In previous posts, we have talked about key strength and protection of encryption keys, but for those who are not directly involved in the line of IT, encryption terminology can be slightly confusing and bewildering at times.

When it comes to security, often terminology is over-complicated and almost never simplified to a level in which the average end-user can understand.

Cryptography is one of those areas in which everything has an acronym and nothing seems to stay the same for any length of time.  With numerous forms of encryption available, making an informed decision can be difficult or near on impossible at times.

When it comes to encryption, generally there are three factors involved.

1.  Sensitive data

2.  An encryption cipher

3.  An encryption key

This is breaking it down into an elementary level, but essentially these three parts are required for any form of cryptography.

Ciphers and encryption are two parts of the cycle in which people need to constantly be aware of changes and evolutions in cryptographic techniques.

A cipher is essentially a mathematical algorithm, which uses some form of factoring to encrypt sensitive data based on an encryption key.

This encryption key is exactly what it sounds like – it is the key to unlocking encrypted information and most undoubtedly the most important asset of any corporation, which relies on cryptographic security.

Keys are essential in ensuring security, and often they are the only vulnerability of the system not because of the technology, but because of end-users and their reluctance to use strong keys.