BD308 – Cyber Security – Fariid Alam Saputra – 2581485755

Module Question 11

  1. What is the main difference between symmetric and asymmetric encryption?
  2. Explain what “data in transit” and “data at rest” mean, and why both need to be encrypted.
  3. Why should a business store hashed versions of user passwords instead of the passwords themselves?

Status: 100% sudah tercapai

Keterangan: Saya sudah mengerjakkan essay ini dengan baik dan benar

Bukti:

  1. he main difference between symmetric and asymmetric encryption lies in how the keys are used.

    • Symmetric encryption uses one single key for both encrypting and decrypting data. This makes it fast and efficient, but the challenge is keeping that key secure—because anyone who has the key can access the data.
    • Asymmetric encryption uses two different keys: a public key (shared openly) and a private key (kept secret). Data encrypted with one key can only be decrypted with the other. This makes it more secure for communication, especially over the internet, but it is generally slower.
  2. Data in transit refers to data that is moving from one place to another, such as when you send an email, transfer files over the internet, or communicate with a cloud server. This data is vulnerable to interception by hackers if it is not protected.

    Data at rest refers to data that is stored on a device or server, like files on a computer, databases, or backups. Even when stored, sensitive information can be stolen if a device is lost, stolen, or hacked.

    Both types of data need to be encrypted because encryption makes the information unreadable to anyone who doesn’t have the proper key, protecting it from unauthorized access. Encrypting data in transit ensures safe communication, while encrypting data at rest protects stored information from theft or leaks. Together, these measures maintain confidentiality and security across all stages of data usage.

  3. A business should store hashed versions of user passwords instead of the passwords themselves to protect sensitive information even if the database is compromised. Hashing is a one-way function that converts a password into a fixed-length string of characters. Unlike encryption, it cannot be easily reversed to reveal the original password.

    This means that even if hackers gain access to the database, they cannot directly see users’ actual passwords. Additionally, using techniques like salting (adding random data before hashing) makes it even harder for attackers to use methods like dictionary attacks or rainbow tables. Storing hashed passwords reduces the risk of account compromise and protects users’ personal security.

Previous Post Previous Post
Newer Post Newer Post

Leave a comment