Encryption is primarily used to safeguard the contents of a message so that only the intended recipient can read it. This is done by replacing the contents with unrecognizable data, which can be understood only by the intended recipient. This is how encryption became a method to protect data from those who might want to steal it.
Encryption can be used in two situations:
Encryption in Transit
Encryption at Rest (EAR)
Encryption in Transit
This type of encryption refers to encrypting a data while it is in transit—between the browsers and our serves, and our servers to non-Zoho servers (third parties). Encryption in transit helps safeguard data from man-in-the-middle attacks. Read more Encryption at Rest (EAR)
This type of encryption refers to encryption done to a data store and when it is not moving—either on a disc, in a database, or some other form of media. In addition to encryption of data during transit, encryption of data when it is stored in the servers provides an even higher level of security. EAR protects against any possible data leak due to server compromise or unauthorized access. Read more about EAR
Encryption is done at the application layer using the AES-256 algorithm, which is a symmetric encryption algorithm, and uses 128-bit blocks and 256-bit keys.The key used to convert the data from plain text to cipher text is called Data Encryption Key (DEK). The DEK is further encrypted using the KEK (Key Encryption Key), providing yet another layer of security.The keys are generated and maintained by our in-house Key Management Service (KMS). Read more about Key Management What data do we encrypt in Zoho Meeting?
We use Encryption at Rest in Meeting to secure:
Full-disk Encryption
In addition to application-layer encryption, full-disk encryption is available in our India (IN), Australia (AU), and Japan (JP) datacenters. In other DCs, full-disk encryption is available only for certain Zoho services. Read more about Full-disk Encryption