Ask the Expert

How encryption protects network communications

How does encryption work as a defense mechanism for communication across a network?

    Requires Free Membership to View

There are three basic things that encryption can do to defend network communications.

(1) An encrypted link can be constructed so that a third party cannot see its contents while data is in transit.

(2) An encrypted link can be constructed so that the data cannot be modified while it is in transit without those modifications being detected.

(3) An encrypted link can be constructed so that you can be assured who it is coming from.

Now, there are limitations on all of these, of course. For example, if I am running an evil router and don't let you connect to someone you want to talk to, your partner might not detect that until you use some other mechanism, like a phone call to talk to them. If you don't keep the keys used for identifying a link private, then someone can impersonate the keyholder. But none of these should be a surprise to you.

This description is, of course, a gloss. There are many gory details in how all of these things are accomplished and many right ways and wrong ways to do that. But, this covers the high-level basics.

For more information on this topic, visit these other resources:
Best Web Links: Encryption
Tech Tip: A primer on encryption
David Strom's Security Tool Shed: File encryption made easy

This was first published in February 2002

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: