Saturday, December 1, 2018

Fed up on Encryption?

Fed up on Encryption?
As we all know encryption is a hectic process. We have to maintain a key in both encrypting and decrypting and if we lost the key there’s no way to decrypt the ciphertext into plain text and also cost is high in encrypting. Therefore encryption is known as a bit of a chaotic work even though the security is high. Most of the time people tend to use this method only for critical information because of these drawbacks. 
What is data encryption? 
Data encryption translates data into another form, or code so that only people with access to a secret key or password can read it. Encrypted data is commonly referred to as ciphertext. All encryption algorithms are reversible
As we know there are two types of encryptions as Symmetric key encryption and asymmetric key encryption. I’m not gonna go into details about encryption algorithms in here.
In real world, it’s not impossible to break the encryption key. By using a brute force attack, we can try all possible key combinations and break the encryption algorithm. It is the key size that makes breaking the encryption algorithm harder. Algorithms such as RSA, AES consider as more secure in contrast DES, 3DES are easy to break. 
Disadvantages of encryption
  1. Need to maintain a key.
  2. What if key got forgot, stolen
  3. It needs cooperation.
What is data masking?
                                                               
                     Fig [2] – Masking vs. Encryption  
Data masking is a method of creating a structurally similar but inauthentic version of a particular data set. In here it’s not necessary to reconstruct original data from any intermediate data. When it comes to encryption, being reversible is a must but in data masking reversible is hard (not possible). If a masking algorithm is reversible then it considers as a weak algorithm. From the data security point of view, the best masking solution is random generation since it is independent of original data.
Some erroneously identify both encryption and data masking is the same. Data masking and encryption are two precisely different processes though both of them designed to ensure data protection. 
When comparing to encryption masking is an easy process. It does not encrypt data. We can see data in its’ local format. It just replaced some information only. Even though the best ciphers can be cracked someday masked data cannot be unmasked. That makes it totally ineffective for the attacker and totally safe for the consumer. 
Conclusion
  • If the data is critical and important we can use encryption.
  • If it’s about production data in a test environment, where the genuine data is worthless then its better go with masking. 
  • However, efficiency wise Masking Wins.




-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

AND WE FOUND A NEW RANSOMWARE!!!

TODARIUS Hi, it’s been a while, hope you all doing good. 💓 So today’s article is about a new ransomware.  ðŸ˜± Yes. We found a ne...

  • Bad Rabbit Ransomware Attack
    Bad Rabbit is a latest ransomware attack that was spread mainly in Russia in 2017. Especially it targeted organizations and consumers, it w...
  • AND WE FOUND A NEW RANSOMWARE!!!
    TODARIUS Hi, it’s been a while, hope you all doing good. 💓 So today’s article is about a new ransomware.  ðŸ˜± Yes. We found a ne...
  • Incognito is not very Incognito
    Hi There!!! So Today's post is about a habit of all of us, which is Surfing through incognito mode 🙊🙊🙊 Almost all of us us...