintext into ciphertext, decryption reverses it, and AES defines the exact step-by-step process for both using one shared key.
Ciphertext (Unit 5)
Ciphertext is the scrambled output AES produces. If you understand that AES takes 128-bit blocks of plaintext plus a key and spits out ciphertext, you understand what every block cipher is doing under the hood.
AES shows up in multiple-choice questions in a few predictable ways. One stem describes a scenario ("encrypt sensitive employee files" or "the most widely adopted symmetric algorithm that works with 128-, 192-, or 256-bit keys") and asks you to name the algorithm; the answer is AES. Another asks for a real-world example of where AES protects data, where Wi-Fi, browsing, and disk encryption are correct. You'll also see questions testing the term block cipher and the 128-bit block detail, so be ready to identify AES as a block cipher that encrypts data in fixed 128-bit segments. Lock in the key facts: symmetric, block cipher, 128-bit blocks, key sizes of 128/192/256 bits.
AES is encryption, SHA-256 is hashing. AES scrambles data so it can be unscrambled later with a key, which is reversible. SHA-256 produces a fixed fingerprint of data that is one-way and can never be reversed back to the original. If a question asks for protecting data so it can be read again later, that's AES; if it asks about verifying integrity or fingerprinting, that's a hash.
AES (Advanced Encryption Standard) is the most common symmetric encryption algorithm, meaning the same key encrypts and decrypts.
AES is a block cipher that encrypts binary data in fixed 128-bit blocks (16 bytes).
AES supports three key lengths, 128, 192, and 256 bits, and longer keys are more secure but slower.
Real-world uses of AES include Wi-Fi security, internet browsing, file encryption on disks, and hardware-level processor encryption.
Unlike SHA-256 or MD5, AES is reversible because decryption recovers the original plaintext.
AES stands for Advanced Encryption Standard, the most common symmetric encryption algorithm. It's a block cipher that encrypts data in 128-bit blocks using a shared key of 128, 192, or 256 bits, and it appears in Topic 5.3.
AES is symmetric. The same single key is used to both encrypt and decrypt the data, which is exactly the kind of algorithm Learning Objective 5.3.B asks you to apply.
AES is reversible encryption, so ciphertext can be decrypted back to plaintext with the key. SHA-256 is a one-way hash function that fingerprints data and can never be reversed. Use AES to hide and recover data, use SHA-256 to verify integrity.
Stronger, yes, but with a cost. A 256-bit key has far more possible combinations than a 128-bit key, making it harder to crack, but longer keys take more time to encrypt and decrypt.
Pretty much everywhere data needs protecting: securing Wi-Fi transmissions, encrypting internet browsing, locking files on a disk, and hardware-level encryption built into processors.
Connect this key term to the AP exam workflow: review the course, practice questions, and check related study tools.