Security Beginner

What is Encryption?

The process of converting readable data into an unreadable format using algorithms, reversible only with the correct key.

Encryption protects data confidentiality. Symmetric encryption (AES, ChaCha20) uses one key for both encryption and decryption — fast but requires secure key exchange. Asymmetric encryption (RSA, ECC) uses a public/private key pair — slower but enables secure key exchange.

Data should be encrypted at rest (stored data) and in transit (network traffic via TLS). Never implement custom encryption — use established libraries and algorithms.

Learn More About This Topic

Linux System Hardening

Closely related

Network Security Fundamentals

Closely related

SOC Analyst Fundamentals

Related reading

Related Terms

Configuration entries that define which network traffic is allowed or blocked based on source, destination, port, and protocol.

Security Headers

HTTP response headers that instruct browsers to enable security features like XSS protection, framing prevention, and content type enforcement.

WAF (Web Application Firewall)

A security solution that filters and monitors HTTP traffic between a web application and the internet, blocking common attacks.

RBAC (Role-Based Access Control)

An access control model where permissions are assigned to roles, and users are assigned to roles rather than getting permissions directly.

SIEM (Security Information and Event Management)

A platform that collects, correlates, and analyzes security events from across an organization to detect threats and incidents.

A social engineering attack that uses fraudulent communications to trick people into revealing sensitive information or installing malware.

View All Security Terms →