Which assessment type focuses on bypassing or breaking encryption on data at rest or in transit and may evaluate DRM strength?

Cryptanalysis attacks focus on evaluating the strength of cryptographic protections by attempting to bypass or break encryption used to protect data at rest or in transit, and they may evaluate DRM strength. This approach simulates adversaries trying to recover plaintext or cryptographic keys without authorized access, directly testing how well encryption and DRM defenses hold up under attack. Social engineering targets human weaknesses rather than cryptographic resilience; a wireless network audit examines wireless security and may cover encrypted over-the-air traffic but not specifically aim to crack encryption itself; a patch management review looks at keeping software updated rather than testing cryptographic protections.