5 pronunciation exercises on cryptographic standard abbreviations that security engineers discuss daily.
0 / 5 completed
1 / 5
How is "AES" pronounced?
AES (Advanced Encryption Standard) is pronounced "AY-EE-ESS" /eɪ iː ɛs/ — each of the three letters spoken individually. Stress is approximately equal. Security professionals universally spell out the letters rather than blending them. In a sentence: "All sensitive data at rest is encrypted with AES-256 before being written to disk."
2 / 5
How is "RSA" pronounced?
RSA (Rivest–Shamir–Adleman) is pronounced "AR-ESS-AY" /ɑːr ɛs eɪ/ — three letters spelled out individually. The A is the letter-name /eɪ/, not the vowel /æ/. Stress is light and even across all three letters. Both British and American English pronounce R the same way here since it is a letter name. In a sentence: "The server uses RSA-2048 key pairs for the TLS handshake during connection setup."
3 / 5
How is "SHA" pronounced?
SHA (Secure Hash Algorithm) has two accepted pronunciations: as a word "shah" /ʃɑː/ (rhyming with "spa"), or as individual letters "ESS-AITCH-AY" /ɛs eɪtʃ eɪ/. The one-syllable "shah" is more common in casual speech; the letter-spelling is used in formal or written contexts. Both are correct. Stress is on the single syllable in "shah." In a sentence: "Use SHA-256 for message digests — never SHA-1, which has known collision vulnerabilities."
4 / 5
How is "HMAC" pronounced?
HMAC (Hash-based Message Authentication Code) is pronounced "AITCH-mak" /eɪtʃ mæk/ — two syllables: the letter H (/eɪtʃ/) followed by "MAC" spoken as a word (/mæk/, rhyming with "back"). The MAC part is itself an acronym but is treated as a word here. In a sentence: "Every API request includes an HMAC signature in the Authorization header to verify the payload."
5 / 5
How is "TLS" pronounced?
TLS (Transport Layer Security) is pronounced "TEE-EL-ESS" /tiː ɛl ɛs/ — three individual letter names spoken with even stress. It is the successor to SSL, and both are always spelled out as letters, never blended. In a sentence: "Ensure all HTTP services redirect to HTTPS and that TLS 1.2 is the minimum accepted protocol version."