Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Tech Term: Understanding Encryption

Tech Term: Understanding Encryption

With data security becoming paramount for almost everyone, encryption is one of the more important technology terms you will need to know. Since data security has to be a priority--not just for your business--but for you, understanding what encryption is, and how its used can put you in a better position to understand tomorrow’s security solutions. For this week’s tip, we will take you inside cryptography, and more specifically, data and network encryption.

What is Cryptography?
Simply put, cryptography is the art (or science) of writing or solving written or generated codes. Cryptography is the strategy of using a predefined key to convert data into a format that is indecipherable. Since no entity can view the information without the key, the information secured by encryption is able to be stored and transmitted securely. To decode the message, you need a cipher or a key.

A Short History of Cryptography
As long as there has been human communication, there have been secrets. The first known evidence of the use of cryptography was found carved in hieroglyphics on a wall in Egypt, and has subsequently been used throughout human history to send and receive secret messages.

Centuries later, Julius Caesar was known to use a form of substitution cipher that shifts each letter three spots in the alphabet to encode a message. In fact, there are some that still call this type of cipher a Caesar cipher. The Caesar cipher looks like this:

ib cipher 1

It’s clear that this type of cipher is dependent on the secrecy around the system, not a dedicated key to unlock the cipher. Once the system is known, these basic codes become known almost immediately. In fact, most substitution ciphers can be broken with a simple pad and paper.

This changed in the 16th century when Giovan Battista Bellaso came up with an improvement by using a series of interwoven ciphers. The process was misattributed to Blaise de Vigenère, and has since been referred to as the Vigenère cipher.

Despite all the coded messages sent and received over the centuries, cryptography as we know it has only come into fashion over the past century as technological advancements have facilitated more sophisticated methods of encryption. In the early 20th century, Edward Hebern, while sitting in jail for stealing a horse, came up with a method of encryption using an old typewriter fashioned with a rotor. The purpose was to turn what to the user was a simple Caesar cipher into a Vigenère cipher with the use of Hebern’s two-way rotor machine. A user would push a key and the rotor would provide the corresponding substitution key to decrypt the message. b2ap3_thumbnail_ib_cipher_2.png

If this machine started modern encryption, Enigma changed it forever. Shortly after Hebern’s invention, German engineer Arthur Scherbius innovatively built what was essentially a Hebern device with multiple rotors and called it Enigma. For a decade German naval superiority over mainland Europe had as much to do with their ability to send and receive coded messages as it did to their manufacturing might.

Modern Encryption
When we speak of encryption today, we are just talking about the same type of thing that Hebern and Scherbius were doing: cloaking data to provide privacy or security to the parties involved in the correspondence. Today, data is worth more than ever; as a result businesses are spending more on their encryption solutions.

All businesses collect a fair amount of personally identifiable information (PII). This information includes names, birth dates, Social Security numbers, and financial and medical information. The liability companies have today is immense, as they can (and often are) sued if a customer, employee, or vendor’s PII is stolen and leaked or shared.

The modern business uses several types of encryption. Individual file encryption encrypts specific data; volume encryption secures a container where files and folders can be stored; and, full-disk encryption secures all the information on a computer or server. To ensure that the data is protected from theft, encrypting all the information deemed sensitive should be a priority.

In order for your business’ encryption initiatives to be successful, there are some best practices that users need to know. One is password security. Often the key to your encrypted information is a simple password. In order to mitigate risk and keep encryption working for you, there are some password management tips you should adhere to. Following these will keep your encrypted data, and your business safe. They include:

  • Use passwords with eight characters or more.
  • Use different passwords for different files, computers, and systems.
  • Change your passwords frequently.
  • Utilize upper and lowercase letters, numbers, and symbols in your passwords.
  • Don’t use common words or phrases.
  • Don’t use words spelled backwards, common misspellings, or abbreviations.

More Encryption
Other than your standard protection against the loss of data, there are security solutions that allow you to encrypt communications you have with your customers, staff, and vendors. Email encryption has become an essential business tool. Many of today’s enterprise email solutions come with options to encrypt your messages, keeping communications secure.

Another way encryption is leveraged by the modern business is with the use of a virtual private network (VPN). The VPN offers users who are outside of a network to get an encrypted and secure pathway to share and receive files from a centralized server. Remote file exchange is important for many businesses, and the use of VPNs can go a long way toward quelling the risks inherent in this process.

Types of Encryption Finally, understanding what types of encryption there are can help you understand what position your organization is in, in regards to file, server, and communication security. The types of encryption used today include:

  • Triple DES - Designed as a replacement to the single Data Encryption Standard (DES) that doesn’t hold up against the tools modern hackers have. Triple DES uses three individual keys with 56 bits each, which in total adds up to 168 bits, however experts place it closer to 112 bits of key strength.
  • RSA - RSA is a public-key encryption algorithm and is currently the standard for secure transmission of data over the Internet. Since it uses two keys, a public key to encrypt it and a secure private key to decrypt it, it makes it very difficult for hackers to decipher.
  • Blowfish - Designed to replace DES, Blowfish is a symmetric cipher that splits messages into blocks of 64 bits and encrypts them individually. As a result, it is extraordinarily secure and often used in e-commerce platforms and password managers.
  • Twofish - The developer of Blowfish has released Twofish as a faster option that makes it a perfect encryption tool for hardware and software systems.
  • AES - Available in 128-bit, 192-bit, and 256-bit options, the Advanced Encryption Standard is basically uncrackable. Used by governments and other organizations that deal in extraordinarily sensitive information, AES has begun to become the standard in encryption due to its impenetrable record.

Data security is more important today than ever. At Total Tech Care, our knowledgeable technicians can help your organization come up with data and network security plan that is sure to keep your data safe, and keep your business running efficiently. To learn more, don’t hesitate to call us today at 866-348-2602.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Business Google Network Security Microsoft Internet Email Malware Workplace Tips Backup Innovation Data User Tips Computer Mobile Devices Hardware IT Services Android VoIP Disaster Recovery communications Smartphones Communication IT Support Business Continuity Miscellaneous Smartphone Mobile Device Network Browser Small Business Productivity Collaboration Cybersecurity Quick Tips Business Management Users Phishing Upgrade Managed IT Services Windows Outsourced IT Ransomware Data Backup Windows 10 Office Cloud Computing Server Save Money Data Recovery Passwords Windows 10 Saving Money Gadgets Holiday Tech Term Chrome Social Media Virtualization Managed Service Automation Microsoft Office Managed IT Services Artificial Intelligence Operating System Facebook Cybercrime Computers Mobile Device Management Wi-Fi Networking IT Support Hacking Health Internet of Things BYOD Spam Alert Covid-19 Information Office 365 Telephone Systems Managed Service Provider Information Technology Remote Bandwidth Social Engineering Mobility Recovery Employer-Employee Relationship Router BDR Remote Monitoring Password Money App History Big Data Encryption Applications Data Breach Human Resources Mobile Computing Law Enforcement Application How To Managed IT Apps Office Tips Data Storage Patch Management Training VPN Government Remote Computing Blockchain Private Cloud Paperless Office Mobile Office Bring Your Own Device Data Management Work/Life Balance Infrastructure Voice over Internet Protocol Wireless Vulnerability Windows 7 Word Gmail Google Drive Settings Servers Flexibility Marketing WiFi Two-factor Authentication Avoiding Downtime IT solutions Entertainment Data Security Website Budget Mouse HaaS User Error Save Time Machine Learning Meetings Connectivity Remote Work Employee/Employer Relationship Cleaning RMM Risk Management Hacker Conferencing End of Support The Internet of Things Education Physical Security Lithium-ion battery Scam Safety Data Protection Sports HIPAA Redundancy Vendor Management Firewall Keyboard Virtual Reality Apple Vendor Social USB Managed Services Telephone System Staff Software as a Service Display Value Processor IT Consultant Data storage Update Wearable Technology Automobile Spam Blocking Electronic Medical Records Humor Hard Drives Hard Drive Retail Instant Messaging Google Docs Robot Computing Infrastructure Excel Hiring/Firing Identity Theft Going Green Biometrics Computing Virtual Desktop Battery Augmented Reality Shadow IT Fraud DDoS Legal Business Intelligence SharePoint Remote Worker Digital Signage Internet Exlporer Worker Audit IT Management Cryptocurrency Virus Botnet Customer Service PDF IT Plan Environment Procurement Unified Threat Management Workplace Strategy Computer Accessories Comparison Net Neutrality Proactive IT Fax Server Unsupported Software CES Help Desk Printing Best Practice YouTube Charger SaaS Business Technology Black Market Content Management Access Control Printer Compliance Computer Care Managed Services Provider Bluetooth OneNote Network Congestion Virtual Assistant Current Events eWaste Document Management Telephony Authentication Database Wireless Technology Samsung Solid State Drive How to Downtime Remote Workers Skype Project Management Email Best Practices Files Nanotechnology IT Assessment Telecommuting Manufacturing Chromecast Cortana Shortcut Data loss Outlook Computer Tips Cost Management Leadership Digital Signature Managed IT Service Troubleshooting Security Cameras Start Menu Warranty Virtual CIO Social Networking Colocation OneDrive Uninterrupted Power Supply Biometric Security Loyalty Google Apps Screen Mirroring HVAC Peripheral Frequently Asked Questions Digital Security Cameras Monitor Analysis Using Data Books Running Cable Mobile Administrator Windows 10s Devices Copiers 5G Memory Cast Enterprise Content Management Quick Tip Tip of the week MSP Ergonomics Consultant Reputation webinar Accountants Streaming Media Emergency Smartwatch Content Professional Services Microchip Public Cloud Thought Leadership Development Analytics Tech Support Employer Employee Relationship Credit Cards OLED Techology Password Management PCI DSS Laptop Assessment Password Manager Virtual Machine Windows Server 2008 2FA Best Available Customers Fiber Optics Multi-Factor Security Employee Science Cabling Audiobook Tools Search Engine WIndows 7 Twitter Messaging NIST Policy Touchpad Television Business Mangement Hypervisor Dark mode Smart Tech Trend Micro Trending Amazon Default App Distributed Denial of Service Politics Customer Relationship Management Advertising Addiction SMS Procedure Analyitcs Public Computer Recycling Saving Time Regulations Wiring dark theme Programming Practices Shopping Notifications Transportation Google Search Rootkit Amazon Web Services IT Infrastructure Windows Media Player User Computer Fan Cache AI PowerPoint Safe Mode FinTech Criminal Bing Antivirus GDPR Relocation Workers Hosted Computing Social Network Benefits Windows 8 Online Shopping Investment Managing Stress FENG Wireless Internet IT service Video Games File Sharing Employees IBM Employee/Employer Relationships Worker Commute Flash Camera Windows 365 Inventory Cameras Smart Technology Specifications ISP Tablet Evernote ROI Experience Wire Video Conferencing Domains Scalability Software Tips Sales Supercomputer Bitcoin Travel Shortcuts Business Owner Sync Printers Point of Sale Emails Personal Millennials Cryptomining NarrowBand Wireless Charging IaaS Maintenance Smart Office Supply Chain Management Search Monitoring Bloatware Batteries Virtual Private Network Windows 8.1 iPhone Netflix Digitize Printer Server Two Factor Authentication Workforce Tablets Cables Windows Server 2008 R2 Root Cause Analysis HBO Customer relationships Entrepreneur Knowledge Music

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code