This article introduces Hutool, a comprehensive Java utility library, detailing its core modules, practical code examples for encryption, HTML handling, and scheduling, and provides guidance on how to integrate its features into Java projects.
The article explains the vulnerabilities of plain HTTP, demonstrates how man‑in‑the‑middle attacks can intercept and modify traffic, and describes the evolution of security mechanisms—including symmetric and asymmetric encryption, TLS handshakes, and certificate authority verification—that together make HTTPS a robust solution for protecting web communications.
This guide explains how to use PyInstaller to bundle Python programs into standalone executables, discusses libc compatibility issues, shows installation, CLI entry creation, encryption options, a full packaging command, and provides a Dockerfile example for cross‑distribution deployment.
This article explains how HTTPS secures web communication by combining asymmetric certificate verification with symmetric data encryption, details the role of Certificate Authorities, illustrates the handshake process, and clarifies common misconceptions about its safety and vulnerability to packet capture.
This guide explains what SSH (Secure Shell) is, why it’s essential for encrypted communication and Linux server access, and provides a concise overview of OpenSSH’s core concepts and basic commands, serving as a quick reference manual for users.
This article explains why HTTP is insecure, outlines the four core principles of secure communication, and details how HTTPS uses symmetric encryption, asymmetric encryption, digital certificates, and signatures to establish confidentiality, integrity, authentication, and non-repudiation for safe data transmission.
This article explains the fundamentals of the HTTP protocol, demonstrates how its plaintext transmission enables man‑in‑the‑middle attacks, and then details how HTTPS (TLS/SSL) with certificate authority verification and asymmetric key exchange secures web communication against such threats.
This article explains the fundamentals of the HTTP protocol, its security weaknesses, illustrates man‑in‑the‑middle attacks, and shows how symmetric and asymmetric encryption together with TLS/SSL and a CA‑based certificate chain secure communications in HTTPS.
Following a massive ransomware breach that encrypted thousands of servers and stole sensitive data, this guide outlines four essential self‑check steps—data backup, encryption, server permission management, and platform user access control—along with JD Cloud’s concrete best‑practice actions to harden your infrastructure.
This article explains why plain HTTP is insecure, outlines the four fundamental principles of secure communication, and details how HTTPS uses symmetric encryption, asymmetric encryption, digital certificates, and digital signatures to establish confidentiality, integrity, authentication, and non-repudiation for web traffic.
Data deduplication eliminates redundant data blocks to lower storage and bandwidth costs, while source‑ and transmission‑level encryption safeguards data in transit and at rest; the article also compares hardware vs software deduplication, various storage architectures (DAS, SAN, NAS, object and distributed storage) and their trade‑offs.
This article outlines three major pitfalls developers encounter when using ThinkPHP 3.2.3 with PHP 5.3 to handle WeChat enterprise callback decryption, and provides step‑by‑step solutions including library adjustments, constructor updates, signature handling, and output buffering cleanup.
This article provides a comprehensive technical overview of Red Hat Ceph, covering its distributed storage architecture, cluster components, storage pool types, authentication, placement algorithms, I/O paths, replication and erasure‑coding strategies, internal management operations, high‑availability mechanisms, client libraries, data striping, and encryption details.
This tutorial explains how to obtain the WeChat Pay V3 platform certificate public key, decrypt the AES‑256‑GCM encrypted response, and implement a thread‑safe dynamic refresh mechanism in Java to ensure continuous verification of payment callbacks.
This article introduces Java developers to the Bouncy Castle library, detailing how to integrate it via Maven, demonstrating MD5 hashing and AES encryption/decryption code, and highlighting usage considerations and export compliance risks associated with cryptographic algorithms.
This article explains why HTTPS is required for secure data transmission, describes symmetric and asymmetric encryption, outlines the role of CA certificates, and provides step‑by‑step commands to generate keys, create certificates, and configure Nginx to serve HTTPS traffic.
This article explains the concepts, structures, and cryptographic processes of JWT, JWS, and JWE, covering their components, claim types, signature algorithms, encryption steps, and practical code examples for secure token handling in web applications.
This article explains why HTTPS has become essential for web security, compares it with HTTP, describes the weaknesses of plain HTTP and hashing algorithms, and details how symmetric and asymmetric encryption together with TLS/SSL certificates secure data transmission over the Internet.
This article explains how to generate PKCS#12 (p12) certificates using BouncyCastle in .NET Core, extract keys with OpenSSL, install the certificates on Windows, and demonstrates encryption and decryption with the generated keys, providing complete code samples and step‑by‑step instructions.
This article introduces the fundamentals of cryptography, explaining what passwords are, the difference between encryption and decryption, classifications of cryptographic algorithms such as symmetric, asymmetric, hash functions, and message authentication, and illustrates concepts with examples like RC4 and block cipher modes.
HTTPS combines HTTP with SSL/TLS to protect data through encryption, integrity checks, and authentication, using asymmetric keys during the handshake to negotiate symmetric encryption, digital signatures, certificates, and a secure session, ensuring safe client‑server communication.
Streaming ZIP decompression enables extracting files while downloading, eliminating the need to fetch the entire archive; by leveraging Local File Header metadata and supporting both traditional and AES encryption, this technique dramatically reduces latency, as demonstrated by Youku’s 0.91‑second load for 30 MB books.
This article clarifies the often‑confused concepts of encryption, digest (hash), and encoding, explains their definitions, typical algorithms, practical usage scenarios, and highlights their similarities and differences to improve communication among developers.
This article introduces the Hutool Java utility library, outlines its extensive modules such as encryption, HTML handling, and cron scheduling, and demonstrates practical code examples that simplify common development tasks while improving code readability and security.
The article outlines enterprise data‑security risks and regulatory demands, reviews symmetric, asymmetric and hash techniques, highlights cloud‑encryption and key‑management challenges, and presents Tencent Cloud’s comprehensive solutions—including KMS, BYOK, white‑box keys, virtual HSMs, and integrated database encryption—to protect data throughout its lifecycle.
This article explains why HTTP is insecure, demonstrates a plain‑text attack using Wireshark, and then details the encryption types, certificate issuance, digital signatures, and the combined asymmetric‑symmetric handshake that make HTTPS a secure protocol for web communication.
This article explains in plain language what HTTPS is, how it encrypts data using symmetric and asymmetric techniques, how it verifies server identity with digital signatures and certificates, and why these mechanisms keep web communications safe from eavesdropping and tampering.
This article explains why HTTPS is essential, compares symmetric and asymmetric encryption, illustrates how encryption keys are securely exchanged, and outlines the three core reasons HTTPS reliably protects data from eavesdropping and man‑in‑the‑middle attacks.
This guide explains why Zabbix data transmission in mixed‑cloud environments requires encryption, describes the TLS/PSK and certificate‑based security options supported since Zabbix 3.0, outlines their limitations, lists compatible encryption libraries, and provides step‑by‑step configuration commands for both GnuTLS and OpenSSL.
This article explains why HTTPS is considered secure, details its underlying cryptographic processes—including certificate verification, asymmetric and symmetric encryption, and the role of Certificate Authorities—while also addressing common misconceptions such as man‑in‑the‑middle attacks and packet capture.
This article explains how to use the BouncyCastle library in .NET Core to generate RSA keys in PKCS1 and PKCS8 formats, convert between them, handle PEM encoding, and perform RSA encryption and decryption with various padding schemes, providing extensive code examples.
This article explains why HTTPS is necessary, describes symmetric and asymmetric encryption, illustrates the key exchange process, and outlines how HTTPS ensures secure communication by preventing eavesdropping, man‑in‑the‑middle attacks, and ensuring certificate trustworthiness.
Version 3.3.2 of MyBatis‑Plus introduces elegant data‑security measures, including YML‑based encrypted configuration, AES key generation, and encrypted database credentials, while also delivering numerous bug fixes and enhancements such as pagination improvements, generator updates, and support for additional databases.
This article explains how HTTPS works by detailing the certificate verification and data transmission phases, the use of asymmetric and symmetric encryption, the role of Certificate Authorities, potential man‑in‑the‑middle attacks, browser validation steps, and why HTTPS does not fully prevent packet capture.
This article outlines essential API security mechanisms—including encryption, signing, timestamps, AppId authentication, rate limiting, blacklisting, and data validation—and provides practical Java implementation examples and code snippets.
This comprehensive guide walks through classic PHP sorting techniques—including insertion, selection, bubble, quick, and shell sorts—along with essential string utilities such as length calculation, reversal, comparison, substring search, replacement, insertion, deletion, copying, concatenation, simple encoding/decoding, and basic encryption/decryption, providing clear explanations and ready‑to‑run code examples for each algorithm.
This article demonstrates how to replace the deprecated mcrypt functions in PHP with OpenSSL by providing a compact Aes class that handles AES‑128‑CBC encryption and decryption, including configuration of key, IV, and method, and shows practical usage examples.
This article introduces the Hutool Java utility library, describes its main modules such as encryption, HTML handling, and cron scheduling, and provides practical code examples demonstrating how to use SecureUtil, HtmlUtil, and CronUtil to simplify backend development tasks.
This article explains why HTTPS was created to address HTTP’s lack of encryption, authentication, and integrity, describes how TLS/SSL adds security, details the roles of symmetric and asymmetric encryption, hash algorithms, digital certificates, and the full handshake process that secures modern web communication.
This article provides a step‑by‑step technical guide to the AES encryption and decryption algorithm, covering state matrix construction, key expansion, round operations, final round differences, and practical Node.js code examples for handling padding and common implementation pitfalls.
This article explains why data security is vital for businesses, outlines common technical, process and human threats, and provides actionable cloud‑based measures—including backup strategies, snapshot usage, permission management, data classification, and encryption—to protect enterprise data throughout its lifecycle.
This article introduces ten essential open‑source security tools—including Nessus, Snort, Nagios, Ettercap, Infection Monkey, Delta, Cuckoo Sandbox, The Sleuth Kit, Lynis, and Certbot—detailing their main features, licensing models, and typical use cases for vulnerability scanning, intrusion detection, network monitoring, and forensic analysis.
This article explains how HTTPS protects data through encryption and identity authentication, describes symmetric and asymmetric algorithms, outlines PKI and certificate issuance processes, demonstrates Nginx certificate deployment, and shows how trust chains and cross‑certificates ensure reliable secure connections.
This article explains the three main types of encryption—symmetric, asymmetric, and hash algorithms—detailing their principles, common examples such as DES, AES, RSA, ECC, MD5, SHA families, their strengths, weaknesses, and typical application scenarios.
This guide outlines key API security strategies—including data encryption, digital signatures, timestamp validation, AppId authentication, rate limiting, blacklist handling, and data validation—explaining their purpose, implementation details, code examples, and practical considerations for protecting transaction-related endpoints.
This article presents a practical checklist for securing web applications, covering unit testing, access control, change tracking, admin privilege management, least‑privilege principles, remote redundancy, monitoring, encryption, automated security scanning, and SQL injection prevention, offering actionable guidance for developers.
This article thoroughly explains how HTTPS ensures secure communication by detailing its certificate verification, the use of asymmetric encryption for authentication and symmetric encryption for data transfer, the role of Certificate Authorities, common attacks like man‑in‑the‑middle, and why HTTPS alone cannot prevent all forms of packet sniffing.
This article explains why HTTPS is considered secure, details its underlying TLS handshake and data transmission process, clarifies the roles of asymmetric and symmetric encryption, the necessity of CA‑issued certificates, and discusses common misconceptions such as man‑in‑the‑middle attacks and packet capture.
Through a narrative of a college student and her mother whose chat is intercepted and altered by a hacker, the article illustrates why plain HTTP is vulnerable, explains the principles of symmetric and asymmetric encryption, TLS/SSL, and how certificates and hybrid encryption secure modern communications.
This article explains how HTTPS secures web communication by combining asymmetric certificate verification with symmetric data encryption, describes the role of Certificate Authorities, outlines the handshake process, discusses man‑in‑the‑middle attacks, and clarifies the limits of HTTPS against packet capture.
This article reconstructs the design of HTTPS step by step, explaining why both symmetric and asymmetric encryption are required, how key negotiation works, the role of digital certificates and certificate authorities, and the underlying security concepts that protect client‑server communication.
This article explains how to protect communication in hybrid Android applications by using native C/C++ encryption libraries, secure HTTPS handling, zip‑based Web resource protection, and anti‑tampering/replay mechanisms, providing practical code examples and architectural guidance for developers.
This article examines WeChat's approach to Android data storage issues, detailing the limitations of internal and external storage, the gradual migration strategy, and the design of the wechat‑vfs component that provides abstracted file migration, encryption, and cleanup capabilities.
This article explains how to integrate and use ADBLib within an Android app, covering required Gradle and manifest configurations, step‑by‑step procedures for establishing a TCP/IP connection, generating encryption keys, retrieving the device IP, creating socket connections, and executing ADB commands, along with an overview of ADBLib’s underlying architecture.
This article explains how to integrate the rsa-encrypt-body-spring-boot starter into a Spring Boot project to uniformly encrypt request parameters and response bodies using RSA and AES, providing step‑by‑step configuration, code examples, and practical encryption tips.
This article explains what HTTPS is, why it adds encryption to HTTP, how SSL/TLS, symmetric and asymmetric cryptography, certificates, and handshakes work together to ensure confidentiality, integrity, and authenticity, and discusses the performance impact of HTTPS connections.
This article describes Qunar's comprehensive data security framework, covering data classification, warehouse access control, permission compliance, encryption, leakage detection, and the supporting institutional policies that together enable a small security team to protect large‑scale business data.
The article uses the plot of the historical series “The Longest Day in Chang’an” to explain how proper use of data structures, recommendation algorithms, and time‑complexity optimizations—such as O(n²) brute‑force search, O(n) mapping, and O(log n) spatial tricks—can turn a desperate race against time into a successful mission, while also touching on big‑data analysis and simple encryption via the tower‑signal system.
This article explains the fundamentals of Public Key Infrastructure, the differences between symmetric and asymmetric encryption, how digital signatures and certificates ensure data integrity and authenticity, and illustrates the SSH protocol’s secure authentication mechanisms, providing a comprehensive overview of modern information security techniques.
HTTPS combines HTTP with SSL/TLS encryption to protect data transmission, involving DNS lookup, TCP three‑way handshake, TLS negotiation with certificates and symmetric keys, and finally encrypted HTTP communication, while the article also explains TCP’s four‑way termination and the overall request‑response flow.
This article details how Tencent Classroom moved 2.5 million videos to Tencent Cloud VOD, covering the overall solution, video upload and playback processes, web integration steps, encountered issues, code implementations, and monitoring strategies, all resulting in improved performance and user experience.
This article explains MyBatis interceptors, showing how to intercept SQL execution, parameter setting, and result processing, and provides step‑by‑step code for custom encryption/decryption annotations, a parameter interceptor, a result‑set interceptor, and the supporting IEncryptDecrypt interface.
The article explains the security risks of plain HTTP, introduces symmetric and asymmetric encryption, describes digital certificates, certificate authorities, digital signatures, and how they combine in HTTPS to protect data confidentiality, integrity, and authenticity during web communication.
HTTPS secures web communication by combining symmetric and asymmetric encryption, digital certificates, and signatures, addressing HTTP’s confidentiality, integrity, and authenticity flaws; the article explains these cryptographic concepts, the SSL/TLS handshake steps, and when HTTPS is appropriate despite its performance overhead.
To protect mobile web activity pages such as coupons and lotteries, the article proposes a layered security approach that combines professional risk‑control services, custom human‑verification logs, token‑based HTTPS signing, data encryption, and aggressive front‑end JavaScript obfuscation to block automated abuse while preserving user experience.
Google Public DNS now fully supports DNS over HTTPS, enhancing privacy and security with minimal performance impact, while the article explains why DNS needs encryption, how DoH works, browser support, and practical considerations for adoption.
This guide explains how to generate RSA key pairs on Linux, use OpenSSL commands, and implement PHP code for public‑key encryption, private‑key decryption, padding options, data‑size limits, and helper functions for handling messages larger than the RSA block size.
This article reconstructs the design of HTTPS by explaining why symmetric encryption, asymmetric encryption, random numbers, digital certificates, and certificate authorities are combined to securely negotiate a shared secret between a client and a web server, while addressing man‑in‑the‑middle attacks and certificate validation.
This article explains how enterprise self‑encrypting drives (SED) work with FIPS‑compliant key management controllers (KMC), details the encryption and key lifecycle processes, compares SED variants, and introduces NetApp's NSE and NVE storage encryption solutions for secure data protection.
This article explains what HTTPS is, why it is needed, how TLS handshakes secure communication using asymmetric and symmetric encryption, the role of digital certificates and trust chains, methods of certificate revocation, and how to choose appropriate cipher suites for optimal security and performance.
This article introduces the most frequently used encryption techniques in frontend development—including Base64 encoding, hash functions, salting, slow hash algorithms, key‑hashing, XOR, symmetric and asymmetric encryption, digital signatures, and practical CryptoJS usage—explaining their principles, appropriate scenarios, and providing ready‑to‑use code examples.
This article explains why HTTPS is essential by comparing HTTP’s performance drawbacks, detailing its security vulnerabilities, and describing the cryptographic mechanisms—including TLS, symmetric and asymmetric encryption, certificates, and HMAC—that HTTPS employs to protect data and enable modern features like HTTP/2.
This article shares practical SpringBoot techniques for locally mocking external service dependencies and encrypting configuration properties, detailing step-by-step bean replacement using PowerMockito, configuration encryption with Jasypt, and accompanying code examples for seamless development without starting full distributed services.
This article explains the security shortcomings of plain HTTP, introduces HTTPS and its SSL/TLS encryption layer, compares symmetric and asymmetric cryptography, describes certificate types, and provides practical migration steps with Nginx configuration examples.
This article describes the motivation, design choices, memory‑mapped implementation, performance evaluation, and practical lessons learned while building a lightweight, crash‑resilient logging framework for the 运满满 iOS client, highlighting its superiority over traditional file‑write approaches.
This article uses a playful story of Alice, Bob, Eve, Mallory, and Trent to explain the fundamentals of symmetric and asymmetric encryption, message authentication codes, digital signatures, and public‑key certificates, showing how each technique protects confidentiality, integrity, and authenticity in communications.
This article explains the SSL/TLS handshake process, the role of private keys, the advantages of switching to Diffie‑Hellman, and how session IDs and tickets enable secure session resumption, illustrating each step with clear diagrams.
This article explains the fundamentals of HTTPS by clarifying key terms such as HTTP, SSL/TLS, and encryption, describing how HTTP works over TCP, the differences between symmetric and asymmetric cryptography, and the core security requirements of confidentiality, integrity, authenticity, and performance.
This article explains why API security is crucial in front‑end/back‑end separated systems and provides practical measures—including HTTPS, request signing, SSL pinning, and full request/response AES encryption—along with a Spring Boot starter and JavaScript Axios interceptor to protect data in transit.
This guide explains the three core pillars of RESTful API security—client authentication, data encryption, and post‑authentication authorization—detailing practical methods such as signature keys, HTTP Basic/Digest, OAuth, SSL, selective encryption with salts, and role‑based access control.
This article explains how passwords should be encrypted during transmission using symmetric and asymmetric methods such as RSA, why HTTPS is essential, how services like GitHub and Baidu handle login security, and best practices for securely storing passwords with hashing, salting, and strong algorithms like BCrypt and PBKDF2.
When using Spring Cloud Config's encryption/decryption endpoints via curl, special characters such as '+' and '=' can disappear because curl's default -d option does not URL‑encode the payload, but using --data-urlencode or setting the proper Content-Type header preserves these characters and ensures correct encryption and decryption.
This article walks through a reconstructed design process of HTTPS, explaining why secure web communication requires both symmetric encryption for data transfer and asymmetric encryption plus digital certificates for key exchange and authentication, while demystifying each component with clear diagrams.
This article walks through a step‑by‑step reconstruction of HTTPS design, showing why secure communication requires per‑client symmetric keys negotiated via asymmetric encryption, digital certificates from trusted CAs, and how signatures and random numbers protect against man‑in‑the‑middle attacks.
This article explains what HTTPS is, why encrypting HTTP traffic is essential, how symmetric and asymmetric encryption protect data, the role of certificates and public‑key infrastructure, and the performance impact of the HTTPS handshake, providing a concise Q&A guide for beginners.
This article presents concise explanations for 18 common algorithm interview questions, covering definitions, sorting methods, time‑complexity notation, search techniques, data structures, encryption basics, and the differences between best‑case and worst‑case scenarios.
An Android SDK project's shift from HTTPS to RSA‑encrypted HTTP prompts a deep dive into AES encryption, tracing its historical roots from early ciphers through DES and Triple‑DES, culminating in the Rijndael design, while illustrating core cryptographic concepts of confusion, diffusion, and secret keys.
This guide explains how to package a JavaWeb application into a WAR file, describes Tomcat’s architecture and connectors, introduces symmetric and asymmetric encryption concepts, and shows how to generate a self‑signed certificate and configure an HTTPS connector in Tomcat.
Data breaches have surged, affecting governments, enterprises, and security vendors, prompting the need for robust encryption across storage, application, and gateway layers, with standards such as FIPS 140‑2 and solutions from Vormetric and SafeNet offering transparent, compatible, and managed encryption for on‑premises and cloud environments.
The article introduces WCDB Swift, a pure‑Swift rewrite of Tencent's mobile database, detailing its model binding via Codable, language‑integrated queries, thread‑safe concurrency, encryption, full‑text search, and innovative use of Swift’s KeyPath and Mirror to achieve high performance and stability on iOS.
This article demystifies HTTPS by explaining its underlying encryption, signing, and certificate mechanisms, illustrating how zero‑knowledge proof concepts secure identity verification, and providing practical guidance on upgrading from HTTP, configuring certificates, capturing traffic with Fiddler, and understanding session recovery and performance considerations.
This article explains the fundamentals of symmetric and asymmetric encryption, the key distribution challenges they face, how hybrid cryptosystems combine their strengths, and introduces essential cryptographic tools such as hash functions, message authentication codes, digital signatures, and public‑key certificates, comparing their capabilities.
This article explains symmetric and asymmetric encryption, the key‑distribution problem, hybrid cryptosystems, one‑way hash functions, message authentication codes, digital signatures, public‑key certificates, and compares these cryptographic methods in detail.
This article explains how MongoDB’s security features—including access control, authentication, encryption, data discovery, retention policies, zone sharding, backup, monitoring, and audit logging—help organizations meet GDPR requirements while minimizing operational overhead and ensuring data sovereignty.
This article explains the structure and components of MySQL 5.7 InnoDB tablespaces—including system, undo, temporary, and general tablespaces—covers double‑write buffering, redo logs, encryption with keyring, and provides practical configuration examples and command‑line demonstrations.
This article explains GDPR's key principles, the Discover‑Defend‑Detect framework, and concrete database controls such as data identification, retention, pseudonymisation, encryption, access control, disaster recovery, and audit logging needed to achieve compliance.
The article examines the widespread exposure of MongoDB instances on default ports, outlines how attackers hijack them, and provides concrete steps—including enabling authentication, configuring role‑based access, encrypting traffic, and limiting network exposure—to secure MongoDB deployments.
This article examines common password‑storage techniques, explains why plain‑text, symmetric encryption, and simple hashes are insecure, and demonstrates how modern algorithms like PBKDF2, bcrypt, and scrypt, together with proper salting and iteration, can effectively protect user credentials against large‑scale cracking attacks.
The article introduces major web security threats such as XSS, injection, CSRF, explains their mechanisms with examples, and presents defensive measures including input sanitization, HttpOnly cookies, web application firewalls, and encryption methods like hashing, symmetric and asymmetric cryptography.
This article provides a detailed overview of the main building blocks of a generic SSD controller, explaining how each part—from host interfaces and SMART monitoring to wear leveling, encryption engines, and defect management—interacts with NAND flash to deliver performance, reliability, and security.
