[](https://www.paloaltonetworks.com/?ts=markdown) * Sign In * Customer * Partner * Employee * [Login to download](https://www.paloaltonetworks.com/login?ts=markdown) * [Join us to become a member](https://www.paloaltonetworks.com/login?screenToRender=traditionalRegistration&ts=markdown) * EN * [USA (ENGLISH)](https://www.paloaltonetworks.com) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * [CHINA (简体中文)](https://www.paloaltonetworks.cn) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [What's New](https://www.paloaltonetworks.com/resources?ts=markdown) * [Get Support](https://support.paloaltonetworks.com/SupportAccount/MyAccount) * [Under Attack?](https://start.paloaltonetworks.com/contact-unit42.html) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Palo Alto Networks logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)](https://www.paloaltonetworks.com/?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/?ts=markdown) * Products ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Products [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [AI Security](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise Device Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical Device Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [OT Device Security](https://www.paloaltonetworks.com/network-security/ot-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex AgentiX](https://www.paloaltonetworks.com/cortex/agentix?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Exposure Management](https://www.paloaltonetworks.com/cortex/exposure-management?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Cortex Advanced Email Security](https://www.paloaltonetworks.com/cortex/advanced-email-security?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Unit 42 Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * Solutions ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Solutions Secure AI by Design * [Secure AI Ecosystem](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [Secure GenAI Usage](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) Network Security * [Cloud Network Security](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Data Center Security](https://www.paloaltonetworks.com/network-security/data-center?ts=markdown) * [DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Intrusion Detection and Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Device Security](https://www.paloaltonetworks.com/network-security/device-security?ts=markdown) * [OT Security](https://www.paloaltonetworks.com/network-security/ot-device-security?ts=markdown) * [5G Security](https://www.paloaltonetworks.com/network-security/5g-security?ts=markdown) * [Secure All Apps, Users and Locations](https://www.paloaltonetworks.com/sase/secure-users-data-apps-devices?ts=markdown) * [Secure Branch Transformation](https://www.paloaltonetworks.com/sase/secure-branch-transformation?ts=markdown) * [Secure Work on Any Device](https://www.paloaltonetworks.com/sase/secure-work-on-any-device?ts=markdown) * [VPN Replacement](https://www.paloaltonetworks.com/sase/vpn-replacement-for-secure-remote-access?ts=markdown) * [Web \& Phishing Security](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) Cloud Security * [Application Security Posture Management (ASPM)](https://www.paloaltonetworks.com/cortex/cloud/application-security-posture-management?ts=markdown) * [Software Supply Chain Security](https://www.paloaltonetworks.com/cortex/cloud/software-supply-chain-security?ts=markdown) * [Code Security](https://www.paloaltonetworks.com/cortex/cloud/code-security?ts=markdown) * [Cloud Security Posture Management (CSPM)](https://www.paloaltonetworks.com/cortex/cloud/cloud-security-posture-management?ts=markdown) * [Cloud Infrastructure Entitlement Management (CIEM)](https://www.paloaltonetworks.com/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [Data Security Posture Management (DSPM)](https://www.paloaltonetworks.com/cortex/cloud/data-security-posture-management?ts=markdown) * [AI Security Posture Management (AI-SPM)](https://www.paloaltonetworks.com/cortex/cloud/ai-security-posture-management?ts=markdown) * [Cloud Detection \& Response](https://www.paloaltonetworks.com/cortex/cloud-detection-and-response?ts=markdown) * [Cloud Workload Protection (CWP)](https://www.paloaltonetworks.com/cortex/cloud/cloud-workload-protection?ts=markdown) * [Web Application \& API Security (WAAS)](https://www.paloaltonetworks.com/cortex/cloud/web-app-api-security?ts=markdown) Security Operations * [Cloud Detection \& Response](https://www.paloaltonetworks.com/cortex/cloud-detection-and-response?ts=markdown) * [Security Information and Event Management](https://www.paloaltonetworks.com/cortex/modernize-siem?ts=markdown) * [Network Security Automation](https://www.paloaltonetworks.com/cortex/network-security-automation?ts=markdown) * [Incident Case Management](https://www.paloaltonetworks.com/cortex/incident-case-management?ts=markdown) * [SOC Automation](https://www.paloaltonetworks.com/cortex/security-operations-automation?ts=markdown) * [Threat Intel Management](https://www.paloaltonetworks.com/cortex/threat-intel-management?ts=markdown) * [Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Attack Surface Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/attack-surface-management?ts=markdown) * [Compliance Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/compliance-management?ts=markdown) * [Internet Operations Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/internet-operations-management?ts=markdown) * [Extended Data Lake (XDL)](https://www.paloaltonetworks.com/cortex/cortex-xdl?ts=markdown) * [Agentic Assistant](https://www.paloaltonetworks.com/cortex/cortex-agentic-assistant?ts=markdown) Endpoint Security * [Endpoint Protection](https://www.paloaltonetworks.com/cortex/endpoint-protection?ts=markdown) * [Extended Detection \& Response](https://www.paloaltonetworks.com/cortex/detection-and-response?ts=markdown) * [Ransomware Protection](https://www.paloaltonetworks.com/cortex/ransomware-protection?ts=markdown) * [Digital Forensics](https://www.paloaltonetworks.com/cortex/digital-forensics?ts=markdown) [Industries](https://www.paloaltonetworks.com/industry?ts=markdown) * [Public Sector](https://www.paloaltonetworks.com/industry/public-sector?ts=markdown) * [Financial Services](https://www.paloaltonetworks.com/industry/financial-services?ts=markdown) * [Manufacturing](https://www.paloaltonetworks.com/industry/manufacturing?ts=markdown) * [Healthcare](https://www.paloaltonetworks.com/industry/healthcare?ts=markdown) * [Small \& Medium Business Solutions](https://www.paloaltonetworks.com/industry/small-medium-business-portfolio?ts=markdown) * Services ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Services [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Assess](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [AI Security Assessment](https://www.paloaltonetworks.com/unit42/assess/ai-security-assessment?ts=markdown) * [Attack Surface Assessment](https://www.paloaltonetworks.com/unit42/assess/attack-surface-assessment?ts=markdown) * [Breach Readiness Review](https://www.paloaltonetworks.com/unit42/assess/breach-readiness-review?ts=markdown) * [BEC Readiness Assessment](https://www.paloaltonetworks.com/bec-readiness-assessment?ts=markdown) * [Cloud Security Assessment](https://www.paloaltonetworks.com/unit42/assess/cloud-security-assessment?ts=markdown) * [Compromise Assessment](https://www.paloaltonetworks.com/unit42/assess/compromise-assessment?ts=markdown) * [Cyber Risk Assessment](https://www.paloaltonetworks.com/unit42/assess/cyber-risk-assessment?ts=markdown) * [M\&A Cyber Due Diligence](https://www.paloaltonetworks.com/unit42/assess/mergers-acquisitions-cyber-due-diligence?ts=markdown) * [Penetration Testing](https://www.paloaltonetworks.com/unit42/assess/penetration-testing?ts=markdown) * [Purple Team Exercises](https://www.paloaltonetworks.com/unit42/assess/purple-teaming?ts=markdown) * [Ransomware Readiness Assessment](https://www.paloaltonetworks.com/unit42/assess/ransomware-readiness-assessment?ts=markdown) * [SOC Assessment](https://www.paloaltonetworks.com/unit42/assess/soc-assessment?ts=markdown) * [Supply Chain Risk Assessment](https://www.paloaltonetworks.com/unit42/assess/supply-chain-risk-assessment?ts=markdown) * [Tabletop Exercises](https://www.paloaltonetworks.com/unit42/assess/tabletop-exercise?ts=markdown) * [Unit 42 Retainer](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * [Respond](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Cloud Incident Response](https://www.paloaltonetworks.com/unit42/respond/cloud-incident-response?ts=markdown) * [Digital Forensics](https://www.paloaltonetworks.com/unit42/respond/digital-forensics?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond/incident-response?ts=markdown) * [Managed Detection and Response](https://www.paloaltonetworks.com/unit42/respond/managed-detection-response?ts=markdown) * [Managed Threat Hunting](https://www.paloaltonetworks.com/unit42/respond/managed-threat-hunting?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Unit 42 Retainer](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * [Transform](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [IR Plan Development and Review](https://www.paloaltonetworks.com/unit42/transform/incident-response-plan-development-review?ts=markdown) * [Security Program Design](https://www.paloaltonetworks.com/unit42/transform/security-program-design?ts=markdown) * [Virtual CISO](https://www.paloaltonetworks.com/unit42/transform/vciso?ts=markdown) * [Zero Trust Advisory](https://www.paloaltonetworks.com/unit42/transform/zero-trust-advisory?ts=markdown) [Global Customer Services](https://www.paloaltonetworks.com/services?ts=markdown) * [Education \& Training](https://www.paloaltonetworks.com/services/education?ts=markdown) * [Professional Services](https://www.paloaltonetworks.com/services/consulting?ts=markdown) * [Success Tools](https://www.paloaltonetworks.com/services/customer-success-tools?ts=markdown) * [Support Services](https://www.paloaltonetworks.com/services/solution-assurance?ts=markdown) * [Customer Success](https://www.paloaltonetworks.com/services/customer-success?ts=markdown) [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-unit-42.svg) UNIT 42 RETAINER Custom-built to fit your organization's needs, you can choose to allocate your retainer hours to any of our offerings, including proactive cyber risk management services. Learn how you can put the world-class Unit 42 Incident Response team on speed dial. Learn more](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * Partners ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Partners NextWave Partners * [NextWave Partner Community](https://www.paloaltonetworks.com/partners?ts=markdown) * [Cloud Service Providers](https://www.paloaltonetworks.com/partners/nextwave-for-csp?ts=markdown) * [Global Systems Integrators](https://www.paloaltonetworks.com/partners/nextwave-for-gsi?ts=markdown) * [Technology Partners](https://www.paloaltonetworks.com/partners/technology-partners?ts=markdown) * [Service Providers](https://www.paloaltonetworks.com/partners/service-providers?ts=markdown) * [Solution Providers](https://www.paloaltonetworks.com/partners/nextwave-solution-providers?ts=markdown) * [Managed Security Service Providers](https://www.paloaltonetworks.com/partners/managed-security-service-providers?ts=markdown) * [XMDR Partners](https://www.paloaltonetworks.com/partners/managed-security-service-providers/xmdr?ts=markdown) Take Action * [Portal Login](https://www.paloaltonetworks.com/partners/nextwave-partner-portal?ts=markdown) * [Managed Services Program](https://www.paloaltonetworks.com/partners/managed-security-services-provider-program?ts=markdown) * [Become a Partner](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=becomepartner) * [Request Access](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=requestaccess) * [Find a Partner](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerlocator) [CYBERFORCE CYBERFORCE represents the top 1% of partner engineers trusted for their security expertise. Learn more](https://www.paloaltonetworks.com/cyberforce?ts=markdown) * Company ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Company Palo Alto Networks * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Management Team](https://www.paloaltonetworks.com/about-us/management?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com) * [Locations](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Ethics \& Compliance](https://www.paloaltonetworks.com/company/ethics-and-compliance?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Military \& Veterans](https://jobs.paloaltonetworks.com/military) [Why Palo Alto Networks?](https://www.paloaltonetworks.com/why-paloaltonetworks?ts=markdown) * [Precision AI Security](https://www.paloaltonetworks.com/precision-ai-security?ts=markdown) * [Our Platform Approach](https://www.paloaltonetworks.com/why-paloaltonetworks/platformization?ts=markdown) * [Accelerate Your Cybersecurity Transformation](https://www.paloaltonetworks.com/why-paloaltonetworks/nam-cxo-portfolio?ts=markdown) * [Awards \& Recognition](https://www.paloaltonetworks.com/about-us/awards?ts=markdown) * [Customer Stories](https://www.paloaltonetworks.com/customers?ts=markdown) * [Global Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Trust 360 Program](https://www.paloaltonetworks.com/resources/whitepapers/trust-360?ts=markdown) Careers * [Overview](https://jobs.paloaltonetworks.com/) * [Culture \& Benefits](https://jobs.paloaltonetworks.com/en/culture/) [A Newsweek Most Loved Workplace "Businesses that do right by their employees" Read more](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-secures-top-ranking-on-newsweek-s-most-loved-workplaces-list-for-2021?ts=markdown) * More ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) More Resources * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Unit 42 Threat Research](https://unit42.paloaltonetworks.com/) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Tech Insider](https://techinsider.paloaltonetworks.com/) * [Knowledge Base](https://knowledgebase.paloaltonetworks.com/) * [Palo Alto Networks TV](https://tv.paloaltonetworks.com/) * [Perspectives of Leaders](https://www.paloaltonetworks.com/perspectives/?ts=markdown) * [Cyber Perspectives Magazine](https://www.paloaltonetworks.com/cybersecurity-perspectives/cyber-perspectives-magazine?ts=markdown) * [Regional Cloud Locations](https://www.paloaltonetworks.com/products/regional-cloud-locations?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Security Posture Assessment](https://www.paloaltonetworks.com/security-posture-assessment?ts=markdown) * [Threat Vector Podcast](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * [Packet Pushers Podcasts](https://www.paloaltonetworks.com/podcasts/packet-pusher?ts=markdown) Connect * [LIVE community](https://live.paloaltonetworks.com/) * [Events](https://events.paloaltonetworks.com/) * [Executive Briefing Center](https://www.paloaltonetworks.com/about-us/executive-briefing-program?ts=markdown) * [Demos](https://www.paloaltonetworks.com/demos?ts=markdown) * [Contact us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) [Blog Stay up-to-date on industry trends and the latest innovations from the world's largest cybersecurity Learn more](https://www.paloaltonetworks.com/blog/) * Sign In ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Sign In * Customer * Partner * Employee * [Login to download](https://www.paloaltonetworks.com/login?ts=markdown) * [Join us to become a member](https://www.paloaltonetworks.com/login?screenToRender=traditionalRegistration&ts=markdown) * EN ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Language * [USA (ENGLISH)](https://www.paloaltonetworks.com) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * [CHINA (简体中文)](https://www.paloaltonetworks.cn) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [What's New](https://www.paloaltonetworks.com/resources?ts=markdown) * [Get support](https://support.paloaltonetworks.com/SupportAccount/MyAccount) * [Under Attack?](https://start.paloaltonetworks.com/contact-unit42.html) * [Demos and Trials](https://www.paloaltonetworks.com/get-started?ts=markdown) Search All * [Tech Docs](https://docs.paloaltonetworks.com/search) Close search modal [Deploy Bravely --- Secure your AI transformation with Prisma AIRS](https://www.deploybravely.com) [](https://www.paloaltonetworks.com/?ts=markdown) 1. [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) 2. [Cloud Security](https://www.paloaltonetworks.com/cyberpedia/cloud-security?ts=markdown) 3. [Data Security](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security?ts=markdown) 4. [What Is Data Encryption?](https://www.paloaltonetworks.com/cyberpedia/data-encryption?ts=markdown) Table of Contents * [What Is Data Security? \[Definition, Overview, \& Why It Matters\]](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security?ts=markdown) * [Why does data security matter?](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#why-does-data-security-matter?ts=markdown) * [What makes data security complex in practice?](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#what-makes-data-security-complex-in-practice?ts=markdown) * [What are the main approaches to data security?](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#what-are-the-main-approaches-to-data-security?ts=markdown) * [What regulations, standards, and frameworks guide data security?](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#what-regulations-standards-and-frameworks-guide-data-security?ts=markdown) * [Comparing data security with related security domains](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#comparing-data-security-with-related-security-domains?ts=markdown) * [Data Security FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security#data-security-faqs?ts=markdown) * [How DSPM Is Evolving: Key Trends to Watch](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends?ts=markdown) * [From Static Discovery to Dynamic Intelligence](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#static?ts=markdown) * [The Convergence of DSPM with Cloud-Native Security Architectures](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#native?ts=markdown) * [Real-Time Data Detection and Response](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#response?ts=markdown) * [AI Security and Generative AI Data Protection](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#protection?ts=markdown) * [Automation, Policy-as-Code, and DevSecOps Integration](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#automation?ts=markdown) * [DSPM Key Trends FAQs](https://www.paloaltonetworks.com/cyberpedia/dspm-evolving-trends#faq?ts=markdown) * [What Is Data Loss Prevention (DLP) Compliance?](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance?ts=markdown) * [Why Is DLP Compliance Important?](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#why?ts=markdown) * [DLP Regulatory Compliance Explained](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#dlp?ts=markdown) * [Types of Data Threats](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#types?ts=markdown) * [How Does DLP Work?](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#how?ts=markdown) * [DLP Compliance Management Strategies](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#compliance?ts=markdown) * [Legal and Ethical Considerations in DLP](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#legal?ts=markdown) * [Future Predictions for DLP Compliance](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#future?ts=markdown) * [DLP and Compliance FAQs](https://www.paloaltonetworks.com/cyberpedia/data-loss-prevention-dlp-compliance#faqs?ts=markdown) * [Top Cloud Data Security Solutions](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions?ts=markdown) * [The Modern Cloud Data Security Landscape](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#modern?ts=markdown) * [The Anatomy of Modern Cloud Security](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#cloud?ts=markdown) * [Evaluating Data Protection Platforms for Enterprise Deployment](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#data?ts=markdown) * [Leading Cloud Data Security Solutions and Market Positioning](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#security?ts=markdown) * [Strategic Implementation and Platform Selection](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#platform?ts=markdown) * [Top Cloud Data Security Solutions FAQs](https://www.paloaltonetworks.com/cyberpedia/data-security-solutions#faq?ts=markdown) * [DSPM Market Size: 2025 Guide](https://www.paloaltonetworks.com/cyberpedia/dspm-market?ts=markdown) * [DSPM Market Size and Financial Overview](https://www.paloaltonetworks.com/cyberpedia/dspm-market#dspm?ts=markdown) * [Growth Drivers Reshaping the DSPM Market](https://www.paloaltonetworks.com/cyberpedia/dspm-market#growth?ts=markdown) * [Market Segmentation and Adoption Patterns](https://www.paloaltonetworks.com/cyberpedia/dspm-market#market?ts=markdown) * [Palo Alto Networks DSPM Market Position](https://www.paloaltonetworks.com/cyberpedia/dspm-market#position?ts=markdown) * [DSPM Market Forecast Through 2030](https://www.paloaltonetworks.com/cyberpedia/dspm-market#dspm?ts=markdown) * [DSPM Market FAQs](https://www.paloaltonetworks.com/cyberpedia/dspm-market#faqs?ts=markdown) * What Is Data Encryption? * [Data Encryption Explained](https://www.paloaltonetworks.com/cyberpedia/data-encryption#data?ts=markdown) * [Types of Encryption](https://www.paloaltonetworks.com/cyberpedia/data-encryption#types?ts=markdown) * [What Are the Benefits of Data Encryption?](https://www.paloaltonetworks.com/cyberpedia/data-encryption#what?ts=markdown) * [Data Encryption Use Cases](https://www.paloaltonetworks.com/cyberpedia/data-encryption#usecases?ts=markdown) * [Key Selection](https://www.paloaltonetworks.com/cyberpedia/data-encryption#key?ts=markdown) * [Data Encryption and Algorithms](https://www.paloaltonetworks.com/cyberpedia/data-encryption#algorithms?ts=markdown) * [Encryption Best Practices](https://www.paloaltonetworks.com/cyberpedia/data-encryption#best-practices?ts=markdown) * [Data Encryption FAQs](https://www.paloaltonetworks.com/cyberpedia/data-encryption#faqs?ts=markdown) * [What Is Data Storage?](https://www.paloaltonetworks.com/cyberpedia/data-storage?ts=markdown) * [Data Storage Explained](https://www.paloaltonetworks.com/cyberpedia/data-storage#data?ts=markdown) * [What Are Different Types of Data Storage?](https://www.paloaltonetworks.com/cyberpedia/data-storage#what?ts=markdown) * [What Is Structured Data?](https://www.paloaltonetworks.com/cyberpedia/data-storage#structured?ts=markdown) * [What Is Unstructured Data?](https://www.paloaltonetworks.com/cyberpedia/data-storage#unstructured?ts=markdown) * [What Is Semi-Structured Data?](https://www.paloaltonetworks.com/cyberpedia/data-storage#semi-structured?ts=markdown) * [Data Storage in the Cloud](https://www.paloaltonetworks.com/cyberpedia/data-storage#cloud?ts=markdown) * [Data Storage FAQs](https://www.paloaltonetworks.com/cyberpedia/data-storage#faqs?ts=markdown) * [What Is Data Risk Assessment?](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment?ts=markdown) * [Data Risk Assessment Explained](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#data?ts=markdown) * [Why Data Risk Assessment Is Crucial](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#why?ts=markdown) * [When Assessing Risk is Necessary](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#when?ts=markdown) * [What Are the Benefits of Assessing Data Risk?](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#what?ts=markdown) * [Assessing Risk in Cloud Data](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#assessing?ts=markdown) * [Data Risk Assessment FAQs](https://www.paloaltonetworks.com/cyberpedia/data-risk-assessment#faqs?ts=markdown) * [What Is Database Security?](https://www.paloaltonetworks.com/cyberpedia/database-security?ts=markdown) * [Database Security in Public Clouds](https://www.paloaltonetworks.com/cyberpedia/database-security#database?ts=markdown) * [Elements of Database Security](https://www.paloaltonetworks.com/cyberpedia/database-security#elements?ts=markdown) * [Database Security: 8 Best Practices](https://www.paloaltonetworks.com/cyberpedia/database-security#security?ts=markdown) * [Database Security FAQs](https://www.paloaltonetworks.com/cyberpedia/database-security#faqs?ts=markdown) * [What Is Cloud Data Loss Prevention (DLP)?](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention?ts=markdown) * [Cloud Data Loss Prevention (DLP) Explained](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention#cloud?ts=markdown) * [How Cloud DLP Works](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention#how?ts=markdown) * [Traditional DLP Vs. Cloud DLP](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention#traditional?ts=markdown) * [Benefits of Cloud DLP](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention#benefits?ts=markdown) * [‍Cloud Data Loss Prevention FAQ](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention#faqs?ts=markdown) * [What Is a Data Lake?](https://www.paloaltonetworks.com/cyberpedia/data-lake?ts=markdown) * [Data Lakes Explained](https://www.paloaltonetworks.com/cyberpedia/data-lake#data?ts=markdown) * [Data Lake vs. Data Warehouse](https://www.paloaltonetworks.com/cyberpedia/data-lake#vs?ts=markdown) * [What Are the Benefits of Data Lakes?](https://www.paloaltonetworks.com/cyberpedia/data-lake#what?ts=markdown) * [Challenges of Using Data Lakes](https://www.paloaltonetworks.com/cyberpedia/data-lake#challenges?ts=markdown) * [‍Use Cases For Data Lakes](https://www.paloaltonetworks.com/cyberpedia/data-lake#usecases?ts=markdown) * [Data Lake FAQs](https://www.paloaltonetworks.com/cyberpedia/data-lake#faqs?ts=markdown) * [What Is a Data Security Platform?](https://www.paloaltonetworks.com/cyberpedia/data-security-platform?ts=markdown) * [Data Security Platform Explained](https://www.paloaltonetworks.com/cyberpedia/data-security-platform#data?ts=markdown) * [How a Data Security Platform Solves the Complexity of Data Protection](https://www.paloaltonetworks.com/cyberpedia/data-security-platform#how?ts=markdown) * [A Data Protection Platform Reduces Risk](https://www.paloaltonetworks.com/cyberpedia/data-security-platform#protection?ts=markdown) * [Benefits of a Data Protection Platform](https://www.paloaltonetworks.com/cyberpedia/data-security-platform#benefits?ts=markdown) * [Data Security Platform FAQs](https://www.paloaltonetworks.com/cyberpedia/data-security-platform#faqs?ts=markdown) * [What Is a Data Warehouse?](https://www.paloaltonetworks.com/cyberpedia/data-warehouse?ts=markdown) * [Data Warehouses Explained](https://www.paloaltonetworks.com/cyberpedia/data-warehouse#data?ts=markdown) * [What Makes a Data Warehouse Unique?](https://www.paloaltonetworks.com/cyberpedia/data-warehouse#what?ts=markdown) * [What Are the Benefits of Data Warehouses?](https://www.paloaltonetworks.com/cyberpedia/data-warehouse#benefits?ts=markdown) * [When Are Data Warehouses Beneficial?](https://www.paloaltonetworks.com/cyberpedia/data-warehouse#beneficial?ts=markdown) * [Data Warehouse FAQs](https://www.paloaltonetworks.com/cyberpedia/data-warehouse#faqs?ts=markdown) * [What Is a Data Leak?](https://www.paloaltonetworks.com/cyberpedia/data-leak?ts=markdown) * [Data Leaks Explained](https://www.paloaltonetworks.com/cyberpedia/data-leak#explained?ts=markdown) * [Data Leaks in Public Clouds](https://www.paloaltonetworks.com/cyberpedia/data-leak#public-clouds?ts=markdown) * [Data Breach vs Data Leak](https://www.paloaltonetworks.com/cyberpedia/data-leak#vs?ts=markdown) * [Data Leak FAQs](https://www.paloaltonetworks.com/cyberpedia/data-leak#faqs?ts=markdown) * [What Is Shadow IT?](https://www.paloaltonetworks.com/cyberpedia/shadow-it?ts=markdown) * [Shadow IT Explained](https://www.paloaltonetworks.com/cyberpedia/shadow-it#shadow?ts=markdown) * [Shadow IT and Security](https://www.paloaltonetworks.com/cyberpedia/shadow-it#security?ts=markdown) * [Mitigating Shadow IT Risks](https://www.paloaltonetworks.com/cyberpedia/shadow-it#mitigating?ts=markdown) * [Shadow IT FAQs](https://www.paloaltonetworks.com/cyberpedia/shadow-it#faqs?ts=markdown) * [Data Security Policies: Why They Matter and What They Contain](https://www.paloaltonetworks.com/cyberpedia/data-security-policy?ts=markdown) * [What Is a Data Security Policy?](https://www.paloaltonetworks.com/cyberpedia/data-security-policy#what?ts=markdown) * [Data Security Policies Explained](https://www.paloaltonetworks.com/cyberpedia/data-security-policy#data?ts=markdown) * [What Is in a Data Security Policy?](https://www.paloaltonetworks.com/cyberpedia/data-security-policy#what-is?ts=markdown) * [What Data Security Controls Should a Policy Include?](https://www.paloaltonetworks.com/cyberpedia/data-security-policy#include?ts=markdown) * [Data Security Policy FAQs](https://www.paloaltonetworks.com/cyberpedia/data-security-policy#faqs?ts=markdown) * [What Is an Insider Threat?](https://www.paloaltonetworks.com/cyberpedia/insider-threat?ts=markdown) * [Insider Threat Explained](https://www.paloaltonetworks.com/cyberpedia/insider-threat#insider?ts=markdown) * [Privileged Users \& Insider Risks](https://www.paloaltonetworks.com/cyberpedia/insider-threat#privileged?ts=markdown) * [Employee Monitoring](https://www.paloaltonetworks.com/cyberpedia/insider-threat#employee?ts=markdown) * [Data Detection and Response (DDR)](https://www.paloaltonetworks.com/cyberpedia/insider-threat#data?ts=markdown) * [Insider Threat FAQs](https://www.paloaltonetworks.com/cyberpedia/insider-threat#faqs?ts=markdown) * [What Is Data Sprawl?](https://www.paloaltonetworks.com/cyberpedia/data-sprawl?ts=markdown) * [Data Sprawl Explained](https://www.paloaltonetworks.com/cyberpedia/data-sprawl#data-sprawl?ts=markdown) * [The Challenge of Data Sprawl](https://www.paloaltonetworks.com/cyberpedia/data-sprawl#challenge?ts=markdown) * [Best Practices to Overcome Data Sprawl](https://www.paloaltonetworks.com/cyberpedia/data-sprawl#best-practices?ts=markdown) * [Data Sprawl FAQs](https://www.paloaltonetworks.com/cyberpedia/data-sprawl#faq?ts=markdown) # What Is Data Encryption? 5 min. read Table of Contents * * [Data Encryption Explained](https://www.paloaltonetworks.com/cyberpedia/data-encryption#data?ts=markdown) * [Types of Encryption](https://www.paloaltonetworks.com/cyberpedia/data-encryption#types?ts=markdown) * [What Are the Benefits of Data Encryption?](https://www.paloaltonetworks.com/cyberpedia/data-encryption#what?ts=markdown) * [Data Encryption Use Cases](https://www.paloaltonetworks.com/cyberpedia/data-encryption#usecases?ts=markdown) * [Key Selection](https://www.paloaltonetworks.com/cyberpedia/data-encryption#key?ts=markdown) * [Data Encryption and Algorithms](https://www.paloaltonetworks.com/cyberpedia/data-encryption#algorithms?ts=markdown) * [Encryption Best Practices](https://www.paloaltonetworks.com/cyberpedia/data-encryption#best-practices?ts=markdown) * [Data Encryption FAQs](https://www.paloaltonetworks.com/cyberpedia/data-encryption#faqs?ts=markdown) 1. Data Encryption Explained * * [Data Encryption Explained](https://www.paloaltonetworks.com/cyberpedia/data-encryption#data?ts=markdown) * [Types of Encryption](https://www.paloaltonetworks.com/cyberpedia/data-encryption#types?ts=markdown) * [What Are the Benefits of Data Encryption?](https://www.paloaltonetworks.com/cyberpedia/data-encryption#what?ts=markdown) * [Data Encryption Use Cases](https://www.paloaltonetworks.com/cyberpedia/data-encryption#usecases?ts=markdown) * [Key Selection](https://www.paloaltonetworks.com/cyberpedia/data-encryption#key?ts=markdown) * [Data Encryption and Algorithms](https://www.paloaltonetworks.com/cyberpedia/data-encryption#algorithms?ts=markdown) * [Encryption Best Practices](https://www.paloaltonetworks.com/cyberpedia/data-encryption#best-practices?ts=markdown) * [Data Encryption FAQs](https://www.paloaltonetworks.com/cyberpedia/data-encryption#faqs?ts=markdown) Data encryption, critical to [data protection](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security?ts=markdown), converts data into another form or code to prevent unauthorized access, helping organizations to maintain privacy and meet compliance mandates. It uses an algorithm (or cipher) to transform readable data, known as plaintext, into unreadable data, known as ciphertext. Only those with the correct secret key can decrypt the ciphertext back into plaintext and access the original information. ## Data Encryption Explained Data encryption in [cloud security](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-security?ts=markdown) ensures that sensitive information remains protected and inaccessible to unauthorized parties. At its core, data encryption involves transforming plaintext data into an unreadable format, called ciphertext, using a specific algorithm or cipher. The encryption process requires a secret key for both encryption and decryption, with symmetric encryption using the same key for both operations, and asymmetric encryption employing a public key for encryption and a private key for decryption. For cloud security, data encryption plays a vital role in securing data at rest and in transit. Advanced encryption techniques can provide staunch protection against breaches and unauthorized access. Additionally, to fortify security, organizations can implement key management practices, including secure key storage, rotation, and distribution. ## Types of Encryption Two primary types of encryption address different security and logistical challenges of data protection and communication. While organizations may use them separately, they're often combined to overcome the challenges of key distribution and performance needs. ### Symmetric Encryption (or Private Key Encryption) Symmetric encryption, also known as private key encryption, uses the same key for both encryption and decryption. In other words, the sender and receiver share a single secret key to encrypt and decrypt data. The technique offers a fast and efficient way to secure large volumes of data, as it requires less computational overhead compared to asymmetric encryption. Symmetric encryption has a downside, though, challenged by the secure distribution and management of the shared key, as unauthorized access to this key can compromise the encrypted data. Common symmetric encryption algorithms include Advanced Encryption Standard (AES) and Data Encryption Standard (DES). ### Asymmetric Encryption (or Public Key Encryption) Asymmetric encryption, or public key encryption, relies on two distinct keys --- a public key for encryption and a private key for decryption. The public key can be openly shared, while the private key must remain confidential. Asymmetric encryption solves the key distribution problem in symmetric encryption, as only the private key needs to be securely stored. But asymmetric encryption, as with symmetric encryption, has a downside in that it requires more computational resources and is generally slower than symmetric encryption. RSA (Rivest-Shamir-Adleman) is a widely-used asymmetric encryption algorithm. ## What Are the Benefits of Data Encryption? Organizations find themselves navigating an intricate web of data, from customer information to trade secrets. This digital landscape, while rich with opportunity, also presents vulnerabilities. Data encryption emerges as a defender, fortifying business data and ensuring companies can operate confidently and securely. One of the primary benefits of data encryption is protecting sensitive information. When data is encrypted, it transforms into an unreadable format, accessible only to those with the correct decryption key. This means that even if malicious actors were to breach a system, the stolen data would remain a jumble of cryptographic text, effectively useless without the corresponding key. This layer of security is paramount not only for safeguarding proprietary information but also for maintaining customer trust. Clients and customers are more likely to engage with organizations they believe will responsibly handle their personal and financial information. A breach can tarnish a company's reputation, lead to financial losses, and even result in legal consequences. ### Compliance While safeguarding data, encryption contributes to regulatory compliance, addressing requirements outlined in laws like the General Data Protection Regulation (GDPR) in the European Union and the Health Insurance Portability and Accountability Act ([HIPAA](https://www.paloaltonetworks.com/cyberpedia/what-is-hipaa?ts=markdown)) in the U.S. By employing encryption, organizations demonstrate their commitment to data privacy and security. Encrypted communication, especially in sectors like finance and healthcare, ensures that [sensitive data](https://www.paloaltonetworks.com/cyberpedia/sensitive-data?ts=markdown) exchanged between entities remains confidential and unaltered. Data encryption shields organizations from external threats and positions them as trustworthy stewards of data in the eyes of clients and regulators. By employing strong encryption practices, organizations can stay compliant, avoiding fines and potential legal battles. ## Data Encryption Use Cases Data encryption protects information, ensuring privacy and security across different sectors. The protection provided maintains data integrity, as well as [data loss prevention](https://www.paloaltonetworks.com/cyberpedia/what-is-data-loss-prevention-dlp?ts=markdown), by making stolen data unusable and reducing the impact of a [data breach](https://www.paloaltonetworks.com/cyberpedia/data-breach?ts=markdown). Common applications of data encryption include: * Securing communication --- emails, chats, calls --- from unauthorized interception * Enhancing [cloud data security](https://www.paloaltonetworks.com/cyberpedia/cloud-data-loss-prevention?ts=markdown) by ensuring sensitive data is safe from external theft and modification * Maintaining confidentiality of sensitive data and compliance with regulations like HIPAA, PCI-DSS, GDPR, and other regulations * Safeguarding credit cards and bank details during e-commerce and online banking * Keeping data at rest secure, especially files and databases on data storage devices (hard drives, SSDs) in the event they're lost or stolen * Verifying message authenticity and origin with digital signatures (using asymmetric encryption) * Maintaining privacy of internet traffic, even on untrusted networks, via VPN * Using hashed (and salted) passwords instead of plaintext passwords * Ensuring only the sender and receiver can read the content transmitted via messaging apps with end-to-end encryption * Securing cryptocurrencies like Bitcoin with encryption for transaction and new unit creation protection * Protecting copyrighted content (e-books, music, video) from unauthorized reproduction or use * Securing data transmission and storage on IoT devices ## Key Selection Selecting the appropriate cryptographic and key management algorithms for an application requires a clear understanding of the application's objectives and security requirements. For instance, if the goal is to protect stored data, choose an algorithm suite that focuses on data at rest security. Conversely, applications that transmit and receive data should prioritize algorithm suites that emphasize data in transit protection. To determine the optimal key management approach, start by comprehending the application's security objectives, which will guide the selection of suitable cryptographic protocols. The application may necessitate: * Confidentiality for both data at rest and data in transit * End device authentication * Data origin authenticity * Data integrity during transit * Keys for generating data encryption keys Having established the application's security needs, organizations can identify the required protocols and algorithms. With a clear understanding of these protocols and algorithms, teams can proceed to define the various key types that support the application's objectives, ensuring robust security and optimal performance. ## Data Encryption and Algorithms Choosing the right encryption algorithm is an early and important step in ensuring data privacy and protection against potential threats, including those posed by quantum computing. You'll want to consider organizational factors such as security and compliance with industry standards, performance, key management, compatibility, scalability, and future-proofing against emerging threats. ### AES-256 with Galois Counter Mode (GCM) AES-256 with Galois Counter Mode (GCM) is a widely recommended option, as it provides strong encryption and authentication. GCM is an authenticated encryption mode that combines the high-performance, symmetric key block cipher, AES-256, with an efficient message authentication code, ensuring both data confidentiality and integrity. ### ChaCha20 and Poly1305 Another viable choice is the combination of ChaCha20 and Poly1305. ChaCha20 is a stream cipher that offers high-speed encryption, while Poly1305 serves as a cryptographic message authentication code, providing data integrity. Together, these algorithms create a secure authenticated encryption with associated data (AEAD) scheme, ensuring confidentiality and integrity of the encrypted data. ## Encryption Best Practices * Employ end-to-end encryption for sensitive communications. * Secure data at rest and in transit. * Apply multi-factor authentication for access control. * Update cryptographic libraries and protocols. * Perform regular security audits and vulnerability assessments. * Train staff on encryption policies and practices. * Unless encryption keys are encrypted, don't store them next to the sensitive data they encrypt. * Regularly rotate encryption keys. * Adhere to industry standards and regulatory requirements, and stay informed about emerging cryptographic technologies and practices to maintain strong data protection. ## Data Encryption FAQs ### What is convergent encryption? Convergent encryption is a cryptographic technique that generates identical ciphertext for identical plaintext data, given the same encryption key. This method utilizes a deterministic process, often employing the plaintext data's hash as the encryption key. By producing the same ciphertext for duplicate data, convergent encryption enables efficient storage and deduplication in cloud environments. While convergent encryption offers storage optimization benefits, it also presents security risks. Attackers with knowledge of the plaintext can potentially compute the hash, derive the encryption key, and confirm the existence of specific data in the encrypted storage, potentially leading to privacy and confidentiality breaches. ### What are cryptographic hash functions? Cryptographic hash functions are mathematical algorithms that take an input of arbitrary length and generate a fixed-length output, known as the hash or digest. Key characteristics making cryptographic hash functions ideal for ensuring data integrity and security include: * Determinism, meaning the same input always produces the same hash * Inability to derive the original input from the hash, ensuring one-way functionality. * Strong collision resistance, making it difficult to find two different inputs capable of producing the same hash Commonly used cryptographic hash functions include SHA-256, SHA-3, and BLAKE2, which are employed in various applications like digital signatures, data integrity verification, and password storage. ### What is online transactions security? Online transactions security refers to the measures employed to protect credit card information, bank details and other sensitive data during e-commerce and online banking activities. Security is achieved through encryption, secure communication protocols, and authentication mechanisms. Payment Card Industry Data Security Standard (PCI-DSS) is a set of requirements that ensures the security of cardholder data during processing, storage, and transmission. Implementing secure socket layer (SSL) or transport layer security (TLS) protocols also helps safeguard the data exchange between users and servers. ### What is data at rest protection? Data at rest protection involves securing files and databases stored on data storage devices or cloud storage. Encryption plays a foundational role in data at rest protection, as it renders data unreadable without an appropriate decryption key. [Access controls](https://www.paloaltonetworks.com/cyberpedia/access-control?ts=markdown), such as strong passwords and multifactor authentication, enhance the security of stored data by restricting unauthorized access. Regular data backups and secure disposal of old storage devices also contribute to the protection of data at rest. ### What is cloud storage security? Cloud storage security encompasses the measures taken to protect data stored in the cloud from unauthorized access, modification, and deletion. It involves encryption for data at rest and in transit, strong access controls, and comprehensive monitoring and logging of user activities. Additionally, cloud storage security includes adherence to regulatory compliance, ensuring data privacy and working with trusted cloud service providers that offer secure infrastructure, regular security updates, and vulnerability management. Adopting a [shared responsibility model](https://www.paloaltonetworks.com/cyberpedia/cloud-security-is-a-shared-responsibility?ts=markdown), where both the cloud service provider and the user take proactive steps to secure data, enhances cloud storage security. ### What is authentication? Authentication is the process of verifying the identity of a user, device, or system attempting to access a protected resource. It ensures that only authorized entities gain access to sensitive data and services. Common authentication methods include: * Passwords * Security tokens * Biometric identifiers * Digital certificates Multi-factor authentication (MFA) combines two or more of these methods, significantly enhancing security by requiring multiple proofs of identity. ### What is VPN? A virtual private network (VPN) is a technology that creates an encrypted connection between a user's device and a remote server, typically operated by a VPN service provider. The secure connection enables users to transmit data over the internet as if they were connected directly to a private network, maintaining privacy and confidentiality, even on untrusted networks. VPNs can be used to access restricted content, bypass censorship, and protect sensitive data from being intercepted by malicious actors. VPNs are also used by businesses to enable remote access to corporate resources, ensuring secure communication between employees and the organization's network. ### What is encryption as a service (EaaS)? EaaS is a model in which users subscribe to a cloud-based encryption service without having to install encryption on their systems. Organizations using EaaS benefit from: * Encryption at rest * Encryption in transit (TLS) * Key handling and cryptographic implementations taken care of by encryption service * Providers can add more services to interact with the sensitive data Related Content [DSPM: Do You Need It? Discover five predominant approaches to data security, along with use cases and applications for each data security approach.](https://www.paloaltonetworks.com/resources/datasheets/why-dspm?ts=markdown) [Protecting Data and AI in 2024: What CISOs Need to Know Join data security experts to find out how the latest advancements in data security can help you discover, classify, protect and govern data in cloud environments.](https://start.paloaltonetworks.com/PrismaCloud-DSPM-on-demand-Webinar-Protecting-Data-and-AI-in-2024-What-CISOs-Need-to-Know.html) [Securing the Data Landscape with DSPM and DDR Stay ahead of the data security risks. Learn how data security posture management (DSPM) with data detection and response (DDR) fills the security gaps to strengthen your security ...](https://www.paloaltonetworks.com/resources/guides/dspm-ddr-big-guide?ts=markdown) [The Buyer's Guide to DSPM and DDR Learn what to look for in a cloud data security provider and how DSPM and DDR can significantly enhance your organization's security posture.](https://www.paloaltonetworks.com/resources/guides/data-centric-dspm-ddr-buyers-guide?ts=markdown) ![Share page on facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/facebook-circular-icon.svg) ![Share page on linkedin](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/linkedin-circular-icon.svg) [![Share page by an email](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/email-circular-icon.svg)](mailto:?subject=What%20Is%20Data%20Encryption%3F&body=Explore%20data%20encryption%20methods%20to%20safeguard%20privacy%2C%20ensure%20compliance%2C%20and%20protect%20sensitive%20information%20from%20unauthorized%20access%20in%20multicloud%20environments.%20at%20https%3A//www.paloaltonetworks.com/cyberpedia/data-encryption) Back to Top [Previous](https://www.paloaltonetworks.com/cyberpedia/dspm-market?ts=markdown) DSPM Market Size: 2025 Guide [Next](https://www.paloaltonetworks.com/cyberpedia/data-storage?ts=markdown) What Is Data Storage? {#footer} ## Products and Services * [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown) ## Company * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Careers](https://jobs.paloaltonetworks.com/en/) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Customers](https://www.paloaltonetworks.com/customers?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com/) * [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown) ## Popular Links * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Event Center](https://events.paloaltonetworks.com/) * [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center) * [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown) * [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown) * [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown) * [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown) * [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) * [Documents](https://www.paloaltonetworks.com/legal?ts=markdown) Copyright © 2025 Palo Alto Networks. All Rights Reserved * [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown) * [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * EN Select your language