Session 2 — Why Security Matters & Encryption
Rajan bhaiya clicked a link in an email. It looked like it was from his bank. It asked him to log in. Three hours later, every file on his computer — years of records, customer data, everything — was encrypted. A message appeared: pay ₹50,000 or lose it all. He paid. The files were never returned.
This is not a story from a movie. CERT-In (India’s Computer Emergency Response Team) reports thousands of ransomware incidents every year across India. Rajan bhaiya is real. This session is about why attacks like this happen and how encryption is the foundation of our defence.
What You Will Learn
- What types of attacks are most common in India — and what makes them work
- What encryption is and how it keeps data private
- The difference between symmetric and asymmetric encryption
- What HTTPS is and how it protects your browser sessions
- How the TLS handshake works (in plain English, no maths)
The Big Idea
Encryption is the lock on the internet’s sealed letters. Without it, every piece of data you send travels like a postcard — anyone who handles it can read it. With encryption, data travels like a letter in a sealed envelope: the contents are private, tamper-evident, and only readable by the intended recipient.
Character Focus This Session
Rajan bhaiya opens the session — his ransomware story shows what happens when we ignore security.
Deepa asks the question everyone has: “If encryption is so important, why doesn’t every website use it?”
Rohan wants to understand the actual maths of public-key cryptography (the Rohan Goes Deeper boxes are especially relevant this session).
Warm-Up Check
Before reading on:
- Have you ever seen the padlock icon in your browser’s address bar? What do you think it means?
- If you send a WhatsApp message, can WhatsApp read it? Why or why not?
- What is the difference between a password and encryption?
Keep these in mind as you read — the answers will become clear.