<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:googleplay="http://www.google.com/schemas/play-podcasts/1.0"><channel><title><![CDATA[Decoded Security]]></title><description><![CDATA[Helping people break into cybersecurity, prepare for interviews, and land their first job in the field.]]></description><link>https://www.decodedsecurity.com</link><image><url>https://substackcdn.com/image/fetch/$s_!hqdo!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png</url><title>Decoded Security</title><link>https://www.decodedsecurity.com</link></image><generator>Substack</generator><lastBuildDate>Thu, 16 Jul 2026 22:21:02 GMT</lastBuildDate><atom:link href="https://www.decodedsecurity.com/feed" rel="self" type="application/rss+xml"/><copyright><![CDATA[Decoded Security]]></copyright><language><![CDATA[en]]></language><webMaster><![CDATA[erich.winkler@decodedsecurity.com]]></webMaster><itunes:owner><itunes:email><![CDATA[erich.winkler@decodedsecurity.com]]></itunes:email><itunes:name><![CDATA[Erich Winkler]]></itunes:name></itunes:owner><itunes:author><![CDATA[Erich Winkler]]></itunes:author><googleplay:owner><![CDATA[erich.winkler@decodedsecurity.com]]></googleplay:owner><googleplay:email><![CDATA[erich.winkler@decodedsecurity.com]]></googleplay:email><googleplay:author><![CDATA[Erich Winkler]]></googleplay:author><itunes:block><![CDATA[Yes]]></itunes:block><item><title><![CDATA[3 Reasons I’d Still Choose Cybersecurity If I Had to Start Over]]></title><description><![CDATA[Most beginners ask whether cybersecurity is too crowded. From the hiring side, I see the opposite problem: too few people with the right fundamentals and direction.]]></description><link>https://www.decodedsecurity.com/p/3-reasons-id-still-choose-cybersecurity</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/3-reasons-id-still-choose-cybersecurity</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 15 Jul 2026 06:01:42 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/c43f1730-d6bd-4c22-93f6-f62536e6fbc6_1619x971.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>I became a Cybersecurity Manager at 26, and one of the reasons why I was able to achieve it is because I chose cybersecurity very early.</p><p>Even before I could have possibly known if it&#8217;s the right direction for me.</p><p>If you are considering cybersecurity right now, you might be asking yourself:</p><p>&#8220;Is it too late?&#8221;</p><p>&#8220;Is the field already too crowded?&#8221;</p><p>&#8220;Do I need to be deeply technical?&#8221;</p><p>&#8220;Which certification should I start with?&#8221;</p><p>Here is my honest answer after working in cybersecurity, earning a Master&#8217;s degree in the field, and sitting on both sides of the hiring table:</p><p>Cybersecurity is still one of the best career choices you can make.</p><p>But only if you stop learning randomly and choose the right path for your background.</p><p>The good news? I will help you with that!</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> today and get the <strong>Top 10 Cybersecurity Concepts guide</strong> for Free!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>1. The Demand Is Real - And the Bar Is Lower Than You Think</h2><p>Everyone says cybersecurity has millions of unfilled jobs. You have probably seen that statistic so many times it stopped meaning anything.</p><p>So let me tell you what I actually see from the hiring side.</p><p>Cybersecurity is still a very new field. </p><p><strong>Until a couple of years ago, most people only specialized in cybersecurity because someone forced them.</strong> </p><p>A company needed a security team and moved people across from IT. A developer got assigned to a security project. A compliance person ended up owning risk management by accident.</p><p>Very few people on the job market today started their career intentionally as a cybersecurity specialist.</p><p>And that changes everything.</p><p>For almost any cybersecurity role, it is genuinely difficult to find a candidate with even a minimum skill set. Not an expert. A minimum skill set.</p><p>The bar is not as high as the job postings make it look.</p><p>Many companies are willing to hire someone and train them. Senior cybersecurity professionals are either too expensive or simply impossible to find. Organizations would rather invest in someone with potential and foundational knowledge than leave a critical role empty for six months.</p><p>I have a Master&#8217;s degree in cybersecurity, and I am still telling you this.</p><p>Not because the degree does not matter. But because the field is so undersupplied, people with the right fundamentals and the right direction are genuinely competitive right now.</p><p>If you have the fundamentals, you are already ahead of most candidates applying for the same role.</p><blockquote><p><strong>Did this surprise you? Give me a like so I know I am not alone!</strong></p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Do you want to get into cybersecurity? Subscribe to <strong>Decoded Security</strong> and start your journey!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h2>2. The Complexity Is the Point</h2><p>Most cybersecurity content tries to reassure you that it is not as complicated as it looks.</p><p>I am going to tell you the opposite.</p><p>It is complex. And that is exactly why it is worth it.</p><p>The most important mindset shift you go through when you enter this field is realizing how broad it actually is.</p><p>Cybersecurity goes from physical security to software development. From network security to supply chain management. From technical vulnerability assessments to overall business risk management.</p><p>Every level of every company is affected by this field.</p><p>The person designing the office floor plan needs to think about tailgating attacks.</p><p>The developer writing the API needs to think about authentication.</p><p>The CFO approving the budget needs to understand what a ransomware attack would cost the business.</p><p>That breadth is not a burden. It is a career advantage.</p><p>It means you never stop learning. It means your knowledge stays relevant because the field keeps evolving. It means you can move between technical and business roles in a way that almost no other career allows.</p><p>Most fields reward specialists who go very deep in one direction.</p><p>Cybersecurity rewards people who understand how everything connects.</p><p>And once you see it that way, the complexity stops being intimidating.</p><p>It becomes the reason you chose this field in the first place.</p><h2>3. There Is a Path for Every Background</h2><p>When most people think about cybersecurity careers, they picture one thing.</p><p>Someone in a dark room finding vulnerabilities. A penetration tester. A hacker.</p><p>That is one path out of five.</p><p>And right now, from where I sit, the most underrated and fastest growing paths are GRC and privacy protection.</p><p>Here is why.</p><p>Everyone is talking about AI.</p><p>And yes, AI tools are transforming how security teams work. But the biggest actual increase in demand I am seeing is regulatory. The number of compliance requirements placed on companies from a cybersecurity perspective has grown dramatically. GDPR. NIS2. DORA. AI Act. The list keeps growing.</p><p>And AI has made privacy protection significantly harder than it used to be. Organizations are collecting more data. Processing it in more places. Sharing it with more vendors. Ensuring that data is handled correctly is now a genuinely complex operational challenge.</p><p>The budgets often do not reflect this yet. But the demand does.</p><p>And that gap creates opportunity for people who position themselves in this space now rather than in two years when everyone else catches up.</p><p><strong>Here is the full picture of the five paths available to you:</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;8c13c439-5ddc-4ef8-a8c3-489be3415b5f&quot;,&quot;caption&quot;:&quot;Do you want to break into cybersecurity, but feel confused by all the different roles?&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;How to Choose the Right Cybersecurity Role Before You Waste Time and Money on the Wrong Certifications&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Certified | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-01-14T11:11:59.523Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hrEi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/how-to-choose-the-right-cybersecurity&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:184030241,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:96,&quot;comment_count&quot;:55,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>The most important decision you make early in a cybersecurity career is not which certification to get.</p><p>It is the path that fits your background.</p><p>Get that right and everything else - certifications, skills, entry roles, timeline - becomes much clearer.</p><blockquote><p><strong>Which of the five paths resonates most with you? Comment below - I read every response.</strong></p><p><strong>Or better yet:</strong> take the free diagnostic and find out which path actually fits your background in just couple of minutes.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/diagnostics&quot;,&quot;text&quot;:&quot;Take a Career Quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:&quot;button-wrapper&quot;}" data-component-name="ButtonCreateButton"><a class="button primary button-wrapper" href="https://quiz.decodedsecurity.com/diagnostics"><span>Take a Career Quiz</span></a></p></blockquote><h2>Where Should You Start?</h2><p>I am not saying cybersecurity is for everyone. It is a demanding field, and if you&#8217;re not going to take it seriously, it won&#8217;t work.</p><p>However, if you are convinced cybersecurity is for you but unsure where to begin, Decoded Security is here to help! </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Join more than 1,350 people and subscribe to <strong>Decoded Security</strong> to start your cybersecurity journey!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3><strong>Step 1: Find your path</strong></h3><p>First, I prepared a quiz to help you figure out which cybersecurity area suits you best. Based on your goals, your interests, and your background. </p><p>It will take you about 10 minutes, and as a bonus, you will get a personalized study plan that will help you get started. There is no sign-up, no email required. </p><p>You just click the button and take the quiz. </p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/diagnostics&quot;,&quot;text&quot;:&quot;Take a Career Quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:&quot;button-wrapper&quot;}" data-component-name="ButtonCreateButton"><a class="button primary button-wrapper" href="https://quiz.decodedsecurity.com/diagnostics"><span>Take a Career Quiz</span></a></p><h3><strong>Step 2: Build your foundation</strong></h3><p>This is something I am really proud of. Over the years, I put together the top 10 Cybersecurity concepts that you need to know regardless of the area of cybersecurity you choose. </p><p>And to make it even better for you, I prepare countless quizzes and challenges for you, which can help you actually apply the concepts rather than just read them!</p><p>So, if you will read only one guide from Decoded Security, choose that one.</p><blockquote><p><strong>1200+ downloads, 5-star rating!</strong> Numbers that I am actually proud of! If this guide helped you too, let me know in the comments and help me share it to more people.</p></blockquote><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts&quot;,&quot;text&quot;:&quot;Download for Free&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts"><span>Download for Free</span></a></p><h3><strong>Step 3: Read the roadmap</strong></h3><p>And if you&#8217;ve already covered the basics and you have at least some idea what area of cybersecurity is interesting for you, it&#8217;s time for you to work on your goals!</p><p><span>The&nbsp;</span><strong>Roadmap&nbsp;</strong><span>page tells you how to use the&nbsp;</span><strong>Decoded Security</strong><span>&nbsp;resources and what the whole environment offers. </span></p><p><span>Articles, community, and, of course, training for specific certification exams.</span></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap&quot;,&quot;text&quot;:&quot;Decoded Security Roadmap&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><span>Decoded Security Roadmap</span></a></p><h2>Final Thought</h2><p>If I had to start over, I would choose cybersecurity again.</p><p>Not because it is easy.</p><p>Not because jobs magically appear after one certification.</p><p>And not because every beginner should follow the same path.</p><p>I would choose it again because the field is still growing, the demand is real, and there are more ways to build a cybersecurity career than most beginners realize.</p><blockquote><p>The opportunity is real.</p></blockquote><p>The only thing that separates the people who break in from the people who stay stuck is having a clear starting point.</p><p>This is yours, and I am here to help you start your career!</p><p>Talk to you soon,<br>Erich <br>Decoded Security!</p><div class="pullquote"><p>&#128172; Which of the three reasons resonates most with you? Comment below - I read every response.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/3-reasons-id-still-choose-cybersecurity/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/3-reasons-id-still-choose-cybersecurity/comments"><span>Leave a comment</span></a></p></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain Backup Strategies to a Beginner]]></title><description><![CDATA[Full, incremental, differential, and the 3-2-1 rule: the backup methods that decide whether ransomware costs you a bad afternoon or your entire business.]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-backup-strategies</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-backup-strategies</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Sun, 12 Jul 2026 12:00:23 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/17ee5606-ba4d-4ddc-8cce-b81b89633290_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p><strong>Every business wants the same thing:</strong> Back up everything, restore it instantly, and never lose a single record.</p><p>Then you show them how much that costs. </p><p>That&#8217;s why I told you about the recovery metrics. MTD, RTO, WRT, RPO. The numbers that tell you what the business actually needs before you touch a single backup tool.</p><p>This week, we finish the job and learn about the backup strategies available and their benefits and drawbacks.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!4G9B!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!4G9B!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 424w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 848w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 1272w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!4G9B!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png" width="1456" height="983" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:983,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:308397,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!4G9B!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 424w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 848w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 1272w, https://substackcdn.com/image/fetch/$s_!4G9B!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F874b2ece-5759-4487-9666-60d5144b9a3a_2421x1634.png 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p><strong>CISSP, CC, and Security+ Domain 7 essential. This also happens to be one of the most common interview questions for SOC and GRC roles, so pay attention.</strong></p></blockquote><p><strong>What you&#8217;ll learn in this article:</strong></p><ul><li><p>The real difference between full, incremental, and differential backups (and why restore time is the part everyone forgets)</p></li><li><p>The enterprise techniques used for database and always-on systems: electronic vaulting, remote journaling, remote mirroring</p></li><li><p>The 3-2-1 rule, and the modern version that actually accounts for ransomware</p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,300 people read <strong>Decoded Security</strong> every week! Subscribe today and get the Top 10 Cybersecurity Fundamentals guide for FREE in the welcome email.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>The Three Backup Methods</h2><p>Every certification exam expects you to know these. More importantly, so does every hiring manager who&#8217;s ever had to explain a bad restore to their boss.</p><p><strong>But first, what is a backup method?</strong></p><p>A backup method is just the rule that decides what gets copied and how often. </p><p>Not where it&#8217;s stored, not how fast you can restore it, just the logic behind what data actually gets captured each time a backup runs.</p><p>Let&#8217;s take a look at what methods are out there. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!OUEj!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!OUEj!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 424w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 848w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 1272w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!OUEj!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png" width="568" height="573.7723577235772" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:994,&quot;width&quot;:984,&quot;resizeWidth&quot;:568,&quot;bytes&quot;:107122,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!OUEj!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 424w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 848w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 1272w, https://substackcdn.com/image/fetch/$s_!OUEj!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20cb63fb-ac1a-4b07-8e81-d1d025dc6004_984x994.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p>Do you think you understand backup methods already? Let&#8217;s find out! </p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/backup-strategies&quot;,&quot;text&quot;:&quot;Take a Free Quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/backup-strategies"><span>Take a Free Quiz</span></a></p></blockquote><h3><strong>1. Full Backup</strong></h3><p>This one is actually the easiest to understand. You take all the data and back it up. Everything, without a difference. Every file, every byte, every time.</p><p>It&#8217;s the safest method, but it requires the most resources. And as you know, we always have to balance cost and benefits.</p><ul><li><p><strong>Frequency:</strong> Usually weekly or monthly. It&#8217;s big, and it&#8217;s slow.</p></li><li><p><strong>Restore:</strong> One backup set. That&#8217;s it. Nothing else needed.</p></li><li><p><strong>Trade-off:</strong> Simple to restore, expensive to run constantly</p></li></ul><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!5D1g!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!5D1g!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 424w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 848w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!5D1g!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png" width="1456" height="415" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/cb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:415,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:206338,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!5D1g!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 424w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 848w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!5D1g!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb1a9d21-ddb1-466b-95c3-8ac6d64bf3c5_4180x1190.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3><strong>2. Incremental Backup</strong></h3><p>Copies only what changed since the <em>last backup</em>, whether that last backup was a full or another incremental.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!3cZe!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!3cZe!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 424w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 848w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!3cZe!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png" width="1456" height="415" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:415,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:228873,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!3cZe!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 424w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 848w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!3cZe!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0449bd0f-4664-43da-8f16-dfc4c92e9454_4180x1190.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><ul><li><p><strong>Frequency:</strong> Daily, sometimes hourly. Small and fast.</p></li><li><p><strong>Restore:</strong> You need the last full backup, plus <strong>every single incremental since then</strong>, applied in order.</p></li><li><p>Trade-off: Cheapest to run. Riskiest and slowest to restore.</p></li></ul><blockquote><p><strong>Remeber:</strong> One corrupted incremental in the chain, and everything after it is unusable.</p></blockquote><h3><strong>3. Differential Backup</strong></h3><p>Copies everything that changed since the <em>last full backup</em> (not the last backup, the last full).</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!4mUo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!4mUo!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 424w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 848w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!4mUo!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png" width="1456" height="432" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:432,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:224105,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!4mUo!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 424w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 848w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 1272w, https://substackcdn.com/image/fetch/$s_!4mUo!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08a1ed4e-81ae-4df2-9206-8724f281b648_4007x1190.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><ul><li><p><strong>Frequency:</strong> More often than full, less often than incremental.</p></li><li><p><strong>Restore</strong>: Last full backup, plus the <strong>most recent differential</strong>. That&#8217;s the whole chain.</p></li><li><p><strong>Trade-off:</strong> Bigger than incrementals over time, but restore is fast and doesn&#8217;t depend on a fragile chain.</p></li></ul><blockquote><p><strong>Exam trap:</strong> Incremental backs up since the last backup of any kind. Differential backs up since the last full backup only. Mix those two up and you will get this question wrong.</p></blockquote><div class="callout-block" data-callout="true"><p>If this cleared up something you&#8217;ve been fuzzy on, give the article a like. It genuinely helps more people preparing for these exams find it.</p></div><h2>When You&#8217;re Backing Up More Than Files</h2><p>Full, incremental, and differential work fine for file servers. But what happens when the system can&#8217;t afford to be down long enough for a traditional restore? </p><p>Databases, transaction systems, anything close to real-time.</p><p>That&#8217;s where three enterprise techniques come in. You&#8217;ll see all three on the CISSP exam, usually as a &#8220;which one fits this scenario&#8221; question.</p><h3><strong>Electronic Vaulting</strong></h3><p>Bulk data gets transferred automatically to an offsite location on a schedule. Think of it as a scheduled, automated backup job over a network instead of a tape driving to a warehouse.</p><p><strong>The catch:</strong> it moves in batches. If disaster hits between transfers, you lose whatever wasn&#8217;t sent yet.</p><blockquote><p>Did this article help you understand how data security actually works? Give this article a like and help other people find it.</p></blockquote><h3><strong>Remote Journaling</strong></h3><p>Instead of sending bulk data on a schedule, this transmits the actual transaction logs continuously, in near real time. That gets you point-in-time recovery instead of &#8220;whatever we captured at the last batch.&#8221;</p><h3><strong>Remote Mirroring</strong></h3><p>The most expensive, most complete option. A live, functioning duplicate of your system at another site, updated synchronously or asynchronously.</p><p>If your RPO is zero, this is the only option on this list that gets you there. Nothing else does.</p><blockquote><p><strong>Y</strong>our RPO from last week&#8217;s article is what tells you which one you actually need. It is no surprise that the smaller is your RPO, the more expensive it gets. </p></blockquote><h2>The 3-2-1 Rule</h2><p>The 3-2-1 rule is the golden standard, and it's not just theory. It's the baseline that regulations and compliance frameworks expect you to meet, and it's the one backup concept that comes up in almost every audit, exam, and interview.</p><p>Luckily for you, it&#8217;s actually quite simple!</p><p><strong>3-2-1 rule:</strong></p><ul><li><p><strong>3</strong> copies of your data (the original plus two backups)</p></li><li><p><strong>2</strong> different types of media (so one failure mode doesn&#8217;t take out everything)</p></li><li><p><strong>1</strong> copy stored offsite (so a fire, flood, or local disaster doesn&#8217;t take out everything either)</p></li></ul><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!Q69A!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!Q69A!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 424w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 848w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 1272w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!Q69A!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png" width="562" height="616.0384615384615" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1596,&quot;width&quot;:1456,&quot;resizeWidth&quot;:562,&quot;bytes&quot;:208639,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/202425848?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!Q69A!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 424w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 848w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 1272w, https://substackcdn.com/image/fetch/$s_!Q69A!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F01d36ecc-813d-4bc5-b06e-222229b3f1dc_2060x2258.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>Here&#8217;s why each number exists, not just what it is:</strong></p><ul><li><p>One copy is a single point of failure. A bad drive, and it&#8217;s gone.</p></li><li><p>Two copies on the same media type share the same failure mode. A firmware bug or a ransomware strain that targets the media wipes both.</p></li><li><p>Even three copies fail together if they&#8217;re all in the same building. A fire, a flood, or a break-in takes out everything at once.</p></li></ul><p>3-2-1 forces you to remove all three failure points in one move. That's why it stuck around this long, and why it's still the first answer expected in any conversation about backup strategy.</p><div class="callout-block" data-callout="true"><p>Reading about something is one thing, actually understanding it is something completely different. Test if you can actually apply the concepts from this article! This is how you get better!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/backup-strategies&quot;,&quot;text&quot;:&quot;Backup Methods Quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/backup-strategies"><span>Backup Methods Quiz</span></a></p></div><p>If you&#8217;ve made it this far, you now understand backup strategy better than most people who&#8217;ve been in IT for years. </p><blockquote><p>Give this a like, it tells me to keep writing the technical deep dives!</p></blockquote><h2>Bringing It All Together</h2><p>Congratulations. If you&#8217;re reading this, I am proud of you! </p><p>As a reward, I created a short summary to help you remember the most important parts of this article.</p><ol><li><p>Start with your <strong>RPO and RTO</strong> from last week. They&#8217;re not optional context, they&#8217;re the whole basis for every decision below.</p></li><li><p>Choose your <strong>method</strong> (full, incremental, differential) based on how much data changes and how fast you need to restore it.</p></li><li><p>If the system is transactional or can&#8217;t tolerate any real data loss, layer in <strong>journaling or mirroring</strong> instead of relying on the method alone.</p></li><li><p><strong>Test it.</strong> Untested backups fail exactly when you need them most, which is the entire plot of the story I opened this article with.</p></li></ol><p>And that&#8217;s all for today!</p><p>Thank you for reading Decoded Security, and see you next week!</p><div class="callout-block" data-callout="true"><p>Before you leave, make sure to take the quiz and post your score to the comments! </p></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> and start building your career in the field!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2><strong>Here is what to read next</strong></h2><ul><li><p><a href="https://www.decodedsecurity.com/p/rto-rpo-mtd-wrt-explained-the-backup">RTO, RPO, MTD, WRT Explained</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/floods-cybersecurity-and-survival">Recovery Site Strategies</a></p></li><li><p><strong><a href="https://www.decodedsecurity.com/p/testing-disaster-recovery-plans-why?utm_source=publication-search">Testing Disaster Recovery Plans: Why &#8220;Having a Plan&#8221; Isn&#8217;t Enough to Pass CC or CISSP</a></strong></p></li></ul><h3>Frequently Asked Questions</h3><p><strong>What&#8217;s the difference between incremental and differential backups?</strong> Incremental backs up everything changed since the <em>last backup of any type</em>. Differential backs up everything changed since the <em>last full backup</em>. Incremental is smaller and faster to run, but the restore depends on every backup in the chain. Differential is bigger over time, but restore only needs the last full plus the latest differential.</p><p><strong>Is tape backup obsolete?</strong> Not entirely, it still appears in long-term archival use cases and on exams, but disk-to-disk and cloud repositories have replaced it as the default for anything needing a fast restore.</p><p><strong>What is the 3-2-1 rule in backup strategy?</strong> Three copies of your data, on two different types of media, with one copy stored offsite. It&#8217;s a baseline standard, though many organizations now extend it to 3-2-1-1-0 to account for ransomware and to require verified, error-free recovery testing.</p><p><strong>What&#8217;s the difference between remote journaling and remote mirroring?</strong> Remote journaling transmits transaction logs continuously for point-in-time recovery. Remote mirroring maintains a full, live duplicate of the system at another location. Mirroring is faster to recover from but far more expensive.</p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[Top 5 Network Attacks For Cybersecurity Beginners]]></title><description><![CDATA[5 network attacks. 5 memorable analogies. 5 exam wins. Master the one detail that identifies each attack, so scenario questions on CC, Security+, and CISSP answer themselves.]]></description><link>https://www.decodedsecurity.com/p/top-5-network-attacks-every-cybersecurity</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/top-5-network-attacks-every-cybersecurity</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 08 Jul 2026 04:00:36 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/a6500219-b347-4155-bf71-8eeb54fbb3f2_1731x909.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<blockquote><p>&#8252;&#65039; <strong>Warning: CC, Security+, and CISSP relevant topic!</strong></p></blockquote><p>If you are starting out in cybersecurity, you have probably heard that networking is the foundation. </p><p>That is true. </p><p>But here is what nobody tells you: knowing the attacks by name is worthless.</p><p>Exams describe scenarios. Interviewers describe situations. Log files show patterns. None of them comes with labels.</p><p>By the end of this article, you should be able to recognize the top 5 most common network attacks and how to prevent them.</p><p><strong>In this article, I will:</strong></p><ul><li><p>Break down the 5 network attacks you will meet in exams, interviews, and real incident logs</p></li><li><p>Show you the one detail that identifies each attack, whether it appears in a scenario question or a log file</p></li><li><p>Give you the countermeasure for each one, because recognizing an attack is only half the job</p></li></ul><div class="callout-block" data-callout="true"><p><strong>Note: </strong>All of these attacks abuse features of normal network protocols. You can follow this article either way, but if you want the foundations first, start here: </p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/top-5-most-important-network-protocols?utm_source=publication-search&quot;,&quot;text&quot;:&quot;TOP 5 Network Protocols&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/top-5-most-important-network-protocols?utm_source=publication-search"><span>TOP 5 Network Protocols</span></a></p></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><span>More than 1,340 people read </span><strong>Decoded Security</strong><span> every week! Subscribe today and get the Top 10 Cybersecurity Fundamentals guide for FREE in the </span><strong><span>welcome email.</span></strong></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>First, Understand the Family: DoS vs. DDoS</h2><p>Every attack in this article is a denial-of-service attack. The goal is not to steal data. The goal is to make a system unavailable to the people who need it.</p><p><strong>There are two main types:</strong></p><ul><li><p><strong>DoS (Denial of Service):</strong> One attacker, one source, flooding a target until it stops responding.</p></li><li><p><strong>DDoS (Distributed Denial of Service):</strong> The same idea, but the traffic comes from thousands of sources at once. Much harder to block, because there is no single IP to filter.</p></li></ul><p>Now, let&#8217;s get into the 5 attacks.</p><blockquote><p>Do you find this article useful? Give it a like and help more people find it!</p></blockquote><h2>1. SYN Flood: The Handshake That Never Finishes</h2><p>This is the most important attack on the list. If you learn only one, learn this one.</p><p>Normal TCP connections start with a three-way handshake. The client says SYN. The server answers SYN-ACK. The client confirms with ACK. Connection established.</p><p>A SYN flood abuses the politeness of that process.</p><p>The attacker sends thousands of SYN packets and never sends the final ACK. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!gR_J!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!gR_J!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 424w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 848w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 1272w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!gR_J!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png" width="1456" height="1206" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1206,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:277893,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057785?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!gR_J!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 424w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 848w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 1272w, https://substackcdn.com/image/fetch/$s_!gR_J!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ce1f5c-0019-4de9-b515-d8cd0a77d110_2374x1966.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>The server, being polite, holds a spot open for each half-finished handshake and waits. And waits. </p><p>Eventually, the table of half-open connections is full, and legitimate users get turned away.</p><p><strong>The analogy:</strong> Imagine a restaurant where callers keep making reservations and never show up. Every table is &#8220;reserved.&#8221; Real customers stand outside a half-empty restaurant that they cannot enter.</p><p><strong>Countermeasure:</strong> SYN cookies (the server does not commit resources until the handshake completes), reduced connection timeouts, and rate limiting.</p><blockquote><p>If that finally made the three-way handshake click, give it a like! <strong>It tells me these breakdowns are worth writing.</strong></p></blockquote><h2>2. Smurf Attack: Turning a Network Against You</h2><p>The attacker sends ICMP echo requests (pings) to a <strong>network&#8217;s broadcast address</strong>. But here is the trick: the source IP is spoofed to be the victim&#8217;s address.</p><p>Every device on that network receives the ping and politely replies. To whom? To the victim. One packet from the attacker becomes hundreds of replies flooding the target.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!53so!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!53so!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 424w, https://substackcdn.com/image/fetch/$s_!53so!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 848w, https://substackcdn.com/image/fetch/$s_!53so!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 1272w, https://substackcdn.com/image/fetch/$s_!53so!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!53so!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png" width="1456" height="795" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/a2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:795,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:500733,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057785?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!53so!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 424w, https://substackcdn.com/image/fetch/$s_!53so!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 848w, https://substackcdn.com/image/fetch/$s_!53so!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 1272w, https://substackcdn.com/image/fetch/$s_!53so!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa2d7b86f-72b6-4c3d-83ca-5fa15aa2f3cd_3675x2007.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><p><strong>The analogy:</strong> Someone sends a letter to an entire apartment building saying &#8220;please call this number immediately&#8221; and writes your phone number on it. You did nothing, and now your phone will not stop ringing.</p><p><strong>Scenario keywords:</strong> ICMP, broadcast address, spoofed source.</p><p><strong>Cousin to remember:</strong> The <strong>Fraggle attack</strong> is the exact same play, but with UDP traffic instead of ICMP. Exams love testing whether you know the difference. ICMP means Smurf. UDP means Fraggle. That single word decides the question.</p><p><strong>Countermeasures:</strong> Disable IP-directed broadcasts on routers, and configure devices to ignore ICMP requests sent to broadcast addresses.</p><blockquote><p>Reading an article is one thing, actually understand the concept the other. <br>Test your knowledge and make sure you can recognize the most common network attacks!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/network-attacks&quot;,&quot;text&quot;:&quot;Network attacks - QUIZ&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/network-attacks"><span>Network attacks - QUIZ</span></a></p></blockquote><h2>3. Ping of Death: One Packet, One Crash</h2><p>Not every DoS attack needs a flood. Sometimes one malformed packet is enough.</p><p>The Ping of Death sends an oversized ICMP echo request<strong> that exceeds the system's maximum</strong>. Vulnerable systems try to process it, overflow their buffer, and crash.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!46jV!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!46jV!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 424w, https://substackcdn.com/image/fetch/$s_!46jV!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 848w, https://substackcdn.com/image/fetch/$s_!46jV!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 1272w, https://substackcdn.com/image/fetch/$s_!46jV!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!46jV!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png" width="1456" height="485" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:485,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:153071,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057785?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!46jV!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 424w, https://substackcdn.com/image/fetch/$s_!46jV!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 848w, https://substackcdn.com/image/fetch/$s_!46jV!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 1272w, https://substackcdn.com/image/fetch/$s_!46jV!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe2304232-b49e-4031-96ea-9b84e07a211a_2616x871.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><p><strong>The analogy:</strong> Mailing someone a package too big to fit through their door, and the door frame collapses when they try to force it through.</p><p><strong>Scenario keyword:</strong> oversized packet.</p><p><strong>Countermeasures:</strong> Patching. This attack exploits a bug, not a design flaw, so modern patched systems are largely immune. </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> and learn about network security every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>4. Teardrop Attack: Fragments That Do Not Fit</h2><p>Large packets get split into fragments for transmission and reassembled at the destination. The Teardrop attack sends fragments with overlapping offsets, so they cannot be reassembled correctly.</p><p>A vulnerable system tries anyway, gets confused by the overlap, and crashes.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!N6Tf!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!N6Tf!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 424w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 848w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 1272w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!N6Tf!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png" width="1456" height="1035" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/a6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1035,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:126476,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057785?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!N6Tf!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 424w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 848w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 1272w, https://substackcdn.com/image/fetch/$s_!N6Tf!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa6241005-23e4-44c3-88b8-094d9c29b8bc_1800x1280.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>The analogy:</strong> A jigsaw puzzle where the pieces are cut to overlap each other. The picture is impossible to assemble, but the system keeps trying until it breaks.</p><p><strong>Scenario keywords:</strong> fragmentation, overlapping fragments, reassembly.</p><p><strong>Countermeasures:</strong> Patching again. Like Ping of Death, this exploits a bug in TCP/IP reassembly. Firewalls that drop malformed fragments also help.</p><h2>5. Land Attack: The Packet Addressed to Itself</h2><p>The attacker crafts a packet where the source IP and port are identical to the destination IP and port. The victim machine receives a packet that appears to come from itself, addressed to itself.</p><p>A vulnerable TCP stack processes it, replies to itself, processes the reply, and loops until it freezes.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!dlAF!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!dlAF!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 424w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 848w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 1272w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!dlAF!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png" width="1456" height="558" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:558,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:165176,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057785?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!dlAF!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 424w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 848w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 1272w, https://substackcdn.com/image/fetch/$s_!dlAF!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff54a9ce0-07a4-4113-b2d0-c002a85dcd64_2468x945.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><p><strong>The analogy:</strong> Mailing yourself a letter that says &#8220;reply to this letter.&#8221; Forever.</p><p><strong>Scenario keyword:</strong> identical source and destination IP and port. If you see that phrase, the answer is Land attack. Nothing else looks like this.</p><p><strong>Countermeasures:</strong> Modern systems drop these packets automatically. Firewalls with ingress filtering block spoofed packets claiming to come from inside your own network.</p><blockquote><p>Do you think you can recognize the network attacks now? Let&#8217;s find out! <br>Take the quiz and drop your score below!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/network-attacks&quot;,&quot;text&quot;:&quot;Network attacks - quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/network-attacks"><span>Network attacks - quiz</span></a></p></blockquote><h2>How To Actually Remember These</h2><p>Do not memorize definitions. Memorize the one detail that makes each attack unique:</p><ul><li><p><strong>SYN Flood</strong> = half-open connections</p></li><li><p><strong>Smurf</strong> = ICMP to broadcast address (<strong>Fraggle</strong> = same but UDP)</p></li><li><p><strong>Ping of Death</strong> = one oversized packet</p></li><li><p><strong>Teardrop</strong> = overlapping fragments</p></li><li><p><strong>Land</strong> = source equals destination</p></li></ul><p>Exam scenarios are built around exactly these details. Spot the detail, and the question answers itself.</p><blockquote><p>If you are screenshotting this list, do me one favor first: hit like so the next person studying for their exam actually finds it.</p></blockquote><h2>Key Takeaways</h2><p><strong>Here is what I want you to remember:</strong></p><ul><li><p>Denial of service is about availability, not data theft. That is the &#8220;A&#8221; in the CIA triad.</p></li><li><p>Understanding network protocols is the first step in understanding network attacks</p></li><li><p>DDoS is harder to stop than DoS because there is no single source to block.</p></li><li><p>Always act proactively, not reactively. Prepare for these attacks BEFORE they happen, not after.</p></li></ul><p>Great! If you understand these 5 attacks, you are already ahead of most people who claim to be cybersecurity experts. But before you go, I have prepared something else for you! </p><h2>Test Yourself</h2><p><strong>Here is a scenario, exam style:</strong></p><p><em>A server becomes unresponsive. Logs show a massive number of connection attempts, each stuck waiting for a final acknowledgment that never arrives.</em></p><p>Which attack is this, and which countermeasure would you deploy first?</p><p><strong>Comment your answer below.</strong> I read every one, and I will tell you if your reasoning would hold up on exam day.</p><p>And if you want to really test your understanding of network attacks, I prepared a <a href="https://quiz.decodedsecurity.com/article/network-attacks">CISSP-like cybersecurity quiz</a> for you!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/network-attacks&quot;,&quot;text&quot;:&quot;Free Quiz&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/network-attacks"><span>Free Quiz</span></a></p><p>Take it and drop your score in the comments. I read every single one of the comments!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/top-5-network-attacks-every-cybersecurity/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/top-5-network-attacks-every-cybersecurity/comments"><span>Leave a comment</span></a></p><h2>&#8252;&#65039; Continue learning &#8252;&#65039; </h2><p><strong>Here is the truth most beginners miss:</strong> </p><p>Networking is not one topic in cybersecurity. It is the ground everything else stands on. Firewalls, attacks, monitoring, and incident response. None of it makes sense until the network underneath makes sense.</p><p><strong>You just learned 5 attacks. Here is how to build on that, in order:</strong></p><ul><li><p><strong><a href="https://www.decodedsecurity.com/p/top-5-most-important-network-protocols?utm_source=publication-search">Top 5 most important network protocols for cybersecurity beginners</a></strong></p></li><li><p><strong><a href="https://www.decodedsecurity.com/p/what-are-the-things-that-keep-our?utm_source=publication-search">What are the things that keep our networks alive?</a></strong></p></li><li><p><a href="https://www.decodedsecurity.com/p/7-networking-questions-that-instantly?utm_source=publication-search">7 Networking Questions That Instantly Expose Beginners in Cybersecurity Interviews</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/wi-fi-security-for-the-cissp-candidates?utm_source=publication-search">Wi-Fi Security for the CISSP candidates: Here Is What Actually Matters</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-complete-guide-to-firewall-types?utm_source=publication-search">The Complete Guide to Firewall Types: From Packet Filters to Next-Gen</a></p></li></ul><p>And if you are still asking the real question, <em>&#8220;out of everything in cybersecurity, what actually matters?&#8221;</em>, I answered it in one place.</p><p>I put together a free 80-page guide covering the 10 cybersecurity concepts behind 90% of entry-level interview questions. <strong>Download it here:</strong> <a href="https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts">Top 10 Cybersecurity Concepts</a></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> and learn more about cybersecurity every week! </p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[Wi-Fi Security for the CISSP candidates: Here Is What Actually Matters]]></title><description><![CDATA[WEP, WPA, WPA2, WPA3, PSK, SAE, 802.1X. Here's exactly what the CISSP tests on Wi-Fi security and how to answer every scenario question correctly.]]></description><link>https://www.decodedsecurity.com/p/wi-fi-security-for-the-cissp-candidates</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/wi-fi-security-for-the-cissp-candidates</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 01 Jul 2026 04:30:44 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/0ee9519b-2180-474b-980c-c120724e2e86_1731x909.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Domain 4: Communication &amp; Network Security is one of the most difficult domains in the CISSP exams.</p><p>I spent weeks deep-diving into various networking topics before I figured out what the exam actually tests.</p><p><strong>I wasted weeks of valuable time learning something that doesn&#8217;t matter for the exam, now you don&#8217;t have to, because you have this article.</strong></p><p>Keep in mind that the CISSP is a security management exam. </p><p>Domain 4 doesn&#8217;t test whether you can configure a network.</p><p>It tests whether you understand which protocols are secure, which are broken, and which one to choose in a given scenario.</p><p>Once I figured that out, everything got easier.</p><p>Wi-Fi security is a perfect example. </p><p>You don&#8217;t need to understand every technical detail of how WPA3 works under the hood. You need to know the progression, the tradeoffs, and when to use what.</p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!uSgd!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!uSgd!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 424w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 848w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 1272w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!uSgd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png" width="1456" height="210" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:210,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:48350,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057750?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!uSgd!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 424w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 848w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 1272w, https://substackcdn.com/image/fetch/$s_!uSgd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F671d992b-8405-4ec0-8e40-a1d3019fd299_2000x289.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a><figcaption class="image-caption">The evolution of WIFI standards</figcaption></figure></div><p><strong>If you read this article, you&#8217;ll know exactly what the CISSP expects on Wi-Fi security.</strong></p><p>You&#8217;ll learn:</p><ul><li><p>How Wi-Fi security evolved from WEP to WPA3</p></li><li><p>The difference between TKIP and CCMP</p></li><li><p>When to use PSK, SAE, or Enterprise mode</p></li><li><p>How to answer scenario-based CISSP questions on wireless security</p></li></ul><div class="callout-block" data-callout="true"><p>Do you think you already understand Wi-Fi security? Let&#8217;s find out! <br>Here is a short CISSP-like quiz. Take it and drop your score in the comments!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/wifi-security&quot;,&quot;text&quot;:&quot;Take the quiz!&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/wifi-security"><span>Take the quiz!</span></a></p></div><h3>What Is Wi-Fi Security? (SSID, Encryption, Authentication)</h3><p>Here is the story that the CISSP exam expects you to know. </p><p>Wi-Fi networks are identified by their <strong>SSID</strong>, the name you see when connecting. It can be up to 32 characters, like &#8220;HomeWifi&#8221; or &#8220;Airport_Guest.&#8221;</p><p>Once your device finds the network, two things need to happen: authentication and encryption. The protocol the network runs determines how both of those work.</p><p>That&#8217;s what we&#8217;re focused on here.</p><p><strong>In other words, every Wi-Fi connection has two separate jobs:</strong></p><blockquote><p><strong>1. Encryption:</strong> Encrypt the data traveling between your device and the access point so nobody can read it in transit.</p><p><strong>2. Authentication:</strong> Proves that your device is allowed to join the network in the first place.</p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!klm2!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!klm2!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 424w, https://substackcdn.com/image/fetch/$s_!klm2!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 848w, https://substackcdn.com/image/fetch/$s_!klm2!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 1272w, https://substackcdn.com/image/fetch/$s_!klm2!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!klm2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png" width="466" height="644.7745454545454" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1522,&quot;width&quot;:1100,&quot;resizeWidth&quot;:466,&quot;bytes&quot;:134016,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057750?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!klm2!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 424w, https://substackcdn.com/image/fetch/$s_!klm2!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 848w, https://substackcdn.com/image/fetch/$s_!klm2!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 1272w, https://substackcdn.com/image/fetch/$s_!klm2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7105e552-111c-4719-83c3-38d7fdcf374e_1100x1522.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>These are handled separately. And that&#8217;s exactly why WPA2 or WPA3 alone doesn&#8217;t tell you the full picture.</p><p>WPA2 and WPA3 define the <strong>encryption standard</strong>. PSK, SAE, and Enterprise define the <strong>authentication method</strong>.</p><blockquote><p>This is very important, and you need to be aware of this general concept.</p></blockquote><p><strong>Think of it like a building:</strong></p><ul><li><p>WPA2/WPA3 is the type of lock on the door.</p></li><li><p>PSK, SAE, and Enterprise are the different ways people prove they&#8217;re allowed inside.</p></li></ul><blockquote><p>So the complete description of any Wi-Fi network is always the combination of both. </p></blockquote><p><strong>Here are the possible combinations:</strong></p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!722E!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!722E!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 424w, https://substackcdn.com/image/fetch/$s_!722E!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 848w, https://substackcdn.com/image/fetch/$s_!722E!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 1272w, https://substackcdn.com/image/fetch/$s_!722E!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!722E!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png" width="1452" height="400" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:400,&quot;width&quot;:1452,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:83410,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057750?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!722E!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 424w, https://substackcdn.com/image/fetch/$s_!722E!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 848w, https://substackcdn.com/image/fetch/$s_!722E!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 1272w, https://substackcdn.com/image/fetch/$s_!722E!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F49dc6714-ea4c-428c-84a1-a696c9747275_1452x400.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p>The CISSP will give you a scenario and ask you to pick the right combination. Keep this table in your head.</p></blockquote><div class="callout-block" data-callout="true"><p><strong>Quiz time:</strong> Take a <a href="https://quiz.decodedsecurity.com/article/wifi-security">CISSP-like quiz</a>, drop your score in the comments, and get a free Decoded Security WIFI Standards cheatsheet!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/wi-fi-security-for-the-cissp-candidates/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/wi-fi-security-for-the-cissp-candidates/comments"><span>Leave a comment</span></a></p></div><h3>WEP vs WPA vs WPA2 vs WPA3: What's the Difference?</h3><p>Each standard replaced the one before it because the previous one had a serious security flaw. </p><p>You are expected to understand these flaws and choose the right option in the given scenario.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!k9NI!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!k9NI!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 424w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 848w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 1272w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!k9NI!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png" width="1456" height="632" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/fca95ccc-409c-4914-8517-13091f98f648_3103x1347.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:632,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:260670,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057750?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!k9NI!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 424w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 848w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 1272w, https://substackcdn.com/image/fetch/$s_!k9NI!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffca95ccc-409c-4914-8517-13091f98f648_3103x1347.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h4>WEP (Wired Equivalent Privacy) </h4><p>WEP was the original standard. The goal was to give wireless networks the same security as wired ones. It failed. </p><p>Attackers could crack WEP in minutes using freely available tools. It was deprecated in 2004. If you see WEP in a scenario, treat it as no security at all.</p><blockquote><p><strong>CISSP Note:</strong> It is never a good idea to use WEP. </p></blockquote><h4>WPA (Wi-Fi Protected Access) </h4><p>WPA replaced WEP as an emergency fix. </p><p>It uses <strong>TKIP</strong> encryption, which was designed to run on existing hardware without requiring replacements. </p><p>Better than WEP, but still a patch. Now considered weak.</p><blockquote><p><strong>CISSP note:</strong> Used in scenarios where you have no possiblity to replace HW. </p></blockquote><h4>WPA2</h4><p><strong>WPA2</strong> was the real upgrade. </p><p>It replaced <strong>TKIP</strong> with <strong>CCMP</strong>, which uses AES-128 encryption. </p><p>Strong, widely supported, and still running on the majority of networks today. </p><p>WPA2 is the minimum acceptable standard.</p><h4>WPA3</h4><p><strong>WPA3</strong> is the current best practice. It uses an improved version of CCMP and replaces the older PSK handshake with <strong>SAE</strong> (Simultaneous Authentication of Equals).</p><p>SAE uses the Dragonfly Key Exchange, meaning both parties prove they know the password without ever sending it over the network. </p><p>This eliminates offline dictionary attacks and adds forward secrecy, meaning a compromised session key doesn&#8217;t expose past sessions.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!TV0H!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!TV0H!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 424w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 848w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 1272w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!TV0H!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png" width="1274" height="406" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/de86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:406,&quot;width&quot;:1274,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:72440,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201057750?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!TV0H!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 424w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 848w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 1272w, https://substackcdn.com/image/fetch/$s_!TV0H!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fde86e57b-58c0-49fb-bc2a-c48f68cc6962_1274x406.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p><strong>CISSP shortcut:</strong> WEP (broken) &#8594; WPA (weak) &#8594; WPA2 (current standard) &#8594; WPA3. Each replaced the one before it.</p></blockquote><div class="callout-block" data-callout="true"><p><strong>Quiz time!</strong></p><p>Take the quiz, drop your score below, and get a <strong>CISSP printable cheatsheet</strong> that covers everything you need to know about the WIFI security!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/wifi-security&quot;,&quot;text&quot;:&quot;Take the quiz!&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/wifi-security"><span>Take the quiz!</span></a></p></div><h3>PSK, SAE, and Enterprise: Choosing the Right Authentication Method</h3><p>Now that you understand the encryption standards, here&#8217;s how the authentication methods work and when to use each one.</p><h4><strong>WPA2-PSK (Personal Mode)</strong></h4><p>PSK stands for Pre-Shared Key. Everyone uses the same shared password to connect.</p><p>Simple and widely supported. </p><p>But there&#8217;s no individual accountability, and a weak password is vulnerable to offline dictionary attacks. </p><p>An attacker captures the handshake and runs password guesses against it offline, with no limit and no detection.</p><blockquote><p><strong>CISSP note:</strong> Use it only for home-network scenarios and only if there are compatibility limitations in the given scenario.</p></blockquote><h4><strong>WPA3-SAE (Personal Mode, Upgraded)</strong></h4><p>SAE replaces PSK in WPA3-Personal. </p><p>Even if an attacker captures the handshake, they can&#8217;t run offline attacks against it.</p><p>Forward secrecy means past sessions stay protected even if a key is later compromised. No user accounts needed.</p><blockquote><p><strong>Use it for:</strong> Secure guest Wi-Fi or personal networks where you want real protection without managing individual credentials.</p></blockquote><h4><strong>WPA2/3-Enterprise (802.1X Authentication)</strong></h4><p>Before explaining this one: <strong>802.1X</strong> is not a Wi-Fi protocol. It&#8217;s an authentication framework. Here&#8217;s how it works:</p><ol><li><p>Your device connects to the network</p></li><li><p>The access point blocks all traffic and asks for credentials</p></li><li><p>Your device sends them to a <strong>RADIUS server</strong>, a backend authentication server</p></li><li><p>The RADIUS server verifies them and grants or denies access</p></li></ol><p>Every user has their own credentials. No shared passwords. Full accountability.</p><p><strong>The tradeoff:</strong> It requires infrastructure. A RADIUS server, user accounts, and backend configuration. That overhead makes no sense for a guest network. It makes complete sense for a corporate one.</p><blockquote><p><strong>CISSP note: </strong>use it for corporate networks where individual accountability is required.</p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><strong>Preparing for CC, CISSP, or Security+ exam?</strong> Subscribe to Decoded Security and get free access to free study resources!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>MAC Filtering and Captive Portals: Do They Actually Secure Wi-Fi?</h2><h3><strong>MAC Filtering</strong></h3><p>Whitelists specific device MAC addresses. If your address isn&#8217;t on the list, you can&#8217;t connect.</p><p>Sounds useful. The problem: MAC addresses travel in cleartext even inside WPA2. Any attacker on the network can read a valid MAC address and spoof it in under a minute.</p><blockquote><p><strong>CISSP note:</strong> Layer 2 control. Trivial to bypass. Never a substitute for encryption.</p></blockquote><h3><strong>Captive Portals</strong></h3><p>The page that appears at hotels and airports before you get internet access. You accept terms, authenticate, or pay.</p><p>Captive portals sit in front of internet access, not in front of the wireless connection. The Wi-Fi traffic itself is not protected by the portal. If the underlying encryption is weak, traffic is still exposed.</p><blockquote><p><strong>CISSP note:</strong> Captive portals = access control. Not confidentiality. Not integrity. <strong>Access control only</strong>. If a scenario asks how to control who can access the internet on a guest network, a captive portal is a valid option. </p></blockquote><div class="callout-block" data-callout="true"><p><strong>Think you've got this down? Take the CISSP-like quiz and drop your score in the comments. I'll reply to everyone.</strong></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://quiz.decodedsecurity.com/article/wifi-security&quot;,&quot;text&quot;:&quot;Free quiz!&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://quiz.decodedsecurity.com/article/wifi-security"><span>Free quiz!</span></a></p></div><h3>Conclusion</h3><p><strong>Let me give you a couple of shortcuts that served me well during the exam:</strong></p><ul><li><p>Guest Wi-Fi, no user accounts needed: WPA3-SAE</p></li><li><p>Corporate network, individual accountability required: Enterprise/802.1X</p></li><li><p>If you need contact information on people who use your network, use the captive portal</p></li><li><p>WEP or open network anywhere in the scenario - INSECURE</p></li></ul><p>That&#8217;s everything the CISSP expects you to know about Wi-Fi security.</p><p>With the knowledge in this article, you will be able to answer most questions on Wifi security without spending weeks going through advanced networking topics.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><span>More than 1,300 people read </span><strong>Decoded Security</strong><span> every week! Subscribe today and get the Top 10 Cybersecurity Fundamentals guide for FREE in the </span><strong><span>welcome email.</span></strong></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3>Keep Learning: Related Articles</h3><p>If Domain 4 still feels overwhelming, these will help fill in the gaps.</p><p><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Start Here: The Decoded Security Roadmap</a></strong><br>Not sure where to begin? This is the map. It breaks down exactly what to study and in what order, whether you&#8217;re going for CISSP, Security+, or a GRC role.</p><p><strong><a href="https://www.decodedsecurity.com/p/7-networking-questions-that-instantly">7 Networking Questions That Instantly Reveal Skill Gaps</a></strong><br>Before you go deeper into Wi-Fi security, make sure your networking fundamentals actually hold up. These 7 questions show you exactly where the gaps are.</p><p><strong><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-dns-to-beginners">This Is How I Explain DNS to Beginners</a></strong><br>Wi-Fi gets your device on the network. DNS is what happens next. If you&#8217;ve never had DNS explained in a way that actually clicks, start here.</p><p><strong><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners">This Is How I Explain VPNs to Beginners</a></strong><br>Wi-Fi security protects the connection to the access point. A VPN protects what happens after that. Here&#8217;s the difference, explained without the jargon.</p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a><br>Quiz platform: <a href="https://quiz.decodedsecurity.com/">Test Your Knowledge</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br></a><br></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[One Year of Decoded Security: From CISSP Notes to a Cybersecurity Learning Platform]]></title><description><![CDATA[Decoded Security turns one. Here&#8217;s how a small CISSP study newsletter grew into quizzes, study plans, labs, certification resources, and a community for cybersecurity learners.]]></description><link>https://www.decodedsecurity.com/p/one-year-of-decoded-security-from</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/one-year-of-decoded-security-from</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Sun, 28 Jun 2026 17:01:30 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/3a914e6c-7a50-46f1-aa5f-2efd61d6ae26_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>A year ago, I started this little newsletter project. </p><p>It had no name, no resources, no subscribers, just me preparing for the CISSP exam with a decision to document my journey.</p><p><strong>I still remember when I published my first article:</strong></p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!O31S!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!O31S!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 424w, https://substackcdn.com/image/fetch/$s_!O31S!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 848w, https://substackcdn.com/image/fetch/$s_!O31S!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 1272w, https://substackcdn.com/image/fetch/$s_!O31S!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!O31S!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png" width="746" height="216" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:216,&quot;width&quot;:746,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:34311,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/203002856?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!O31S!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 424w, https://substackcdn.com/image/fetch/$s_!O31S!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 848w, https://substackcdn.com/image/fetch/$s_!O31S!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 1272w, https://substackcdn.com/image/fetch/$s_!O31S!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F25fe4948-872e-443a-8d69-86e0484bb73f_746x216.png 1456w" sizes="100vw" fetchpriority="high"></picture><div></div></div></a></figure></div><p>Looking back, it&#8217;s terrible. I know a lot about encryption, but I knew nothing about writing a newsletter. </p><p>Despite that, I will never delete this article, because it reminds me how much I have improved over time.</p><blockquote><p>As of today, I have <strong>1,304 subscribers</strong>, which is far more than I could imagine at the beginning. After all, I had around 30 subscribers after 2 months of publishing. </p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!FNjy!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!FNjy!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 424w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 848w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 1272w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!FNjy!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png" width="850" height="514" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/43531d85-571e-4e47-9539-8635187b4d24_850x514.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:514,&quot;width&quot;:850,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:102216,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/203002856?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!FNjy!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 424w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 848w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 1272w, https://substackcdn.com/image/fetch/$s_!FNjy!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F43531d85-571e-4e47-9539-8635187b4d24_850x514.png 1456w" sizes="100vw"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="callout-block" data-callout="true"><p><strong>To celebrate the first year of Decoded Security, I prepared two anniversary gifts:</strong></p><p>For the next 14 days, you can try the paid Decoded Security subscription for free.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?coupon=d3bcb2dd&amp;utm_content=203002856&quot;,&quot;text&quot;:&quot;Get 14 day free trial&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/subscribe?coupon=d3bcb2dd&amp;utm_content=203002856"><span>Get 14 day free trial</span></a></p><p></p><p>And if you want a practical roadmap into the field, you can get the <strong><a href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint/1_year">90-Day Cybersecurity Job Blueprint</a></strong> with <strong>80% off</strong>. [Ends June 30th]</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint/1_year&quot;,&quot;text&quot;:&quot;90-Day Cybersecurity Job Blueprint&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint/1_year"><span>90-Day Cybersecurity Job Blueprint</span></a></p></div><p>And I like to think that my articles have gotten a lot better, but that isn&#8217;t where I stopped. </p><p>What started as a simple newsletter with 1 post a week became a complex environment for people who want to build a career in cybersecurity and pass cybersecurity exams such as CC, CISSP, or Security+.</p><p><strong>This is what Decoded Security offers now:</strong> </p><ul><li><p><a href="https://quiz.decodedsecurity.com/">Quiz platform</a>: Just reading about some concept doesn&#8217;t mean you actually understand it. That&#8217;s why I publish CISSP-like quizzes that allow you to verify your knowledge.</p></li><li><p><a href="https://quiz.decodedsecurity.com/direction">Personalized study plan</a>: This allows you to create a plan tailored to your background and goals. </p></li><li><p><a href="https://decodedsecurity.gumroad.com/">Gumroad - Guides, Checklists, and other Study resources</a>: Over time, I have published many guides. Here are the most successful ones. </p><ul><li><p><a href="https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts?layout=profile">Cybersecurity Fundamentals: The 10 Concepts That Get You Through 90% of Interviews</a> (<strong>1,145</strong><span> downloads, 5-star rating)</span></p></li><li><p><a href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint/1_year">The 90-Day Cybersecurity Job Blueprint</a> (<strong>49</strong><span> sales, 4.8 star rating)</span></p></li></ul></li><li><p><strong><a href="https://www.decodedsecurity.com/p/certification-hub">Decoded Security Certification Hub</a>: </strong>Study resources and tips categorized based on different cybersecurity exams: CC, Security+, CISSP.</p></li><li><p>Practical labs for people who want to go beyond theory</p></li><li><p>And most importantly, a community of people working toward the same goal</p></li></ul><div class="community-chat" data-attrs="{&quot;url&quot;:&quot;https://open.substack.com/pub/cybersecerich/chat?utm_source=chat_embed&quot;,&quot;subdomain&quot;:&quot;cybersecerich&quot;,&quot;pub&quot;:{&quot;id&quot;:4708911,&quot;name&quot;:&quot;Decoded Security&quot;,&quot;author_name&quot;:&quot;Erich Winkler&quot;,&quot;author_photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;}}" data-component-name="CommunityChatRenderPlaceholder"></div><div class="pullquote"><p>If you&#8217;re not sure about your next step in cybersecurity, this is the place to go to! </p></div><h3>Biggest achievements - Decoded Security in numbers</h3><p>Maybe you can tell that I am the kind of guy who loves stats and numbers.</p><p>So let&#8217;s take a look.</p><p><strong>Here are a few milestones I&#8217;m especially proud of:</strong></p><ul><li><p>Grew Decoded Security from 0 to 1,304 subscribers</p></li><li><p>Decoded Security on <a href="https://www.facebook.com/profile.php?id=61586486555982">Facebook </a>- 404 followers </p></li><li><p><a href="https://www.threads.com/@decodedsecurity">Decoded Security on Threads</a> - 566 followers</p></li><li><p><a href="https://www.instagram.com/decodedsecurity/">Decoded Security on Instagram </a>- 192 followers</p></li><li><p><a href="https://www.linkedin.com/in/winkleri/">Erich Winkler on LinkedIn</a> - 739 followers</p></li><li><p>Reached 1,145 downloads for Top 10 Cybersecurity Fundamentals</p></li><li><p>Sold 49 copies of the 90-Day Cybersecurity Job Blueprint</p></li></ul><p>But the biggest achievement is not really the numbers. ( Even though I love them)</p><p><strong>It&#8217;s seeing people use these resources to understand difficult concepts, prepare for exams, make career decisions, and feel less lost in cybersecurity.</strong></p><div class="pullquote"><p>That&#8217;s why you can reach out to me anytime!</p></div><div class="directMessage button" data-attrs="{&quot;userId&quot;:259197825,&quot;userName&quot;:&quot;Erich Winkler&quot;,&quot;canDm&quot;:null,&quot;dmUpgradeOptions&quot;:null,&quot;isEditorNode&quot;:true}" data-component-name="DirectMessageToDOM"></div><h3>Thank you for reading Decoded Security</h3><p>I appreciate every single one of you for reading Decoded Security and reaching out to me with interesting questions. </p><p>However, I would especially like to thank some of the people I &#8220;met&#8221; on this journey who really helped me grow and improve my newsletter.</p><p>Since a simple thank you won&#8217;t help them much, I will also share their newsletter, which I find to be one of the best I have found on this platform.</p><ul><li><p><span class="mention-wrap" data-attrs="{&quot;name&quot;:&quot;ToxSec&quot;,&quot;id&quot;:8759131,&quot;type&quot;:&quot;user&quot;,&quot;url&quot;:null,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/bcc231af-becb-46d7-a503-8314a6b5e870_3840x3840.png&quot;,&quot;uuid&quot;:&quot;0d1bc96f-e27c-471b-9552-867e0928160f&quot;}" data-component-name="MentionToDOM"></span> - One of the most experienced AI and Cybersecurity experts I have had a chance to collaborate with. We had 300 subscribers at the same time. <br>Well, <span class="mention-wrap" data-attrs="{&quot;name&quot;:&quot;ToxSec&quot;,&quot;id&quot;:8759131,&quot;type&quot;:&quot;user&quot;,&quot;url&quot;:null,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/bcc231af-becb-46d7-a503-8314a6b5e870_3840x3840.png&quot;,&quot;uuid&quot;:&quot;29d3b077-6c18-4aa7-8e3f-31e8821f50e0&quot;}" data-component-name="MentionToDOM"></span> got ahead a little! This is my thank-you for our previous collaboration, and I hope we will work on another project together again!</p><div class="embedded-publication-wrap" data-attrs="{&quot;id&quot;:4991138,&quot;name&quot;:&quot;ToxSec - AI and Cybersecurity &quot;,&quot;logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!knHk!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb28d90f-ea4c-44fc-80b5-d73e8347f8d2_1024x1024.png&quot;,&quot;base_url&quot;:&quot;https://www.toxsec.com&quot;,&quot;hero_text&quot;:&quot;Security for a world run by machines that lie.&quot;,&quot;author_name&quot;:&quot;ToxSec&quot;,&quot;show_subscribe&quot;:true,&quot;logo_bg_color&quot;:&quot;#111111&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="EmbeddedPublicationToDOMWithSubscribe"><div class="embedded-publication show-subscribe"><a class="embedded-publication-link-part" native="true" href="https://www.toxsec.com?utm_source=substack&amp;utm_campaign=publication_embed&amp;utm_medium=web"><img class="embedded-publication-logo" src="https://substackcdn.com/image/fetch/$s_!knHk!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fcb28d90f-ea4c-44fc-80b5-d73e8347f8d2_1024x1024.png" width="56" height="56" style="background-color: rgb(17, 17, 17);"><span class="embedded-publication-name">ToxSec - AI and Cybersecurity </span><div class="embedded-publication-hero-text">Security for a world run by machines that lie.</div></a><form class="embedded-publication-subscribe" method="GET" action="https://www.toxsec.com/subscribe?"><input type="hidden" name="source" value="publication-embed"><input type="hidden" name="autoSubmit" value="true"><input type="email" class="email-input" name="email" placeholder="Type your email..."><input type="submit" class="button primary" value="Subscribe"></form></div></div></li><li><p><span class="mention-wrap" data-attrs="{&quot;name&quot;:&quot;Dr Sam Illingworth&quot;,&quot;id&quot;:253722705,&quot;type&quot;:&quot;user&quot;,&quot;url&quot;:null,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!rb5v!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Faaf6aa29-e338-4f95-b570-ae94aacf55a7_666x635.jpeg&quot;,&quot;uuid&quot;:&quot;3d18f7bc-61b8-41c5-81b4-3ea19917a82b&quot;}" data-component-name="MentionToDOM"></span> - Sam runs one of the most interesting and fastest-growing AI newsletters out there. And I can tell it&#8217;s no coincidence. If you want a fresh perspective on how to use AI properly, Slow AI is for you!</p><div class="embedded-publication-wrap" data-attrs="{&quot;id&quot;:5380707,&quot;name&quot;:&quot;Slow AI &quot;,&quot;logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!48Xz!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd3895d7-1e00-436b-bc06-0321e953f178_805x805.png&quot;,&quot;base_url&quot;:&quot;https://theslowai.substack.com&quot;,&quot;hero_text&quot;:&quot;Knowing when to use AI and when to leave it the hell alone.&quot;,&quot;author_name&quot;:&quot;Dr Sam Illingworth&quot;,&quot;show_subscribe&quot;:true,&quot;logo_bg_color&quot;:&quot;#fdf8f2&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="EmbeddedPublicationToDOMWithSubscribe"><div class="embedded-publication show-subscribe"><a class="embedded-publication-link-part" native="true" href="https://theslowai.substack.com?utm_source=substack&amp;utm_campaign=publication_embed&amp;utm_medium=web"><img class="embedded-publication-logo" src="https://substackcdn.com/image/fetch/$s_!48Xz!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd3895d7-1e00-436b-bc06-0321e953f178_805x805.png" width="56" height="56" style="background-color: rgb(253, 248, 242);"><span class="embedded-publication-name">Slow AI </span><div class="embedded-publication-hero-text">Knowing when to use AI and when to leave it the hell alone.</div><div class="embedded-publication-author-name">By Dr Sam Illingworth</div></a><form class="embedded-publication-subscribe" method="GET" action="https://theslowai.substack.com/subscribe?"><input type="hidden" name="source" value="publication-embed"><input type="hidden" name="autoSubmit" value="true"><input type="email" class="email-input" name="email" placeholder="Type your email..."><input type="submit" class="button primary" value="Subscribe"></form></div></div></li><li><p><span class="mention-wrap" data-attrs="{&quot;name&quot;:&quot;Mohib Ur Rehman&quot;,&quot;id&quot;:321004422,&quot;type&quot;:&quot;user&quot;,&quot;url&quot;:null,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!R3GD!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd368f269-b2b1-47c0-b1e5-4a41c9b35d53_2000x2000.png&quot;,&quot;uuid&quot;:&quot;edc400bf-5765-4709-ad6a-1080e6892350&quot;}" data-component-name="MentionToDOM"></span> - Mohib is with me here from the very beginning. He helped me grow and commented on my posts when no one else did. We have had many interesting discussions. Thank you! </p><div class="embedded-publication-wrap" data-attrs="{&quot;id&quot;:4196169,&quot;name&quot;:&quot;SK NEXUS&quot;,&quot;logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!PH7B!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F42c797b4-bfc4-4141-83b0-17aceb5df7ef_1188x1188.png&quot;,&quot;base_url&quot;:&quot;https://www.sknexus.org&quot;,&quot;hero_text&quot;:&quot;Breaking down Tech for the Mango Man (Aam Aadmi/Regular Person)&quot;,&quot;author_name&quot;:&quot;Saqib Tahir&quot;,&quot;show_subscribe&quot;:true,&quot;logo_bg_color&quot;:&quot;#171717&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="EmbeddedPublicationToDOMWithSubscribe"><div class="embedded-publication show-subscribe"><a class="embedded-publication-link-part" native="true" href="https://www.sknexus.org?utm_source=substack&amp;utm_campaign=publication_embed&amp;utm_medium=web"><img class="embedded-publication-logo" src="https://substackcdn.com/image/fetch/$s_!PH7B!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F42c797b4-bfc4-4141-83b0-17aceb5df7ef_1188x1188.png" width="56" height="56" style="background-color: rgb(23, 23, 23);"><span class="embedded-publication-name">SK NEXUS</span><div class="embedded-publication-hero-text">Breaking down Tech for the Mango Man (Aam Aadmi/Regular Person)</div><div class="embedded-publication-author-name">By Saqib Tahir</div></a><form class="embedded-publication-subscribe" method="GET" action="https://www.sknexus.org/subscribe?"><input type="hidden" name="source" value="publication-embed"><input type="hidden" name="autoSubmit" value="true"><input type="email" class="email-input" name="email" placeholder="Type your email..."><input type="submit" class="button primary" value="Subscribe"></form></div></div></li><li><p><span class="mention-wrap" data-attrs="{&quot;name&quot;:&quot;Chris #TheAntiVirusGuy Moody&quot;,&quot;id&quot;:99808489,&quot;type&quot;:&quot;user&quot;,&quot;url&quot;:null,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/464e6bec-c692-4147-9a7e-044e949345f3_6076x4557.jpeg&quot;,&quot;uuid&quot;:&quot;3a519c22-d8cb-4301-940b-987a3fc121e4&quot;}" data-component-name="MentionToDOM"></span> - Chris is the guy from practice. While I was describing high-level concepts from textbooks, he always provided insights on how things really work from his experience. If you&#8217;re curious about protecting business assets and your privacy, I can only recommend his newsletter! </p></li></ul><div class="embedded-publication-wrap" data-attrs="{&quot;id&quot;:6006673,&quot;name&quot;:&quot;Stopping the hackers by making cyber security simple&quot;,&quot;logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!QGqn!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F464e6bec-c692-4147-9a7e-044e949345f3_6076x4557.jpeg&quot;,&quot;base_url&quot;:&quot;https://theantivirusguy.substack.com&quot;,&quot;hero_text&quot;:&quot;Helping small business owners \&quot;Stop the hackers\&quot; and be safer online with easy to understand and implement cyber security advice. For entrepreneurs, the self employed, sole traders, and limited companies with one to ten employees. &quot;,&quot;author_name&quot;:&quot;Chris #TheAntiVirusGuy Moody&quot;,&quot;show_subscribe&quot;:true,&quot;logo_bg_color&quot;:&quot;#ffffff&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="EmbeddedPublicationToDOMWithSubscribe"><div class="embedded-publication show-subscribe"><a class="embedded-publication-link-part" native="true" href="https://theantivirusguy.substack.com?utm_source=substack&amp;utm_campaign=publication_embed&amp;utm_medium=web"><img class="embedded-publication-logo" src="https://substackcdn.com/image/fetch/$s_!QGqn!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F464e6bec-c692-4147-9a7e-044e949345f3_6076x4557.jpeg" width="56" height="56" style="background-color: rgb(255, 255, 255);"><span class="embedded-publication-name">Stopping the hackers by making cyber security simple</span><div class="embedded-publication-hero-text">Helping small business owners "Stop the hackers" and be safer online with easy to understand and implement cyber security advice. For entrepreneurs, the self employed, sole traders, and limited companies with one to ten employees. </div><div class="embedded-publication-author-name">By Chris #TheAntiVirusGuy Moody</div></a><form class="embedded-publication-subscribe" method="GET" action="https://theantivirusguy.substack.com/subscribe?"><input type="hidden" name="source" value="publication-embed"><input type="hidden" name="autoSubmit" value="true"><input type="email" class="email-input" name="email" placeholder="Type your email..."><input type="submit" class="button primary" value="Subscribe"></form></div></div><h2>What Comes Next</h2><p>Decoded Security is still just getting started.</p><p>Last year, I was building the concept and the brand. </p><p>This year, I&#8217;m building the system.</p><p><strong>The goal is simple:</strong></p><blockquote><p>To make Decoded Security one of the best places for people who want to understand cybersecurity, prepare for certification exams, and build a real career in the field.</p></blockquote><p>That means more practical explanations of cybersecurity concepts.</p><p>More exam-focused resources for CC, Security+, and CISSP.</p><p>More quizzes, study plans, labs, and career-focused material.</p><p>And more content that connects textbook knowledge with real-world security work.</p><p>Because passing an exam is important.</p><p>But understanding how to think like a security professional is what actually changes your career.</p><p>If you are not sure about your next step in cybersecurity, Decoded Security is here to help.</p><p><strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">Thank you for being part of the first year.</span></strong></p><p><span data-color="#ff5600" style="color: rgb(255, 86, 0);">The next one will be even better.</span></p><div class="callout-block" data-callout="true"><p>If <strong>Decoded Security</strong> helped you this year, leave a comment and tell me which cybersecurity topic you want me to decode next.</p></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><span>More than 1,300 people read </span><strong>Decoded Security</strong><span> every week! Subscribe today and get Top 10 Cybersecurity Fundamentals guide for free in the welcome email.</span></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[RTO, RPO, MTD, WRT Explained: The Backup Metrics That Separate Beginners from Professionals]]></title><description><![CDATA[Most people skip straight to backup methods. That's exactly why their recovery plans fail. Learn MTD, RTO, WRT, and RPO before you choose a single backup tool.]]></description><link>https://www.decodedsecurity.com/p/rto-rpo-mtd-wrt-explained-the-backup</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/rto-rpo-mtd-wrt-explained-the-backup</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 24 Jun 2026 17:30:54 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/5996627f-06a1-4935-bba0-bc591f28b5c7_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Most companies don&#8217;t find out their backup strategy was broken until the moment they need it most.</p><p>A ransomware attack hits on a Thursday night. The team triggers recovery. The backup exists. It was running for months. And then someone realizes: the backup was pointing to the same network share that got encrypted.</p><p>Three months of data. Gone.</p><p><strong>Simply because of a bad backup strategy.</strong></p><p>But how did that happen?</p><p><em><span data-color="#ff0000" style="color: rgb(255, 0, 0);">Many people think the hard part is knowing how different recovery strategies work.</span></em><span data-color="#ff0000" style="color: rgb(255, 0, 0);"> </span></p><p>But that&#8217;s actually quite simple. You can learn that in an hour.</p><p>The catch is understanding your business well enough to choose the right strategy.</p><blockquote><p>The method doesn&#8217;t matter if the requirements are wrong.</p></blockquote><p>In this article, I will walk you through the entire process, from the very beginning to choosing the right backup strategy that fulfills the business requirements at the least cost.</p><blockquote><p> Note: Yes, cybersecurity is all about money. Deal with it :) </p></blockquote><div class="callout-block" data-callout="true"><p><strong>CC, CISSP - Domain 7, and Security+ essential topic! Continue reading if you want to pass any of them!</strong></p></div><p><strong>What you&#8217;ll learn in this article:</strong></p><ul><li><p>Why recovery metrics come before backup methods</p></li><li><p>What MTD, RTO, WRT, and RPO actually mean</p></li><li><p>How MTD, RTO, WRT, and RPO Work Together</p></li><li><p>How to use them to make the right backup decisions</p></li><li><p><em><strong>BONUS:</strong> Printable A4 cheat sheet for certification exams with all the key backup and recovery metrics in one place</em></p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><span>More than 1,300 people read </span><strong>Decoded Security</strong><span> every week! Subscribe today and get the Top 10 Cybersecurity Fundamentals guide for FREE in the welcome email.</span></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3>The Numbers That Drive Every Backup Decision</h3><p>As always, people try to skip directly to choosing the backup methods. But remember, a good cybersecurity professional always balances the COST of security controls with their benefits. </p><p>So, before you choose a backup method, you need to understand metrics that describe the needs of your company and allow you to choose the right backup strategy. </p><blockquote><p>Trust me, not all systems needs to be backup up every day. </p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!mUDq!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!mUDq!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 424w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 848w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 1272w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!mUDq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png" width="1330" height="440" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:440,&quot;width&quot;:1330,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:96254,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:&quot;&quot;,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201419911?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!mUDq!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 424w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 848w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 1272w, https://substackcdn.com/image/fetch/$s_!mUDq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4e6f7125-6f94-44ea-a7c0-3c4c6e89f2d8_1330x440.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">MTD: Maximum Tolerable Downtime</span></strong></p><p>This is the basic deadline. The absolute maximum amount of time a system or process can be down before the consequences become unacceptable. We're talking regulatory violations, financial collapse, reputational damage that can't be undone. Everything else is measured against this number. </p><p>If you don&#8217;t meet this deadline, you&#8217;re done!</p><div class="callout-block" data-callout="true"><p><strong>BONUS:</strong> Comment &#8220;Cheatsheet&#8221; and I&#8217;ll send you a printable A4 cheat sheet for certification exams with all the key backup and recovery metrics in one place.</p></div><p><strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">RTO: Recovery Time Objective</span></strong><br>This metric tells you how long the business can survive without the system. </p><p>In other words, the maximum time period within which a mission-critical system must be restored to a designated service level after a disruption.<br><br>This defines how fast you need to recover. Some systems are not important and can be out for a week. Some need to be up and running within minutes.<br><br>The shorter your RTO, the more expensive and complex your backup solution needs to be.</p><blockquote><p>Remember: RTO &lt; MTD. That&#8217;s non-negotiable.</p></blockquote><p><strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">WRT: Work Recovery Time</span></strong><br>This is the part most people forget to account for. </p><p>The <strong>Work Recovery Time</strong> is the maximum amount of time available for certifying the functionality and integrity of restored systems and data before they go back into production.</p><p>You need to realize here that restoring a database is not the same as confirming the database is working correctly. </p><p><strong>WRT is the validation window.</strong> </p><p>During this window, you check whether all records are intact, the application is functioning correctly, and users can log in.</p><p>RTO covers getting the system back. WRT covers confirming it&#8217;s safe to use.</p><p><strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">RPO: Recovery Point Objective</span></strong><br>How much data loss is acceptable? </p><p>If your RPO is 4 hours, you can afford to run backups every 4 hours and lose at most 4 hours of data in a disaster. </p><p>If your RPO is zero, you need real-time replication.</p><p>These are <strong><span data-color="#ff0000" style="color: rgb(255, 0, 0);">business decisions</span></strong>, not technical ones. </p><p>A security professional&#8217;s job is to translate them into the right backup architecture.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!QzZx!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!QzZx!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 424w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 848w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 1272w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!QzZx!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png" width="1456" height="519" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/ff09b1cc-121f-481a-8640-f603ec764414_2320x827.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:519,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:124411,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201419911?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!QzZx!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 424w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 848w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 1272w, https://substackcdn.com/image/fetch/$s_!QzZx!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fff09b1cc-121f-481a-8640-f603ec764414_2320x827.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="callout-block" data-callout="true"><p>If this helped you understand backup metrics, give it a like so more people preparing for Security+, CISSP, or CC can find it too.</p></div><h2><strong>How They Connect</strong></h2><p>I know I have covered the connection between the metrics above, but it is so important that I decided to put it in one section. </p><p>If you&#8217;re preparing for any cybersecurity exam, this section is key to answering most questions about backup strategies (especially for the CISSP)</p><ul><li><p>MTD sets the ceiling. Nothing can exceed it. This is a number that should come up from your BIA (Business Impact Analysis)</p></li><li><p>RTO is the time required to restore the system. RTO &lt; MTD</p></li><li><p>WRT is the time to verify that the system is safe to use. It starts the moment all systems are back online. Remember MTD = RTO + WRT. </p></li><li><p>RPO determines how often backups run. The tighter the RPO, the more frequent the backup cycle, and the more expensive it gets. </p></li></ul><blockquote><p><strong>Remember:</strong> MTD = RTO + WRT. The total time consumed by recovery and verification must never exceed your hard deadline.</p></blockquote><div class="callout-block" data-callout="true"><p>If this saved you time or clarified the topic, consider giving it a like. It helps the article reach others.</p></div><h3><strong>How to Use These Metrics to Make the Right Backup Decision</strong></h3><p>Now you know the metrics, which means you are further than most people. Trust me, many technically oriented people tend to ignore this despite the fact that it is absolutely essential. </p><p>But now is the time to apply them. </p><h3><strong>Step 1: Start with MTD</strong></h3><p>Talk to the business. </p><p>Let them determine how long this system can be down before the consequences are unacceptable. </p><p>This number comes from your Business Impact Analysis. </p><p>It's not a technical decision. It's a business one. As a cybersecurity professional, you can help them with the analysis, but they need to be the ones who approve the number. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!AggC!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!AggC!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 424w, https://substackcdn.com/image/fetch/$s_!AggC!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 848w, https://substackcdn.com/image/fetch/$s_!AggC!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 1272w, https://substackcdn.com/image/fetch/$s_!AggC!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!AggC!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png" width="1456" height="592" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:592,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:107262,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201419911?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!AggC!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 424w, https://substackcdn.com/image/fetch/$s_!AggC!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 848w, https://substackcdn.com/image/fetch/$s_!AggC!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 1272w, https://substackcdn.com/image/fetch/$s_!AggC!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F30e220e4-1a8d-4b24-b45a-ca2d4fc2da53_2171x882.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3><strong>Step 2: Set your RTO and WRT</strong></h3><p>Once you have MTD, split it into two windows. </p><p>How long will the technical restore take? </p><p>That's your <strong>RTO</strong>. </p><p>How long do you need to verify everything works correctly before going live again? That's your <strong>WRT</strong>. </p><blockquote><p>The two must add up to less than or equal to your MTD.</p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!gICe!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!gICe!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 424w, https://substackcdn.com/image/fetch/$s_!gICe!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 848w, https://substackcdn.com/image/fetch/$s_!gICe!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 1272w, https://substackcdn.com/image/fetch/$s_!gICe!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!gICe!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png" width="1456" height="793" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:793,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:88362,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201419911?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!gICe!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 424w, https://substackcdn.com/image/fetch/$s_!gICe!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 848w, https://substackcdn.com/image/fetch/$s_!gICe!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 1272w, https://substackcdn.com/image/fetch/$s_!gICe!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F31eab056-1cc8-4312-9f0b-0a68f77e29fd_1518x827.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="callout-block" data-callout="true"><p>Understand what RPO actually means now? Give this article a like and help other people understand, too.</p></div><h3><strong>Step 3: Define your RPO.</strong></h3><blockquote><p><strong>Remember:</strong> This number comes from BIA. </p></blockquote><p>Now that we know how fast we need to get our systems back and running, it&#8217;s time to determine how much data loss the business can tolerate. </p><p>One hour? One day? Zero? </p><p>This number directly determines how often you need to run backups and how much you&#8217;ll spend doing it.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!yOro!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!yOro!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 424w, https://substackcdn.com/image/fetch/$s_!yOro!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 848w, https://substackcdn.com/image/fetch/$s_!yOro!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 1272w, https://substackcdn.com/image/fetch/$s_!yOro!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!yOro!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png" width="1164" height="619" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:619,&quot;width&quot;:1164,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:48566,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/201419911?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!yOro!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 424w, https://substackcdn.com/image/fetch/$s_!yOro!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 848w, https://substackcdn.com/image/fetch/$s_!yOro!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 1272w, https://substackcdn.com/image/fetch/$s_!yOro!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F244264d6-53c9-404f-be0a-790fc646a1f0_1164x619.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3><strong>Step 4: Now choose your backup method.</strong></h3><p>Only at this point does the method question make sense.</p><ul><li><p>Long RPO, high MTD: a weekly full backup with daily differentials is probably enough.</p></li><li><p>Short RPO, low MTD: you need frequent backups, fast restore capability, and possibly real-time replication.</p></li><li><p>RPO of zero: no backup method gets you there. You need mirroring.</p></li></ul><p>The method is the last decision, not the first. </p><p>Every organization that skips the metrics and starts with the method ends up either overspending on protecting their systems that don&#8217;t need it, or underspending on systems that can&#8217;t afford to go down.</p><p>And that&#8217;s why certification exams put so much stress on this topic.</p><div class="callout-block" data-callout="true"><p><strong>BONUS:</strong> Comment &#8220;Cheatsheet&#8221; and I&#8217;ll send you a printable A4 cheat sheet for certification exams with all the key backup and recovery metrics in one place.</p></div><h3><strong>Conclusion</strong></h3><p>Most people think a backup strategy is a technical problem.</p><p>Pick the right method, configure it correctly, and you&#8217;re done.</p><p>I believe that after reading this article, you&#8217;re not like most people.</p><p>You understand now where those magical numbers come from and why they are so important for choosing the right backup strategy.</p><p>Take these four metrics and use them. </p><p>Next time someone asks about backup, don&#8217;t start with the methods. </p><p>Start with MTD. Ask what the real deadline is. Ask how much data loss the business can actually tolerate.</p><blockquote><p>That&#8217;s the thinking. That&#8217;s how people will know you know what you&#8217;re talking about.</p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><strong>Next week:</strong> Full, incremental, differential, and the 3-2-1 rule. The backup methods that execute on everything you just learned.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p><strong>And if you want to know more about data security, here is what you should read next:</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-data-classification">Data Classification</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-data-states">Data states</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/floods-cybersecurity-and-survival">Recovery sites strategies</a></p></li><li><p>Backup strategies in details - NEXT WEEK</p></li></ul><h3>Frequently Asked Questions</h3><p><strong>What is the difference between RTO and RPO?</strong><br>RTO measures time: how fast must the system be restored? RPO measures data: how much data loss is acceptable? RTO is about recovery speed. RPO is about backup frequency.</p><p><strong>What does MTD mean in cybersecurity?</strong><br>MTD stands for Maximum Tolerable Downtime. It&#8217;s the absolute maximum time a system can be unavailable before the consequences become unacceptable to the business. It&#8217;s the hard deadline that every recovery plan must be built around.</p><p><strong>Is RTO always less than MTD?</strong><br>Yes. Always. RTO must be less than MTD. MTD = RTO + WRT. If RTO and WRT together exceed MTD, the recovery plan has already failed before anything goes wrong.</p><p><strong>Where do these numbers come from?</strong><br>From the Business Impact Analysis (BIA). These are business decisions, not technical ones. The role of a cybersecurity professional is to help the business define them and then translate them into the right technical solution.</p><div class="callout-block" data-callout="true"><p><strong>BONUS:</strong> </p><p>Comment &#8220;Cheatsheet&#8221; and I&#8217;ll send you a printable A4 cheat sheet for certification exams with all the key backup and recovery metrics in one place.</p></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain Data States to a Beginner: Why Encrypting Your Files Is Not Enough to Keep It Safe]]></title><description><![CDATA[While people compete over who know the best encryption algorithm, the real cybersecurity professional need to see the whole picture. This is everything you need to know about Data Security.]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-data-states</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-data-states</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 17 Jun 2026 10:51:10 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/03eea149-e39f-4868-97f8-23602027afb2_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<blockquote><p><strong>Warning:</strong><span data-color="rgb(54, 55, 55)" style="color: rgb(54, 55, 55);"> CC, CISSP - Domain 2, and Security+ essential topic</span></p></blockquote><p>Data is often the most valuable possession we have. Businesses have their trade secrets, and families have their photos from that vacation that everyone enjoyed. </p><p>You can buy a new computer or a new phone, but you won&#8217;t buy those pictures again. </p><p>In other words, it doesn&#8217;t matter who you are, we all have data that we don&#8217;t want to lose because they have value for us, financial or emotional - it is an asset for us. </p><blockquote><p>And modern cybersecurity is dedicated to protecting assets. </p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><strong>1,250+ cybersecurity beginners</strong> and <strong>certification candidates</strong> get practical breakdowns like this every week. If you want to start making real progress, <strong>subscribe for free.</strong></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3><strong>What can you expect from this article?</strong></h3><p><strong>In this post, I will:</strong></p><ul><li><p>Explain the three states of data and what each one actually means</p></li><li><p>Show you what attackers target in each state</p></li><li><p>Give you the right controls for each state</p></li><li><p>Show you why a layered approach is the only one that actually works</p></li></ul><p>But before we move any further, I would like to provide you with more resources on Data Security. </p><p>Knowing how to protect data means nothing if you do not know what data you actually have. </p><p>Before security controls come data classification (knowing what is sensitive and what is not) and the data lifecycle (understanding how data moves through your organization from creation to destruction).</p><p>If you have not read those yet, start there:</p><ul><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-data-classification">This Is How I Explain Data Classification to a Beginner</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-data-lifecycle-from-creation">The Data Lifecycle: From Creation to Destruction</a></p></li></ul><p>This article picks up where those leave off. Now that you know what data you have and where it lives, let&#8217;s talk about how to protect it at every stage of its existence.</p><blockquote><p>Do you find this article helpful? Give it a like and help me share it to more people!</p></blockquote><h2>The Three States of Data</h2><blockquote><p><strong>Lesson to remember:</strong> Protecting data at only one state is like putting your cash in a safe, then carrying the safe through a bad neighborhood with the combination written on the side.</p></blockquote><p>There are three states that data can be in. In the following section, I will describe each state and tell you the typical security controls associated with it.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!HtWs!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!HtWs!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 424w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 848w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 1272w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!HtWs!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png" width="1456" height="1097" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/c70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1097,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:112328,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!HtWs!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 424w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 848w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 1272w, https://substackcdn.com/image/fetch/$s_!HtWs!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc70b7e20-f0a7-423c-a980-d781fd0b9f1b_1727x1301.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>Data at Rest</h3><p>Data at rest is data that is stored and not currently being processed or moved.</p><p>Meaning? Those are all the data that you have saved on your hard drive, your documents in cloud storage, or backups on a tape. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!RMQR!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!RMQR!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!RMQR!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png" width="1250" height="773" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:773,&quot;width&quot;:1250,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:123391,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!RMQR!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!RMQR!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23c72404-9875-4e08-8259-152b2346fa0e_1250x773.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>This is the state most people think about first, and for good reason. It is the easiest to picture. Data sitting still, waiting to be used.</p><p><strong>What attackers target here:</strong> Physical theft of devices, unauthorized access to storage systems, misconfigured cloud buckets, or weak access controls.</p><p><strong>How to protect it:</strong></p><ul><li><p>Full-disk encryption (FDE) using AES</p></li><li><p>Database encryption for sensitive records</p></li><li><p>File-level encryption for individual documents</p></li><li><p>Tokenization for sensitive data fields (credit card numbers, SSNs)</p></li><li><p>Access controls that limit who can reach the data in the first place</p></li><li><p>Data Loss Prevention (DLP) tools</p></li></ul><p><strong>The goal is simple:</strong> even if someone gets physical or logical access to the storage, they cannot read the data without the key.</p><p>However, sooner or later, we will need to either use the data or move it somewhere else. </p><blockquote><p>If you find this article helpful, give it a like and help me get this to more people who are interested in cybersecurity!</p></blockquote><h3>Data in Transit</h3><p>Data in transit is data moving from one location to another, typically across a network.</p><p>It can be an email traveling across servers, it can be a file being downloaded from a website, or an API call carrying user records. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!G5p-!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!G5p-!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!G5p-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png" width="1250" height="773" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:773,&quot;width&quot;:1250,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:116771,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!G5p-!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!G5p-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F76b7125f-d6c6-4f9b-b01b-7ca44529dc61_1250x773.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>The sky is the limit. If you&#8217;re moving data from one place to another - this is it!</p><p>This is where people get caught off guard. </p><blockquote><p><strong>Note:</strong> You need to decrypt the data to send it to someone else as you should be the only one who has the keys from the data on YOUR system.</p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!WGRy!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!WGRy!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 424w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 848w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 1272w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!WGRy!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png" width="1456" height="726" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:726,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:361276,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!WGRy!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 424w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 848w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 1272w, https://substackcdn.com/image/fetch/$s_!WGRy!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1d2f64ed-e294-44be-af55-f2ebcffa5631_4728x2359.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>The moment data leaves one system and heads to another, it is exposed to the network. Without the right controls, anyone with access to that network path can intercept it.</p><p><strong>What attackers target here:</strong> Man-in-the-middle attacks, packet sniffing on unsecured networks, DNS hijacking, rogue Wi-Fi access points.</p><p><strong>How to protect it:</strong></p><ul><li><p>TLS/SSL for web traffic (HTTPS)</p></li><li><p>IPsec for network-level encryption</p></li><li><p>SSH for secure remote access and file transfer</p></li><li><p>SFTP instead of plain FTP</p></li><li><p>Firewalls and intrusion detection systems (IDS) at the network layer</p></li></ul><p><strong>The goal</strong>: Ensure confidentiality and integrity while the data is moving. No one in the middle should be able to read or tamper with it.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!awFt!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!awFt!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 424w, https://substackcdn.com/image/fetch/$s_!awFt!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 848w, https://substackcdn.com/image/fetch/$s_!awFt!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 1272w, https://substackcdn.com/image/fetch/$s_!awFt!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!awFt!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png" width="1456" height="471" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/dd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:471,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:450106,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!awFt!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 424w, https://substackcdn.com/image/fetch/$s_!awFt!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 848w, https://substackcdn.com/image/fetch/$s_!awFt!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 1272w, https://substackcdn.com/image/fetch/$s_!awFt!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fdd931247-7b3b-4cab-bae1-82b610921fe1_6074x1966.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p><strong>Still reading?</strong> Excellent. <strong>Decoded Security</strong> share all the study resources for free. Give this article a like and help us get it to more people who are serious about cybersecurity!</p></blockquote><h3>Data in Use</h3><p>Data in use is data being actively processed, accessed, or manipulated by a system or application.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!kdxH!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!kdxH!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!kdxH!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png" width="1250" height="773" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e49b4987-4612-4435-9e76-120ac26044c8_1250x773.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:773,&quot;width&quot;:1250,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:121550,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!kdxH!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 424w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 848w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 1272w, https://substackcdn.com/image/fetch/$s_!kdxH!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe49b4987-4612-4435-9e76-120ac26044c8_1250x773.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>It can be anything from data entered into a web form to a file open in a word processor, to calculations running in a spreadsheet, to a query result loaded into an application.</p><p>This is the most overlooked state. And it is the hardest to protect.</p><p>For data to be processed, it usually has to be decrypted first. That means it exists in a readable state in memory. If an attacker gets access to that memory, the encryption you applied at rest means nothing.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!tqOY!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!tqOY!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 424w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 848w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 1272w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!tqOY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png" width="1456" height="816" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:816,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:181795,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200760385?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!tqOY!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 424w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 848w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 1272w, https://substackcdn.com/image/fetch/$s_!tqOY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb4c85752-9bad-4bf3-ac3e-b652b14e1663_2828x1585.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>What attackers target here:</strong> memory scraping (used in many point-of-sale breaches), process injection, screen-capture malware, and insider threats with legitimate application access.</p><p><strong>How to protect it:</strong></p><ul><li><p>Memory encryption</p></li><li><p>Secure enclaves, also called Trusted Execution Environments (TEEs): isolated areas of a processor where sensitive data can be processed without being exposed to the rest of the system</p></li><li><p>User access controls that limit what each person can do within an application</p></li><li><p>Application security controls and secure coding practices</p></li><li><p>Data classification so the system knows how to handle sensitive data differently</p></li><li><p>Endpoint Detection and Response (EDR) tools</p></li></ul><p>The goal: minimize the window during which data is exposed and detect any attempt to access it during that window.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Do you want to learn more about Data Security? Subscribe to <strong>Decoded Security</strong> and learn more every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>Why This Matters Beyond any Exam</h2><p>Security controls chosen without context are just expensive guesses.</p><p>Understanding data states gives you a framework for asking the right question: Where is this data right now, and what is threatening it in that state?</p><p>That question changes how you design systems, evaluate vendors, write security policies, and respond to incidents.</p><p>It also changes how you communicate risk to non-technical stakeholders. Telling a business leader &#8220;we encrypted the database&#8221; sounds like a great idea, but as you now know, it is only a third of the whole.  </p><p>Telling them &#8220;we encrypted the database, secured transmission with TLS, and deployed endpoint protection to cover data in use&#8221; tells a much more accurate story.</p><h2>Key Takeaways</h2><ul><li><p><strong>Data exists in three states:</strong> at rest, in transit, and in use</p></li><li><p>Each state has a different threat profile and requires different controls</p></li><li><p>Encrypting storage only protects one state</p></li><li><p>A layered, state-aware approach is the only way to cover all three</p></li><li><p>For CISSP and Security+: Always identify the data state before selecting a control</p></li></ul><blockquote><p><mark data-color="#ffff00" style="background-color: rgb(255, 255, 0); color: rgb(0, 0, 0);">Note: This is what you need to remember for the CC, CISSP and Security+ exam! </mark></p></blockquote><h2>Conclusion</h2><p>While this isn&#8217;t the most complex topic that you&#8217;ll ever see, I find it absolutely crucial for data security.</p><p>In a world where everyone uses buzzwords and competes over who knows the &#8220;best&#8221; encryption algorithm, we need people who see the whole picture. </p><p><span data-color="#ff0000" style="color: rgb(255, 0, 0);">People who know that the weakest link in the chain determines how well the data is protected. </span></p><p>And there is one more thing. Reading about something is one thing, but actually understanding it and making the right decisions is completely another. </p><p>And because helping you understand cybersecurity concepts is Decoded Security's top priority, I prepared a free quiz based on this article, with detailed explanations.</p><blockquote><p><strong><a href="https://quiz.decodedsecurity.com/article/three-states-of-data">The Three States of Data - FREE QUIZ</a></strong></p></blockquote><div class="callout-block" data-callout="true"><p>Take it <a href="https://quiz.decodedsecurity.com/article/three-states-of-data">HERE</a> and drop your score below! Don&#8217;t be shy, we all started somewhere!</p><p>Good luck! </p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-data-states/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-data-states/comments"><span>Leave a comment</span></a></p></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">If you are not subscribed yet, join <strong>1,250</strong>+ readers who get practical <strong>cybersecurity</strong> content every week.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p>Thank you for reading Decoded Security!</p><p>Best,<br>Erich</p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain Data Classification To a CISSP candidates]]></title><description><![CDATA[Proper data classification is the foundation of any good cybersecurity program. No surprise it appears on nearly every certification exam: CC, CISSP, and Security+. Here is what you need to know!]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-data-classification</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-data-classification</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Thu, 11 Jun 2026 13:27:26 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/28b62b32-1fc4-4c09-ae82-8f26f8d3621e_1120x631.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<blockquote><p><strong>Warning:</strong> CC, CISSP - Domain 2, and Security+ essential topic.</p></blockquote><p>Every company in the world collects data, and for many, it is the most important asset they have. </p><p>Customer records, employee contracts, financial reports, internal emails.</p><p>Most people assume someone is protecting it properly.</p><p><strong>But if there is a good rule to live by for cybersecurity experts:</strong> Assumptions kill security. </p><blockquote><p>If you're studying for a cybersecurity cert right now, like this post! You're not alone.</p></blockquote><p>The problem is that the moment you start talking about data protection, everybody starts talking about encryption and tools. </p><p>But which tool you are going to use in your organization isn&#8217;t that important. </p><p>The first question you should focus on is: </p><p><strong>Which data actually needs protection, and how much?</strong></p><p>That question is what data classification answers. </p><blockquote><p>And if you&#8217;re studying for the CISSP, Security+, or just trying to understand how security programs actually work, this concept is something you need to understand deeply.</p></blockquote><p><strong>Here is what you can expect to learn from this article:</strong></p><ul><li><p>Why data classification exists and what it actually is</p></li><li><p>The classification levels used in government and business, and how they differ</p></li><li><p>How the whole process of data classification works</p></li><li><p>How classification connects directly to access control, compliance, and incident response</p></li><li><p>Everything you need to know for the certification exams</p></li></ul><p>If this is something you want to learn more about, just keep reading!</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,250 people read <strong>Decoded Security</strong> every week! Join our community and let us help you achieve your goals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>Why Data Classification exists</h2><p>I like describing concepts with specific examples, because it allows people to tie them down to real situations and imagine them better.</p><p>After all, cybersecurity is supposed to solve real-world problems. We are far beyond academic debates that have no real impact.</p><p>So, imagine a hospital.</p><p>They have patient records. Financial reports. Internal memos. A lunch menu for the cafeteria.</p><p>All of that is &#8220;data.&#8221; But not all of it needs the same level of protection.</p><p>If someone leaks the cafeteria menu, no real harm is done.</p><p>If someone leaks a patient&#8217;s HIV diagnosis, lives can be destroyed, laws are broken, and the organization faces massive consequences.</p><p>So the first option would be to protect everything as classified. Well, that would probably mean your business won&#8217;t survive. The cost would be too high. The usability of the systems would be very low.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!-mnN!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!-mnN!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 424w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 848w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 1272w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!-mnN!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png" width="1456" height="679" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:679,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:82471,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!-mnN!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 424w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 848w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 1272w, https://substackcdn.com/image/fetch/$s_!-mnN!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F2bbf1384-7897-44d3-8a3d-f7aab907ba37_1800x840.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>In other words:</strong></p><p>Too much protection on everything is expensive and slows everything down. Too little protection on the wrong data leads to breaches, regulatory fines, and reputational damage.</p><p>Data classification is the solution. It forces you to think before you protect and spend your money efficiently.</p><div class="callout-block" data-callout="true"><p><strong>Are you interested in data security concepts?</strong> Give this article a like and help me create more free content for our community!</p></div><h2>What Data Classification Actually Is</h2><p>Data classification is the process of categorizing data based on its sensitivity and the potential impact of its loss or unauthorized disclosure.</p><p>Simple definition. But the implications are huge.</p><p><strong>When you classify data properly, you unlock the ability to:</strong></p><ul><li><p>Apply the right controls to the right data (not the same controls to everything)</p></li><li><p>Meet compliance requirements like GDPR and HIPAA </p></li><li><p>Enforce least privilege access: people only see what they need to see</p></li><li><p>Respond to incidents faster because you already know what was at risk</p></li><li><p>Prevent loss of essential data by understanding what actually matters and implementing the right security controls</p></li></ul><p>Classification is not a technical control. It is a foundational decision that makes all your technical controls work properly.</p><p>If you skip classification, your security program has no basis.</p><blockquote><p><strong>Remember:</strong> Classify first, then spend money on security controls!</p></blockquote><div class="callout-block" data-callout="true"><p>PII and GDPR are inseparable on the CISSP exam. If you know one, you need to know the other. <strong>Here's the breakdown:</strong> </p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;cea95435-1c08-45f5-9801-36cf1bb52809&quot;,&quot;caption&quot;:&quot;Here&#8217;s something wild: A company in San Francisco collecting email addresses from a marketing campaign can be fined up to &#8364;20 million or 4% of annual global revenue (whichever is greater) by European regulators.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;GDPR Explained: The Privacy Law That Follows Your Data Everywhere&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Certified | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-11-17T15:52:21.033Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/3441376c-fccc-400f-8b3e-d365b357cc93_1456x1048.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/gdpr-explained-the-privacy-law-that&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:179140838,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:7,&quot;comment_count&quot;:2,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div></div><h3>Two Data Types You Must Know</h3><p>Before we get to classification levels, there are two types of sensitive data that appear constantly in cybersecurity certifications for one simple reason. </p><p>Those two types are highly regulated, and if anything goes wrong, your company will pay the price.</p><p>So, which data are so special?</p><p><strong>Personally Identifiable Information (PII):</strong> Any information that can identify a specific individual. Name, social security number, date of birth, biometric records, and home address.</p><p><strong>Protected Health Information (PHI):</strong> Any health-related information tied to a specific person. This is covered under HIPAA in the US, and mishandling it carries serious legal consequences.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!oC01!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!oC01!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 424w, https://substackcdn.com/image/fetch/$s_!oC01!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 848w, https://substackcdn.com/image/fetch/$s_!oC01!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 1272w, https://substackcdn.com/image/fetch/$s_!oC01!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!oC01!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png" width="1456" height="679" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:679,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:85668,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!oC01!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 424w, https://substackcdn.com/image/fetch/$s_!oC01!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 848w, https://substackcdn.com/image/fetch/$s_!oC01!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 1272w, https://substackcdn.com/image/fetch/$s_!oC01!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F23d27bd3-3511-4200-be58-e848d1b8b7b9_1800x840.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>Both are high-sensitivity data by definition. They require the strongest classification levels and the tightest controls.</p><p>If you see either of these in an exam question, your brain should immediately think: <strong>maximum protection, strict access control, regulatory compliance.</strong></p><div class="poll-embed" data-attrs="{&quot;id&quot;:569351}" data-component-name="PollToDOM"></div><p></p><h3>The Classification Levels</h3><p>Organizations classify data differently depending on whether they operate in the public or private sector. But the underlying logic is the same: </p><blockquote><p>The more damage unauthorized disclosure can cause, the higher the classification level.</p></blockquote><p><strong>Here is how the two scales map against each other:</strong></p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!ljET!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!ljET!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 424w, https://substackcdn.com/image/fetch/$s_!ljET!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 848w, https://substackcdn.com/image/fetch/$s_!ljET!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 1272w, https://substackcdn.com/image/fetch/$s_!ljET!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!ljET!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png" width="1446" height="498" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:498,&quot;width&quot;:1446,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:96145,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!ljET!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 424w, https://substackcdn.com/image/fetch/$s_!ljET!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 848w, https://substackcdn.com/image/fetch/$s_!ljET!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 1272w, https://substackcdn.com/image/fetch/$s_!ljET!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F53b4100f-b1d5-4c52-94b0-ce9bc8ab7bda_1446x498.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!v5T6!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!v5T6!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 424w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 848w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 1272w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!v5T6!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png" width="1360" height="840" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/d4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:840,&quot;width&quot;:1360,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:103927,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!v5T6!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 424w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 848w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 1272w, https://substackcdn.com/image/fetch/$s_!v5T6!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4e8e3ee-5ce4-4c47-9a40-89cbe7d2d897_1360x840.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>Remember that non-government organizations can use data classification categories of their own creation, tailored to meet their specific needs. </p><p><strong>But these categories are the ones you&#8217;ll need for the CISSP exam.</strong> </p><p>Okay, now you know the levels. </p><p>But that is only half the picture. The other half is understanding the process that gets you there.</p><p><strong>Most organizations follow four steps:</strong></p><ol><li><p><strong>Create classification categories</strong> </p></li></ol><p>Define the levels your organization will use. Public, Internal, Confidential, Restricted. Or whatever labels fit your context. The names matter less than having a consistent, documented scheme everyone understands.</p><ol start="2"><li><p><strong> Determine minimum security requirements per category</strong> </p></li></ol><p>For each classification level, define the baseline controls that must be applied. What encryption is required? Who is allowed access? How long is the data retained? This is where classification turns into actionable policy.</p><ol start="3"><li><p><strong> Classify the data</strong> </p></li></ol><p>Go through your data and assign the appropriate label based on sensitivity and potential impact. This step requires input from data owners, not just the security team. The people who create and use the data understand its value better than anyone.</p><ol start="4"><li><p><strong>Implement security controls</strong> </p></li></ol><p>Now you spend money. Apply the controls defined in step two to the data classified in step three. Encryption, access restrictions, DLP policies, monitoring rules. Everything flows from the classification decision made in the previous steps.</p><blockquote><p>The order matters. You do not buy tools and then figure out what you are protecting. You classify first, then implement.</p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!y6u-!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!y6u-!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 424w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 848w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 1272w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!y6u-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png" width="1456" height="1064" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1064,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:307407,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!y6u-!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 424w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 848w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 1272w, https://substackcdn.com/image/fetch/$s_!y6u-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F08bcc34b-150f-4114-b631-03a8dd0cbbc1_3171x2318.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>How Classification Connects to Everything Else</h3><p>Up until now, you might get a feeling that the whole thing is just an administrative exercise.</p><p>But it isn&#8217;t. It is the foundation of any good security program. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!mBHi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!mBHi!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 424w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 848w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 1272w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!mBHi!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png" width="1456" height="809" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:809,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:107207,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/200736517?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!mBHi!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 424w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 848w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 1272w, https://substackcdn.com/image/fetch/$s_!mBHi!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F26b9392e-b77a-4400-849a-01703bc96a8f_1800x1000.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>Let me give you a couple of examples:</strong></p><p><strong>Access Control:</strong> Once data is classified, you can define who is allowed to see it. You cannot enforce least privilege without knowing what you are protecting.</p><p><strong>Compliance:</strong> Laws like GDPR and HIPAA require you to handle certain data in specific ways. Classification tells you which data falls under which regulations.</p><p><strong>Incident Response:</strong> When a breach happens, you need to know immediately what was exposed. Classified data means you already have that answer. Unclassified data means you are guessing while the clock runs.</p><p><strong>Data Loss Prevention (DLP):</strong> DLP tools use classification labels to automatically apply policies. If a file is labeled &#8220;Restricted,&#8221; the system can block it from being emailed externally. Without labels, DLP cannot do its job.</p><p><strong>Audit and Monitoring:</strong> Classification tells your monitoring systems which data needs the most attention. You cannot watch everything equally. Classification tells you where to focus.</p><p>See? You can&#8217;t implement proper security controls if you don&#8217;t know what you&#8217;re protecting.</p><h2>Conclusion</h2><p>I hope that after reading this article, you won&#8217;t just remember - Public, Sensitive, and Private&#8230;but you will actually take it as an essential part of a security program.</p><p>I know that many cybersecurity professionals ignore this step, because it isn&#8217;t &#8220;technical&#8221; enough. </p><p>But the reality is that you can&#8217;t protect what you don&#8217;t know you have. So don&#8217;t take it as wasted time, but as an investment that will actually help you implement efficient security controls.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Interested in data security? Subscribe to <strong>Decoded Security</strong> and learn something new every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p><em><strong>Looking to go deeper on data security? Start with these:</strong></em></p><ul><li><p><strong><a href="https://www.decodedsecurity.com/p/cybersecurity-basics-the-data-security?utm_source=publication-search">Cybersecurity Basics: The Data Security Lifecycle</a></strong></p></li><li><p><strong><a href="https://www.decodedsecurity.com/p/gdpr-explained-the-privacy-law-that?utm_source=publication-search">GDPR Explained: The Privacy Law That Follows Your Data Everywhere</a></strong></p></li><li><p><strong><a href="https://www.decodedsecurity.com/p/how-i-passed-the-cissp-exam-in-3?utm_source=publication-search">How I passed the CISSP exam in 3 months!</a></strong></p></li></ul><blockquote><p>And if you are still deciding which cybersecurity path makes the most sense for your goals, start with the <a href="https://quiz.decodedsecurity.com/">career path guide.</a></p></blockquote><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain VPNs to Beginners: Read This Before Clicking “Connect”]]></title><description><![CDATA[Stop assuming you&#8217;re safe just because you use a VPN. A VPN doesn&#8217;t make you anonymous. It moves trust from your ISP to someone else. The question is: is that actually better?]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 03 Jun 2026 09:50:25 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/243d80cd-dfac-4c99-abea-283f5bce6c82_1731x909.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>You might think you know what a VPN is. It is an encrypted tunnel between two communication points. Am I right? </p><p>Well, that&#8217;s one way to put it, but if you&#8217;re serious about your cybersecurity career, you are going to need more than that. </p><p>That&#8217;s why I put everything you need to know about VPNs in one place.</p><blockquote><p><strong>Warning:</strong> Crucial CC, CISSP and Security+ topics</p></blockquote><p><strong>After reading this article, you will know:</strong></p><ul><li><p>What a VPN actually is and why it exists</p></li><li><p>Why simply using a VPN doesn&#8217;t mean you are safe</p></li><li><p>Key components of the VPN infrastructure</p></li><li><p>The most important VPN protocols (PPTP, L2TP, IPsec)</p></li><li><p>Key takeaways - What you need to know as a <strong>cybersecurity professional</strong></p></li><li><p><strong>Bonus - Decoded Security printable cheat-sheet:</strong> One page with the most important information</p></li></ul><p>This is a foundational topic. Let&#8217;s build it from scratch.</p><div class="callout-block" data-callout="true"><p>If you've ever clicked "Connect" on a VPN without really knowing what it does, <strong>give this a like</strong>. I think more people than we'd expect have been there. Let&#8217;s change that together!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments"><span>Leave a comment</span></a></p></div><h3>What Is a VPN?</h3><p>Let&#8217;s start with the simplest possible explanation.</p><p>When you connect to the internet from a coffee shop, your traffic travels over a network you don&#8217;t control. Anyone on that network could potentially intercept what you&#8217;re sending.</p><p>A VPN solves this problem by creating an encrypted tunnel between your device and a remote server.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!isV_!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!isV_!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 424w, https://substackcdn.com/image/fetch/$s_!isV_!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 848w, https://substackcdn.com/image/fetch/$s_!isV_!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 1272w, https://substackcdn.com/image/fetch/$s_!isV_!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!isV_!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png" width="1456" height="703" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:703,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:658167,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/199842877?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!isV_!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 424w, https://substackcdn.com/image/fetch/$s_!isV_!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 848w, https://substackcdn.com/image/fetch/$s_!isV_!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 1272w, https://substackcdn.com/image/fetch/$s_!isV_!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F51401d6a-2595-454b-b538-115d3b7a46e9_3844x1856.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><p><strong>Think of it like this:</strong></p><p>Imagine you need to send a confidential letter across a city. Instead of handing it to a random stranger on the street, you put it in a locked tube, send it through a private pipe directly to the recipient, and only they can open it.</p><p>That&#8217;s a VPN.</p><p><strong>The three things a VPN provides:</strong></p><ul><li><p><strong>Confidentiality:</strong> Your traffic is encrypted. Nobody in the middle can read it.</p></li><li><p><strong>Authentication:</strong> Both sides verify who they&#8217;re talking to.</p></li><li><p><strong>Integrity:</strong> The data hasn&#8217;t been tampered with in transit.</p></li></ul><p>Sounds familiar? Those are <a href="https://www.decodedsecurity.com/p/my-first-week-of-cissp-prep-what">core security principles</a>. VPNs exist to enforce them over untrusted networks.</p><blockquote><p>What a VPN actually is and why it exists - You know the answer now! &#9989;</p></blockquote><h3>Why Does This Actually Matter?</h3><p>Today, remote work is standard. Employees connect to company systems from home, hotels, and airports. Without VPNs, every one of those connections is a risk.</p><p>A company that doesn&#8217;t use VPNs for remote access is exposing internal systems to anyone who can intercept traffic on a public network.</p><p>That&#8217;s why every serious organization uses VPNs. And that&#8217;s why every cybersecurity professional is expected to understand them.</p><p>Besides that, people are starting to use different VPN providers for personal use. You have seen the ads, right? <br>&#8221;Connect securely from anywhere in the world..&#8221; </p><p>Is it a good idea to use a VPN while traveling? </p><p>Yes, but before you do, make sure to continue reading! There is one catch that you need to be familiar with!</p><h3>Why Every VPN Isn&#8217;t Safe</h3><p>When you connect to a VPN, you are not becoming anonymous. You are moving trust.</p><p><strong>Before the VPN:</strong> your ISP (Internet Service Provider) can see your traffic. </p><p><strong>After the VPN:</strong> your VPN provider can see your traffic.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!9InY!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!9InY!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 424w, https://substackcdn.com/image/fetch/$s_!9InY!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 848w, https://substackcdn.com/image/fetch/$s_!9InY!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 1272w, https://substackcdn.com/image/fetch/$s_!9InY!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!9InY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png" width="1456" height="433" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:433,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:670609,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/199842877?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!9InY!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 424w, https://substackcdn.com/image/fetch/$s_!9InY!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 848w, https://substackcdn.com/image/fetch/$s_!9InY!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 1272w, https://substackcdn.com/image/fetch/$s_!9InY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d7eae63-fa26-487f-b5fe-f38e8c1b263e_2912x866.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>You haven&#8217;t eliminated the problem. You&#8217;ve relocated it.</p><p>And if you&#8217;re using a free VPN, it gets worse.</p><p>Free VPNs are not a service. They are a business. If you&#8217;re not paying for the product, you are the product. Your browsing history, location, and behavior patterns get packaged and sold. </p><p>Some free VPN providers have been caught injecting ads into user traffic. Others have been linked to data harvesting operations.</p><p>You installed a privacy tool, and you handed your data to a stranger.</p><p>Even paid VPNs aren&#8217;t automatically safe either. The questions that actually matter:</p><ul><li><p>Do they keep logs of your activity?</p></li><li><p>Where are they headquartered, and what laws apply to them?</p></li><li><p>Have they been independently audited?</p></li></ul><p>The rule is simple. A VPN is only as trustworthy as the provider running it. <strong>Choose carefully.</strong></p><blockquote><p>Why simply using a VPN doesn&#8217;t mean you are safe - Checked! &#9989;</p></blockquote><p>This marks the end of the &#8220;users&#8221; section. I felt obligated to spread the awareness as I personally know many people who use various VPNs, and it would be better if they didn&#8217;t use any at all.</p><p>Now we are moving to the part of the article that is crucial for cybersecurity professionals and CISSP candidates!</p><div class="callout-block" data-callout="true"><p><strong>If this changed how you think about VPNs, give it a like. It helps other people find it.</strong></p></div><h3>Key Components of a VPN</h3><p>Before we get into different protocols, let&#8217;s quickly describe what the VPN is actually made of. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!o63y!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!o63y!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 424w, https://substackcdn.com/image/fetch/$s_!o63y!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 848w, https://substackcdn.com/image/fetch/$s_!o63y!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 1272w, https://substackcdn.com/image/fetch/$s_!o63y!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!o63y!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png" width="1456" height="615" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:615,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:87144,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/199842877?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!o63y!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 424w, https://substackcdn.com/image/fetch/$s_!o63y!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 848w, https://substackcdn.com/image/fetch/$s_!o63y!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 1272w, https://substackcdn.com/image/fetch/$s_!o63y!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F442cd896-ca80-4655-b9bc-82506953f53c_1800x760.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>VPN Client</strong></p><p>The software that is installed on your device. It initiates the connection, handles encryption, and manages the tunnel. </p><p><strong>VPN Tunnel</strong></p><p>The encrypted path between your device and the VPN server. All your traffic travels through this tunnel, hidden from anyone outside it.</p><p><strong>VPN Server</strong></p><p>The endpoint on the other side. It receives your encrypted traffic, decrypts it, and forwards it to its destination. In a corporate setup, this sits at the edge of the company network. In a consumer setup, it&#8217;s operated by the VPN provider.</p><p>Simple, isn&#8217;t it? </p><p>Each user has a client on their device that handles the connection between their device and the VPN server. </p><p>Now..buckle up. Because the next topic is one of the most tested in the certification exams and is actually essential to understand for real cybersecurity work.</p><blockquote><p>Key components of the VPN infrastructure - Great progress! &#9989;</p></blockquote><div class="callout-block" data-callout="true"><p><strong>Quick test:</strong> Can you explain the difference between the VPN client and the VPN server in one sentence? Write it in the comments. I'll tell you if you've got it right.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments"><span>Leave a comment</span></a></p></div><h3>VPN Protocols</h3><p>A VPN isn&#8217;t a single technology. It&#8217;s a concept implemented through different protocols, each with its own approach to encryption, authentication, and performance.</p><p>Basically, in this section, we are going to break down how the &#8220;tunnel&#8221; is created and implemented.</p><h4>PPTP (Point-to-Point Tunneling Protocol)</h4><p>PPTP is one of the oldest VPN protocols. You&#8217;ll see it mentioned in study materials. You will almost never see it used in practice.</p><p>Why? Because it has serious known vulnerabilities. The encryption it uses is weak by modern standards. It was fast, which was important in the 1990s when processing power was limited. That tradeoff no longer makes sense.</p><p>I only mention it because it often appears in the certification exam as the least secure protocol.</p><p><strong>For the exam:</strong> PPTP = fast, obsolete, insecure. Don&#8217;t recommend it. Don&#8217;t use it.</p><h4>L2TP (Layer 2 Tunneling Protocol)</h4><p>L2TP is the next generation. But here&#8217;s the catch: L2TP doesn&#8217;t provide any encryption on its own.</p><p>It creates the tunnel. Nothing more.</p><p>That&#8217;s why you almost always see it paired with IPsec. Written as L2TP/IPsec.</p><p>When properly implemented with IPsec, L2TP/IPsec is considered secure. But it&#8217;s a legacy solution at this point. You&#8217;ll see it in older enterprise environments and on exam questions.</p><p><strong>For the exam:</strong> L2TP alone = no encryption. L2TP/IPsec = secure when properly implemented.</p><h4>IPsec (Internet Protocol Security)</h4><p>This is the one you really need to understand.</p><p>IPsec isn&#8217;t a single protocol. It&#8217;s a suite of protocols designed to authenticate and encrypt IP packets. It can work as a standalone VPN solution or in combination with L2TP.</p><p>IPsec has two main components, and knowing the difference between them is high-probability exam content.</p><p><strong>Authentication Header (AH)</strong></p><p>AH calculates a cryptographic hash over the entire packet. This provides:</p><ul><li><p>Integrity: the packet hasn&#8217;t been modified in transit</p></li><li><p>Authentication: you know who sent it</p></li></ul><p>What AH does NOT provide: encryption. The data is visible. AH just ensures it hasn&#8217;t been tampered with.</p><p><strong>Encapsulating Security Payload (ESP)</strong></p><p>ESP encrypts the payload of the IP packet. This provides:</p><ul><li><p>Confidentiality: the data is hidden</p></li><li><p>Integrity</p></li><li><p>Limited authentication</p></li></ul><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!nAR-!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!nAR-!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 424w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 848w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 1272w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!nAR-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png" width="1456" height="825" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:825,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:93614,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/199842877?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!nAR-!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 424w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 848w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 1272w, https://substackcdn.com/image/fetch/$s_!nAR-!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb3aff6e0-2540-4b3e-aca7-ae6c1000ffe2_1800x1020.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>ESP is what actually hides your data. AH confirms the data wasn&#8217;t touched. In practice, they&#8217;re often used together.</p><p>There is much more to the IPsec protocols, but I think this is enough for one day. </p><blockquote><p>The most important VPN protocols (PPTP, L2TP, IPsec) - Checked! &#9989;</p></blockquote><div class="callout-block" data-callout="true"><p><strong>Are you interested in more networking topics?</strong> Give this article a like and help me create more free content for our community!</p></div><h3>Key Takeaways</h3><p>Here&#8217;s what you need to walk away with.</p><p><strong>On the basics:</strong></p><ul><li><p>A VPN creates an encrypted tunnel between your device and a remote server</p></li><li><p>It provides confidentiality, authentication, and integrity over untrusted networks</p></li><li><p>A VPN moves trust, it doesn&#8217;t eliminate it. Your provider can see everything your ISP used to see</p></li><li><p>Never use a free VPN. If you&#8217;re not paying for the product, you are the product</p></li></ul><p><strong>On VPN components:</strong></p><ul><li><p>Client: initiates the connection and manages the tunnel from your device</p></li><li><p>Tunnel: the encrypted path your traffic travels through</p></li><li><p>Server: receives, decrypts, and forwards your traffic at the other end</p></li></ul><p><strong>On protocols:</strong></p><ul><li><p>PPTP: fast, obsolete, do not use</p></li><li><p>L2TP: no encryption alone, secure when paired with IPsec</p></li><li><p>IPsec: the gold standard, used standalone or with L2TP</p></li></ul><p><strong>On IPsec components:</strong></p><ul><li><p>AH: integrity and authentication, no encryption</p></li><li><p>ESP: confidentiality, integrity, limited authentication</p></li><li><p>They&#8217;re often used together</p></li></ul><div class="callout-block" data-callout="true"><p><strong>Help me make the Decoded Security better!</strong></p><p>Which part of this article was new to you? </p><p>Comment "BASICS", "PROTOCOLS", or "IPSEC". </p><p>I want to see where most people are starting from. It helps me decide what to write next.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-vpns-to-beginners/comments"><span>Leave a comment</span></a></p></div><h3><strong>Bonus - Decoded Security Cheatsheet</strong></h3><blockquote><p>Everything for the exam and real-work practice at one page. </p></blockquote><div class="file-embed-wrapper" data-component-name="FileToDOM"><div class="file-embed-container-reader"><div class="file-embed-container-top"><image class="file-embed-thumbnail-default" src="https://substackcdn.com/image/fetch/$s_!0Cy0!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack.com%2Fimg%2Fattachment_icon.svg"></image><div class="file-embed-details"><div class="file-embed-details-h1">Decoded Security Vpn Cheat Sheet</div><div class="file-embed-details-h2">27.4KB &#8729; PDF file</div></div><a class="file-embed-button wide" href="https://www.decodedsecurity.com/api/v1/file/6034f8d4-ca61-4832-89e4-7746de8a5b35.pdf"><span class="file-embed-button-text">Download</span></a></div><a class="file-embed-button narrow" href="https://www.decodedsecurity.com/api/v1/file/6034f8d4-ca61-4832-89e4-7746de8a5b35.pdf"><span class="file-embed-button-text">Download</span></a></div></div><h3>Conclusion</h3><p>VPNs are not complicated once you understand what they&#8217;re actually doing.</p><p><strong>They exist to solve one problem:</strong> how do you communicate securely over a network you don&#8217;t trust?</p><p>The answer is: build a private tunnel. Encrypt what goes through it. Authenticate who&#8217;s on each end. Verify nothing was changed in transit.</p><p>Every VPN protocol, every configuration option, every exam question circles back to those fundamentals.</p><p>If you got value from this article, <strong>give it a like</strong>. It helps me understand which topics to cover next and helps other people find it.</p><p>And if you want a structured path through all the networking and security fundamentals that actually matter for certifications and job interviews, subscribe to Decoded Security. </p><p>Every article is built to move your knowledge forward, one concept at a time.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Interested in Networking from a cybersecurity perspective. Subscribe to <strong>Decoded Security</strong> and learn something new every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p><em><strong>Looking to go deeper on networking? Start with these:</strong></em></p><ul><li><p><em><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-dns-to-beginners">This Is How I Explain DNS to Beginners</a></em></p></li><li><p><em><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-subnetting">This Is How I Explain Subnetting to a Beginner</a></em></p></li><li><p><em><a href="https://www.decodedsecurity.com/p/what-actually-happens-when-you-open">What Actually Happens When You Open a Website</a></em></p></li></ul><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[Hands-On Lab: How Attackers Crack Passwords in 0.0006 Seconds]]></title><description><![CDATA[You will crack real passwords, understand the exact mistake that exposed 117 million LinkedIn accounts, and leave with hands-on experience you can use in interviews, exams, and real security reviews.]]></description><link>https://www.decodedsecurity.com/p/hands-on-lab-how-attackers-crack</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/hands-on-lab-how-attackers-crack</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Fri, 29 May 2026 08:09:25 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/704b46bc-772c-4e65-b1f8-604c54d6fb4f_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>In 2012, LinkedIn was breached.</p><p>Millions of accounts. All passwords are hashed with MD5. No salt. The database was dumped and circulated online, and within days, the majority of passwords had been cracked.</p><p>And all the attacker needed was a wordlist and a loop.</p><p>But this couldn&#8217;t possibly have happened today, right?</p><p>Well, I hate to break it to you, but the same mistakes are still being made today. That&#8217;s why you need to understand what exactly happened in 2012 and how to prevent it from happening on your systems.</p><p><strong>And what better way of learning than actually performing the attack?</strong> </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> and join the community of 1100+ <strong>cybersecurity</strong> <strong>professionals</strong>!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3></h3><blockquote><p><strong>Note:</strong> This article assumes you understand what hashing is and why it matters. If you are not there yet, read these first:</p></blockquote><ul><li><p><a href="https://www.decodedsecurity.com/p/hashing-what-it-is-and-why-its-not">Hashing: What It Is and Why It&#8217;s Not the Same as Encryption</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/hashing-algorithms-what-any-cybersecurity">Hashing Algorithms: What Any Cybersecurity Specialist Needs to Know</a></p></li></ul><h2>What actually happened in 2012</h2><p>Most modern systems don&#8217;t store passwords in plaintext, but in hashes.</p><p>That&#8217;s why when the attacker steals the password database, all they can see are hashes.</p><p>Once they have the hashes, the goal is quite simple. </p><p>To reverse them and figure out what password produced each hash.</p><p>But how?</p><p>Well, the first option is brute force. Try all possible combinations and sooner or later, you&#8217;ll hit the jackpot.</p><p>But it can take years.</p><p>So they need something more efficient - a <strong>dictionary attack.</strong></p><p>Take a list of common passwords. Hash each one. Compare the result against the stolen hashes. If there&#8217;s a match, the password is cracked.</p><p>No magic. Just a list of words and a simple loop.</p><p>It works because most people choose predictable passwords. </p><p>&#8220;password&#8221;, &#8220;123456&#8221;, &#8220;password123&#8221;. </p><p>Variations with numbers at the end. Seasons plus years. The attacker&#8217;s wordlist reflects exactly how real humans think.</p><p>That&#8217;s exactly what happened in 2012. LinkedIn&#8217;s database was dumped. The attackers ran a wordlist against 117 million SHA-1 hashes. And because there was <strong>no salt</strong> and the algorithm was fast, the majority cracked in days.</p><p>And with SHA-1? A modern CPU can compute hundreds of millions of SHA-1 hashes per second. <strong>A poorly hashed password is cracked before you finish reading this sentence.</strong></p><h2>What is salting</h2><p>If you&#8217;ve been paying attention, you noticed this sentence: &#8220;because there was no salt.&#8221;</p><p><strong>What does that even mean?</strong> Are we worried about our passwords not being tasty enough? Or what?</p><p>Well..let&#8217;s take a look at it.</p><blockquote><p>A salt is a random string added to a password before it gets hashed.</p></blockquote><p>Without salting, every user who chooses &#8220;password&#8221; gets the same hash (assuming the same hashing algorithm):</p><pre><code><code>password &#8594; 5f4dcc3b5aa765d61d8327deb882cf99</code></code></pre><p>Always. Every time. On every system in the world.</p><p>With salting, a unique random string is generated per user and combined with the password before hashing:</p><pre><code><code>password + x7k2mR9q &#8594; completely different hash
password + 4mNpQ2rs &#8594; completely different hash again</code></code></pre><p>Two users with the same password now have completely different hashes in the database. An attacker who steals the database cannot use precomputed tables. They have to attack each hash individually. That changes the economics of the attack entirely.</p><p>And let&#8217;s face it, it&#8217;s all about the money. </p><h2>Why MD5 and SHA-1 are dangerous for passwords</h2><blockquote><p><strong>Note:</strong> If you have no idea what MD5 or SHA-1 means, make sure to read the articles linked above! You won&#8217;t regret it!</p></blockquote><p>Both algorithms were designed for speed. Fast hashing is excellent for verifying file integrity or generating checksums. It is catastrophic for password storage.</p><p>A modern CPU can compute hundreds of millions of MD5 hashes per second. </p><p>A GPU pushes that into billions. </p><p>A weak password is cracked before you finish reading this sentence.</p><p>Neither algorithm was designed with password storage in mind. Using them for that purpose is a fundamental design mistake, not a configuration issue. </p><p><strong>Make sure to remember that for both the real-world scenarios and certification exams!</strong></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Are you preparing for CC, Security+, or CISSP? Subscribe to <strong>Decoded Security</strong> and get a free <strong>Top 10 Cybersecurity Fundamentals Guide.</strong></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>What do we use instead?</h2><p><strong>bcrypt</strong> was designed specifically for passwords. The key difference is intentional slowness.</p><p>It has a cost factor, sometimes called a work factor, that controls how computationally expensive each hash computation is. </p><p>The same password takes milliseconds with MD5 and seconds with bcrypt. At scale, that difference makes automated cracking attacks impractical.</p><p>A wordlist with 56 passwords takes MD5 a fraction of a millisecond. The same list against bcrypt takes several seconds. Scale that to millions of passwords and the attack stops being viable on normal hardware.</p><blockquote><p><strong>Note:</strong> There is an even newer standard, Argon2, but bcrypt is still widely used.</p></blockquote><h2>What you are about to do</h2><p>It&#8217;s time to get some hands-on experience. </p><p>The lab below uses a real Docker environment, real password hashes, and a real dictionary attack script.</p><p>You will crack three passwords in under a second. You will watch one password survive because it is not in the wordlist. You will see bcrypt slow everything down to a crawl.</p><p>Theory tells you this happens. </p><p>And the biggest benefit? Next time you&#8217;re in an interview, you will have a nice personal project to talk about. </p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?coupon=d3bcb2dd&amp;utm_content=199442126&quot;,&quot;text&quot;:&quot;Get 14 day free trial&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/subscribe?coupon=d3bcb2dd&amp;utm_content=199442126"><span>Get 14 day free trial</span></a></p><blockquote><p><strong>The lab is waiting. Subscribe to access the full step-by-step walkthrough below.</strong></p></blockquote>
      <p>
          <a href="https://www.decodedsecurity.com/p/hands-on-lab-how-attackers-crack">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[Penetration Testing for Beginners: The Exact Study Plan I’d Follow If I Had to Start From Scratch]]></title><description><![CDATA[Break into offensive security without wasting months on the wrong tools and certifications. This step-by-step roadmap shows you what to learn, in what order, and how to build skills that matter.]]></description><link>https://www.decodedsecurity.com/p/penetration-testing-for-beginners</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/penetration-testing-for-beginners</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Mon, 25 May 2026 14:03:13 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/10e42441-9e9d-4716-8452-68d344d4e406_1731x909.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Do you want to break into penetration testing but don&#8217;t know where to start?</p><p>You feel that urge to do something, but you always end up watching random YouTube videos, downloading Kali Linux, and feeling like you are getting nowhere.</p><p>In cybersecurity, a lack of direction is more dangerous than a lack of knowledge.</p><p>I am going to be honest with you. I am not a penetration tester. I am a Cybersecurity Manager.</p><p>But I have worked alongside pentesters. I have interviewed candidates for offensive security roles. And I have studied this path carefully enough to know exactly what separates the people who break in from the ones who stay stuck.</p><p>This is the study plan I would follow if I had chosen this path.</p><div class="callout-block" data-callout="true"><p>Comment your target role + your current level, and I&#8217;ll tell you exactly what to focus on next.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments"><span>Leave a comment</span></a></p></div><h3>Penetration Testing (Offensive Security)</h3><p>Penetration testing is one of the <strong>5 cybersecurity paths</strong> you can choose.</p><p><strong>If you are not familiar with the cybersecurity paths, read this first:</strong></p><p>&#128073; <a href="https://www.decodedsecurity.com/p/how-to-choose-the-right-cybersecurity">How to Choose the Right Cybersecurity Role Before You Waste Time and Money on the Wrong Certifications</a></p><p>But before you deep-dive into the materials I am about to provide, make sure this path is really for you.</p><p>You do not want to waste weeks and months learning things that will not get you any closer to your goal.</p><p><strong>It is a great fit if you:</strong></p><ul><li><p>Enjoy thinking like an attacker - finding weaknesses before others do</p></li><li><p>Like structured problem solving with clear objectives</p></li><li><p>Are comfortable going deep into technical detail</p></li><li><p>Enjoy learning how systems actually work under the hood</p></li><li><p>Have patience for long, methodical investigation</p></li></ul><p><strong>Be honest with yourself:</strong></p><ul><li><p>Penetration testing is <strong>not beginner-friendly</strong></p></li><li><p>Most entry-level roles require at least some <strong>IT or networking background</strong></p></li><li><p>You will spend months building foundations before touching offensive tools</p></li><li><p>The learning curve is <strong>steeper</strong> than almost any other cybersecurity path</p></li></ul><blockquote><p>But don&#8217;t get me wrong here. I am not saying it isn&#8217;t worth it! All I am saying is you need some IT experience first! </p></blockquote><h3>The Decoded Security Penetration Testing Roadmap</h3><p>This roadmap has three main goals.</p><p>First, make sure you understand the cybersecurity fundamentals that underpin everything in offensive security.</p><p>Second, make sure you understand how systems and networks actually work, because you cannot attack what you do not understand.</p><p>Third, force you to practice in real environments, not just watch tutorials.</p><blockquote><p>What is your target role? Let me know in the comments and let&#8217;s discuss your next steps!</p></blockquote><p>Here is the exact roadmap I would follow if I had to start from scratch.</p><h3>Step 1: Build the Right Foundation</h3><p>Before you touch a single offensive tool, you need to understand how cybersecurity actually works.</p><p>Most beginners skip this step. They download Kali Linux on day one and wonder why nothing makes sense.</p><p>Do not make that mistake.</p><div class="callout-block" data-callout="true"><p><strong>Download this first for FREE:</strong> <a href="https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts">Cybersecurity Fundamentals: The 10 Concepts That Get You Through 90% of Interviews</a></p></div><p><strong>Make sure to understand these especially:</strong></p><ol><li><p><a href="https://www.decodedsecurity.com/p/threat-risk-vulnerability-why-cissp">Threat &#8800; Risk &#8800; Vulnerability: Why CISSP Basics Matter More Than You Think</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/cybersecurity-controls-from-zero">Cybersecurity Controls from Zero to Hero</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-psychology-of-hacking-why-smart">The Psychology of Hacking: Why Smart People Fall for Dumb Scams</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/6-myths-that-are-killing-corporate">6 Myths That Are Killing Corporate Cybersecurity</a></p></li></ol><h3>Step 2: Master Networking and Systems</h3><p>You cannot hack what you do not understand.</p><p>Every penetration tester needs a deep understanding of how networks and systems communicate. This is not optional. It is the foundation of everything.</p><p><strong>Focus on:</strong></p><p><strong>Networking fundamentals</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-dns-to-beginners">This Is How I Explain DNS To Beginners</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/top-5-most-important-network-protocols">Top 5 Most Important Network Protocols for Cybersecurity Beginners</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-subnetting">This Is How I Explain Subnetting To a Beginner</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/most-cybersecurity-beginners-study">Why Most Beginners Don&#8217;t Understand How Networks Actually Work</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/7-networking-questions-that-instantly">7 Networking Questions That Instantly Expose Beginners in Cybersecurity Interviews</a></p></li></ul><p><strong>Linux - non-negotiable</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a">This Is How I Explain Linux To a Beginner</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/top-5-linux-command-for-an-entry">Top 5 Linux Commands for an Entry-Level Cybersecurity Role</a></p></li></ul><p><strong>Cryptography basics</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/symmetric-vs-asymmetric-encryption">Symmetric vs Asymmetric Encryption</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-storage-mistake-90-of-people">Digital Signatures Explained</a></p></li><li><p>[This Is How I Explain PKI To a Beginner] - will be published soon!!</p></li></ul><p><strong>Attack techniques</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/this-is-how-i-explain-the-man-in">This Is How I Explain The Man-in-the-Middle Attack To a Beginner</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/phisnig-social-engineering">How Phishing Works in 5 Steps</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-qr-code-trap-why-those-little">The QR Code Trap</a></p></li></ul><blockquote><p><strong>Do you struggle with any of these concepts?</strong> Comment the one you don&#8217;t understand and I will break it down for you.</p></blockquote><h3>Step 3: Get Your First Certification</h3><p>Most people ask the wrong question: &#8220;Which certification should I get?&#8221;</p><p>The right question is: &#8220;Which certification fits where I am right now?&#8221;</p><p>For penetration testing, here is the honest order:</p><p><strong>Start here:</strong> <strong>eJPT (eLearnSecurity Junior Penetration Tester)</strong> </p><p>Free to study. Practical exam. Actually tests whether you can do the work, not just memorize definitions. This is the most realistic first certification for this path.</p><p><strong>Then:</strong> <strong>CompTIA PenTest+</strong> </p><p>Widely recognized. Good intermediate step. Bridges the gap between foundational knowledge and hands-on offensive work.</p><p><strong>The goal:</strong> <strong>OSCP (Offensive Security Certified Professional)</strong> </p><p>The industry standard for senior offensive roles. Do not attempt this first. Attempt it when you are ready - but consider attempting it earlier than you feel comfortable. Passing OSCP before you have extensive experience sends a signal that nothing else on this path does.</p><p><strong>Read the full certification breakdown here:</strong> &#128073; <a href="https://www.decodedsecurity.com/p/i-have-watched-people-waste-4000">Stop Buying Random Certifications. Here&#8217;s Exactly Which One You Need Based on Your Path</a></p><h3>Step 4: Practice in Real Environments</h3><p>Reading about penetration testing will not make you a penetration tester.</p><p>You need to practice. Every day. In real environments.</p><p>Here are the free platforms I would use:</p><p><strong>TryHackMe</strong> - Start here. Guided learning paths with real machines. The most beginner-friendly platform on this list. Complete the &#8220;Pre-Security&#8221; and &#8220;Jr Penetration Tester&#8221; paths first.</p><p><strong>OverTheWire: Bandit</strong> - Teaches Linux command line through puzzles. Surprisingly fun. Surprisingly hard. Do this alongside TryHackMe.</p><p><strong>HackTheBox</strong> - More advanced. Move here once you are comfortable with TryHackMe. The machines are harder and less guided.</p><p><strong>The rule:</strong> One hour of practice every day beats five hours on weekends. Consistency matters more than intensity.</p><blockquote><p><strong>Do you struggle with any of these platforms?</strong> Comment below and I will point you to the right starting point.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments"><span>Leave a comment</span></a></p></blockquote><h3>Step 5: Build a Portfolio</h3><p>This is the step most beginners skip. Do not skip it.</p><p>A penetration testing portfolio proves you can do the work before you have a job to prove it.</p><p><strong>What to include:</strong></p><ul><li><p><strong>CTF writeups</strong> - document every challenge you solve on TryHackMe and HackTheBox. Explain what you did, why you did it, and what you learned.</p></li><li><p><strong>Personal lab</strong> - set up a home lab with VirtualBox or Docker. Document your setup.</p></li><li><p><strong>A GitHub profile</strong> - publish your scripts, notes, and writeups publicly.</p></li><li><p><strong>A blog or newsletter</strong> - writing about what you learn forces you to understand it deeply. It also makes you visible to recruiters.</p></li></ul><p>Hiring managers for offensive security roles do not just look at your CV. </p><p>They look at your <strong>GitHub</strong>. They look at your write-ups. They look for evidence that you actually do this.</p><blockquote><p><strong>Have you started a portfolio?</strong> Comment below and share it. I will give you feedback.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments"><span>Leave a comment</span></a></p></blockquote><h3>Conclusion</h3><p>Most people do not fail in penetration testing because it is too hard.</p><p>They fail because they never had a plan.</p><p>They download Kali Linux on day one. They watch random YouTube videos. They jump between tools without understanding what they are doing or why.</p><p>That is how months turn into years with nothing to show for it.</p><p>This roadmap fixes that. It gives you the structure I wish someone had given me when I was learning this field.</p><p><strong>It tells you:</strong></p><ul><li><p>What to learn</p></li><li><p>In what order</p></li><li><p>And how to actually practice it</p></li></ul><p><strong>You will start thinking like someone who can:</strong></p><ul><li><p>Understand how systems communicate</p></li><li><p>Identify realistic attack vectors</p></li><li><p>Build the skills that actually get you hired</p></li></ul><p>You already have the roadmap. Now it is about execution.</p><p>See you in the comments.</p><p>Thank you for reading Decoded Security!</p><p>Erich</p><div><hr></div><blockquote><p><strong>Comment your target role and your current level. I will give you your next step.</strong></p></blockquote><div><hr></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,100 people read <strong>Decoded Security</strong> every week. <strong>Join the community!</strong></p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p>&#128172; Which step feels most challenging right now? Comment below - I read every response.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/penetration-testing-for-beginners/comments"><span>Leave a comment</span></a></p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain PKI To a Beginner]]></title><description><![CDATA[PKI is not about encryption. It is about trust. If you don&#8217;t understand this difference, you don&#8217;t understand how internet security works.]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-pki-to-a-beginner</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-pki-to-a-beginner</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 20 May 2026 05:01:36 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/8a1a3f15-c80f-4a91-ae46-a67143ad04f1_1729x910.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>It&#8217;s time to describe one of the core concepts of today&#8217;s internet and its security, often called the <strong>backbone of digital trust</strong>.</p><p>Without it, the internet as we know it wouldn&#8217;t exist. </p><p>There would be no way to verify that someone is who they claim to be.</p><p>So what can you expect today?</p><p>After reading this article, you will understand:</p><ol><li><p>What the goals of the&nbsp;<strong>Public Key Infrastructure (PKI)</strong> are</p></li><li><p>What functions and components PKI has</p></li><li><p>How it fulfills its goals</p></li></ol><p>And as a bonus, I will tell you exactly what you need to know for cybersecurity exams and interviews.</p><p>So if you are serious about cybersecurity, make sure to read this!</p><blockquote><p><strong>Warning: CC, Security+, and CISSP relevant topic!</strong></p></blockquote><blockquote><p>Do you want to build a career in cybersecurity? Take a <a href="https://quiz.decodedsecurity.com/">2-minute cybersecurity quiz </a>and get a personalized reading list based on your background and goals.</p></blockquote><h3>Core Objectives of PKI</h3><p>Before we deep dive into individual components of the PKI, I want to make sure absolutely clear. </p><blockquote><p>PKI isn&#8217;t about <strong>encryption</strong>! </p></blockquote><p>Does it use cryptographic algorithms? Absolutely.</p><p>But it is only one small part of a complicated system. </p><p>And if you&#8217;ve been reading <strong>Decoded Security</strong> for a while, you know that everything needs to be tied to the core cybersecurity objectives - <strong>CIANA</strong>. (If you&#8217;re not familiar with the CIANA triad, just read the <a href="https://www.decodedsecurity.com/p/my-first-week-of-cissp-prep-what">Core Cybersecurity Objectives - Summary</a>.) </p><p><strong>So what are the core objectives of the PKI?</strong></p><ul><li><p><strong>Authentication:</strong> To confirm that users, devices, and applications are who they claim to be.</p></li><li><p><strong>Confidentiality:</strong> To encrypt data so that only the authorized recipient can read it.</p></li><li><p><strong>Data Integrity:</strong> To guarantee that information has not been altered or tampered with during transit.</p></li><li><p><strong>Non-Repudiation:</strong> To provide proof of the origin of data, preventing a sender from denying they sent a message or signed a document.</p></li></ul><p>Excellent, now we know its goals. Let&#8217;s dive into how they are achieved.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!_ZM2!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!_ZM2!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 424w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 848w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 1272w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!_ZM2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png" width="1080" height="1350" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1350,&quot;width&quot;:1080,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:142122,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197729547?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!_ZM2!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 424w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 848w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 1272w, https://substackcdn.com/image/fetch/$s_!_ZM2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe5577e31-deda-445d-b6f9-1d2f6949cf7f_1080x1350.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p>Are you interested in how PKI works? Give me a like so I know I am not alone!</p></blockquote><h3>PKI - Key function</h3><p>Now that we know what we want to achieve with the implementation of the PKI, let&#8217;s take a look at how it&#8217;s achieved. </p><p><strong>Key function:</strong> PKI manages the entire lifecycle of digital certificates, which bind public keys to specific identities (people, organizations, or devices). </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!haRX!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!haRX!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 424w, https://substackcdn.com/image/fetch/$s_!haRX!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 848w, https://substackcdn.com/image/fetch/$s_!haRX!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 1272w, https://substackcdn.com/image/fetch/$s_!haRX!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!haRX!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png" width="1456" height="618" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:618,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:260308,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197729547?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!haRX!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 424w, https://substackcdn.com/image/fetch/$s_!haRX!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 848w, https://substackcdn.com/image/fetch/$s_!haRX!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 1272w, https://substackcdn.com/image/fetch/$s_!haRX!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4947add1-4afd-4c7d-b93c-47e3bbe91c6d_2710x1151.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><blockquote><p>Don&#8217;t know what a digital certificate is? Don&#8217;t worry, we all have been there. <br><strong>Read this first:</strong> <a href="https://www.decodedsecurity.com/i/163231485/whats-in-a-digital-certificate">What is the digital certificate?</a></p></blockquote><p>In other words, it allows us to verify that a specific public key really belongs to a person, organization, or any other entity. </p><p>Why is it so important?</p><p>Imagine I generate a key set - Public and Private key, and then a certificate</p><p>I will simply create a website that looks exactly like your bank. Your browser will ask me for a certificate, so I will simply generate it and send it. </p><p>Everything seems legit, and you will start entering your credentials, and..I think you can see the problem now. </p><p>For this reason, there is an independent entity that both your browser (or you) and the bank trust, called a certification authority. </p><p>This entity would sign my certificate, but only after I provide proof that I am really your bank. Since I can&#8217;t provide any kind of proof that I am your bank, they wouldn&#8217;t sign my certificate, and you wouldn&#8217;t trust me. <br><br>The attack just failed. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!1jnh!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!1jnh!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 424w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 848w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 1272w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!1jnh!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png" width="1456" height="936" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/c2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:936,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:354478,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197729547?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!1jnh!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 424w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 848w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 1272w, https://substackcdn.com/image/fetch/$s_!1jnh!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc2f7963f-03c4-4a6c-967f-3785f906d604_2857x1836.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>So, here is the key information I want you to take away from this chapter. </p><p>The PKI introduces a system that allows us to bind a public key to a specific entity ( e.g., a bank) by signing its digital certificate that includes its public key. </p><p>The digital certificate is signed by a CA (Certification Authority) that is trusted by both communicating parties. </p><blockquote><p>Don&#8217;t know how asymmetric encryption works and what a public key is? I got you covered: <a href="https://www.decodedsecurity.com/p/symmetric-vs-asymmetric-encryption">Asymmetric encryption - Introduction</a></p></blockquote><h3>PKI - The Passport Analogy</h3><p>I know I dropped a lot of terms on you. Today is about getting the main idea. </p><p>So let me use an analogy that helped me to understand the whole system a couple of years back! </p><blockquote><p><strong>Think of PKI like a passport system.</strong></p></blockquote><p>When you travel internationally, border control does not know you personally. But they trust your passport because they trust the government that issued it.</p><p>PKI works exactly the same way.</p><p><strong>Here is the mapping:</strong></p><p><strong>Certificate Authority (CA) = the government:</strong> The trusted organization that issues and signs digital certificates. Everyone agrees to trust the CA. If the CA says a certificate is valid, everyone accepts it.</p><p><strong>Digital Certificate = your passport:</strong> A document that proves your identity online. It contains your public key and is signed by a CA to confirm it is legitimate.</p><p><strong>Public Key = your identity:</strong> Visible to everyone. Just like your name and photo on a passport. Anyone can see it.</p><p><strong>Private Key = your fingerprint:</strong> Known only to you. The unique proof that you are who you say you are. Cannot be faked or transferred.</p><p><strong>The CA&#8217;s signature is what makes it all work.</strong></p><p>Without a trusted authority vouching for your identity, anyone could create a fake certificate claiming to be your bank, your email provider, or anyone else.</p><blockquote><p>Did this analogy helped you? Give me a like so I know it&#8217;s worth creating them!</p></blockquote><h3>Key Takeaways</h3><p>If this all feels confusing, don&#8217;t worry, it will all start to make sense. </p><p>To fully understand this problem, make sure to understand the following topics:</p><p>&#128073; <a href="https://www.decodedsecurity.com/p/certification-authorities-cas-what">Certification Authorities: What is it and why do we need it?</a> </p><p>&#128073; <a href="https://www.decodedsecurity.com/p/digital-signatures-explained-with">Digital Signatures Explained</a> </p><p>&#128073; <a href="https://www.decodedsecurity.com/p/symmetric-vs-asymmetric-encryption">Symmetric vs Asymmetric Encryption</a></p><div class="callout-block" data-callout="true"><p>If you&#8217;re struggling with any of the topics, there is nothing easier than commenting under the post, and I will help you!</p></div><p>Once you understand these topics, the whole PKI process becomes clearer. And if it doesn&#8217;t, just comment under the post, and I will explain it better!</p><blockquote><p>Did this article help you to understand the basics of the PKI process? Give it a like and help me to share it with more people interested in cybersecurity!</p></blockquote><h3>Conclusion</h3><p>Congratulations! You now understand what PKI actually is and why it exists.</p><p>And more importantly, you understand the problem it solves - which is exactly the question the CISSP exam will ask you.</p><p>Next time, we will look at how this connects to the real world. Because PKI is only a general system, to really understand how it is used, one piece is still missing:&nbsp;<strong>the chain of trust.</strong></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to Decoded Security so you won&#8217;t miss it!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><div class="callout-block" data-callout="true"><p><strong>Want a clear 90-day plan for turning your knowledge into a job?</strong></p><p>&#128073; <a href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint">The 90-Day Cybersecurity Job Blueprint - &#8364;9.99</a></p><p>4.8 stars. 45 people have used it. 14-day money-back guarantee.</p></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[Stop Memorizing Security Models: Use This 2-Question CISSP Filter]]></title><description><![CDATA[Most CISSP candidates try to memorize every security model. This simple filter helps you understand what each model protects and how to answer exam questions faster.]]></description><link>https://www.decodedsecurity.com/p/stop-memorizing-security-models-use</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/stop-memorizing-security-models-use</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 13 May 2026 13:51:34 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/e48f62d9-43e9-4b54-8e83-da8fcc9e72c9_1672x941.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<blockquote><p><strong>&#128218; Essential CISSP topic</strong></p></blockquote><p>If you&#8217;re preparing for the CISSP exam or are serious about your cybersecurity career, make sure to read this. </p><p>Because this is one of the topics that distinguishes juniors from senior professionals. </p><p>When I hit security models in <strong>Domain 3</strong>, my instinct was the same as most candidates:</p><blockquote><p>Open the book. Highlight every name. Make flashcards. Hope my brain hangs on until exam day.</p></blockquote><p>Bell-LaPadula. Biba. Clark-Wilson. Brewer-Nash. Graham-Denning. Take-Grant.</p><p>Eight names. Multiple rules each. Some protect confidentiality, some protect integrity, and some have weird rules that I don&#8217;t understand.</p><p><strong>And here&#8217;s the uncomfortable truth &#128071;</strong> </p><p>The candidates who fail this section aren&#8217;t the ones who forgot a definition. They&#8217;re the ones who memorized all eight and still couldn&#8217;t answer the question.</p><p>This article isn&#8217;t a textbook dump. It&#8217;s a way to compress <strong>30 pages of CISSP content</strong> into a mental shortcut you can actually use on <strong>exam day</strong>. </p><p>And it's something that helped me pass the CISSP exam in 3 months!</p><blockquote><p><strong>Warning:</strong> This is one of the most tested topics in <strong>CISSP Domain 3.</strong></p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Preparing for the CISSP exam? Subscribe to <strong>Decoded Security</strong> and get free resources every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3>What is a security model?</h3><p>A security model is just a <strong>formal representation of a security policy</strong>. It defines:</p><ul><li><p>Who (Subject) can access what (Object)</p></li><li><p>Under what conditions</p></li><li><p>Which kind of protection it enforces (confidentiality, integrity, or both) </p></li></ul><blockquote><p><strong>Note:</strong> If you&#8217;re not familiar with terms such as Subject and Object, read this first: <strong><a href="https://www.decodedsecurity.com/p/access-controls">Access Controls: Who Gets the Keys?</a></strong></p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!XI_a!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!XI_a!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 424w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 848w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 1272w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!XI_a!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png" width="1260" height="195" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:195,&quot;width&quot;:1260,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:32997,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!XI_a!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 424w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 848w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 1272w, https://substackcdn.com/image/fetch/$s_!XI_a!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F90092e8d-1812-4744-bc5e-77f8a80b57f1_1260x195.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div><p>I know, it all sounds boring.</p><p>That&#8217;s why most candidates default to rote memorization. <strong>(Luckily I have a very bad memory, so that wasn&#8217;t an option for me)</strong></p><p><strong>Then the exam hits them with a question like this:</strong></p><blockquote><p><em>&#8220;A defense contractor needs to prevent classified intelligence from leaking to lower clearance levels. Which model best supports this requirement?&#8221;</em></p></blockquote><p>Notice what the question is <strong>not</strong> asking:</p><ul><li><p>It&#8217;s not asking for the definition</p></li><li><p>It&#8217;s not asking who invented it</p></li><li><p>It&#8217;s not asking which government uses it</p></li></ul><p>It&#8217;s asking: <strong>What goal needs to be protected, and which model was built for that exact goal?</strong></p><p>That&#8217;s the whole game.</p><blockquote><p>Security models are just answers to specific real-world problems. Once you know the problem, the model picks itself.</p></blockquote><div class="callout-block" data-callout="true"><p><strong>Not sure what to learn next?</strong> Get a personalized study plan based on your background and goals: <a href="https://quiz.decodedsecurity.com/">Start the quiz</a></p></div><h3>The 2-Question Filter</h3><p>As I have mentioned, I have a terrible memory. That&#8217;s why I created my personal Decoded Security framework to make sure I can choose the right model in any situation. </p><p>For every security model question on the exam, I ask:</p><blockquote><p><strong>Q1: What is being protected? Confidentiality or integrity?</strong> </p><p><strong>Q2: How is information allowed to flow?</strong></p></blockquote><p>If you can answer those two, you&#8217;ll get more than 80% of model questions right without remembering a single rule by heart.</p><p>Here&#8217;s the map.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Are you interested in the Top 10 Cybersecurity Fundamentals guide? Subscribe to <strong>Decoded Security</strong> and get it for FREE.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3>Models That Protect CONFIDENTIALITY</h3><p>These models exist for one reason: To <strong>ensure confidentiality.</strong></p><h4>Bell-LaPadula</h4><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!cga6!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!cga6!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 424w, https://substackcdn.com/image/fetch/$s_!cga6!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 848w, https://substackcdn.com/image/fetch/$s_!cga6!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 1272w, https://substackcdn.com/image/fetch/$s_!cga6!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!cga6!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png" width="1229" height="719" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:719,&quot;width&quot;:1229,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:105426,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!cga6!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 424w, https://substackcdn.com/image/fetch/$s_!cga6!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 848w, https://substackcdn.com/image/fetch/$s_!cga6!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 1272w, https://substackcdn.com/image/fetch/$s_!cga6!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b645019-009e-4001-be3c-480d1d8f8381_1229x719.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><ul><li><p><strong>Rules:</strong> </p><ul><li><p>No read up (The simple security rule)</p></li><li><p>No write down (The * property rule).</p></li><li><p><strong>The strong property rule:</strong> Subject's clearance and objects classification needs to be equal</p></li></ul></li><li><p>A junior analyst can&#8217;t read top secret. A general can&#8217;t write classified info into an unclassified channel.</p></li><li><p><strong>Built for:</strong> U.S. Department of Defense. Multilevel military systems.</p></li><li><p><strong>Memory hook:</strong> <em>BLP = Block Leakage of secrets properly.</em></p></li></ul><h4>Brewer-Nash (Chinese Wall)</h4><p>This particular security model is really interesting. Basically, it is a set of rules that say: If you can access A, you can&#8217;t access B. And this all happens within one company. </p><ul><li><p><strong>Rule:</strong> You can&#8217;t access two datasets that conflict.</p></li><li><p>A consultant working with Bank A can&#8217;t suddenly access Bank B&#8217;s files.</p></li><li><p><strong>Built for:</strong> Financial firms, law firms, audit firms.</p></li><li><p><strong>Memory hook:</strong> <em>Brewer = Builds walls between conflicting clients.</em></p></li></ul><h4>Graham-Denning</h4><blockquote><p><strong>Note:</strong> Not that important for the exam.</p></blockquote><ul><li><p><strong>Rule:</strong> 8 primitive operations control the creation, deletion, and granting of rights for subjects and objects.</p></li><li><p><strong>Built for:</strong> Multilevel secure operating systems.</p></li></ul><h4>Take-Grant</h4><blockquote><p><strong>Note:</strong> Not that important for the exam.</p></blockquote><ul><li><p><strong>Rule:</strong> Rights transfer between subjects via 4 operations: Take, Grant, Create, Remove.</p></li><li><p><strong>Built for:</strong> Theoretical analysis of how privileges propagate through a system.</p></li></ul><h3>Models That Protect INTEGRITY</h3><p>These flip the script. They don&#8217;t care if you read something. They care that you don&#8217;t write garbage into critical systems.</p><h4>Biba</h4><ul><li><p><strong>Rule:</strong> No read down (simple integrity axiom). No write-up (*-integrity axiom).</p></li><li><p>A low-integrity process can&#8217;t pollute high-integrity data. A junior dev can&#8217;t push untested code directly into production payments.</p></li><li><p><strong>Built for:</strong> Systems where data corruption is worse than data exposure.</p></li><li><p><strong>Memory hook:</strong> <em>Biba = Block Bad data going UP.</em></p></li></ul><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!2QBq!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!2QBq!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 424w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 848w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 1272w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!2QBq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png" width="1212" height="757" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:757,&quot;width&quot;:1212,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:111015,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!2QBq!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 424w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 848w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 1272w, https://substackcdn.com/image/fetch/$s_!2QBq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0b1f8a57-6a66-4684-b7fd-828875aa91ad_1212x757.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h4>Clark-Wilson</h4><ul><li><p><strong>Rule:</strong> Users don&#8217;t touch data directly. They access it through <strong>well-formed transactions</strong>.</p></li><li><p>Just remember here that the user does not access the data directly, but only through <strong>predefined</strong> procedures. </p></li><li><p><strong>You might get a question about what the &#8220;access control triplet&#8221; is:</strong> </p><ul><li><p>It is the relationship between a user and a set of programs that operate on a set of data items. </p></li><li><p><strong>Subjects &#8594; transformation procedures (programs) &#8594; data (Data items)</strong></p></li></ul></li><li><p><strong>Built for:</strong> Banking, accounting, transactional databases.</p></li><li><p>This is the model behind every system where you can&#8217;t edit a record without a controlled workflow.</p></li></ul><h3>Bell-LaPadula vs Biba: The mirror trick</h3><p>These two are the most tested models on the exam. </p><p><strong>The simplest way to keep them straight:</strong></p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!TKz7!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!TKz7!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 424w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 848w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 1272w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!TKz7!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png" width="1456" height="452" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:452,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:215483,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!TKz7!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 424w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 848w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 1272w, https://substackcdn.com/image/fetch/$s_!TKz7!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F083f5743-ec52-4b1f-8be0-69d2c80798d2_2448x760.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>They are literal mirrors of each other.</p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!65C0!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!65C0!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 424w, https://substackcdn.com/image/fetch/$s_!65C0!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 848w, https://substackcdn.com/image/fetch/$s_!65C0!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 1272w, https://substackcdn.com/image/fetch/$s_!65C0!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!65C0!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png" width="1316" height="250" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:250,&quot;width&quot;:1316,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:45792,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!65C0!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 424w, https://substackcdn.com/image/fetch/$s_!65C0!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 848w, https://substackcdn.com/image/fetch/$s_!65C0!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 1272w, https://substackcdn.com/image/fetch/$s_!65C0!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0a41b2e2-27b0-47e9-916a-aef94b2ac0cd_1316x250.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div><p>If you remember one, you can derive the other by flipping the arrows.</p><blockquote><p><em>I&#8217;ll include a clean mirror diagram in the published version. If you want a printable cheat sheet, comment &#8220;Cheatsheet&#8221; and I&#8217;ll send it to you! </em></p></blockquote><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/stop-memorizing-security-models-use/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/stop-memorizing-security-models-use/comments"><span>Leave a comment</span></a></p><h3>How to apply this on exam day</h3><p>Read the scenario. Identify two things:</p><ol><li><p><strong>What is the threat?</strong> Leakage = confidentiality model. Corruption = integrity model.</p></li><li><p><strong>What environment?</strong></p><ul><li><p>Military / classified data &#8594; <strong>Bell-LaPadula</strong></p></li><li><p>Bank / transactional system &#8594; <strong>Clark-Wilson</strong></p></li><li><p>Consulting / audit / conflict of interest &#8594; <strong>Brewer-Nash</strong></p></li><li><p>Critical system integrity &#8594; <strong>Biba</strong></p></li></ul></li></ol><p>That&#8217;s it.</p><p>Most questions don&#8217;t require you to recite the &#8220;star property&#8221; or the &#8220;discretionary property.&#8221; They require you to match a real-world problem to the model that was designed for it.</p><p>If you want the deeper foundation behind these models, my earlier article on the <a href="https://www.decodedsecurity.com/p/the-8-security-principles-every-cissp">8 Security Principles every CISSP candidate thinks they understand</a> covers the design thinking these models came from.</p><h3>Key Takeaways</h3><ul><li><p>Don&#8217;t memorize models. Memorize <strong>what they protect</strong>. </p></li></ul><ul><li><p>Group them: confidentiality vs integrity. </p></li></ul><ul><li><p>Bell-LaPadula and Biba are mirrors. Learn one, and you get both for free. </p></li></ul><ul><li><p>Clark-Wilson is the banking model. Brewer-Nash is the consultant model. Bell-LaPadula is the military model. </p></li></ul><ul><li><p>Exam questions reward <strong>pattern recognition</strong>, not definitions.</p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">If this helped you reframe a topic everyone overthinks, subscribe to <strong>Decoded Security </strong>and join a community of <strong>1100+</strong> cybersecurity professionals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!vkg8!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!vkg8!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 424w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 848w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 1272w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!vkg8!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png" width="1124" height="1492" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/c25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1492,&quot;width&quot;:1124,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:339927,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/197341092?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!vkg8!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 424w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 848w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 1272w, https://substackcdn.com/image/fetch/$s_!vkg8!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fc25db1b3-36c6-41c3-963a-aa61931aad81_1124x1492.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3>Conclusion</h3><p>I know that Security models can sound very abstract at first, but there is a reason the CISSP tests as much as it does. </p><p>It allows security professionals to create a general framework and design systems based on the business needs, not the other way around!</p><p>I have spent days trying to figure this all out, and I truly hope this will help you get it in under <strong>90 minutes</strong>! </p><p>Good luck, and <strong>thank you for reading Decoded Security!</strong></p><p><strong>PS: Here is a printable cheatsheet to make it all easier for you!</strong></p><div class="file-embed-wrapper" data-component-name="FileToDOM"><div class="file-embed-container-reader"><div class="file-embed-container-top"><image class="file-embed-thumbnail-default" src="https://substackcdn.com/image/fetch/$s_!0Cy0!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack.com%2Fimg%2Fattachment_icon.svg"></image><div class="file-embed-details"><div class="file-embed-details-h1">Cissp Security Models Cheat Sheet</div><div class="file-embed-details-h2">76.3KB &#8729; PDF file</div></div><a class="file-embed-button wide" href="https://www.decodedsecurity.com/api/v1/file/4cbdb50c-1eb5-451c-a2b9-7363468fa590.pdf"><span class="file-embed-button-text">Download</span></a></div><a class="file-embed-button narrow" href="https://www.decodedsecurity.com/api/v1/file/4cbdb50c-1eb5-451c-a2b9-7363468fa590.pdf"><span class="file-embed-button-text">Download</span></a></div></div><p></p><div class="callout-block" data-callout="true"><p><strong>Not sure what to learn next?</strong> Get a personalized study plan based on your background and goals: <a href="https://quiz.decodedsecurity.com/">Start the quiz</a></p></div><h3>Want the rest of Domain 3 simplified?</h3><p>Security models are one piece. Domain 3 also covers cryptography, secure design principles, system architecture, and security capabilities of information systems. It&#8217;s the heaviest, most technical domain on the exam.</p><p><strong>If you want a structured way to master it without losing your mind, I have something just for you:</strong></p><p>&#128073; <strong><a href="https://decodedsecurity.gumroad.com/">CISSP Domain 3: Complete Guide</a></strong></p><p><strong>Built the same way:</strong> pattern recognition over memorization.</p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[This Is How I Explain Linux To a Beginner]]></title><description><![CDATA[Here&#8217;s the hard truth: If you want your first job in cybersecurity, you need to know the basics of Linux.]]></description><link>https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Wed, 06 May 2026 07:02:00 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/99e21f30-a00f-4899-9567-cf682b6d1a18_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p><strong>Here&#8217;s the hard truth:</strong> If you want your first job in cybersecurity, you need to know the basics of Linux.</p><p>That&#8217;s non-negotiable.</p><p>If that scares you, I have good news.</p><p>Linux is a complex environment. But you don&#8217;t need to know everything, at least not for most cybersecurity roles.</p><p><strong>You just need to know what actually matters.</strong></p><p>And that&#8217;s exactly what I am going to tell you today.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,000 people read <strong>Decoded Security</strong> every week! Join our community and let us help you achieve your goals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2><strong>The Misconception That Stops Most Beginners (Including Me)</strong></h2><p>When I used to hear &#8220;learn Linux for cybersecurity&#8221; I pictured memorizing hundreds of commands.</p><p>ls. cd. chmod. grep. awk. sed. netstat. ps. curl. wget.</p><p>The list feels endless. (And it is!)</p><p>So I tried to avoid it for as long as possible. And of course, I hit the wall. </p><p><strong>Here is the truth that I wish someone had told me back then:</strong></p><p>You don&#8217;t need to know everything about Linux. You just need to understand the general concept and how to read the manual. Everything else will follow.</p><h3><strong>The Core Idea Of Linux</strong></h3><p>In Windows, everything has a graphical interface. You click folders, drag files, open menus.</p><p>Linux works differently.</p><blockquote><p><strong>In Linux, everything is a file.</strong></p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!5K2O!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!5K2O!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!5K2O!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png" width="1456" height="971" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/d4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:971,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:1866196,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/196514536?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!5K2O!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!5K2O!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd4205ff9-1883-41a2-998a-06864144fe7e_1536x1024.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>Your documents are files. Your settings are files. Your hardware devices are files. Your network connections are files. Even your running processes can be accessed as files.</p><p>This is not just a technical detail. It is the model that makes Linux make sense.</p><p><strong>Think of it this way:</strong></p><p>In Windows, you configure your WiFi through a settings menu with buttons and dropdowns.</p><p>In Linux, you can configure your WiFi by editing a text file. Because the network configuration is stored as a file. Like everything else.</p><blockquote><p>This is why Linux is so powerful for cybersecurity. When everything is a file, you can read it, write it, copy it, move it, and automate it with simple commands.</p></blockquote><p><strong>And that is exactly what security professionals do every day.</strong></p><h3><strong>Top 4 Things You Need Know To Start</strong></h3><p>Before you learn a single command, you need to understand four foundational concepts. Everything else builds on these.</p><h4><strong>1. The Linux Filesystem</strong></h4><p>The Linux filesystem is organized as a single tree starting from the root directory, written as /.</p><p>Everything lives somewhere in that tree.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!HGdk!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!HGdk!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!HGdk!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png" width="1456" height="971" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:971,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:1795507,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/196514536?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!HGdk!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!HGdk!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F764d4b1f-1afa-4932-a7a1-f1c59078dc7b_1536x1024.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>The most important directory for cybersecurity work is /var/log. </p><p>This is where system logs live. When something goes wrong or when you are investigating an incident, this is where you look first.</p><h4><strong>2. Linux Distributions</strong></h4><p>Linux is not one operating system. It is a family of operating systems built on the same foundation.</p><p>Each version is called a <strong>distribution</strong>.</p><p>The ones you will encounter most in cybersecurity:</p><ul><li><p><strong>Ubuntu</strong> - the most beginner-friendly, great for learning</p></li><li><p><strong>Kali Linux</strong> - built specifically for security testing, comes with hundreds of security tools pre-installed</p></li><li><p><strong>Debian</strong> - stable and widely used in servers</p></li><li><p><strong>CentOS / Rocky Linux</strong> - common in enterprise environments</p></li></ul><p>For beginners, start with Ubuntu. Once you are comfortable, explore Kali for security-specific work.</p><div class="callout-block" data-callout="true"><p><strong>Not sure how much Linux you need for your specific path?</strong></p><p>Comment below with your details, and I will tell you exactly what to focus on:</p><p><strong>[Target role | Current level]</strong></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments"><span>Leave a comment</span></a></p></div><h3><strong>3. Permissions</strong></h3><p>Linux controls who can do what to every file and directory.</p><p><strong>Every file has three permission levels:</strong></p><ul><li><p><strong>Owner</strong> - the person who created the file</p></li><li><p><strong>Group</strong> - a defined group of users</p></li><li><p><strong>Others</strong> - everyone else</p></li></ul><p><strong>And three types of permission:</strong></p><ul><li><p><strong>Read (r)</strong> - can view the file</p></li><li><p><strong>Write (w)</strong> - can modify the file</p></li><li><p><strong>Execute (x)</strong> - can run the file as a program</p></li></ul><p>When you see something like -rwxr-xr-- in a terminal, that is the permission string. It tells you exactly who can do what with that file.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!lh8P!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!lh8P!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!lh8P!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png" width="1456" height="971" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:971,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:1871090,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/196514536?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!lh8P!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!lh8P!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ff4a42db0-a388-43af-891b-fd0ac8c3d6eb_1536x1024.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3><strong>4. Basic Commands</strong></h3><p>Once you understand the filesystem and permissions, commands start making sense.</p><p>I already wrote a full breakdown of the five commands you actually need for an entry-level cybersecurity role.</p><p><strong>If you have not read it yet, start there before anything else:</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;9a7604f6-78ab-4501-af12-3661d4b6daf8&quot;,&quot;caption&quot;:&quot;Here&#8217;s the hard truth:&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Top 5 Linux commands for an entry-level cybersecurity role&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-02-12T00:01:00.948Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/6800fa08-1136-4808-8c1f-79d56f028721_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/top-5-linux-command-for-an-entry&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:187010228,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:22,&quot;comment_count&quot;:21,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><h2><strong>How To Actually Install and Practice Linux</strong></h2><p>Reading about Linux is not enough. You need to use it.</p><p><strong>Here are the two best options for beginners:</strong></p><h4><strong>Option 1: Docker (Recommended for complete beginners)</strong></h4><p>Docker lets you run a Linux environment inside any operating system without changing anything on your computer.</p><p>You can spin up a Linux container, practice commands, break things, and delete it when you are done. No risk to your main system.</p><p><strong>How to start:</strong></p><ol><li><p>Install Docker Desktop on your computer (free)</p></li><li><p><strong>Open your terminal and run:</strong> docker run -it ubuntu</p></li><li><p>You now have a full Ubuntu Linux environment to practice in</p></li></ol><p>This is the fastest way to get hands-on with Linux without any setup complexity.</p><blockquote><p><strong>I prepared a complete guide for you:</strong> <a href="https://decodedsecurity.gumroad.com/l/Docker_guide">Run Your First Linux Environment in 60 Minutes</a> (FREE)</p></blockquote><h4><strong>Option 2: Dual Boot (Recommended when you are ready to go deeper)</strong></h4><p>Dual booting means installing Linux alongside your existing operating system. </p><p>When you start your computer, you choose which one to use.</p><p>This gives you a full, native Linux experience. Performance is better than Docker, and you get used to using Linux as your actual working environment.</p><p>The tradeoff is that setup takes more time, and there is a small risk of something going wrong during installation if you do not follow instructions carefully.</p><p>Use Docker first. Once you are comfortable with the basics, consider dual-booting for a more immersive experience.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!Vnsm!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!Vnsm!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!Vnsm!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png" width="1456" height="971" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:971,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:1799925,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/196514536?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!Vnsm!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!Vnsm!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe055dd07-f25d-4be6-b8c0-76c15e4f7b07_1536x1024.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h4><strong>Free Practice Platforms</strong></h4><p>Beyond your own machine, these platforms let you practice Linux in real cybersecurity scenarios:</p><ul><li><p><strong>TryHackMe</strong> - guided learning paths with Linux challenges built in. Perfect for complete beginners.</p></li><li><p><strong>OverTheWire: Bandit</strong> - a free wargame that teaches Linux commands by making you solve puzzles. Surprisingly fun.</p></li><li><p><strong>HackTheBox</strong> - more advanced, better suited once you have the basics down</p></li></ul><h2>Conclusion</h2><p>Congratulations! You just made another step in your cybersecurity journey. </p><p>But Linux isn&#8217;t something you&#8217;ll learn through reading, you have to execute!</p><p><strong>That&#8217;s why I want you to do the following steps RIGHT NOW:</strong> </p><ol><li><p>Install Docker on your computer</p></li><li><p>Run a Linux Distribution </p></li><li><p><strong>Finish the Free Lab I prepared for you:</strong> <a href="https://decodedsecurity.gumroad.com/l/Docker_guide">Run Your First Linux Environment in 60 Minutes</a></p></li><li><p>Comment on what your biggest problem was under this article - let me help you out!</p></li></ol><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments"><span>Leave a comment</span></a></p><p>Good luck!</p><p>- Erich</p><h3>Where To Go Next</h3><p>If this article gave you the foundation, the next step is getting practical with the actual commands:</p><p>&#128073; <a href="link">Top 5 Linux Commands for an Entry-Level Cybersecurity Role</a></p><p>And if you want to know which cybersecurity path makes Linux most relevant for your specific goals:</p><p>&#128073; <a href="link">How to Choose the Right Cybersecurity Role</a></p><div class="callout-block" data-callout="true"><p>&#128172; Which of the four foundational concepts was most useful to you? Comment below. I read every response! </p></div><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/this-is-how-i-explain-linux-to-a/comments"><span>Leave a comment</span></a></p><p></p><blockquote><p><strong>Want a clear 90-day plan for turning your knowledge into a job offer?</strong></p></blockquote><p>&#128073; <a href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint">The 90-Day Cybersecurity Job Blueprint - &#8364;9.99</a></p><blockquote><p>4.8 stars. 45 people have used it. 14-day money-back guarantee.</p></blockquote><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><blockquote><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong></p></blockquote>]]></content:encoded></item><item><title><![CDATA[Your Cybersecurity Resume Is Getting Rejected for Reasons Nobody Tells You. I Will.]]></title><description><![CDATA[Having the right skills will not get you hired.]]></description><link>https://www.decodedsecurity.com/p/your-cybersecurity-resume-is-getting</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/your-cybersecurity-resume-is-getting</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Mon, 04 May 2026 12:27:07 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/4e010e43-30a9-471e-bb9a-8647332adefd_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p><strong>Having the right skills will not get you hired.</strong></p><blockquote><p>A resume that cannot communicate those skills will get you rejected before anyone finds out what you are capable of.</p></blockquote><p>I have spent a long time helping people build cybersecurity knowledge. </p><p>Certifications, frameworks, and technical fundamentals. But I can see very often people get passed over for roles they could do in their sleep. </p><p>The problem is rarely competence. It is that piece of paper that says: <strong>I can do this! Hire me!</strong></p><p>I am a Cybersecurity Manager. I sit on the hiring side of this process. And there are four specific things I see on resumes that put candidates in the reject pile before anyone picks up the phone.</p><p>None of them is what most resume guides talk about.</p><p>One of them will surprise you, because you are probably doing it right now, thinking it makes you look more qualified.</p>
      <p>
          <a href="https://www.decodedsecurity.com/p/your-cybersecurity-resume-is-getting">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[This is how I Explain Cybersecurity Certifications To a Beginner]]></title><description><![CDATA[Most people pick certifications based on job postings, Reddit threads, or what looks impressive on LinkedIn. Here is a path-by-path guide to the only certifications that will actually move you forward]]></description><link>https://www.decodedsecurity.com/p/i-have-watched-people-waste-4000</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/i-have-watched-people-waste-4000</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Sat, 02 May 2026 08:58:23 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/7206b68b-e2a9-47d0-abb2-d7e51d47a5cd_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>I have watched people spend <strong>&#8364;4,000</strong> on CISSP prep and other materials before they had a single year of experience.</p><p>I have seen SOC analysts study for penetration testing certs because they looked impressive on LinkedIn.</p><p>I have spoken to GRC professionals who spent six months on Security+ when they didn&#8217;t need it for a single job they applied for.</p><p>None of them made a bad decision because they were careless. They made a bad decision because nobody told them the truth:</p><p>The certification doesn&#8217;t matter. The path does.</p><p>So, Path first. Certification second. <strong>In that order.</strong></p><p>If you are not sure yet which of the five paths fits your background, go back and read the previous article first. <strong>Choosing the wrong path makes every certification decision harder.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;9aba6c13-756d-4689-88d4-8aac657688f4&quot;,&quot;caption&quot;:&quot;Do you want to break into cybersecurity, but feel confused by all the different roles?&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;How to Choose the Right Cybersecurity Role Before You Waste Time and Money on the Wrong Certifications&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-01-14T11:11:59.523Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hrEi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/how-to-choose-the-right-cybersecurity&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:184030241,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:57,&quot;comment_count&quot;:38,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><div class="callout-block" data-callout="true"><p>Before we start - comment below using this format:</p><p><strong>[Target role | Current level | Certifications you already have]</strong></p><p>I will personally send you a customized study plan. Not generic advice. Something built for your specific situation.</p><p><strong>I did this for 28 people last month. Every single one got a response.</strong></p></div><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!hrEi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!hrEi!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!hrEi!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png" width="1456" height="971" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:971,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!hrEi!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 424w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 848w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 1272w, https://substackcdn.com/image/fetch/$s_!hrEi!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h2><strong>Path 1: Offensive Security</strong></h2><p><strong>Target roles:</strong> Penetration Tester, Red Team Engineer</p><p>This is the path most people romanticize and the one with the steepest entry requirements. Offensive security is not beginner-friendly. Anyone who tells you otherwise is selling you something.</p><p><strong>Start here:</strong></p><p><strong>eJPT (eLearnSecurity Junior Penetration Tester)</strong> is the most realistic first cert for this path. It&#8217;s practical, affordable, and actually tests whether you can do the work - not just whether you memorized definitions. It teaches you to think like an attacker on real systems, which is the entire point.</p><p>After eJPT, <strong>CompTIA PenTest+</strong> is a solid intermediate step that many employers recognize.</p><p>Then comes OSCP. The conventional advice is to wait until you have extensive hands-on experience. My take is different.</p><p>Attempting OSCP early - even before you feel ready - signals something no other cert on this path does: that you are serious enough to attempt the hardest practical exam in offensive security before you need to. </p><p>Passing it early separates you from the hundreds of people who say they want to be a pentester but never commit.</p><p><strong>It will be harder without experience. But that difficulty is the point.</strong></p><p><strong>What to avoid:</strong> CISSP on this path is largely irrelevant until you move into management. Security+ is useful for foundational knowledge but won&#8217;t differentiate you for offensive roles.</p><div class="callout-block" data-callout="true"><p>Targeting offensive security? Comment below: <strong>[Target role | Current level | Certifications you already have]</strong> I'll tell you exactly what to focus on next.</p></div><div><hr></div><h2><strong>Path 2: Security Operations (SOC)</strong></h2><p><strong>Target roles:</strong> Security Analyst, Incident Responder</p><p>SOC is the most accessible entry point into cybersecurity for people without a deeply technical background. It&#8217;s also the path where Security+ actually earns its reputation.</p><p>Start here:</p><p><strong>CompTIA Security+</strong> is the right first cert for this path. It&#8217;s widely recognized, required or preferred in many SOC job postings, and covers the foundational knowledge you need to understand what you&#8217;re monitoring. It&#8217;s also DoD-approved, which matters if you&#8217;re targeting government or defense-adjacent roles.</p><p>After Security+, <strong>CompTIA CySA+</strong> is the natural next step. It focuses on threat detection, behavioral analytics, and incident response - exactly what SOC analysts do day to day.</p><p><strong>ISC2 CC</strong> is worth considering before Security+ if you want a free way to prove foundational knowledge while you prepare. It costs nothing to sit and covers the same core concepts.</p><p>What to avoid: Jumping to CISSP as a junior SOC analyst is putting the cart before the horse. Build your operational experience first.</p><div class="callout-block" data-callout="true"><p>On the SOC path? Drop your details below: <strong>[Target role | Current level | Certifications you already have]</strong> I&#8217;ll send you a personalized study plan.</p></div><div><hr></div><h2><strong>Path 3: Security Architecture and Engineering</strong></h2><p><strong>Target roles:</strong> Security Engineer, Cloud Security Engineer, Security Architect</p><p>This path splits depending on where you want to specialize - cloud or on-premise. Choose based on where the companies you want to work for actually operate.</p><p><strong>If your target is cloud:</strong></p><p><strong>AWS Security Specialty</strong> or <strong>Microsoft SC-900 / AZ-500</strong> are the right starting points, depending on which platform dominates your target market. Cloud security roles are growing fast, and cloud-specific certs signal something generic security certs don&#8217;t: That you understand the specific environment where most modern security work actually happens.</p><p><strong>If your target is general engineering:</strong></p><p><strong>CompTIA Security+</strong> gives you the baseline, then <strong>CompTIA CASP+</strong> signals you can operate at a senior level.</p><p>For software developers moving into security engineering: look at the <strong>CSSLP (Certified Secure Software Lifecycle Professional)</strong>. It&#8217;s underused and directly relevant to your background.</p><p><strong>What to avoid:</strong> Don&#8217;t collect cloud certs across multiple providers before going deep on one. Pick AWS or Azure based on your target companies and commit.</p><div class="callout-block" data-callout="true"><p><strong>Engineering or cloud security your direction?</strong> Comment below: <strong>[Target role | Current level | Certifications you already have]</strong> I&#8217;ll point you to the right next step.</p></div><div><hr></div><h2><strong>Path 4: Governance, Risk, and Compliance (GRC)</strong></h2><p><strong>Target roles:</strong> Security Auditor, Risk Manager, Compliance Specialist</p><p>This is the path I know best. And it&#8217;s the path where the certification advice you&#8217;ll find online is most consistently wrong.</p><p><strong>Start here:</strong></p><p><strong>ISC2 CC</strong> is free to sit, covers the fundamentals you need, and is backed by the same organization that owns CISSP. For someone with no prior cybersecurity certification, this is your starting point. It costs nothing except study time.</p><p><strong>After CC, the path splits based on your specialization:</strong></p><ul><li><p>Risk management: <strong>CRISC</strong> is the gold standard. Target it after your first GRC role.</p></li><li><p>Governance and management: <strong>CISM</strong> is the right target for mid-career.</p></li><li><p>Compliance and auditing: <strong>CISA</strong> is what auditors and compliance teams respect most.</p></li></ul><p><strong>CompTIA Security+</strong>&nbsp;works here, too, for beginners who want to validate foundational cybersecurity literacy that GRC employers want to see.</p><p><strong>What about CISSP on the GRC path?</strong> </p><p>Consider attempting it early - even before you feel fully ready. GRC is the path most directly aligned with how CISSP thinks. </p><p>The exam is built around risk management, governance, policy, and business decision-making. <br><br><strong>That is exactly what GRC professionals do every day.</strong>  </p><p>Passing the CISSP exam early signals that you think at a strategic level before you are even required to. Combined with CC and your first GRC role, it separates you from every other candidate who is still waiting until they feel ready.</p><p><strong>What to avoid: A</strong>ttempting CISSP before you have CC and a good understanding of the fundamentals. Build the foundation first. Then go for it.</p><div class="callout-block" data-callout="true"><p>On the GRC path? Drop your details below: <strong>[Target role | Current level | Certifications you already have]</strong> I'll build you a personalized study plan.</p></div><div><hr></div><h2><strong>Path 5: Management and Leadership</strong></h2><p>Target roles: Security Program Manager, Security Director, CISO</p><p>One cert dominates this path: <strong>CISSP.</strong></p><p>The conventional advice is to wait until you have five years of experience. My advice is different.</p><p>Consider passing it early anyway.</p><p>CISSP Associate means you&#8217;ve passed the exam before fulfilling the experience requirement. You have six years to complete it afterward.</p><p>When a hiring manager sees CISSP Associate on a resume from someone with two years of experience, they don&#8217;t think &#8220;this person jumped ahead.&#8221; They think &#8220;this person is serious.&#8221;</p><p>It won&#8217;t replace experience. But it will open doors that a generic technical cert never will.</p><p>What to focus on while you build that experience: understanding how security decisions connect to business goals. The exam tests judgment, not just knowledge. Study accordingly.</p><div class="callout-block" data-callout="true"><p>Thinking about the management path? Comment below: <strong>[Target role | Current level | Certifications you already have]</strong> I&#8217;ll tell you if your timing makes sense and what to focus on first.</p></div><div><hr></div><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!az5s!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!az5s!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 424w, https://substackcdn.com/image/fetch/$s_!az5s!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 848w, https://substackcdn.com/image/fetch/$s_!az5s!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 1272w, https://substackcdn.com/image/fetch/$s_!az5s!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!az5s!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png" width="1456" height="851" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:851,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:189114,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/196164663?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!az5s!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 424w, https://substackcdn.com/image/fetch/$s_!az5s!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 848w, https://substackcdn.com/image/fetch/$s_!az5s!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 1272w, https://substackcdn.com/image/fetch/$s_!az5s!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F157440fb-3080-4ef3-9f89-d14b4123b280_1472x860.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h2><strong>The honest truth about certifications</strong></h2><p>A certification will not get you hired on its own.</p><p>It opens the door. You still have to walk through it.</p><p>What actually gets you hired is showing up to interviews knowing how to think, not just what to memorize. It&#8217;s having a resume that tells a coherent story. It&#8217;s being able to explain your reasoning clearly when a hiring manager puts a scenario in front of you.</p><p>The right certification for your path removes one barrier. It proves you took it seriously enough to invest time and money into a credential that matters for the direction you chose.</p><p>That&#8217;s it. One barrier removed.</p><p>The rest is on you.</p><p><strong>Pick your path. Pick your cert. Start this week.</strong></p><div><hr></div><p><strong>The Certification Tells You What to Study. The Blueprint Tells You What to Do.</strong></p><p>Knowing which certification fits your path is only half the answer.</p><p>The other half is knowing what to actually do in the next 90 days. Which skills to build first. How to position your background for cybersecurity roles. How to build a resume that gets read. How to walk into interviews and explain your thinking clearly.</p><p>That&#8217;s what the 90-Day Cybersecurity Job Blueprint covers.</p><p>&#128073; <strong><a href="https://decodedsecurity.gumroad.com/l/CybersecurityBlueprint">Get the Blueprint - &#8364;9.99</a></strong></p><p>4.8 stars. 45 people have used it. 14-day money-back guarantee.</p><div class="callout-block" data-callout="true"><p>&#128172; Comment below with your details, and I'll tell you if you're on the right track: <strong>[Target role | Current level | Certifications you already have]</strong></p></div><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/i-have-watched-people-waste-4000/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/i-have-watched-people-waste-4000/comments"><span>Leave a comment</span></a></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe to <strong>Decoded Security</strong> for a new article every week.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2></h2>]]></content:encoded></item><item><title><![CDATA[GRC for Beginners: The Exact Study Plan I’d Follow If I Had to Start From Scratch]]></title><description><![CDATA[Break into cybersecurity GRC without wasting months on random topics. This step-by-step roadmap shows you what to learn, how to think, and how to build skills that actually matter in the real-world.]]></description><link>https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Tue, 28 Apr 2026 20:01:34 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/d522af50-2ef3-458c-a61c-f2bef6d12e76_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Do you want to focus on cybersecurity GRC but don't know where to start? </p><p>You feel that urge to do something, but you always end up watching YouTube videos on some random concept, and you feel like you&#8217;re getting nowhere.</p><p>In cybersecurity, a lack of direction is more dangerous than a lack of knowledge.</p><p>I have spent years studying random topics that didn&#8217;t get me any closer to my goal.</p><p>That&#8217;s why I created a study plan, which will help you use your time much more efficiently. </p><p>You will no longer focus on &#8220;What should I learn?&#8221; You will spend your time learning what matters.</p><div class="callout-block" data-callout="true"><p>Comment your target role + your current level, and I&#8217;ll tell you exactly what to focus on next.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:&quot;button-wrapper&quot;}" data-component-name="ButtonCreateButton"><a class="button primary button-wrapper" href="https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study/comments"><span>Leave a comment</span></a></p></div><h2>GRC (Governance, Risk, Compliance)</h2><p><strong>GRC (Governance, Risk, Compliance)</strong> is one of the <strong>5 cybersecurity paths</strong> you can choose. </p><div class="callout-block" data-callout="true"><p>If you&#8217;re not familiar with the cybersecurity paths, read this first!</p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;c7d94898-4f19-4840-893b-d3edfcdfe675&quot;,&quot;caption&quot;:&quot;Do you want to break into cybersecurity, but feel confused by all the different roles?&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;How to Choose the Right Cybersecurity Role Before You Waste Time and Money on the Wrong Certifications&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-01-14T11:11:59.523Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hrEi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/how-to-choose-the-right-cybersecurity&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:184030241,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:53,&quot;comment_count&quot;:38,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div></div><p>But before you deep-dive into the materials I am about to provide, make sure this path is really for you. </p><p>You don&#8217;t want to waste weeks and months learning things that won&#8217;t get you any closer to your goal. </p><p><strong>It&#8217;s a great fit if you:</strong></p><ul><li><p>Prefer <strong>structured thinking over deep technical troubleshooting</strong></p></li><li><p>Like understanding <strong>how systems, risks, and business decisions connect</strong></p></li><li><p>Enjoy <strong>analysis, documentation, and decision-making</strong></p></li><li><p>Want to work closer to <strong>business, strategy, and leadership</strong></p></li></ul><p><strong>It&#8217;s especially convenient if you:</strong></p><ul><li><p>Are you switching from <strong>business, law, or management</strong></p></li><li><p>Don&#8217;t want to spend years becoming deeply technical</p></li></ul><p>As you probably know, GRC is, in general, less technical, but it doesn&#8217;t make it any less valuable. </p><p>This is where business and cybersecurity meet, and the decisions made at this level influence the whole company.</p><h2>The Decoded Security GRC Roadmap</h2><p>This roadmap has three main goals. </p><p>First, make sure that you understand the cybersecurity basics that you need for any role in the field. </p><p>Second, make sure you understand the basics of cybersecurity GRC.</p><p>Third, force you to apply the theoretical knowledge and challenge yourself.</p><blockquote><p>What is your target role? Let me know in the comments and let&#8217;s discuss your next steps!</p></blockquote><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/grc-for-beginners-the-exact-study/comments"><span>Leave a comment</span></a></p><p>Here&#8217;s the exact roadmap I would follow if I had to start again.</p><h2>Step 1: Build the right foundation</h2><p>Before you go deeper into GRC, you need to understand how cybersecurity <em>actually works</em> and be familiar with the fundamentals, which underpin everything.</p><p>To make this easier, I put the key concepts into one place.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!ylp3!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!ylp3!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 424w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 848w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 1272w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!ylp3!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png" width="1456" height="1024" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1024,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:668940,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:&quot;&quot;,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194920150?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!ylp3!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 424w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 848w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 1272w, https://substackcdn.com/image/fetch/$s_!ylp3!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8ed54e73-b612-4d2c-9d37-5a836ac3eb8e_1920x1350.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="callout-block" data-callout="true"><p>Download it here for FREE: <a href="https://decodedsecurity.gumroad.com/l/Top10_Cybersecurity_Concepts">Cybersecurity Fundamentals: The 10 Concepts That Get You Through 90% of Interviews</a></p></div><p><strong>Make sure to understand these especially: </strong></p><ol><li><p><a href="https://cybersecerich.substack.com/p/threat-risk-vulnerability-why-cissp?r=4abibl">Threat &#8800; Risk &#8800; Vulnerability: Why CISSP Basics Matter More Than You Think</a></p></li><li><p><strong><a href="https://cybersecerich.substack.com/p/my-first-week-of-cissp-prep-what?r=4abibl">My First Week of CISSP Prep &#8211; What I&#8217;ve Learned So Far</a></strong></p></li><li><p><a href="https://cybersecerich.substack.com/p/security-policies-standards-and-procedures?r=4abibl">Security Policies, Standards, and Procedures: The Boring Stuff That Actually Saves You</a></p></li><li><p><strong><a href="https://cybersecerich.substack.com/p/cybersecurity-controls-from-zero?r=4abibl">Cybersecurity Controls from Zero to Hero</a></strong></p></li></ol><h2>Step 2: Start focusing on GRC topics</h2><p>Now shift from &#8220;what is cybersecurity&#8221; &#8594; &#8220;how companies manage it.&#8221;</p><p><strong>Focus on:</strong></p><ul><li><p><strong>Policies vs standards vs procedures</strong></p><ul><li><p><a href="https://cybersecerich.substack.com/p/security-policies-standards-and-procedures?r=4abibl">Security Policies, Standards, and Procedures: The Boring Stuff That Actually Saves You</a></p></li></ul></li><li><p>Access Control methods</p><ul><li><p><a href="https://www.decodedsecurity.com/p/access-controls">Access Controls: Who Gets the Keys?</a></p></li></ul></li><li><p><strong>Risk management:</strong></p><ul><li><p><strong><a href="https://www.decodedsecurity.com/p/quantitative-risk-analysis-let-the">Quantitative Risk Analysis: Let The Numbers Do All The Talking</a></strong></p></li><li><p><strong><a href="https://www.decodedsecurity.com/p/how-risk-management-frameworks-keep">How Risk Management Frameworks Keep Systems Secure</a></strong></p></li><li><p><a href="https://www.decodedsecurity.com/p/risk-management-managing-risks-in">Risk Management: Managing risks in six steps</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/3-things-that-surprise-me-about-cissp">3 things that surprise me about CISSP Domain 1: Security and Risk Management</a></p></li></ul></li><li><p><strong>Data Lifecycle</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/the-data-lifecycle-from-creation">The Data Lifecycle: From Creation to Secure Destruction</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-storage-mistake-90-of-people">The Storage Mistake 90% of People Make (Until It&#8217;s Too Late)</a></p></li></ul></li><li><p><strong>Disaster Recovery and Business Continuity</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/floods-cybersecurity-and-survival">Floods, Cybersecurity, and Survival Strategies And the Surprising Link Between Them</a></p></li></ul></li><li><p><strong>Intellectual Property &amp; Licensing</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/why-we-need-to-be-lawyers-intellectual">Why We Need to Be Lawyers: Intellectual Property &amp; Compliance in Cybersecurity</a></p></li></ul></li><li><p><strong>Laws, Legislation and Contracts</strong></p><ul><li><p><a href="https://www.decodedsecurity.com/p/15-laws-every-cissp-candidate-must">15+ Laws Every CISSP Candidate Must Know: The Only Legal Guide You Need</a></p></li><li><p><a href="https://www.decodedsecurity.com/p/the-nines-arent-enough-the-7-things">Stop Reading SLAs Wrong: The 7 Critical Topics You&#8217;re Missing</a></p></li></ul></li><li><p>(Reality check - optional)</p><ul><li><p><a href="https://www.decodedsecurity.com/p/6-myths-that-are-killing-corporate">6 Myths That Are Killing Corporate Cybersecurity</a></p></li></ul></li></ul><blockquote><p><strong>Do you struggle with any of these concepts?<br></strong>Comment the one you don&#8217;t understand, and I&#8217;ll break it down for you.</p></blockquote><h2>Step 3: Try practical examples</h2><p>There are two articles in which I analyzed a real-world scenario. </p><ul><li><p><strong><a href="https://www.decodedsecurity.com/p/quantitative-risk-analysis-let-the">Quantitative Risk Analysis: Let The Numbers Do All The Talking</a></strong></p></li><li><p><a href="https://www.decodedsecurity.com/p/risk-management-managing-risks-in">Risk Management: Managing risks in six steps</a></p></li></ul><p>The task is very simple. Let&#8217;s use the AI for something useful and tell ChatGPT to create practice scenarios based on my articles. </p><div class="callout-block" data-callout="true"><p><strong>Perform the analysis, send it to me at </strong><em><strong>erich.winkler@decodedsecurity.com, and comment &#8220;Analysis&#8221;</strong></em></p></div><p>I will send you feedback, and we can discuss your approach. </p><h2>Conclusion</h2><p>Most people don&#8217;t fail in GRC because it&#8217;s too hard. They fail because they never had a plan.</p><p>They jump between random topics, watch endless videos, and confuse activity with progress.</p><p>That&#8217;s how months turn into years&#8230; with nothing to show for it.</p><p>The Decoded Security roadmap fixes this. It gives you structure that I wish I had a couple of years back.</p><p><strong>It tells you:</strong></p><ul><li><p>what to learn</p></li><li><p>in what order</p></li><li><p>and how to actually apply it</p></li></ul><p><strong>You&#8217;ll start thinking like someone who can:</strong></p><ul><li><p>identify real risks</p></li><li><p>make informed decisions</p></li><li><p>and bring value to a business</p></li></ul><p>And that&#8217;s what this field is really about.</p><p>You already have the roadmap. Now it&#8217;s about execution. </p><p><strong>See you in the comments!</strong> </p><p>Thank you for reading Decoded Security! </p><p>Erich</p><blockquote><p><strong>Comment your target role + your current level. I&#8217;ll give you your next step.</strong></p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,000 people read <strong>Decoded Security</strong> every week! Join our community and let us help you achieve your goals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p>]]></content:encoded></item><item><title><![CDATA[Testing Disaster Recovery Plans: Why “Having a Plan” Isn’t Enough to Pass CC or CISSP]]></title><description><![CDATA[If you think having a disaster recovery plan is enough, you&#8217;re already making a mistake. The exam is designed to expose that. This guide shows you what most candidates miss, and why they fail.]]></description><link>https://www.decodedsecurity.com/p/testing-disaster-recovery-plans-why</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/testing-disaster-recovery-plans-why</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Thu, 23 Apr 2026 09:34:01 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/756a551f-99b8-4a09-aded-832bf41740c3_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<blockquote><p>&#128216; <em>Essential for anyone preparing for the ISC2 CC or CISSP exam</em></p></blockquote><p>I&#8217;ve spoken with many people who <strong>passed</strong> the <strong>ISC2 exams</strong>, and I've also spoken with many who <strong>failed</strong>. And every time I meet someone who failed, I take notes. </p><p>And for some reason, this topic comes up very often. Even though it isn&#8217;t anything complex, it is absolutely essential in real-world practice. </p><blockquote><p>That&#8217;s why I decided to include it in my materials and make sure that no one reading Decoded Security will fail this topic ever again.</p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,000 people read <strong>Decoded Security</strong> every week! Join our community and let us help you achieve your goals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>Testing Disaster Recovery Plans</h2><p>You studied disaster recovery. You know what RTO (Recovery Time Objective) and RPO (Recovery Point Objective) mean.</p><p>You understand backups, the data security lifecycle, and you can tell the difference between a hot site and a warm site. </p><blockquote><p>If you&#8217;re not familiar with those terms, you can find links to my previous articles explaining all of those topics at the end of this article. </p></blockquote><p>You feel ready to answer all disaster recovery questions that might come up in the ISC2 exams. </p><p>And you still might fail. And you wouldn&#8217;t be the first, nor the last.</p><p>People are usually so focused on creating disaster recovery plans and business impact analysis that they forget one crucial part.</p><blockquote><p><strong>A plan is useless unless it&#8217;s regularly tested</strong>.</p></blockquote><p>And this is exactly where exam questions are designed to catch you.</p><p>Because in both the ISC2 Certified in Cybersecurity (CC) and CISSP, one principle shows up again and again:</p><blockquote><p>A plan that hasn&#8217;t been tested cannot be trusted.</p></blockquote><h2>The hierarchy of disaster recovery testing</h2><p>Both for the exams and the real-world practice, you need to know two things. </p><ol><li><p>Different types of exercises to test DR plans</p></li><li><p>How to balance the assurance with the cost</p></li></ol><p>As always, the more thorough you are, the more money it costs. And stakeholders won't like that.</p><p>Let&#8217;s take it from the least expensive to the most. </p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!dik2!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!dik2!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 424w, https://substackcdn.com/image/fetch/$s_!dik2!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 848w, https://substackcdn.com/image/fetch/$s_!dik2!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 1272w, https://substackcdn.com/image/fetch/$s_!dik2!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!dik2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png" width="1456" height="1289" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:1289,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:191869,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/186845585?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!dik2!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 424w, https://substackcdn.com/image/fetch/$s_!dik2!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 848w, https://substackcdn.com/image/fetch/$s_!dik2!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 1272w, https://substackcdn.com/image/fetch/$s_!dik2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F29f73113-8745-4bb2-81b2-a569fc800d66_1699x1504.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h3>1. Checklist Test</h3><p><strong>Purpose</strong><br>Validate that the disaster recovery plan is complete and up to date.</p><p><strong>How it is performed</strong></p><ul><li><p>The DR plan is distributed to functional managers</p></li><li><p>Each manager reviews their section independently</p></li><li><p><strong>They verify:</strong></p><ul><li><p>Contact details</p></li><li><p>Roles and responsibilities</p></li><li><p>Procedures</p></li></ul></li><li><p>Feedback is collected and consolidated</p></li><li><p>The plan is updated accordingly</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Easy and fast to perform</p></li><li><p>Identifies missing steps or outdated information</p></li><li><p>Low cost, no operational impact</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>No real execution</p></li><li><p>No validation of actual recovery capability</p></li><li><p>Gives a false sense of security</p></li></ul><p><strong>When to use</strong></p><ul><li><p>Early stages of DR planning</p></li><li><p>Regular reviews (e.g., quarterly updates)</p></li><li><p>Before more advanced testing</p></li></ul><blockquote><p><strong>Exam insight:</strong> This is the weakest form of testing, but it is conveninent as it can be perform regularly without operational impact.</p></blockquote><h3>2. Structured Walkthrough</h3><p><strong>Purpose</strong><br>Validate logical flow and completeness of the plan as a group.</p><p><strong>How it is performed</strong></p><ul><li><p>Key stakeholders meet in a structured session</p></li><li><p>The plan is reviewed step by step</p></li><li><p>A facilitator walks the group through:</p><ul><li><p>Sequence of actions</p></li><li><p>Dependencies between teams</p></li></ul></li><li><p>Participants discuss:</p><ul><li><p>What happens next</p></li><li><p>What might be missing</p></li></ul></li><li><p>Gaps and conflicts are documented and resolved</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Identifies inconsistencies and gaps</p></li><li><p>Improves team understanding</p></li><li><p>Encourages collaboration across departments</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>Still theoretical</p></li><li><p>No real system or process validation</p></li></ul><p><strong>When to use</strong></p><ul><li><p>After checklist review</p></li><li><p>When updating or improving the plan</p></li><li><p>Before running simulations</p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Preparing for any cybersecurity certification exam? Subscribe to <strong>Decoded Security</strong> and learn for FREE!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h3>3. Tabletop Exercise</h3><p><strong>Purpose</strong><br>Simulate decision-making during a disaster scenario.</p><p><strong>How it is performed</strong></p><ul><li><p>A realistic scenario is introduced (e.g., ransomware, data center outage)</p></li><li><p>Participants assume their real roles</p></li><li><p>A facilitator drives the scenario forward in phases</p></li><li><p>Teams explain:</p><ul><li><p>What actions they would take</p></li><li><p>Who they would contact</p></li><li><p>How decisions are made</p></li></ul></li><li><p>Injects (new developments) are added to simulate pressure</p></li><li><p>Observers record gaps and decision issues</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Tests roles and responsibilities</p></li><li><p>Improves communication and coordination</p></li><li><p>Reveals gaps in procedures and escalation paths</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>No real technical execution</p></li><li><p>Does not validate recovery time or system restoration</p></li></ul><p><strong>When to use</strong></p><ul><li><p>Training teams</p></li><li><p>Testing incident response + DR coordination</p></li><li><p>Preparation for more advanced tests</p></li></ul><blockquote><p><strong>Exam trap:</strong> Remember that nothing is actually executed in this type of testing!</p></blockquote><h3>4. Simulation Test</h3><p><strong>Purpose</strong><br>Test actual execution of disaster recovery procedures in a controlled scenario.</p><p><strong>How it is performed</strong></p><ul><li><p>A specific disaster scenario is defined</p></li><li><p>Teams execute actual recovery procedures:</p><ul><li><p>Restore systems</p></li><li><p>Recover data</p></li><li><p>Activate DR processes</p></li></ul></li><li><p>Real tools and systems are used</p></li><li><p>Activities are monitored and timed</p></li><li><p>Issues (failures, delays, confusion) are recorded</p></li><li><p>Results are analyzed after the exercise</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Validates processes and responsibilities</p></li><li><p>Reveals real operational issues</p></li><li><p>Provides measurable insights (time, errors, gaps)</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>Requires coordination and effort</p></li><li><p><strong>May impact operations if not controlled</strong></p></li></ul><p><strong>When to use</strong></p><ul><li><p>After tabletop exercises</p></li><li><p>When validating readiness of teams and processes</p></li></ul><h3>5. Parallel Test</h3><p><strong>Purpose</strong><br>Validate recovery capability by running systems at an alternate site alongside production.</p><p><strong>How it is performed</strong></p><ul><li><p>Systems are restored or activated at the alternate site</p></li><li><p>Data is replicated or restored to that environment</p></li><li><p>The alternate system runs in parallel with production</p></li><li><p>Processing is performed and results are compared</p></li><li><p>Performance and consistency are validated</p></li><li><p>Production systems remain active throughout</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Tests the infrastructure and data replication</p></li><li><p>No disruption to live operations</p></li><li><p>High level of confidence without full risk</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>Resource-intensive</p></li><li><p>Doesn&#8217;t fully simulate real failure conditions</p></li></ul><p><strong>When to use</strong></p><ul><li><p>When testing alternate sites</p></li><li><p>Before conducting full interruption tests</p></li><li><p>In mature DR environments</p></li></ul><h3>6. Full Interruption Test</h3><p><strong>Purpose</strong><br>Validate complete disaster recovery by switching all operations to the alternate site.</p><p><strong>How it is performed</strong></p><ul><li><p>Production systems are intentionally shut down</p></li><li><p>Operations are switched entirely to the alternate site</p></li><li><p>All business processes run from the recovery environment</p></li><li><p>Users interact with the DR systems as if it were real production</p></li><li><p>Recovery time and performance are measured</p></li><li><p>After testing, systems are restored back to normal operations</p></li></ul><p><strong>Benefits</strong></p><ul><li><p>Highest level of assurance</p></li><li><p>Fully tests systems, people, and processes</p></li><li><p>Provides real recovery metrics</p></li></ul><p><strong>Drawbacks</strong></p><ul><li><p>High risk</p></li><li><p>Operational disruption</p></li><li><p>Expensive and complex</p></li></ul><p><strong>When to use</strong></p><ul><li><p>Mature organizations with strong DR capabilities</p></li><li><p>Critical systems requiring full validation</p></li><li><p>Infrequently (e.g., annually)</p></li></ul><blockquote><p><strong>Exam insight:</strong> This provides the strongest validation and should be used only if the highest level of assurance is required.</p></blockquote><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Subscribe today for FREE and get the <a href="https://decodedsecurity.gumroad.com/l/InterviewGuide">Cybersecurity Interview Cheat Sheet</a> for FREE as a welcome gift!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><blockquote><p><strong>Printable cheat sheet - perfect for the exam.</strong></p></blockquote><div class="file-embed-wrapper" data-component-name="FileToDOM"><div class="file-embed-container-reader"><div class="file-embed-container-top"><image class="file-embed-thumbnail-default" src="https://substackcdn.com/image/fetch/$s_!0Cy0!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack.com%2Fimg%2Fattachment_icon.svg"></image><div class="file-embed-details"><div class="file-embed-details-h1">Decoded Security Dr Testing Cheat Sheet</div><div class="file-embed-details-h2">24.1KB &#8729; PDF file</div></div><a class="file-embed-button wide" href="https://www.decodedsecurity.com/api/v1/file/ccec7bcf-9a06-4d73-a4c0-cdaff6c3767a.pdf"><span class="file-embed-button-text">Download</span></a></div><a class="file-embed-button narrow" href="https://www.decodedsecurity.com/api/v1/file/ccec7bcf-9a06-4d73-a4c0-cdaff6c3767a.pdf"><span class="file-embed-button-text">Download</span></a></div></div><h2>Conclusion</h2><p>This is everything you need to correctly answer disaster recovery testing questions on the ISC2 Certified in Cybersecurity (CC) and CISSP exams, and more importantly, to choose the right level of assurance in real-world practice.</p><p>I have one last tip for you. Always complete the previous level before moving to the next. Each level builds on the previous one.</p><ul><li><p>You review before you simulate</p></li><li><p>You simulate before you execute</p></li><li><p>You execute before you fully interrupt</p></li></ul><p>Skipping levels doesn&#8217;t make you efficient. That&#8217;s a common trick in the exam.</p><p><strong>Thank you for reading Decoded Security!</strong></p><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><p><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap</a></strong><em><strong><a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap"><br><br></a></strong></em><strong>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></p><p><strong>Let&#8217;s learn and grow together!</strong></p><h2>Disaster Recovery and Business Continuity - Study resources</h2><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;e5a48344-9f75-4bbc-a9e3-7ca37dbf0003&quot;,&quot;caption&quot;:&quot;Pass Certifications Without Wasting Months or Spending $1,000+ on Courses&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;md&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Decoded Security Certification Hub&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-07-29T13:25:44.524Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!sQrU!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd675538d-b494-4f19-a5b8-e52dd8e7ca62_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/certification-hub&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:169206790,&quot;type&quot;:&quot;page&quot;,&quot;reaction_count&quot;:0,&quot;comment_count&quot;:0,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;c9d852e2-5d33-4252-a24a-6d90d5f9ec22&quot;,&quot;caption&quot;:&quot;Let me guess, you clicked on this because floods and cybersecurity sounded like a weird combination. After all, what does setting up firewalls have to do with rising water levels?&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Floods, Cybersecurity, and Survival Strategies And the Surprising Link Between Them&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-08-18T08:00:35.097Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b6c0acfd-1b08-4ca2-83de-b127054a0cf3_1456x1048.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/floods-cybersecurity-and-survival&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:162834712,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:14,&quot;comment_count&quot;:0,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;27fb6753-af18-403c-a984-81d8fbe3f905&quot;,&quot;caption&quot;:&quot;Information security is, at its core, about protecting data.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The Data Lifecycle: From Creation to Secure Destruction&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-09-01T08:02:33.368Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/12ab646c-c99c-4b9e-a99d-00b2315c209d_1456x1048.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/the-data-lifecycle-from-creation&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:171663402,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:9,&quot;comment_count&quot;:2,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;ef0e0538-1f06-4b82-b64b-dd52c8d2ac3f&quot;,&quot;caption&quot;:&quot;Imagine all your data gone.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The Storage Mistake 90% of People Make (Until It&#8217;s Too Late)&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-11-14T17:47:14.615Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/db555795-b66d-44d1-b8c8-29857fdd6c37_1456x1048.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/the-storage-mistake-90-of-people&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:178872298,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:4,&quot;comment_count&quot;:2,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div>]]></content:encoded></item><item><title><![CDATA[Entry-Level Cybersecurity Jobs Don’t Exist -Here’s Exactly What to Do Instead]]></title><description><![CDATA[Cybersecurity is one of the hardest fields to get into. Whether you are a student or a career switcher, this will help you create a personalized strategy how to get break that entry level barrier.]]></description><link>https://www.decodedsecurity.com/p/entry-level-cybersecurity-jobs-dont</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/entry-level-cybersecurity-jobs-dont</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Sat, 18 Apr 2026 08:41:23 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/f5a38090-3e97-4ce9-9782-d9f2d5bd78b8_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Cybersecurity is one of the hardest fields to get into. <br>And there is one specific reason for it. </p><blockquote><p><strong>Most &#8220;entry-level&#8221; cybersecurity jobs don&#8217;t actually exist.</strong></p></blockquote><p>I know, you don&#8217;t believe me right now. </p><p>There are many roles, such as Junior SOC Analyst, Entry-Level Security Engineer, and Associate Cybersecurity Specialist</p><p><strong>Well, there are. </strong>However, there is one crucial misunderstanding. </p><blockquote><p>&#8220;Entry-level&#8221; doesn&#8217;t mean entry into tech, it means <em>entry into security</em></p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!-28g!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!-28g!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 424w, https://substackcdn.com/image/fetch/$s_!-28g!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 848w, https://substackcdn.com/image/fetch/$s_!-28g!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 1272w, https://substackcdn.com/image/fetch/$s_!-28g!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!-28g!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png" width="1456" height="782" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/feb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:782,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:146142,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194505221?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!-28g!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 424w, https://substackcdn.com/image/fetch/$s_!-28g!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 848w, https://substackcdn.com/image/fetch/$s_!-28g!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 1272w, https://substackcdn.com/image/fetch/$s_!-28g!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Ffeb64a65-bf84-4042-a6a8-bff73f4e83b6_1708x917.png 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><strong>No experience?</strong> Subscribe to <strong>Decoded Security</strong> and learn how to get experience even without getting a first job!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p><strong>They&#8217;re designed for people who already have:</strong></p><ul><li><p>basic IT experience</p></li><li><p>understanding of systems and networks</p></li><li><p>strong theoretical knowledge of cybersecurity</p></li><li><p>some exposure to real-world environments</p></li></ul><div class="callout-block" data-callout="true"><p><em>No one in a different industry would use the term &#8220;entry-level&#8221;. But that&#8217;s the reality of the cybersecurity market.</em> </p></div><p>Does it mean you should give up? </p><p>NO! </p><p>It only means you need to change your strategy. And I will show you exactly how. </p><p><strong>Remember:</strong>&nbsp;The stronger the entry-level barrier, the more of a benefit it becomes once you break it!  </p><div class="callout-block" data-callout="true"><p>If you&#8217;re a Software Developer, I have created 5 specific steps you can take to break this barrier! <br></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;88704a1d-9461-46ff-8f2b-25c34f8dae9f&quot;,&quot;caption&quot;:&quot;I don&#8217;t know your story, but let me guess why you opened this article..&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;5 Specific Steps For Software Developers To Get a Job in Cybersecurity In 6 Months Without Starting Over&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-01-07T13:02:09.384Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/520e0e23-ea1b-4bd2-8f07-cb9922a82646_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/5-specific-steps-for-software-developers&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:183768217,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:15,&quot;comment_count&quot;:7,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div></div><h2>Why You Should Continue Reading</h2><p>If you&#8217;re new to cybersecurity, there&#8217;s a hard truth you need to face:</p><blockquote><p>The game is stacked against you at the beginning.</p></blockquote><p>You need experience to get an &#8220;entry-level&#8221; job.</p><p>Which sounds impossible.</p><p><strong>But here&#8217;s the good news:</strong></p><blockquote><p>Demand for cybersecurity professionals is still growing.</p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!SyS1!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!SyS1!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 424w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 848w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 1272w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!SyS1!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png" width="498" height="418.99038461538464" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:700,&quot;width&quot;:832,&quot;resizeWidth&quot;:498,&quot;bytes&quot;:35039,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194505221?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fee5e3215-5c67-400f-b703-43563e5e3167_832x700.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!SyS1!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 424w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 848w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 1272w, https://substackcdn.com/image/fetch/$s_!SyS1!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F890e075e-955d-4c86-9fc5-d8d56be7a362_832x700.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>Despite all the talk about AI replacing jobs, companies are struggling to protect their systems.</p><p>And without security, their business doesn&#8217;t survive.</p><p>Which means:</p><blockquote><p>This is still one of the best fields you can enter, if you approach it the right way.</p></blockquote><p>So instead of guessing&#8230;</p><p>Let me show you exactly what to do instead.</p><h2>Why You&#8217;re Not Getting Hired</h2><p>If the first answer that comes to your mind is you&#8217;re not smart enough..just stop!</p><p>It&#8217;s not because you&#8217;re not smart enough.</p><p>It&#8217;s not because cybersecurity is &#8220;too difficult.&#8221;</p><p>It&#8217;s because you&#8217;re competing against people who are already closer to the field than you are. </p><p><strong>From an employer&#8217;s perspective, the choice is obvious:</strong></p><blockquote><p>Hire someone who can contribute immediately, or someone who still needs months of training.</p></blockquote><p>And cybersecurity is not a field where companies like to take risks.</p><p>So how do we help you get closer to the field and convince employers to see what you can bring to the table?</p><p>You actually need only one thing: <strong>STRATEGY.</strong></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">More than 1,000 people read <strong>Decoded Security</strong> every week! Join our community and let us help you achieve your goals!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>What People Call &#8220;Strategy&#8221;</h2><p>Most people respond to this the wrong way.</p><p>They try to &#8220;fix&#8221; the problem by:</p><ul><li><p>collecting more certifications</p></li><li><p>buying and watching more expensive courses</p></li><li><p>waiting until they feel &#8220;ready&#8221;</p></li></ul><p>How do I know? Because I&#8217;ve been there.</p><p>And I know spending money and watching videos feels productive.</p><p>But it doesn&#8217;t move you closer to getting hired.</p><p><strong>At least not if you&#8217;re doing it without a clear direction.</strong></p><blockquote><p>You need to build an image that you are capable of doing something in the real environment.</p></blockquote><h2>Get Direction FIRST</h2><p>That was enough theory and general fluff.</p><p>Let&#8217;s answer the most important questions: </p><ol><li><p><strong>What is it you need to do to break that entry-level barrier?</strong></p></li><li><p>How do you build that image, saying I am useful and suitable for the role?</p></li></ol><p><strong>The first step is this:</strong></p><blockquote><p><strong>Know exactly which role you&#8217;re aiming for.</strong></p></blockquote><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!aTZj!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!aTZj!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 424w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 848w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 1272w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!aTZj!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png" width="1456" height="487" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:487,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:387525,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194505221?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!aTZj!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 424w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 848w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 1272w, https://substackcdn.com/image/fetch/$s_!aTZj!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8859358e-543a-4052-9f47-b63c27f15a00_3542x1185.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>Without that, nothing else works.</p><p>Because if you don&#8217;t know where you&#8217;re going:</p><ul><li><p>you learn random things</p></li><li><p>you collect irrelevant certifications</p></li><li><p>you build skills that don&#8217;t align with any real job</p></li></ul><p>And from an employer&#8217;s perspective?</p><p><strong>You look unfocused.</strong></p><div class="callout-block" data-callout="true"><p>So, before you spend another dollar on courses or certifications, ask yourself:</p><p>&#8220;Which role am I actually preparing for?&#8221;</p></div><p>Because your entire strategy depends on that answer.</p><div><hr></div><p><strong>If you&#8217;re not sure yet, start here:</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;03c5e13f-5165-4565-b8f0-9643f7e4e171&quot;,&quot;caption&quot;:&quot;Do you want to break into cybersecurity, but feel confused by all the different roles?&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;How to Choose the Right Cybersecurity Role Before You Waste Time and Money on the Wrong Certifications&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2026-01-14T11:11:59.523Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hrEi!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F4c9060ba-5ff4-4778-95c3-3f399d0dfdda_1536x1024.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/how-to-choose-the-right-cybersecurity&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:184030241,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:48,&quot;comment_count&quot;:28,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:true,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p><em>(This will give you the clarity most people skip and pay for later.)</em></p><div><hr></div><div class="callout-block" data-callout="true"><p><strong>Question: </strong>What is your direction?</p><p>If you leave a comment, I will send you free study resources based on your dream role!</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/p/entry-level-cybersecurity-jobs-dont/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.decodedsecurity.com/p/entry-level-cybersecurity-jobs-dont/comments"><span>Leave a comment</span></a></p></div><h2>3 Specific Steps You Should Focus On</h2><p>Great, now you have the direction. And honestly, this is where most people stop. </p><p>They understand the problem, but they don&#8217;t do anything about it.</p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!h-b4!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!h-b4!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 424w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 848w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 1272w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!h-b4!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png" width="728" height="181" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:362,&quot;width&quot;:1456,&quot;resizeWidth&quot;:728,&quot;bytes&quot;:376723,&quot;alt&quot;:&quot;&quot;,&quot;title&quot;:&quot;&quot;,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194505221?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" title="" srcset="https://substackcdn.com/image/fetch/$s_!h-b4!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 424w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 848w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 1272w, https://substackcdn.com/image/fetch/$s_!h-b4!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F810fdc4b-89cc-407e-8a71-5e6f55fb4b11_4572x1136.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div><p>In this section, I&#8217;ll break down the <strong>exact 3-steps</strong> you should take to get a job in cybersecurity.</p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!B1yW!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!B1yW!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 424w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 848w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 1272w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!B1yW!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png" width="1456" height="154" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/e1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:154,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:42617,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/194505221?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!B1yW!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 424w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 848w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 1272w, https://substackcdn.com/image/fetch/$s_!B1yW!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fe1ecfef8-9002-4c68-a0c8-8b52dd917eaa_2465x261.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div>
      <p>
          <a href="https://www.decodedsecurity.com/p/entry-level-cybersecurity-jobs-dont">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[Understand Biometric Authentication Like a CISSP Expert in Under 10 Minutes]]></title><description><![CDATA[Biometrics are considered the gold standard of authentication. But if you don&#8217;t understand FRR, FAR, and CER, you will get CISSP questions wrong. Fix that in 10 minutes.]]></description><link>https://www.decodedsecurity.com/p/understand-biometric-authentication</link><guid isPermaLink="false">https://www.decodedsecurity.com/p/understand-biometric-authentication</guid><dc:creator><![CDATA[Erich Winkler]]></dc:creator><pubDate>Tue, 14 Apr 2026 11:14:15 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/b4afbe57-6418-4603-bdd3-d93e058e3c9f_1536x1024.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>One of the biggest problems in cybersecurity is actually quite simple:</p><p><strong>How do you prove someone is who they claim to be?</strong></p><p>Because if you get this wrong, nothing else matters.</p><p>It doesn&#8217;t matter how well your whole system is set up if you can&#8217;t be sure who you are talking to.</p><p>That&#8217;s why the process of&nbsp;<strong>authentication&nbsp;</strong>is so widely tested during all cybersecurity exams, including the CC, CISSP, and Security+.</p><blockquote><p><strong>Not familiar with the methods of authentication yet? Read this First!</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;b982de8c-cf18-4e11-967d-db6d7249f7ba&quot;,&quot;caption&quot;:&quot;Last time, we learned what hashing is and why it is so important for basically all IT systems. Today, we take a look at another important Cybersecurity topic: Authentication.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Cybersecurity 101: Methods of Authentication&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:259197825,&quot;name&quot;:&quot;Erich Winkler&quot;,&quot;bio&quot;:&quot;Cybersecurity Manager | CISSP Associate | Helping people land their first cybersecurity role without a degree or career reset&quot;,&quot;photo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!zLJJ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb404eb9a-cceb-4d1d-86d2-e362bdf449fc_1024x1024.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:null}],&quot;post_date&quot;:&quot;2025-04-17T08:50:12.816Z&quot;,&quot;cover_image&quot;:&quot;https://substackcdn.com/image/fetch/$s_!S22a!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3842a76b-639a-454d-9b5d-960576724e72_620x620.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://www.decodedsecurity.com/p/cybersecurity-101-methods-of-authentication&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:161522575,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:3,&quot;comment_count&quot;:2,&quot;publication_id&quot;:4708911,&quot;publication_name&quot;:&quot;Decoded Security&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!hqdo!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fda8809eb-cbfe-4d76-a2e7-af1df277c77a_500x500.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div></blockquote><p>Today, we are going to focus on a method that is treated as the <strong>gold standard. </strong></p><p>But just because this method is better than asking for a password, that doesn&#8217;t make it automatically secure.</p><p>And be sure that the exam will test you on that.</p><p>Let&#8217;s get to it!</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Preparing for the CISSP certification exam? Subscribe to <strong>Decoded Security</strong> and learn for FREE!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>Biometric authentication</h2><p><strong>Definition: </strong><em>Biometrics</em> verifies an individual&#8217;s identity by analyzing a unique personal characteristic.</p><p>That sounds pretty clear, doesn&#8217;t it? </p><p>You simply take anything that you can reliably analyze and is based on unique personal characteristics and uses instead of a dumb password.</p><p><strong>Well, there is a catch</strong>. But before I tell it to you, let&#8217;s add more definitions to make sure you know everything you need.</p><p><strong>There are two types of biometric authentication:</strong></p><ol><li><p><strong>Physiological: </strong>Uses <strong>physical attributes</strong> unique to an individual</p><ol><li><p>Fingerprints</p></li><li><p>Retina / Iris (<strong>Note:</strong> Privacy issues - PHI)</p></li><li><p>Facial structure</p></li><li><p>Hand geometry</p></li></ol></li><li><p><strong>Behavioral: </strong>Uses <strong>patterns of behavior</strong> unique to an individual</p><ol><li><p>Signature dynamics</p></li><li><p>Keystroke dynamics</p></li><li><p>Voice patterns</p></li></ol></li></ol><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!bqLq!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!bqLq!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 424w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 848w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 1272w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!bqLq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png" width="1456" height="882" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:882,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:152995,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/193969700?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!bqLq!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 424w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 848w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 1272w, https://substackcdn.com/image/fetch/$s_!bqLq!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c53853f-367a-4c97-a7cf-d85ebad5f70f_1801x1091.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p><strong>Why is this so important?</strong></p><p>Because behavioral characteristics can change over time. We are not machines, and we don&#8217;t always do things the same way. </p><p><strong>Make sure to keep it in mind!</strong></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption"><strong>Do you want to break into cybersecurity?</strong> Subscribe to <strong>Decoded Security</strong> and get specific insights from someone who has done it before you!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>&#8220;The Catch&#8221; - Errors </h2><blockquote><p><strong>Exam tip:</strong> This is what you actually need to know</p></blockquote><p>Remember how I mentioned <em>&#8220;the catch&#8221;?</em></p><p>Here it is:</p><blockquote><p><strong>Biometric authentication doesn&#8217;t always work as expected.</strong></p></blockquote><p><strong>With passwords, it&#8217;s simple:</strong></p><ul><li><p>100 % Match &#8594; access granted</p></li><li><p>No match &#8594; access denied</p></li></ul><p>It&#8217;s 100% or nothing.</p><p>But biometrics don&#8217;t work like that.</p><p><strong>You never get a perfect match.</strong></p><p>Instead, the system asks:</p><blockquote><p>&#8220;Is this <em>close enough</em> to be the same person?&#8221;</p></blockquote><p>And that&#8217;s where problems start.</p><p><strong>Because now, two things can happen:</strong></p><h4>1. False Rejection Rate (FRR)</h4><p><strong>Event:</strong> The system rejects a <strong>legitimate user.</strong></p><p><strong>FRR Definition: </strong>The percentage of times a biometric system incorrectly rejects a legitimate user.</p><p><strong>Example: </strong>Your fingerprint is valid, but the system doesn&#8217;t recognize it.</p><h4>2. False Acceptance Rate (FAR)</h4><p><strong>Event: </strong>An attacker is accepted as a legitimate user.</p><p><strong>Definition:</strong><br>The percentage of times a biometric system incorrectly accepts an unauthorized user.</p><h3>Which one is better?</h3><p>Well, that depends on the system.</p><p><strong>If you make the system stricter:</strong></p><ul><li><p>FAR &#8595; (more secure)</p></li><li><p>FRR &#8593; (more users get blocked)</p></li></ul><p><strong>If you make it more lenient:</strong></p><ul><li><p>FRR &#8595; (better usability)</p></li><li><p>FAR &#8593; (less secure)</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!CXNd!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!CXNd!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 424w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 848w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 1272w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!CXNd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png" width="535" height="431" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/ab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:431,&quot;width&quot;:535,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:23697,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/png&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://www.decodedsecurity.com/i/193969700?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!CXNd!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 424w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 848w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 1272w, https://substackcdn.com/image/fetch/$s_!CXNd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fab7800db-c9f1-4f7c-99e6-c3ea006ac9c9_535x431.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div></li></ul><p>Without changing the biometric mechanism, you can only decide <strong>which mistake you prefer</strong>.</p><p>Great. Now you understand the main problem with biometric authentication and its sensitivity. </p><p>Now there is one more question to answer: <strong>How do we compare biometric systems?</strong></p><p>Because every system has FRR and FAR.</p><p>And depending on the configuration, you can <strong>tune one&#8230; but worsen the other</strong>.</p><p><strong>So which one matters more?</strong></p><p>FRR or FAR? And at what setting?</p><p>This is exactly why we use the <strong>Crossover Error Rate (CER)</strong>.</p><div class="callout-block" data-callout="true"><p>Are you preparing for a certification exam? Make sure to check the <a href="https://www.decodedsecurity.com/p/certification-hub">Decoded Security Certification Hub</a> for more FREE Resources!</p></div><h4>Crossover Error Rate (CER)</h4><p><strong>Definition:</strong><br>The point at which the <strong>False Rejection Rate (FRR)</strong> equals the <strong>False Acceptance Rate (FAR)</strong>.</p><p>In other words, it&#8217;s the point where the system makes <strong>equal mistakes on both sides</strong>.</p><p>It is a <strong>single number</strong> to compare biometric systems.</p><ul><li><p>Lower CER &#8594; <strong>fewer total errors &#8594; better system</strong></p></li><li><p>Higher CER &#8594; <strong>more errors &#8594; worse system</strong></p></li></ul><p>And that&#8217;s it! You can now compare two biometric systems! </p><h2>Additional Information (Exam Notes)</h2><ul><li><p>Biometrics are based on <strong>probability, not certainty</strong></p></li><li><p><strong>Threshold setting</strong> determines system sensitivity (strict vs lenient)</p></li><li><p>Lower threshold &#8594; <strong>higher FAR</strong>, lower FRR</p></li><li><p>Higher threshold &#8594; <strong>lower FAR</strong>, higher FRR</p></li><li><p><strong>False Acceptance Rate (FAR)</strong> is a bigger security risk than FRR</p></li><li><p><strong>False Rejection Rate (FRR)</strong> mainly affects usability</p></li><li><p><strong>Crossover Error Rate (CER)</strong> is used to compare systems</p></li><li><p>Lower CER = <strong>better overall accuracy</strong></p></li><li><p>Physiological biometrics are generally <strong>more stable</strong> than behavioral ones</p></li><li><p>Some methods raise <strong>privacy concerns</strong> (e.g., retina scan &#8594; PHI)</p></li><li><p><strong>Processing speed matters</strong> (slow systems reduce adoption)</p></li><li><p><strong>BIOMETRIC SYSTEMS ARE EXPENSIVE!</strong></p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.decodedsecurity.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Interested in more resources laser-focused on the CISSP, CC, and Security+ exams? Join Decoded Security Community with 1000+ people and learn something new every week!</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><h2>Conclusion</h2><p>Congratulations! After reading this article, you are ahead of most people.</p><p>You now understand that biometrics isn&#8217;t just about scanning fingerprints.</p><p>You understand both its benefits and its drawbacks, including the errors involved.</p><p>We also covered how to prioritize error types based on system sensitivity and how to compare biometric systems.</p><p>With all of that, you are more prepared than 95% of people claiming to be cybersecurity experts.</p><p>Thanks for reading Decoded Security!</p><p>&#8212; Erich</p><div class="callout-block" data-callout="true"><p>If you&#8217;re preparing for <strong>CISSP, CC, or Security+,</strong> make sure to check the <a href="https://www.decodedsecurity.com/p/certification-hub">Decoded Security Certification Hub</a> for more free resources!</p></div><h2><strong>Let&#8217;s Connect</strong></h2><p>If you want to collaborate, discuss, or just geek out over networking and cybersecurity, reach out:</p><div class="pullquote"><p style="text-align: center;"><em><strong>Email: <a href="mailto:erich.winkler@decodedsecurity.com">erich.winkler@decodedsecurity.com</a><br>LinkedIn: <a href="https://www.linkedin.com/in/winkleri/">Erich Winkler</a><br>Gumroad community: <a href="https://decodedsecurity.gumroad.com/">Decoded Security</a><br>Start Here: <a href="https://www.decodedsecurity.com/p/start-here-decoded-security-roadmap">Decoded Security Roadmap<br></a><br>Enjoyed this article? Like it or drop a comment. I&#8217;d love to hear your thoughts and questions!</strong></em></p></div>]]></content:encoded></item></channel></rss>