401_4

Question 1

What are the three general types of cryptosystems?

Answer 1

1. Symmetric
2. Asymmetric
3. Hash

Question 2

What does cryptography mean?

Answer 2

Hidden writing

Question 3

What two distinct operations does every cryptographic algorithm perform?

Answer 3

1. Encryption

2. Decryption

Question 4

In cryptography, what is the mathematical formula used to encrypt a message called?

Answer 4

Encryption Algorithm or Cipher

Question 5

Once a message has been transformed with a cipher, what is the resulting message called?

Answer 5

Ciphertext

Question 6

Cryptographically speaking, what is the collection of all possible inputs and all possible outputs, in addition to the algorithm and keys called?

Answer 6

Cryptosystem

Question 7

The Rijndael algorithm cannot be “broken” for how many years?

Answer 7

14 Trillion

Question 8

Who creates encryption algorithms?

Answer 8

cryptographers

Question 9

What do cryptanalysts dedicate their lives to doing?

Answer 9

breaking ciphers

Question 10

What is the generic term given to the study of both cryptgrphay and crytanalysis?

Answer 10

Cryptology

Question 11

The strength of a cryptosystem rests with the strength of its _______.

Answer 11

Keys

Question 12

128-bit keys offer approximately how many times more protection than 40-bit keys?

Answer 12

A trillion

Question 13

although it is obvious that a 128-bit key is longer than a 40-bit key, the difference in the amount of protection ___________, not _________.

Answer 13

exponential, not linear

Question 14

What are the goals of a cryptosystem?

Answer 14

1. Confidentiality
2. Integrity
3. Authentication
4. Non-repudiation

Question 15

What are the two basic methods of symmetrically encrypting or garbling text?

Answer 15

1. Substitution

2. Permutation

Question 16

What boolean function is one of the fundamental operations used in cryptography?

Answer 16

Exclusive OR (XOR)

Question 17

When is the output of an XOR true?

Answer 17

If exactly one of the inputs is true.

Question 18

With respect to encryption techniques, ________, also called ________, shuffles the order in which characters (or bytes) appear rather than substituting one for another.

Answer 18

Permutation

Transposition

Question 19

Which type of cryptosystem uses a single key for both encryption and decryption?

Answer 19

Symmetric Key Cryptography

Question 20

What is the primary application of symmetric encryption?

Answer 20

Privacy

Question 21

Which type of cryptosystem uses two keys: one used for encryption and the other for decryption?

Answer 21

Asymmetric Key Cryptography or Public Key Cryptography

Question 22

What is the length of a hash function’s key?

Answer 22

Not applicable as hash function have no key.

Question 23

What is the primary application of has function in cryptography?

Answer 23

Integrity

Question 24

Which of the following is not a well-know hash function in use today?

A. AES
B. MD4/MD5
C. Message Digest 2 (MD2)
D. Secure Hash Algorithm (SHA)

Answer 24

A. AES - Advanced Encryption Standard is used in symmetric key cryptography not hashing.

Question 25

What is a hashing algorithms output called?

Answer 25

A fingerprint

Question 26

The ability to establish the authenticity of a message even if the sender denies having signed the data is called what?

Answer 26

Non-repudiation

Question 27

When are mathematical problems considered intractable (or hard)?

Answer 27

When they cannot be solved in polynomial time.

Question 28

Which of the following is not a well known example of an intractable mathematical problem?

A. Factoring large number into their two prime factors
B. Solving the discrete logarithm problem over finite fields
C. Computing elliptic curves over finite fields
D. Generating quadratic products

Answer 28

D. Generating quadratic products - quadratic problems are considered tractable problems.

Question 29

What is the key size of DES?

Answer 29

56-bit

Question 30

What type of encryption is DES?

A. Asymmetric
B. Symmetric
C. Hashing
D. PKI

Answer 30

B. Symmetric

Question 31

The effectiveness of encryption attacks based on brute force searches depends upon what factor?

Answer 31

The keyspace size

Question 32

In cryptography, what is one way to effectively increase the key length?

Answer 32

Perform the encryption more than once.

Question 33

Performing encryption more than once to effectively increase the key length only works if the cipher algorithm is not a ________.

Answer 33

Group

Question 34

What does mean for a cipher algorithm to be a group?

Answer 34

That encrypting multiple times is no stronger then encrypting once.

Question 35

What is the key strength for triple DES using both 2 and 3 unique keys?

Answer 35

112 bit (2 Keys)
168 bit (3 Keys)

Question 36

The working mechanism of most public-key (asymmetric) cryptographic algorithms are generally openly published and widely known because the security come from the secrecy and size of the ___________ and not from the secrecy of the ___________ itself.

Answer 36

Private Key

Algorithm

Question 37

What is the major drawback to symmetric cryptography?

Answer 37

The key has to be exchanged via a secure mechanism.

Question 38

APOP improves on POP by protecting the authentication messages, not the e-mail messages them selves.

A. True
B. False

Answer 38

True

Question 39

What is the primary goal of the TLS protocol?

Answer 39

to provide privacy and data integrity between two communicating applications.

Question 40

The type of network encryption that accepts in clear-text information and encrypts it prior to sending it out then at the receiving end decrypts and forwards it on to its final destination is called?

Answer 40

Virtual Private Network (VPN)

Question 41

What are the two primary categories of VPNs to consider?

Answer 41

1. Client-to-site

2. Site-to-site

Question 42

What is one frequent error made with VPNs?

Answer 42

To overly trust the other side of a VPN connection

Question 43

Why is it important to take care where encrypted tunnels are set up?

Answer 43

To avoid bypassing security devices.

Question 44

What is IP Security (IPSec)?

Answer 44

An IETF standard for establishing virtual private networks that is slowly replacing proprietary VPN protocols.

Question 45

What is a replay attack?

Answer 45

Copying a message as it goes across the network, then re-transmitting the copy to the destination.

Question 46

Which of the following fields is not included in the data section of an x.509 certificate?
A. Serial Number
B. Owner’s private key, and the algorithm used to generate it.
C. Period that the key is valid
D. Identify information of the issuing CA

Answer 46

B. Because it’s the owner’s public key not private key, and the algorithm used to generate it.

Question 47

Many vendors will recommend to customers that they configure their Bluetooth devices in what mode after initially pairing with other Bluetooth devices?

Answer 47

Non-discoverable mode

Question 48

Which of the following tools wold not be used by attackers to recover shared WEP keys on a network?

A. WEPCrack
B. AirSnort
C. Kismet
D. Dwepcrack

Answer 48

C. Kismet - this tool is used to find rogue wireless APs

Question 49

Organizational purchasing policy should be set to require _______ interoperability for new wireless purchases.

Answer 49

WPA2

Question 50

Should organizations be concerned with the use of wireless LANs by users who connect to corporate networks from home over VPN?

Answer 50

Yes, a home user is likely to have minimal security measure (if any) on their wireless network which gives an attacker the opportunity to compromise a vulnerable host and utilize the existing VPN connection to gain access to the corporate network.

Question 51

Which of the following is not considered a security risk for WLANs?

A. Eavesdropping
B. Masquerading
C. Denial-of-Service (DoS)
D. Rogue APs
E. Non of the above

Answer 51

E. Non of the above.

Question 52

Which of the following are laws of defensive OPSEC?

A. Know Yourself
B. Know the Enemy
C. Know what to Protect
D. If you fail the first two laws, your chance of compromise increases

Answer 52

B, C, D

A is completely made up.

Question 53

The focus of what is to establish a process for identifying the weak links often exploited by adversaries?

Answer 53

Operations Security (OPSEC)