[עריכה] Data Encryption

DES

Data Encryption Standard is a widely used method of data encryption using a private (secret) key that was judged so difficult to break by the U.S. government that it was restricted for exportation to other countries. There are 72,000,000,000,000,000 (72 quadrillion) or more possible encryption keys that can be used. For each given message, the key is chosen at random from among this enormous number of keys. Like other private key cryptographic methods, both the sender and the receiver must know and use the same private key. DES originated at IBM and adopted by the U.S. Department of Defense. It is specified in the ANSI X3.92 and X3.106 standards and in the Federal FIPS 46 and 81 standards.

3DES

Triple DES or 3DES is an application of the DES standard where three unique keys are used in succession to provide additional security. It is based on the DES algorithm developed by an IBM team and was adopted as a national standard. 3DES uses three 64-bit long keys (overall key length is 192 bits, although actual key length is 56 bits). Data is encrypted with the first key, decrypted with the second key, and finally encrypted again with the third key. This makes 3DES three times slower than standard DES but offers much greater security. 3DES is the most secure of the DES combinations.

AES

Advanced Encryption Standard (AES) is a symmetric 128-bit block data encryption technique developed by Belgian cryptographers Joan Daemen and Vincent Rijmen. The U.S. government adopted this algorithm as its encryption technique in October 2000, replacing the DES encryption it used. AES works at multiple network layers simultaneously. The National Institute of Standards and Technology (NIST) of the U.S. Department of Commerce selected the algorithm, called Rijndael (pronounced Rhine Dahl or Rain Doll), out of a group of five algorithms under consideration.

SFTP

Secure File Transmission Program (SFTP) is the secure version of the FTP protocol, also written as S/FTP. SFTP uses SSL to encrypt the entire user session, thereby protecting the contents of files and the user's login name and password from network sniffers. Through normal FTP, user names, passwords, and file contents are all transferred in clear text.

SHA

The Secure Hash Algorithm family is a set of related cryptographic hash functions. The most commonly used function in the family, SHA-1, is employed in a large variety of popular security applications and protocols, including TLS, SSL, PGP, SSH, S/MIME, and IPSec. SHA algorithms were designed by the National Security Agency (NSA) and published as a U.S. government standard.

SSL

Secure Sockets Layer is a protocol developed by Netscape for transmitting private documents over the Internet. SSL works by using a private key to encrypt data that is transferred over the SSL connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to obtain confidential user information. URLs that require an SSL connection start with https instead of http.

SSH

Secure Shell was developed by SSH Communications Security Ltd., and is a program to log into another computer over a network, to execute commands in a remote machine, and to move files from one machine to another. It provides strong authentication and secure communications over insecure channels. It is a replacement for rlogin, rsh, rcp, and rdist. SSH protects a network from attacks such as IP spoofing, IP source routing, and DNS spoofing. An attacker who has managed to take over a network can only force ssh to disconnect. He or she cannot play back the traffic or hijack the connection when encryption is enabled. When using ssh's slogin (instead of rlogin), the entire login session, including transmission of passwords, is encrypted; therefore it is almost impossible for an outsider to collect passwords.

קטגוריות: Information Security | Open Source | Security Tier | Data Protection