security-network

Tips To Use Encryption The Right Way

Encryption Tips

Encryption is the most important part when it comes to securing your data online. For those of you who are still alien to this concept, encryption converts data into an unreadable format called cipher text with the help of a secret key called the encryption key. And you cannot get access to the primary data unless you can get access to the encryption key or guess it.

Encryption

If you use cloud services to store or backup your data, you should understand what encryption is and how to use it the right way. All the cloud companies based in the US are liable to share their cloud data with the government, and if you don’t want NSA snooping through your data, you should encrypt your data before moving to the cloud.

Here are some tips to use encryption the right way:

  1. Check the strength of encryption provided

Each cloud-based service has a different kind of encryption, and you should know what each one of them means before storing your data on the cloud. Also, while some cloud services are transparent about how they encrypt data, some aren’t so clear.

cloud-cloudtweaks-comic

For instance, Apple clearly states that iCloud uses a 128-bit AES encryption, but Google does not specify how the data is encrypted on Google Drive. In fact, most of the cloud backup services that you will come across will determine the kind of encryption they use. One of the strongest cloud backup encryption services offered right now is by Crashplan, which offers 448-bit Blowfish encryption.

  1. Use long passphrases as encryption key

When Edward Snowden, a former NSA employee and a whistleblower was asked about what kind of passwords to use, he came up with a rather interesting response. According to Snowden, instead of using words as your passwords, you should use a minimum of 8-letter passphrases. And of course, a number a special character, which should not be in the end but somewhere in the middle.

The idea is that it’s easy to guess 6-letter words by algorithms but guessing 8-letter words get much, much tougher for the algorithms.

  1. Data should be encrypted before its uploaded

Just because a cloud service says that it encrypts your data, doesn’t mean your data is completely secure. First of all, data can be encrypted at three locations – on the local machines, in transit, and on the cloud server.

Now, some services encrypt your data on all the three locations, while most of the cloud services only encrypt your data when it’s in transit, using an SSL encryption. This leaves your data open for all the hackers. It’s always safe to encrypt the data yourself with a strong encryption key before you upload it to the cloud. This way, you are in charge of your data’s safety.

  1. Check for regulations and compliances

Encrypting data is actually the easy part; the difficult part is making sure your data follows all the right regulations and compliances, and it is secure and safe. In fact, the biggest threat your organization might face is cyber security. Your organization’s infrastructure can be vulnerable. Check with the compliances that your company needs to follow and also, make sure it follows all the security guidelines.

  1. Email encryptions

Emails are private, and it can be threatening when hackers get access to an organization’s emails. Employees don’t just discuss regular day-to-day stuff; they also discuss about critical company details. And of course, there are also emails between employees and clients. Email hacks have been very common and more than 100 GB of email data has been hacked till now.

email-security

(Image Source: Shutterstock)

There are many encryption add-ins that can be used and integrated with Microsoft Outlook. It makes sure that your emails are encrypted when they are being transferred.

  1. Use digital signatures

A digital signature uses asymmetric cryptography to encrypt the message. When the user is signing the message, he uses a private key to encrypt it, and the receivers use a public key to decrypt the message.

Using a digital signature does not just assure that it is you who sent the message, but it also states that the message has not been tampered with, and it is in the original form.

As we move more and more of our data on the cloud, encryption will become even more important. With the NSA already snooping through user data, you need to be extra careful before you upload your data to the cloud.

By Ritika Tiwari

Ritika Tiwari

Ritika is a Software Engineer by degree and a self proclaimed geek. She quit her IT job to become a writer and now, she writes about everything tech.

Cloud Services Are Vulnerable Without End-To-End Encryption

Cloud Services Are Vulnerable Without End-To-End Encryption

End-To-End Encryption The growth of cloud services has been one of the most disruptive phenomena of the Internet era.  However, ...
Part 2: Strategies for Securing Mobile Devices in a Cloud-based World

Part 2: Strategies for Securing Mobile Devices in a Cloud-based World

Part 2: Strategies for Securing Mobile Devices With workplace mobility now a way of life and companies investing in cloud-based ...
The Importance of Cloud Backups: Guarding Your Data Against Hackers

The Importance of Cloud Backups: Guarding Your Data Against Hackers

The Importance of Cloud Backups Cloud platforms have become a necessary part of modern business with the benefits far outweighing ...
Bryan Doerr

Cyber-Threats and the Need for Secure Industrial Control Systems

Secure Industrial Control Systems (ICS) Industrial Control Systems (ICS) tend to be “out of sight, out of mind.” These systems ...
The Cloud Has Your Data (Whether You Like It Or Not)

The Cloud Has Your Data (Whether You Like It Or Not)

Cloud Cleanup Anyone? Following on where we left off from my last two articles now we shift focus to what ...
The Digital Economy: Embracing The Latest Technological Advancements

The Digital Economy: Embracing The Latest Technological Advancements

The Digital Economy As you would expect, for any business to achieve successful growth and meet its objectives, it must ...
Microsoft quarterly results beat as cloud revenue soars

Microsoft quarterly results beat as cloud revenue soars

(Reuters) - Microsoft Corp (MSFT.O) on Thursday posted quarterly profit and revenue that beat analysts’ estimates, as more businesses signed up for its Azure cloud computing services and Office 365 productivity suite. The company’s flagship ...
Worldwide Spending on Blockchain Forecast to Reach $11.7 Billion in 2022, According to New IDC Spending Guide

Worldwide Spending on Blockchain Forecast to Reach $11.7 Billion in 2022, According to New IDC Spending Guide

FRAMINGHAM, Mass., July 19, 2018 – Worldwide spending on blockchain solutions is forecast to reach $11.7 billion in 2022, according to a new update to the Worldwide Semiannual Blockchain Spending Guide from International Data Corporation (IDC). IDC expects ...
Amazon, MLB add machine-learned stats to cloud deal

Amazon, MLB add machine-learned stats to cloud deal

SAN FRANCISCO (Reuters) - Amazon.com Inc will provide a new set of real-time statistics and graphics on live baseball games later this season, expanding its cloud computing deal with U.S. Major League Baseball, the two ...