Cryptographic Attacks

To find the encryption key through brute force.

To break the cryptography itself.

To intercept the encrypted data during transmission.

To guess the combination to the safe.

About 10%

About 25%

About 50%

About 75%

When two different plaintexts produce the same hash value.

When an attacker uses brute force to find a key.

When an encryption algorithm fails to encrypt data.

When a single plaintext produces multiple hash values.

April 1992

1996

December 2008

After 2010

To force systems to use stronger encryption.

To prevent any communication between devices.

To force systems to use weaker or no encryption.

To steal physical hardware from a system.

Man-in-the-middle attack

SSL stripping

Denial-of-service attack

Phishing attack

HTTPS

FTP

HTTP

SSH

Only encrypted data between the attacker and the web server.

Only the initial HTTP request.

All subsequent communication between the website visitor and the attacker.

Only the web server's responses.