Prevention Methods: Encryption (Symmetric and Asymmetric)

This lesson covers encryption as a network security prevention method, as required by OCR J277 Section 1.4. Encryption is fundamental to protecting data both in transit (being sent across a network) and at rest (stored on a device).

---

What Is Encryption?

Encryption is the process of converting plaintext (readable data) into ciphertext (unreadable data) using a mathematical algorithm and a key. Only someone with the correct key can decrypt the ciphertext back into plaintext.

The following diagram shows the basic encryption and decryption process:

graph LR
    A["Sender\n(Plaintext)"] --> B["Encrypt\nwith Key"]
    B --> C["Ciphertext\n(transmitted)"]
    C --> D["Decrypt\nwith Key"]
    D --> E["Receiver\n(Plaintext)"]

Key Terms

Term	Meaning
Plaintext	The original, readable data
Ciphertext	The encrypted, unreadable data
Encryption	Converting plaintext to ciphertext
Decryption	Converting ciphertext back to plaintext
Key	A value used by the algorithm to encrypt/decrypt data
Algorithm	The mathematical process used for encryption

---

Why Is Encryption Important?

Encryption protects the confidentiality of data. Even if an attacker intercepts encrypted data, they cannot read it without the decryption key.

Encryption is used for:

• Sending data across the internet (HTTPS, email encryption)
• Protecting stored data (encrypted hard drives, database encryption)
• Secure communications (messaging apps like WhatsApp use end-to-end encryption)
• Online transactions (banking, e-commerce)
• Protecting passwords (stored as encrypted hashes)

OCR Exam Tip: When explaining why encryption is important, always link it to confidentiality: "Encryption ensures that even if data is intercepted, it cannot be read without the decryption key."

---

Symmetric Encryption

In symmetric encryption, the same key is used for both encryption and decryption. Both the sender and receiver must possess the same secret key.

How it works:

1. The sender encrypts the plaintext using the shared secret key.
2. The ciphertext is transmitted across the network.
3. The receiver decrypts the ciphertext using the same secret key.

The Key Distribution Problem

The main weakness of symmetric encryption is key distribution — how do you securely share the secret key with the receiver? If the key is intercepted during transmission, the attacker can decrypt all communications.

Advantage	Disadvantage
Fast — less computationally intensive	Key must be shared securely
Suitable for encrypting large amounts of data	If the key is compromised, all data is vulnerable
Simple to implement	Does not scale well — each pair of users needs a unique key