SQL Injection attacks exploit vulnerabilities in how a web application handles user input. By "injecting" malicious SQL code into a web form (like a search bar or login field), an attacker can manipulate the application's database to view, modify, or delete data.

Privacy by Design is a core principle of GDPR. It is a proactive, not reactive, approach that calls for privacy to be a fundamental component in the design and development of any new product, service, or process that involves personal data.

A brute-force attack is a trial-and-error method used to crack passwords or encryption keys. The attacker uses automated software to try a massive number of consecutive guesses until the correct one is found.

Unlike basic packet filtering, which only looks at header information (IP addresses, ports), DPI looks inside the data portion of the packet. This allows a firewall or IPS to identify specific applications, detect malware signatures, or prevent sensitive data from leaving the network.

While you must *know* the code, the security relies on the assumption that you are the only one in *possession* of the specific mobile phone and SIM card that can receive the SMS message.

In a replay attack, an attacker intercepts a data packet (e.g., a login request with credentials) and then "replays" it later to the server to impersonate the legitimate user. Encryption and session tokens are used to prevent this type of attack.

This is a type of DDoS attack. The attacker sends a small query to a DNS server but crafts it in a way that elicits a much larger response. By spoofing the source IP, all these large responses are sent to the victim, overwhelming their network with traffic.

Encryption is the process of converting readable data (plaintext) into an unreadable, encoded form (ciphertext) using a cryptographic algorithm and a key. This transformation ensures that only authorized individuals, who possess the correct decryption key, can revert the ciphertext back into its original, readable form. Its primary purpose is to secure data during transmission or storage, protecting its confidentiality from unauthorized interception or access. Decryption is the reverse process, while hashing creates a fixed-size string of characters from data for integrity checks, and digital signatures verify the authenticity and integrity of a digital message or document.

A host-based IDS is installed on a specific host (like a server or workstation). It focuses on the internal activities of that machine, looking for signs of compromise such as changes to critical system files, suspicious processes, or unauthorized login attempts.

HTTPS uses Transport Layer Security (TLS), formerly SSL. TLS uses asymmetric encryption (like RSA) for the initial "handshake" to securely exchange a symmetric key. It then uses the much faster symmetric encryption (like AES) to encrypt the actual data for the rest of the session.