Questions tagged [encryption]

Encryption is the process of transforming plaintext using a cipher to make it unreadable to anyone except those possessing the key.

Encryption is the process of transforming information (referred to as plaintext) using an algorithm (called cipher) to make it unreadable to anyone except those possessing special knowledge, usually referred to as a key.

The result of the process is encrypted information (in cryptography, referred to as ciphertext). In many contexts, the word encryption also implicitly refers to the reverse process, decryption (e.g. “software for encryption” can typically also perform decryption), to make the encrypted information readable again (i.e. to make it unencrypted).

source Wikipedia:

Encryption

5679 questions

151

votes

12 answers

Do I need to encrypt connections inside a corporate network?

Provided that I have a decent level of physical security in the office, I monitor the physical addresses of devices connected to the network and only give VPN access to trusted parties, do I need to encrypt access to intranet resources over HTTP?…

asked Jun 21 '18 at 14:58

Robert Cutajar

1,461
2
7
7

142

votes

14 answers

Is there any technical security reason not to buy the cheapest SSL certificate you can find?

While shopping for a basic SSL cert for my blog, I found that many of the more well-known Certificate Authorities have an entry-level certificate (with less stringent validation of the purchaser's identity) for approximately $120 and up. But then I…

encryption tls certificates certificate-authority trust

asked Aug 14 '12 at 19:19

Luke Sheppard

2,217
3
15
21

142

votes

9 answers

How secure is Chrome storing a password?

Whenever I enter a login into a new site, Chrome asks me if it should store the login details. I used to believe this was fairly secure. If someone found my computer unlocked, they could get past the login screen for some website using the stored…

encryption passwords chrome

asked Oct 01 '17 at 17:23

Tony Ruth

1,363
2
7
5

141

votes

5 answers

Is it secure to store passwords with 2 way encryption?

I'm a parent who has a parent account with my local school district so that I can log in to their website to view my child's grades etc. I clicked the "forgot password' button, and my password was emailed to me in plain text. This concerned me, so…

encryption passwords

asked Nov 22 '17 at 21:22

43Tesseracts

1,083
2
6
6

116

votes

4 answers

How can RFID/NFC tags not be cloned when they are passive technology?

Everywhere a question like this is asked, I see people responding that (in a scenario where a card is used) the card does some processing with the data it receives/generates some data when it receives a signal. How is this possible without…

encryption rfid nfc

asked Aug 01 '16 at 22:13

stenlan

1,211
2
9
6

115

votes

6 answers

Why should one not use the same asymmetric key for encryption as they do for signing?

In an answer to a question about RSA and PGP, PulpSpy noted this: It is possible to generate an RSA key pair using GPG (for both encryption and signing -- you should not use the same key for both). What is the reasoning behind this? Perhaps my…

cryptography encryption digital-signature

asked Jan 21 '11 at 20:06

Iszi

26,997
18
98
163

112

votes

9 answers

Why can we still crack snapchat photos in 12 lines of Ruby?

Just came across this bit of ruby that can be used to decrypt Snapchat photos taken out of the cache on a phone, apparently adapted from here. To my surprise, it worked without a problem, considering the problems around Snapchat's security which…

encryption cryptography appsec mobile

asked Mar 03 '14 at 08:53

Dmitri DB

1,181
2
9
12

108

votes

5 answers

What kinds of encryption are _not_ breakable via Quantum Computers?

There's the recent article NSA seeks to build quantum computer that could crack most types of encryption. Now I'm not surprised by the NSA trying anything1, but what slightly baffles me is the word "most" - so, what encryption algorithms are known…

encryption cryptography cryptanalysis post-quantum

asked Jan 03 '14 at 14:15

Tobias Kienzler

7,578
10
43
66

106

votes

5 answers

Is sending password to user email secure?

How secure is sending passwords through email to a user, since email isn't secured by HTTPS. What is the best way to secure it? Should i use encryption?

encryption passwords cryptography hash email

asked Aug 01 '12 at 10:18

user310291

1,413
2
12
13

101

votes

5 answers

How can my employer be a man-in-the-middle when I connect to Gmail?

I'm trying to understand SSL/TLS. What follows are a description of a scenario and a few assumptions which I hope you can confirm or refute. Question How can my employer be a man-in-the-middle when I connect to Gmail? Can he at all? That is: is it…

encryption tls authentication man-in-the-middle

asked Jul 17 '14 at 08:52

Lernkurve

1,134
3
9
10

votes

5 answers

What is the benefit of having FIPS hardware-level encryption on a drive when you can use Veracrypt instead?

The expensive one: https://www.dustinhome.se/product/5010873750/ironkey-basic-s1000 The cheap one: https://www.dustinhome.se/product/5010887912/datatraveler-100-g3 Over 14,000 SEK difference in price. Same company (Kingston). Same USB standard (3).…

encryption hardware usb-drive veracrypt fips

asked Nov 24 '20 at 00:52

Taeyang

votes

3 answers

What's the advantage of using PBKDF2 vs SHA256 to generate an AES encryption key from a passphrase?

I'm looking at two comparable pieces of software which encrypt data on disk using a passphrase. One uses PBKDF2 to generate the encryption key from a passphrase, while the other uses two rounds of SHA256. What's the difference? Is one preferred over…

encryption hash aes passphrase pbkdf2

asked Jun 22 '12 at 00:59

Andrey Fedorov

1,303
1
10
12

votes

10 answers

If a provider sees the last 4 characters of my password, can they see it in full?

I have some domains/websites as well as emails with Bluehost. Every time I need support, they need the last 4 characters of my main password for the account. They cannot tell me how they store the password, so I am intrigued in how they could…

encryption passwords password-management password-policy web-hosting

asked Sep 17 '15 at 14:51

rhymsy

1,212
1
10
15

votes

15 answers

Why would someone "double encrypt"?

If I have a website or mobile app, that speaks to the server through a secured SSL/TLS connection (i.e. HTTPS), and also encrypt the messages sent and received in-between user and server on top of the already secure connection, will I be doing…

encryption tls

asked Mar 15 '16 at 08:57

Lighty

2,368
1
23
36

votes

9 answers

Is it possible make brute-force attacks ineffective by giving false positive answers to failed log-in attempts?

I don't have any experience or scientific knowledge in security, I just wanted to ask if this is possible because I am interested in it. What if I encrypt data and every password decrypts it, but only the right one does not create pointless data…

encryption authentication brute-force

asked Jul 12 '16 at 21:25

Tweakimp

Prev 1

…

99 100 Next