⌘K
We use cookies to improve your experience
We use essential cookies to make our site work. With your consent, we may also use non-essential cookies to improve user experience.
Definition
Encryption is the process of converting readable data (plaintext) into an unreadable format (ciphertext) using an algorithm and a key. Only someone with the correct decryption key can convert it back. Encryption protects data confidentiality in transit (HTTPS) and at rest (disk encryption).
Encryption transforms data so that only authorized parties can read it. There are two main types: symmetric encryption (same key for encryption and decryption — AES, ChaCha20) and asymmetric encryption (separate public and private keys — RSA, ECDSA, Ed25519). Symmetric is faster and used for bulk data; asymmetric is used for key exchange and digital signatures.
AES (Advanced Encryption Standard) with 256-bit keys is the most widely used symmetric cipher. It secures everything from HTTPS traffic to disk encryption (BitLocker, FileVault) to cloud storage. AES-256 is approved for US government classified information and is considered unbreakable with current technology — brute-forcing a 256-bit key would require more energy than exists in the solar system.
HTTPS uses a combination of both types: asymmetric encryption (RSA or ECDH) establishes a shared session key during the TLS handshake, then symmetric encryption (AES or ChaCha20) encrypts the actual data transfer. This hybrid approach combines the key distribution advantages of asymmetric encryption with the speed of symmetric encryption. Understanding encryption is essential for web developers handling user data, API communications, and compliance requirements (GDPR, HIPAA, PCI-DSS).