1 CIA Triad and Steganography

Question 1

3 parts of CIA

Answer 1

1. Confidentiality
2. Integrity
3. Availability

Question 2

What confidentiality means?

Answer 2

• means, only the authorized people/systems can view sensitive information
• the data being sent over the network should not be accessed by unauthorized individuals

Question 3

What is encryption for?

Answer 3

• to avoid attacker to see information that they shouldn’t be able to see

Question 4

What integrity means?

Answer 4

• data is not modified while traveling to the destination

Question 5

How to check if data was modified?

Answer 5

• use of hash function (they must be same on the PC1 and PC2)

Question 6

What availability means?

Answer 6

• network (systems and data) should be available to its users

Question 7

steganography vs cryptography

Answer 7

• crypto - data unreadable - encrypted with some key (letter in secret language)
• steganography - hides the existence of data (you can’t see it)
• data are hidden within an image

Question 8

How is steganography done?

Answer 8

• image is represented in NM or NM*3 matrix in the memory
• each pixel’s intensity is represented by this
• message is embedded into an image by altering the values of some pixels (chosen by algorithm)

Question 9

What is steganalysis?

Answer 9

• detection of the message within image
• comparison - cover-image, histogram plotting, noise detection
• stego-image - image with the message inside