3.2 Cryptography

Question 1

Cryptography protects _________ and _____ of data in daily transactions. Where is it used? 3 things -

Answer 1

confidentiality; integrity.
It’s used in cell phones, email, online shopping, etc.

Question 2

Caesar cipher does what? It’s a classic _________ cipher.

Answer 2

shifts alphabet letters, typically by 3 spaces.
-substitution

Question 3

What is the difference between a block and a stream cipher?

Answer 3

block encrypts chunks of data at at a time. can render large portions unusable.
stream encrypts bit by bit. better for files of variable lengths, like streaming video where size can change.

Question 4

ECC is classified as which type of cryptographic algorithm?

Answer 4

single algorithm; fast and efficient - uses less process power and memory, good for cell phones or portables. Uses short keys while maintaining higher strength. Asymmetrical Key Algorithm.

Question 5

What is the key point of Kerckhoffs’s second principle?

Answer 5

“The system must not require secrecy; even if stolen by the enemy, system should remain secure.” Remains a key tenet of modern crypto algorithms. System should be robust so if people know all of the encrpytion process except for the key, they shouldn’t be able to break.

Question 6

What is a substitution cipher?

Answer 6

Substitutes each letter in the alphabet with another one.

Question 7

What are the main differences between symmetric and asymmetric key cryptography?

Answer 7

symmetric uses single key for encryption and decryption. Sender and receiver have the same key. Much more efficient at encrypting large amounts of data than asymmetric.

Question 8

How does public key cryptography work?

Answer 8

Public key cryptography, or asymmetric cryptography, uses a pair of keys: a public key, which can be shared, and a private key, which must be kept secret.

1. Key Generation: Each user creates a public-private key pair.
2. Encryption: A sender encrypts a message using the recipient’s public key, ensuring only the recipient can decrypt it with their private key.
3. Decryption: The recipient uses their private key to decrypt the message.
4. Digital Signatures: A sender can sign a message with their private key, allowing others to verify it with their public key, ensuring authenticity.
5. Key Exchange: It facilitates secure key exchange over insecure channels.

The security relies on the difficulty of specific mathematical problems, making it hard for attackers to deduce the private key from the public key.

Question 9

Explain how 3DES differs from DES.

Answer 9

-DES used back into the 1970
s - have been comprimised.
-3 DES encrypted DES 3 times.= however it consumed a lot of processor power and memory and was replaced by AES.

Question 10

Try to decrypt this message using the information in this chapter: V qb abg srne pbzchgref. V srne gur ynpx bs gurz. —Vfnnp Nfvzbi.

Answer 10

I do not fear computers. I fear of

Question 11

How is physical security important when discussing the cryptographic security of data?

Answer 11

Protects security at rest and is a layer of defense. Also in motion as a thumb drive can be stolen and exploited.

Question 12

Core Features of Cryptography are? 4-

Answer 12

o Confidentiality: Prevents unauthorized disclosure of data
o Integrity: Ensure data isn’t modified
o Authentication: Used to validate sender with digital signatures
o Non-repudiation: Digital signatures also ensure non-repudiation

Question 13

What is Plain Text

Answer 13

o An unencrypted message

Question 14

• Cipher Text

Answer 14

o An encrypted message

Question 15

What is Cipher

Answer 15

o The encryption algorithm used to encrypt & decrypt the message

Question 16

What is Key?

Answer 16

Determines the output of the cipher algorithm and is needed to encrypt and
decrypt a message

Question 17

What are some downfalls of symmetric (private key Encrytion)

Answer 17

-The downside of symmetrical encryption is that it makes it hard to initiate communication
the first time. (exchanging them)
- If attacker gets hold of key, they can open any encrypted email you’ve sent. (storing them)
-The SAME Key is used for both encryption and decryption.

Question 18

What is the Official Encryption standard of the U.S. Federal Government?

Answer 18

AES - Advanced Encryption Standard

Question 19

How long to break a 128-Bit AES by brute force?

Answer 19

Billions of Years

Question 20

_________ encryption uses two keys, a ________and a ______ created as a matched pair.

Answer 20

• Asymmetric encryption uses two keys, a public key and a private key created
  as a matched pair.
  o Private Key: Kept secret and never shared.
  o Public Key: Shared with others.

Question 21

What is Asymmetric (public key) Encryption also know as?

Answer 21

Commonly referred to as:
o Public Key Encryption
o Public Key Infrastructure (PKI) Encryption

Question 22

What does Public Key Encrption(Asymmetric) Provide when sending using a private key?

Answer 22

Confidentiality - NO, because he is possibly sharing his public key with many people.
1- Authentication - only one who could encrypt is bob
2- Non-repudiation -
3- Integrity - (if used with hashng)

Question 23

When receiving a public key encryption (a reply) back from a person what is provided?

What part of the CIA triad?

Answer 23

Confidentiality - because once encrypted, only person who can open it is Bob, the original encryptor

Question 24

Describe “security through obscurity”. What is the opposite of it?

Answer 24

a devices strength was that the equipment and settings were secret for specific messages. example, Enigma. -
Opposite is Kerckhoffs second principle “….system shouldn’t require secrecy”

Question 25

Whats a one way problem?

Answer 25

Easy to solve in one direction but difficult to perform in the other direction.

Question 26

Block and Stream Ciphers are symmetric or asymmetric?

Answer 26

Symmetric, they use a shared private key.

Question 27

What are Protocols.

Answer 27

Rules that define communication across devices.

Question 28

What is RSA?

Answer 28

Algorithm named after its creators, asymmetric used across the world including SSL protocol.

Question 29

Describe Hashing?

What part of the CIA triad does this ensure? What does this process veri

Answer 29

-process of converting data into a fixed-string of text
-Provides data INTEGRITY; each unique input will have unique output. Verifies something has not been tampered with. SHA/MD5 common algorithms.

Question 30

A ________ __________ allows you to sign a message so others can detect any changes to the message after its been sent.

Answer 30

Digital Signature.

Question 31

What asymmetrical algorithm related device can be used to determine nonrepudiation?

Answer 31

Digital Signatures.

Question 32

How does digital signature work?

Answer 32

digital signature Hashes an email. Private key encrypts the hash. Receiver’s public key decrypts the hash, ensuring message integrity and nothing was tampered from original message. usually happens in background of programs.

Question 33

How can you validate that a public key belongs to the proper owner? Also used as a form of electronic identification.

Answer 33

Digital Certificate

Question 34

What is a trusted agent that handles digital certificates called?

Answer 34

certificate authority; they issue certificates, a trusted third party on both sides of the transaction.

Question 35

What are the two main PKI components?

Answer 35

certificate authority and registration authority

Question 36

Digital signatures combine hashing and asymmetric encryption to provide _________ and ___________.

Answer 36

authentication; non-repudiation

Question 37

Full disk encryption and file encryption protect______ __ ______. Physical security measures are also important.

Answer 37

data at rest.

Question 38

______ _________ link public keys to identities. They’re issued and verified by certificate authorities.

Answer 38

Digital certificates

Question 39

_________ and _____ protect data in motion by encrypting network traffic

Answer 39

SSL/TLS; VPNs

Question 40

Protecting ____ __ _____ is challenging. Insider threats like Edward Snowden demonstrate the risks.

Answer 40

data in use

Question 41

Classify Security Principles and Actions According to Types of Attacks They Mitigate or Eliminate. Encryption, Digital Signatures, Hash Functions

Answer 41

• Encryption: Mitigates data interception and unauthorized access.
• Digital Signatures: Eliminate forgery and ensure nonrepudiation.
• Hash Functions: Mitigate data tampering.

Question 42

Categorize Types of Cryptography Tools According to the Leg of the CIA Triad They Enforce
1. Symmetric/Asymmetic
2. HAsh Functions
3. Digital Sig/Certs

Answer 42

• Symmetric and Asymmetric Cryptography: Enforce confidentiality.
• Hash Functions: Enforce integrity.
• Digital Signatures and Certificates: Enforce both integrity and nonrepudiation.

Question 43

Classify Security Principles and Actions According to Types of Attacks They Mitigate or Eliminate:
1. Data Encryption:
2. Firewalls: 3. Multi-factor Authentication

Answer 43

 Data Encryption: Mitigates data interception.
 Firewalls: Prevent modification and interception.
 Multi-factor Authentication: Eliminates unauthorized access.

Question 44

What other protocols does SSL and TLS work with? What does SSL and TLS stand for? What does this protect exactly?

Answer 44

SSL-Secure Sprockets Layer
TLS- Transport Layer Security
Work in conjunction with IMAP, POP, HTTPS, VOIP to protect voice messages and instant messaging. Protects the data on the server but not the connection itself.

Question 45

How do you protect the data in motion

Answer 45

VPN

Question 46

What are the two common types of VPNs?

Answer 46

IP(sec) - Internet Protocol Security and SSL. SSL is more lightweight however can be downloaded to a public computer therefore provide avenue for data leak or attack.

Question 47

How do we protect Data in use?

Answer 47

difficult to do while people are accessing files. Edward Snowden is a good example of what can happen.