What Is Encryption?March 20, 2019April 27, 2020
Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. It can be used to transform data that you send across the internet into a format which is only readable when in possession of a decryption key, which provides the code to decipher the encryption.
Think of sending a letter to someone in a secret language that needs a special dictionary to translate it.
The secret language = the encryption
The dictionary = the decryption key
Only when someone has both can they then read that message—providing of course that the secret language is sophisticated enough to not be broken without the key. Make sense?
What is the strongest encryption?
Dashlane uses AES-256 encryption. Short for Advanced Encryption Standard, it was the first publicly accessible and open cipher approved by the National Security Agency (NSA) to protect information at a “Top Secret” level. It is now widely accepted as the strongest encryption there is—and used by governments, militaries, banks, and other organizations across the world to protect sensitive data.
Remember we mentioned that the “secret language” needs to be complicated so it is tough to crack? Well, AES is just that. It’s based on a system of encoding called the Rijndael cipher, developed by two Belgian cryptographers, Joan Daemen and Vincent Rijmen. It divides your data into blocks of 128 bits (the smallest unit of computer data) each, and then uses the encryption key to scramble them beyond all recognition using 14 different rounds of encryption.
You need the specific key to decrypt the data. The number of possible keys this system allows is 2 to the 256th power—that’s a number that is 78 digits long. Imagine the computing power necessary to reveal the correct key and decrypt the data were it to be intercepted.
Has AES ever been cracked?
No. A Microsoft research paper published in 2011 suggested that it was theoretically possible to recover an AES key (the “dictionary” that translates the “secret language”) using a technique called a biclique attack. But even breaking a 128-bit key (far less complex than Dashlane’s 256-bit system) would take billions of years with current computing power—and require storing about 38 trillion terabytes of data, which is more than all the data on all the computers on the planet.
So my data and passwords are safe with Dashlane?
Dashlane encrypts all your data locally (on your device) before sending it to our servers. Your key is never transmitted on the internet, so in the unlikely event that your data is somehow intercepted, the encryption means that no one will be able to decipher it.
Looking for more info?
Visit our online safety hub for the latest breach report and a complete guide to staying secure on the internet.
What Is Encryption?
Encryption is the process of encoding messages or information in such a way that only authorized people with the correct decryption key can read it. Encryption does not in and of itself prevent others from getting the information, but it can prevent them from reading it. To benefit from encryption, you must set your devices to require a password, passcode, or other authorization to be unlocked.
Why Encryption Is Needed
Encryption helps protect confidential data from unauthorized disclosure if the device it is stored on or accessed from is lost, stolen, or confiscated. You have a responsibility to protect university data by using encryption in accordance with the U-M IT standard Encryption (DS-15).
Encrypt Devices
Personal Devices
Given the importance of encryption and a growing recognition of the need for privacy, some device manufacturers have begun enabling encryption of mobile devices automatic. For example, iOS devices use encryption automatically, as do some newer Android mobile devices. For laptops and some other devices, you may need to turn encryption on yourself.
- Encrypt Your Mac with FileVault
- Encrypt Your Windows Computer With BitLocker
- Use Encrypted Thumb Drives
- Secure Your Android Device (See: Turn on data encryption in the Settings section)
U-M Devices
- MiWorkspace. MiWorkspace-managed laptops are encrypted. Neighborhood IT staff can assist with encypting other devices as needed.
- Michigan Medicine. Health Information Technology & Services provides devices to Michigan Medicine faculty and staff and is primarily responsible for the maintenance and security standards of those devices, including encryption.
- UM-Flint. Windows laptops provided and managed by U-M Flint ITS come with Microsoft bitlocker encryption enabled.
- Unit-Managed Devices. Please contact your unit's IT staff if you need assistance with encryption.
Encrypt Data
Your Own Files
Consider file encryption to prevent others from accessing your personal data. Remember to:
- Delete files securely when you no longer need them to prevent others from finding traces of them.
- Erase and dispose of devices securely when you no longer need them.
U-M Data on Personal Devices
- Do not store U-M data classified as Restricted on personal devices.
- Encryption required. If you are permitted to access or store university data classified as High on personal devices, you must encrypt those devices.
- Encryption recommended. If you are permitted to access or store university data classified as Moderate or Low on personal devices, it is recommended that you encrypt those devices.