This article examines various techniques for enabling fuzzy search on encrypted data, comparing naïve, conventional, and advanced algorithmic approaches, evaluating their security, performance, and storage trade‑offs, and provides practical implementation guidance and reference resources.
This article explains the differences between hashing and encryption, demonstrates Java's built‑in hash implementations, discusses the insecurity of MD5 and rainbow‑table attacks, and provides a detailed guide on using BCrypt with Spring Security, including code examples and the PasswordEncoder interface.
This article examines why encrypted data hinders fuzzy queries, categorizes three implementation approaches—from naive in‑memory decryption to conventional database tricks and advanced algorithmic solutions—evaluates their security, performance, and storage impacts, and provides practical references for real‑world systems.
This article examines why encrypted data resists fuzzy queries, categorizes three implementation strategies—from naïve to advanced—evaluates their security, performance, and storage trade‑offs, and recommends the most balanced approach for real‑world applications.
This article outlines ten practical methods to secure API data, covering encryption of transmission, digital signing, token authentication, timestamp and nonce replay protection, rate limiting, blacklist/whitelist controls, data masking, and parameter validation, with detailed explanations and implementation steps.
This article examines the difficulty of fuzzy searching encrypted fields and compares three solution families—naïve memory‑loading or tag‑table tricks, conventional token‑based encryption with indexable columns, and advanced algorithmic designs—highlighting their security, performance, and storage implications while recommending the most practical approach.
This article explains Baidu’s custom bdtls security communication protocol for mini‑programs, detailing its TLS 1.3‑based architecture, DHE‑RSA key exchange, AES‑GCM encryption, implementation on both server and client sides, and the strategies used to achieve strong security, low latency, high availability, and extensibility.
Baidu’s bdtls protocol adapts TLS 1.3 for mini‑programs, delivering mutual authentication, AES‑128‑GCM encryption, RSA‑signed Diffie‑Hellman key exchange, sub‑10 % handshake latency, and extensible multi‑business support to defend against static, dynamic and cheating attacks while ensuring high availability.
This article teaches Python developers how to build maintainable command‑line tools by applying four design principles, illustrating them with a Caesar‑cipher example implemented via sys.argv, argparse, and the Click library, and showing advanced features like file I/O, progress bars, and automated key breaking.
This article presents a step‑by‑step guide on securing Spring MVC interfaces by encrypting and decrypting both GET and POST requests using symmetric AES, custom ControllerAdvice components, and Jackson configuration to ensure consistent JSON serialization across mobile, H5, and backend services.
This article details 58.com’s end‑to‑end approach to securing mobile, H5, and server SDKs—covering security fundamentals, the 5A methodology, the 金盾 architecture, integration steps, data‑flow encryption, comprehensive risk‑based testing, performance evaluation, and release decision making.
This article outlines ten practical methods for protecting API data, covering transmission encryption, digital signatures, token authentication, timestamp and nonce mechanisms, rate limiting, blacklist/whitelist controls, data masking, and parameter validation to ensure comprehensive interface security.
This article demonstrates how to secure GET and POST API endpoints in a Spring MVC application by encrypting request bodies and responses with AES, using custom ControllerAdvice classes, handling serialization issues with FastJSON and Jackson, and configuring ObjectMapper for proper date and enum formatting.
This article introduces the SSL protocol, explains why encryption is needed for database communication, and provides step‑by‑step instructions for generating self‑signed certificates with OpenSSL, converting them for Java, and configuring both DBLE server and client to use SSL, including experimental verification of encrypted versus unencrypted connections.
This tutorial demonstrates how to use Frida to hook Java-level encryption functions on Android, covering MD5, SHA1, MAC, DES/AES/RSA ciphers, and signature algorithms by intercepting update, digest, init, and doFinal methods and logging their inputs and outputs in various formats.
This article introduces mitmproxy, explains its proxy modes and MITM operation, and demonstrates how to use Python scripts with mitmproxy to automate multi‑field validation and encryption handling in mobile advertising testing, offering a flexible alternative to traditional capture tools.
This article walks through static analysis and Frida hooking of an Android app’s login flow, dissecting the JsonRequest, RequestUtil, and encryption steps, then reproduces the MD5‑based sign generation and DES‑CBC encryption in JavaScript, providing full code snippets and explanations.
This guide explains why and how to use LUKS2 encryption on Ceph RBD images, covering background requirements, LUKS versions, formatting images, defining secrets, updating libvirt XML, launching VMs, and the limitations when cloning encrypted images.
This article explains how to secure cross‑data‑center traffic by applying TLS principles, setting up a private Certificate Authority, generating self‑signed certificates with OpenSSL, configuring mutual TLS (mTLS) on Nginx proxies for both HTTP and TCP streams, and verifying the setup with curl and redis‑cli commands.
This article examines whether WeChat messages can be intercepted via network monitoring, explains the security guarantees of modern chat apps through asymmetric and symmetric encryption, explores how network behavior management tools could capture communications, and offers practical advice on protecting against such threats.
This article introduces common encryption algorithms—symmetric, asymmetric, and hash—explains where encryption is needed in a user management module, and details implementation steps using RSA and AES128, while also warning about man‑in‑the‑middle attacks and recommending best practices.
This article explains how Sharding-JDBC can perform data masking at the persistence layer, detailing key concepts, configuration of data sources, encryptors, and tables, demonstrating practical examples with built‑in MD5 and AES encryptors, and showing how to implement custom encryptors and query‑assisted encryption for enhanced security.
This article demonstrates how to reverse‑engineer a JavaScript video‑encryption function, translate its logic into Python, and use the resulting code to retrieve the hidden video URL, providing a practical example for Python web‑scraping and JS deobfuscation.
This article introduces fundamental cryptography concepts, explaining how symmetric and asymmetric encryption work, the role of key exchange, the purpose and properties of hashing algorithms, and how digital signatures combine encryption and hashing to ensure data authenticity and integrity.
This article explains how chat applications like WeChat protect messages with asymmetric and symmetric encryption, why network administrators generally cannot read chat content, and what alternative monitoring methods (such as installed surveillance software, system vulnerabilities, or compromised private keys) could expose your conversations.
The article explains how modern chat applications protect communication with asymmetric and symmetric encryption, why network eavesdropping alone cannot reveal messages, and how installed monitoring software or system vulnerabilities can still expose chat records, emphasizing the need for regular updates and careful device usage.
This article explains the evolution from HTTP to HTTPS, detailing HTTP’s history, its security shortcomings, the principles of symmetric and asymmetric encryption, digital signatures, certificate authorities, and the complete HTTPS handshake process, helping readers understand how secure web communication works.
This article explains the SSH protocol, covering its default port, the step‑by‑step handshake process—including connection establishment, version and algorithm negotiation, key exchange, and user authentication methods—while also describing common clients like PuTTY and OpenSSH and the role of symmetric and asymmetric encryption.
This comprehensive guide explains digital signatures, encryption and decryption processes, symmetric and asymmetric cryptography, and compares common algorithms such as MD5, SHA‑1, HMAC, DES, 3DES, AES, RSA, and ECC, complete with Java code examples and usage scenarios.
This guide demonstrates how to secure Spring Boot configuration values by using Jasypt encryption and a custom EnvironmentPostProcessor with RSA, covering Maven dependencies, property setup, encrypted YAML syntax, utility classes, processor implementation, and registration via spring.factories.
This article explains the SSH protocol, covering its default port, the step-by-step connection process—including version and algorithm negotiation, key exchange, and user authentication—along with practical guidance on using PuTTY, OpenSSH, and SSH key management.
This guide explains how to securely connect two data‑center deployments over the public Internet by using TLS/mTLS, Certificate Authorities, and Nginx proxy configurations, providing step‑by‑step certificate generation, server and client setup, and both HTTP and TCP stream examples.
This article explains the differences between TLS and SSL, details the TLS handshake and certificate mechanisms, and provides step‑by‑step guidance for configuring encrypted connections on MySQL servers, clients, and JDBC drivers.
This guide walks you through installing the Unix‑style Pass password manager on Linux, configuring GnuPG keys, initializing a secure password store, using basic Pass commands, and integrating it with browsers via PassFF for seamless, encrypted credential management.
This article demonstrates how to automatically encrypt sensitive fields such as ID numbers and phone numbers before storing them in a database and decrypt them after retrieval by leveraging MyBatis plugins, custom annotations, and Spring Boot components, providing a clean, reusable solution for backend applications.
This article demonstrates how to securely store and retrieve sensitive user data such as phone numbers in a MySQL database by creating a custom MyBatis TypeHandler that automatically encrypts values on insert and decrypts them on query, complete with code examples and configuration steps.
This article explains how to secure sensitive Spring Boot configuration properties such as database credentials by integrating the Jasypt library, adding the Maven dependency, configuring an encryption password, generating encrypted values via tests, and applying them in YAML files with optional runtime salt handling.
This article demonstrates how to protect sensitive user data such as phone numbers in a MySQL database by creating a custom MyBatis TypeHandler that automatically encrypts values on insert and decrypts them on query using AES encryption from the Hutool library.
This article demonstrates how to securely store and retrieve sensitive fields such as phone numbers in a MySQL database by creating a custom MyBatis TypeHandler that encrypts data on insert and decrypts it on query, including full implementation code and configuration steps.
This article explains how traditional VPNs are being replaced by Software‑Defined Perimeter (SDP) solutions, detailing the underlying protocols, encryption methods, SOCKS5 proxy integration, custom DNS handling, IAM integration, and the ZFE gateway architecture that together enable a zero‑trust network for modern enterprises.
This article explains practical methods to protect externally exposed APIs, covering token‑based access, OAuth2.0 authorization, signature verification, encryption techniques (hashing, symmetric and asymmetric), key management, and provides Java code samples for DES and RSA implementations.
This article presents a collection of interview questions covering backend fundamentals such as linked‑list sorting, encryption differences, TCP reliability, IO models, Hystrix, delayed tasks, HTTPS flow, transaction isolation, index pitfalls, virtual memory, Redis leaderboards, distributed locks, zero‑copy techniques, Java synchronized, and Snowflake ID generation.
This article introduces several essential Linux commands—including crypt for file encryption, kill variants for terminating processes, shred for secure file deletion, zombie process identification, at for one‑time scheduling, and daemon management—explaining their purposes, usage syntax, and practical examples.
This guide explains how to install the cross‑platform croc command‑line tool, use its relay‑based fast and end‑to‑end encrypted file and text transfer features, customize code phrases, handle pipes, set output folders, and access its full help options on Linux, macOS, and Windows.
This article explains why Java bytecode is easy to decompile and presents four major protection methods—isolating the program, encrypting class files, converting to native code, and applying code obfuscation—detailing their implementations, advantages, and limitations.
Learn step‑by‑step how to fetch Baidu Index search volume data for any keyword using Python: discover the API endpoints, decrypt the encrypted response with a custom function, and wrap the process into reusable code without relying on UI automation tools.
This article explains how to prevent data leaks by encrypting configuration files and masking sensitive fields in Spring Boot applications using Jasypt, covering Maven setup, encryption/decryption methods, custom annotations, AOP implementation, and the underlying PBE algorithm details.
This article introduces common encryption methods—including Base64, MD5, SHA‑1, HMAC, DES, AES, and RSA—explains their principles, and provides complete Python code examples for encoding, decoding, and key handling, enabling readers to implement secure data transformations in their own projects.
This article explains RSA asymmetric encryption, key pair generation, encryption/decryption limits, digital signing and verification, and provides a full Python implementation using PyCryptodome, complete with code snippets, base64 handling, and practical usage tips.
This article explains the fundamentals of the HTTP protocol, illustrates how plain‑text communication enables man‑in‑the‑middle attacks, and describes how symmetric and asymmetric encryption, SSL/TLS handshakes, and CA certificate chains are used in HTTPS to secure web traffic.
SSL/TLS protects internet traffic by encrypting data, verifying integrity, and authenticating parties, and this article outlines its purpose, historical evolution, core operation using public‑key and symmetric keys, and details each step of the handshake process that establishes a secure session.
This guide explains how PyArmor encrypts and protects Python scripts through seamless replacement, dynamic encryption, licensing, hardware binding, and packaging, providing step‑by‑step installation, usage commands, project management techniques, and a comprehensive command reference for developers.
This tutorial explains how to install the SHC tool on CentOS 8, create a simple shell script, encrypt it into a binary executable, verify the file types, run the encrypted script, and optionally set an expiration date or custom expiration message.
This guide shows how to implement a custom EnvironmentPostProcessor in Spring Boot to decrypt sensitive configuration values such as datasource passwords, explains registration via META-INF/spring.factories, and details the execution order and related Spring Boot internals.
This article explains how QingStor object storage uses SSL and server‑side AES256 encryption, details the client‑side tagging process, walks through the full encrypt‑and‑decrypt workflow, and provides practical API request and response examples for secure data handling.
This article explains what an algorithm is, outlines its three essential properties, and introduces ten foundational computer algorithms—including sorting methods, Fourier transforms, Dijkstra's shortest‑path, RSA encryption, hash functions, factorization, link analysis, PID control, data compression, and random‑number generation—highlighting their historical origins and real‑world impact.
This guide introduces Transfer.sh, a fast, encrypted command‑line file‑sharing service supporting up to 10 GB, with instructions for uploading, encrypted uploads, downloading, virus‑total scanning, and setting limits on downloads and retention time for your projects.
This article introduces ten foundational algorithms—from sorting and Fourier transforms to encryption and graph analysis—explaining their core principles, historical origins, and the pivotal roles they play in today’s software, security, and data processing systems.
Learn the fundamentals of information security through a myth-inspired scenario, covering how symmetric and asymmetric encryption, message digests, and digital signatures ensure confidentiality, integrity, and authenticity when transmitting a simple invitation, and explore a practical secure email system design.
This article demonstrates how to use the Jasypt library to encrypt sensitive Spring Boot configuration properties such as database credentials, showing Maven dependency setup, encryption password configuration, test code for generating encrypted values, and how to replace plaintext with ENC() placeholders in application.yml, including deployment salt handling.
This article explains how HTTPS uses SSL/TLS to encrypt data, authenticate servers, and protect integrity, then examines the handshake process, certificate authority verification, man‑in‑the‑middle attacks, and why HTTPS alone cannot guarantee absolute security.
This article provides a comprehensive overview of TCP networking fundamentals, covering the OSI seven‑layer model, TCP header fields, the three‑way handshake and four‑way termination, connection limits, packet fragmentation and reassembly, flow‑control mechanisms, HTTP/HTTPS differences, encryption methods and useful analysis tools.
This article examines common security flaws in basic web login forms, demonstrates how plain‑text passwords can be intercepted, and presents practical countermeasures such as client‑side encryption, hashing, captchas, tokens, and digital signatures to protect credentials and data integrity.
This article explains why HTTP lacks confidentiality, introduces symmetric, asymmetric, and hybrid encryption, describes the HTTPS handshake steps, and shows how Apache HttpClient builds SSL connections with code examples, highlighting key components such as SSLConnectionSocketFactory and HostnameVerifier.
The article explains the key differences between HTTP and HTTPS—including transmission security, connection methods, port numbers, and certificate requirements—and describes how HTTPS uses SSL/TLS, public‑key cryptography, and session keys to guarantee secure data exchange.
This article presents a collection of practical PHP utility functions—including string truncation with ellipsis, MD5-based encryption, phone number masking, mobile, numeric and email validation, as well as recursive category handling—complete with usage scenarios and full source code to help developers quickly implement common backend tasks.
This article examines common security flaws in basic HTML login forms, demonstrates how plaintext passwords can be intercepted over HTTP, evaluates symmetric and asymmetric encryption, discusses the limitations of HTTPS, and proposes practical safeguards such as MD5 hashing, token-based authentication, captchas, and digital signatures to protect user credentials.
This article introduces common encryption algorithms—including symmetric, asymmetric, and digital signature methods—and provides detailed Go code examples for MD5, HMAC, SHA1, AES (with various modes), and RSA, helping developers understand and implement secure cryptographic operations in Go.
This article explains the Chain of Responsibility design pattern, outlines its four roles, demonstrates a real‑world Java implementation for encrypted request handling, and shows how to build an extensible processing chain that improves code readability and maintainability.
This article walks through a step‑by‑step reconstruction of HTTPS’s design, explaining why both symmetric and asymmetric encryption are needed, how key exchange is negotiated, and how digital certificates and signatures solve the trust problem in secure web communication.
This article explains fundamental cryptography concepts, traces the evolution from ancient substitution ciphers to modern symmetric and asymmetric algorithms, and provides complete Java code examples for DES, AES, RSA, digital signatures, and hash functions such as MD5 and SHA.
Researchers from 360 Netlab have uncovered RotaJakiro, a stealthy Linux backdoor malware first seen in 2018, which uses ZLIB compression, AES/XOR/ROTATE encryption, and hidden plugins to exfiltrate data and evade detection, with twelve functions yet its true purpose remains unknown.
The article outlines typical ways PHP projects mishandle sensitive data—such as storing passwords in plain text, transmitting credentials without encryption, using weak hashing algorithms, and exposing server details—and provides practical configuration and coding measures to secure data at rest and in transit.
This article explains the PHP mdecrypt_generic() function, its parameters, and provides a complete example that demonstrates opening an encryption module, encrypting data, decrypting it back, and verifying the result while handling necessary initialization and cleanup steps.
The article explains the PHP function mcrypt_module_open, detailing its purpose of opening encryption algorithm and mode modules, describing each of its four parameters, default directory behaviors, and the return value indicating success with a resource or failure with FALSE.
The PHP function mcrypt_module_close() releases an opened encryption module by taking a resource descriptor as its argument and returns TRUE on success or FALSE on failure, providing a simple way to clean up cryptographic resources in backend applications.
The article explains the PHP mcrypt_get_key_size() function, its prototypes for different libmcrypt versions, the meaning of its cipher and mode parameters, the return value indicating maximum key size, and provides a practical code example demonstrating its usage.
The article explains PHP's mcrypt_generic() function, detailing its purpose for encrypting data, required parameters ($td as the encryption descriptor and $data as the plaintext), the need for block-size-aligned input, initialization and cleanup steps, and the nature of its returned encrypted output.
The PHP function mcrypt_enc_get_key_size returns the maximum key length, in bytes, that the currently opened encryption mode can support, taking a resource descriptor as its sole parameter and providing developers with essential information for handling encryption keys securely.
The mcrypt_enc_get_block_size function in PHP returns the block size, in bytes, of the encryption algorithm associated with a given encryption descriptor resource, providing essential information for handling block cipher operations and ensuring correct data padding during encryption and decryption processes.
The PHP function mcrypt_enc_get_algorithms_name($td) returns the name of the encryption algorithm associated with the given encryption descriptor, providing developers with a string that identifies the algorithm currently in use for cryptographic operations.
The PHP mcrypt_decrypt() function decrypts data using a specified cipher, key, mode, and optional initialization vector, returning the plaintext string or FALSE on failure, with detailed parameter descriptions and usage notes.
This article explains the PHP mcrypt_cfb() function, detailing its signature, parameters—including cipher, key, data, mode, and IV—its compatibility with different libmcrypt versions, and the permissible mode constants for encrypting or decrypting data in CFB mode.
This article explains the PHP mcrypt_cbc() function, detailing its two prototypes for different libmcrypt versions, the full parameter list—including optional IV—and the mode constants MCRYPT_ENCRYPT and MCRYPT_DECRYPT used for CBC‑mode cryptographic operations.
This article explains the fundamental concepts of HTTPS, covering TLS/SSL algorithms, the roles of symmetric and asymmetric encryption, digital signatures, certificate authorities, the TLS 1.2 handshake process, and why HTTPS is preferred over HTTP despite deployment challenges.
This article explains the PHP hash_pbkdf2() function, detailing its parameters, return values, and usage with a complete example that demonstrates how to derive a PBKDF2 key using a chosen hash algorithm, password, salt, iteration count, and output format.
This guide reviews the most frequent TCP/IP attacks—including IP spoofing, SYN flooding, UDP flooding, TCP reset hijacking, man‑in‑the‑middle, and DDoS—explains their underlying protocols, demonstrates practical exploitation with Python/Scapy and Netcat, and outlines mitigation techniques and cryptographic fundamentals.
An in‑depth guide to computer network architecture covers layered models, the OSI reference model versus TCP/IP, protocol functions from the physical to application layer, TCP three‑way handshake and four‑way termination, HTTP basics, encryption methods, and common interview questions for network engineers.
This article presents practical secure coding guidelines—including input escaping, avoiding auto‑increment IDs, minimalist HTTP methods, least‑privilege design, mandatory HTTPS, strong encryption algorithms, and whitelist‑based execution—to help developers embed real‑time security into modern software.
This article introduces Python’s hashlib module, explains the principles and characteristics of common hash algorithms such as MD5, SHA‑1, SHA‑224, SHA‑256, SHA‑384, and SHA‑512, demonstrates how to compute their digests with code examples, and shows simple key‑based encryption techniques.
This article explains the fundamentals of encryption by walking through a relatable story, defining keys, comparing symmetric and asymmetric methods, illustrating key‑exchange techniques such as paint‑mixing, multiplication tricks, Diffie‑Hellman, AES block processing, and the RSA algorithm with step‑by‑step calculations.
This tutorial demonstrates how to configure Spring Boot with MyBatis, create a custom TypeHandler that encrypts and decrypts database fields using AES, and integrate the handler in entity mappings and mapper XML for seamless data protection.
This article demonstrates how to automatically encrypt sensitive fields such as ID numbers and phone numbers before storing them in a database and decrypt them after retrieval by using Spring Boot, MyBatis plugins, and custom annotations, eliminating manual encryption logic in business code.
This article explains three practical methods—Sealed Secrets, Helm Secrets, and Kamus—for encrypting Kubernetes secrets, covering their principles, encryption and decryption processes, installation steps, and usage examples with full command‑line and manifest snippets to securely store sensitive data in GitOps workflows.
This article explains the fundamentals of HTTPS by clarifying key terms like HTTP, SSL/TLS, and encryption, describing how HTTP works over TCP, comparing short and persistent connections, and outlining the security, compatibility, extensibility, and performance requirements that drive HTTPS design.
This article explains the inherent insecurity of plain HTTP, illustrates man‑in‑the‑middle attacks, shows why simple symmetric encryption is insufficient, and details how HTTPS (SSL/TLS) with asymmetric key exchange and CA verification protects data transmission.
This article introduces Hutool, a comprehensive Java utility library, outlines its core modules such as AOP, Bloom filter, caching, cron scheduling and encryption, and demonstrates practical code snippets for secure login, HTML sanitization, and lightweight task scheduling.
This guide shows Java developers how to use the Cloudmersive API to create both unencrypted and password‑protected ZIP archives, covering Maven setup, API key configuration, and complete code examples for handling up to ten files with optional AES‑256 encryption.
This article explains the fundamentals of the HTTP protocol, illustrates its susceptibility to man‑in‑the‑middle attacks, discusses mitigation techniques using symmetric and asymmetric encryption, and describes how HTTPS with TLS and a CA certification system protects data integrity and confidentiality.
This article provides a comprehensive technical overview of Red Hat Ceph, covering its distributed object storage design, cluster architecture, storage pools, authentication, placement groups, CRUSH algorithm, I/O operations, replication, erasure coding, internal management tasks, high availability, client interfaces, data striping, and encryption mechanisms.
