Security Beginner

What is Encryption?

The process of converting readable data into an unreadable format using algorithms, reversible only with the correct key.

Encryption protects data confidentiality. Symmetric encryption (AES, ChaCha20) uses one key for both encryption and decryption — fast but requires secure key exchange. Asymmetric encryption (RSA, ECC) uses a public/private key pair — slower but enables secure key exchange.

Data should be encrypted at rest (stored data) and in transit (network traffic via TLS). Never implement custom encryption — use established libraries and algorithms.

Learn More About This Topic

Linux System Hardening

Closely related

Network Security Fundamentals

Closely related

SOC Analyst Fundamentals

Related reading

Related Terms

Content Security Policy (CSP)

An HTTP security header that controls which resources a browser is allowed to load for a web page, preventing XSS and data injection.

A security model that requires strict identity verification for every user and device, regardless of their network location.

Security Hardening

The process of reducing a system's attack surface by disabling unnecessary services, applying patches, and configuring security controls.

SIEM (Security Information and Event Management)

A platform that collects, correlates, and analyzes security events from across an organization to detect threats and incidents.

XSS (Cross-Site Scripting)

An attack that injects malicious scripts into web pages viewed by other users, potentially stealing data or session tokens.

A technique that controls the number of requests a client can make to a server within a specified time period.

View All Security Terms →