Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
The length of an AES key - 128, 192, or 256 bits - set by FIPS 197. Larger keys resist brute force better; AES-256 is the standard for top-secret-grade data.
AES Key Size Definition: The length of an AES key - 128, 192, or 256 bits - set by FIPS 197. Larger keys resist brute force better; AES-256 is the standard for top-secret-grade data.
AES key size is the length of the secret key used by the Advanced Encryption Standard (AES), defined by FIPS 197 as 128, 192, or 256 bits. The key size determines the strength of the encryption against brute-force attacks: a larger key means an exponentially larger keyspace an attacker must search. AES is a symmetric cipher, so the same key encrypts and decrypts.
AES always operates on 128-bit blocks regardless of key size, but the key length changes the number of transformation rounds the algorithm performs - 10 rounds for AES-128, 12 for AES-192, and 14 for AES-256. More rounds add more layers of substitution and permutation, increasing diffusion. The keyspace grows with key length: AES-128 has 2^128 possible keys and AES-256 has 2^256, a number far beyond the reach of any brute-force search with current or foreseeable classical computing.
Key size matters because it sets the security margin for confidentiality and must match the data's sensitivity and required protection lifetime. AES-128 is considered secure for most commercial use, while AES-256 is mandated for the most sensitive data and is approved under NSA's CNSA suite for protecting information up to Top Secret. The larger key also provides a stronger margin against future threats, including the quantum Grover's algorithm, which effectively halves brute-force strength - making AES-256 behave roughly like 128-bit security even in that scenario.
For example, a government contractor encrypting classified files selects AES-256 to meet CNSA requirements, accepting the small extra computational cost for the higher assurance. A web service encrypting routine session data might choose AES-128 for efficiency, since 2^128 keys are already infeasible to brute-force. In both cases the block size is identical; only the key length, round count, and resulting security margin differ.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →