Encryption (TLS/ BitLocker)
: Encryption is the process of converting readable data (plaintext) into unreadable data (ciphertext) so that only authorized users can read it.
: It's like locking your data with a digital key even if hackers steal the data they can't read it without the correct key.: Encryption protect data in two main states: - Data in transit - Data moving over networks (emails, web traffic)
- Data at rest - Data stored on disks, servers or portable drives.
Transport Layer Security (TLS)
: A security protocol that encrypts data in transit between two systems. For example, between a web browser and a server.
: TLS replaced the older SSL (Secure Sockets Layer).
: How it works: - When you visit a website (like https://msu.edu.my), your browser and the server perform a handshake to establish a secure connection.
- As session key is created and shared securely.
- All data sent between your browser and the server is encrypted using that key.
BitLocker
: BitLocker is a full-disk encryption feature in Microsoft Windows that protects data at rest, data stored on hard drives or removable media.
: How it works: - BitLocker encrypts the entire drive, not just files.
- If someone steals the device or hard disk, the data remains encrypted and unreadable without the encryption key or TPM (Trusted Platform Module) chip.
Comparison (TLS vs BitLocker)
Aspect -> TLS -> BitLocker (Disc Encryption)
Purpose -> Protect data in transit -> Protect data at rest
Used in -> Web traffic, email, VPNs -> Laptops, desktops, USB drive
Level -> Network/ Application layer -> Device/storage layer
Example -> HTTPS, VPN connections -> Encrypting C:drive one Windows.
Main Benefits -> Prevents Eavesdropping -> Prevents data theft from lost devices