Applications of Cryptography

Question 1

FIPS Standards

Answer 1

FIPS 140: Cryptographic Modules
FIPS 186: Digital Signatures
FIPS 197: AES
FIPS 201: Identity Verification

Question 2

Digital Signatures

Answer 2

Encryption of a message digest with the sender’s private key. Provides:

• Authentication
• Integrity
• Non-repudation

Question 3

Digital Certificate

Answer 3

A digital document that contains a public key and some information to allow your system to verify where that key came from.
Uesd for web servers, Cisco Secure phones, E-Commerce.

Question 4

PKI (Public Key Infrastructure)

Answer 4

Uses asymmetric key pairs and combines software, encryption and services to provide a means of protecting the security of business communication and transactions.

Question 5

PKCS (Public Key Cryptography Standards)

Answer 5

Put in place by RSA to ensure uniform certificate management throughout the internet.

Question 6

Trusted Third Party (TTP)

Answer 6

Certificate, a digital representation of the information that identifies you as a relevant entity.

Question 7

CA (Certification Authority)

Answer 7

An entity trusted by one or more users to manage certificates.

Question 8

RA (Registration Authority)

Answer 8

Used to take the burden off of a CA by handling verification prior to certificates being issued. Acts as a proxy between user and CA. Receives request, authenticates it and forwards it to the CA.

Question 9

CP (Certificate Policy)

Answer 9

A set of rules that defines how a certificate may be used.

Question 10

X.509

Answer 10

The most widely used digital certificate standard. First issued July 3, 1988. It is a digital document that contains a public key signed by the trusted third party, which is known as a Certificate Authority, or CA. Relied on by S/MIME. Contains your name, info about you, and a signature of a person who issued the certificate.

Question 11

X.509 Certificate Content

Answer 11

Version
Certificate holder's public key
Serial number
Certificate's validity period
Unique name of certificate issuer
Digital signature of issuer
Signature algorithm identifier

Question 12

X.509 Certificate File Extensions

Answer 12

.pem
.cer, .crt., .der
.p7b, .p7c
.p12
.pfx

Question 13

.pem

Answer 13

Privacy Enhanced Mail, a Base64 encoded DER certificate, enclosed between “—–BEGIN CERTIFICATE—–” and “—–END CERTIFICATE—–”

Question 14

.cer, .crt, .der

Answer 14

Usually in binary DER form, but Base64-encoded certificates are common also (see .pem).

Question 15

.p7b, .p7c

Answer 15

PKCS#7 SignedData structure without data, just certificate(s) or CRL(s).

Question 16

.p12

Answer 16

PKCS#12, may contain certificate(s) (public) and private keys (password protected).

Question 17

.pfx

Answer 17

Predecessor of PKCS#12 (usually contains data in PKCS#12 format, e.g., w/ PFX files generated in IIS).

Question 18

Certificate Authority (CA)

Answer 18

The primary role of this is to digitally sign and publish the public key bound to a given user. It is an entity trusted by one or more users to manage certificates. Verisign is an example.

Question 19

Certificate Authority - Verisign - Class 1

Answer 19

For individuals, intended for email

Question 20

Certificate Authority - Verisign - Class 2

Answer 20

For organizations for which proof of identity is required

Question 21

Certificate Authority - Verisign - Class 3

Answer 21

For servers and software signing, for which independent verification and checking of identity and authority is done by the issuing CA

Question 22

Certificate Authority - Verisign - Class 4

Answer 22

For online business transactions between companies

Question 23

Certificate Authority - Verisign - Class 5

Answer 23

For private organizations or governmental security

Question 24

Registration Authority (RA)

Answer 24

Used to take the burden off of a CA by handling verification prior to certificates being issued. Acts as a proxy between the user and the CA. Receives request, authenticates it, and forwards it to the CA.

Question 25

Public Key Infrastructure (PKI)

Answer 25

)
Distributes digital certificates that contain public keys. A network of trusted certificate authority servers. An arrangement that binds public keys with user identities by means of a CA.

Question 26

Certificate Revocation List (CRL)

Answer 26

A list of certificates that have been revoked.

Question 27

Online Certificate Status Protocol (OCSP)

Answer 27

A real time protocol for verifying certificates (and a newer method than CRL)

Question 28

Server-based Certificate Validation Protocol (SCVP)

Answer 28

An Internet protocol for determining the path between a X.509 digital certificate and a trusted root (Delegated Path Discovery) and the validation of that path (Delegated Path Validation) according to a particular validation policy.

Question 29

Digital Certificate Management

Answer 29

Two types of systems:
Centralized key-management systems
Decentralized key-management systems

Question 30

Three phases of key life cycle (Digital Certificate Management)

Answer 30

Setup and initialization
Administration
Cancellation

Question 31

Setup and Initialization Phase (Digital Certificate Management, 3 phases)

Answer 31

Process components:
Registration
Key pair generation
Certificate Generation Certificate Dissemination

Question 32

Cancellation and History Phase (Digital Certificate Management, 3 phases)

Answer 32

Expiration
Renewal
Revocation
Suspension
Destruction

Question 33

Administration Phase (Digital Certificate Management, 3 phases)

Answer 33

Key Storage
Certificate retrieval and validation
Backup or escrow
Recovery

Question 34

Update and Patch Vulnerabilities (Digital Certificate Management)

Answer 34

• Person who can recover keys from the keystore on behalf of a user
• Highly trusted person
• Issue recovery agent
  ·EFS recovery agent certificate
  ·Key recovery agent cert

Question 35

Hierarchical Trust Model

Answer 35

Certificate Authority is at the top
Intermediate CAs are the next level
Users are the bottom level

Question 36

Single Authority Trust Model

Answer 36

Certificate Authority is at the top

Users are directly below the CA

Question 37

Web of Trust - Trust Model

Answer 37

Users all trust each other

Question 38

Password Authentication Protocol (PAP)

Answer 38

One of the most basic authentication protocols. Passwords are sent over the network in clear text. The basic authentication feature built into HTTP uses this.

Question 39

Shiva Password Authentication Protocol (S-PAP)

Answer 39

This is a proprietary version of PAP. Encrypts username and password as it is sent across network.

Question 40

Challenge-Handshake Authentication Protocol (CHAP)

Answer 40

Authenticator sends a “challenge” message to the peer after link establishment. Peer responds with a value using a “one-way hash” function. Authenticator checks the response against its own calculation of the hash value. Authenticator sends new challenges to the peer at random intervals.

Question 41

Kerberos

Answer 41

Widely used, particularly with Microsoft operating systems.
Created by MIT and derives its name from the mythical three headed dog. The is a great deal of verification for the tickets and the tickets expire quickly. Client authenticates to the Authentication Server once using a long term shared secret and receives back a Ticket-Granting Server. Client can reuse this ticket to get additional tickets without reusing the shared secret. These tickets are used to prove authentication to the Service Server.

Question 42

Principal (Components of Kerberos System)

Answer 42

A server or client that Kerberos can assign tickets to.

Question 43

Authentication Server (AS) - (Components of Kerberos System)

Answer 43

Server that authorizes the principal and connects them to the Ticket Granting Server.

Question 44

Ticket Granting Server (TGS) - (Components of Kerberos System)

Answer 44

Provides tickets.

Question 45

Key Distribution Center (KDC) - (Components of Kerberos System)

Answer 45

A server that provides the initial ticket and handles TGS requests. Often runs as TGS services.

Question 46

Realm (Components of Kerberos System)

Answer 46

A boundary within an organization. Each realm has its own AS and TGS.

Question 47

Remote Ticket Granting Server (RTGS) - (Components of Kerberos System)

Answer 47

A TGS (Ticket Granting Server) in a remote realm.

Question 48

Ticket Granting Ticket (TGT) - (Components of Kerberos System)

Answer 48

The ticket that is granted during the authentication process.

Question 49

Ticket (Components of Kerberos System)

Answer 49

Used to authenticate to the server. Contains identity of client, session key, timestamp, and checksum. Encrypted with servers key.

Question 50

Session key (Components of Kerberos System)

Answer 50

Temporary encryption key.

Question 51

Authenticator (Components of Kerberos System)

Answer 51

Proves session key was recently created. Often expires within 5 minutes.

Question 52

Type cryptography Kerberos uses and the port number

Answer 52

Uses symmetric cryptography and UDP port 88.

Question 53

Pretty Good Privacy (PGP)

Answer 53

Created by Phillip Zimmerman in early 1990’s. Not itself an algorithm but uses other symmetric and asymmetric algorithms. Open source software for making encryption and decryption readily usable by end users. Most often associated with email encryption. Uses certificates that contain multiple signatures but they are self-signed so they can’t be validated with a CA.

Question 54

PGP Certificates

Answer 54

Defines it own format. A single certificate can contain multiple signatures. Includes:
Version Number
Certificate holder’s public key
Certificate holder’s information
Digital signature of certificate owner
Certificates validity period
Preferred symmetric encryption algorithm for the key

Question 55

Wired Equivalent Privacy (WEP)

Answer 55

Uses the RC4 stream cipher to secure the data and a CRC-32 checksum for error checking. Standard version uses a 40bit key with a 24bit initialization vector to form 64bit encryption. 128bit version uses 104bit key with 24bit IV. Because RC4 is a stream cipher, the same traffic key must never be used twice. 24bit IV is not enough prevent repetition on a busy network. Vulnerable to related key attack.

Question 56

WPA - WiFi Protected Access

Answer 56

Uses Temporal Key Integrity Protocol (TKIP). Dynamically generates a new key for each packet.

Question 57

WPA-Personal (can be known as WPA-PSK mode)

Answer 57

Uses pre-shared key mode. Designed for home and small networks. Doesn’t require authentication server. Each wireless device authenticates using the same 256bit key.

Question 58

WPA-Enterprise (can be called WPA-802.1x mode)

Answer 58

Designed for enterprise networks. Requires a RADIUS server for authentication. Extensible Authentication Protocol (EAP) is used for authentication. (EAP-TLS and EAP-TTLS)

Question 59

WPA2

Answer 59

Based on IEEE 802.11i and provides:

• Advanced Encryption Standard (AES) using the Counter Mode-Cipher Block Chaining (CBC)-Message Authentication Code (MAC) Protocol (CCMP) that provides data confidentiality, data origin authentication, and data integrity for wireless frames.
• Optional use of Pairwise Master Key (PMK) caching and opportunistic PMK caching. (caches results of 802.1x authentications to improve access time)
• Optional use of pre-authentication that allows WPA2 wireless client to authenticate with other wireless access points in range.

Question 60

SSL

Answer 60

Developed by Netscape and has been replaced by TLS. It was the preferred method used with secure websites (i.e. https)

Question 61

How SSL Works

Answer 61

1. The browser asks the web server to prove its identity.
2. The server sends back a copy of its SSL certificate.
3. The browser checks to see if the certificate is from a CA it trusts.
4. The server sends back a digitally signed acknowledgement and a session is started.

Question 62

TLS (Transport Layer Security)

Answer 62

A protocol for encrypting transmissions. A client and server negotiate a connection by using a handshaking procedure. The server sends back its identification as a X.509 certificate. The client contacts the CA to confirm the validity of the certificate before proceeding. This protocol also supports secure bilateral connection mode.

Question 63

VPN

Answer 63

A way to use the internet to create a virtual connection between a remote user or site and a central location. Packets are encrypted making the network private. Emulates a direct network connection.

Question 64

Point-to-Point Tunneling Protocol (PPTP) - (often used for VPNs)

Answer 64

Oldest of the three protocols used in VPNs. Designed as a secure extension to the Point-to-Point Protocol (PPP). Adds the feature of encrypting packets and authenticating users to PPP. Works at the data link layer of the OSI model.

Question 65

PPTP VPN

Answer 65

Can use two different methods of authenticating the user:

EAP and CHAP

Question 66

Layer 2 Tunneling Protocol (L2TP) VPN

Answer 66

Designed as an enhancement to PPTP
Like PPTP, works at the data link layer
Offers many modes of authentication: CHAP, EAP, PAP, SPAP, and MS-CHAP
Can work on X.25 networks (phone)
Uses IPSec for its encryption

Question 67

Internet Protocol Security (IPSec) VPN

Answer 67

Latest of the three VPN protocols
Encrypts not only the packet data, but also the header information
Has protection against unauthorized re-transmission of packets

Question 68

SSL/TLS VPN

Answer 68

VPN setup through a web browser, portal that uses SSL/TLS to secure traffic. Gives user access to the target network.

Question 69

Encrypting File System (EFS)

Answer 69

Since Windows 2000, this has been used along with NTFS. Allows a simple way to encrypt and decrypt files/folders. Simply right-click, choose properties, then advanced. Encrypted files will appear in green and are tied to the user who encrypted them.

Question 70

BitLocker

Answer 70

Introduced with Windows 7. Can encrypt partitions or entire drives. Startup key only. Key information is stored on a flash drive or TPM. Uses AES with 128bit key.

Question 71

VeraCrypt

Answer 71

Software for maintaining an on-the-fly-encrypted volume. Data is automatically encrypted right before it is saved, then decrypted right after it is loaded, all w/o user intervention.

Question 72

Common Cryptography Mistakes

Answer 72

• Using a standard modulus in RSA (modulus e=216+1=65537)
• Using seeds for symmetric algorithms that are not random enough
• Hard coded cryptographic secrets/elements
• Using too short of a key
• Re-using keys
• Unsecure Key Escrow
• Unsecure cryptographic mode (ECB mode)
• Proprietary cryptographic algorithms

Question 73

Steganography

Answer 73

The art and science of writing hidden messages so that no one suspects the existence of the message, a type of security through obscurity. Message can be hidden in picture or audio file for example. Uses least significant bits in a file to store data.

Question 74

Payload (Steganography Terms)

Answer 74

The data to be covertly communicated, the message you wish to hide.

Question 75

Carrier (Steganography Terms)

Answer 75

The signal, stream, or data file into which the payload is hidden.

Question 76

Channel (Steganography Terms)

Answer 76

The type of medium used. This may be still photos, video, or sound files.

Question 77

Steganography Details

Answer 77

In every file, there are a certain number of bits per unit of the file. For example, an image file in Windows is 24bits per pixel. With Least Certificate Bit (LSB) replacement, some bits can be replaced without altering the file much.

Question 78

Steganophony

Answer 78

Hiding messages in sound files. Can be done via LSB and Echo Hiding

Question 79

Video Steganography

Answer 79

Hiding messages in video files. Can be done via Discrete Cosine Transform

Question 80

Steganographic File Systems

Answer 80

Stores data in seemingly random files. Proposed by Ross Anderson, Roger Needham, and Adi Shamir. Also something about ‘vectors’ and ‘decrypt all lower levels’. Sorry. I was tired when making this card.

Question 81

Steganography Implementations

Answer 81

QuickStego - easy to use but limited
Invisible Secrets - robust, has free and commercial versions
MP3Stego - MP3 files
Stealth File 4 - Sound files, video files, and image files
Snow - Hides data in whitespace
StegVideo - Hides data in a video sequence

Question 82

Steganalysis

Answer 82

Detecting steganography and extracting the hidden information. Done with software. By analyzing changes in an images close color pairs, the steganalyst can determine if LSB was used. Close color pairs consist of two colors whose binary values differ only in the LSB.

Question 83

Steganalysis - Raw Quick Pair

Answer 83

A method to analyze an image to detect hidden messages. Based on statistics of the number of unique colors and close-color pairs in a 24bit image. Analyzes the pairs of colors created by LSB embedding. Countermeasure- Maintaining the color palette w/o creating new colors.

Question 84

Steganalysis - Chi-Square Analysis

Answer 84

Calculates the average LSB and builds a table of frequencies and Pair of Values. Performs a test on the two tables. It measures the theoretical vs. calculated population difference.

Question 85

Steganalysis - Audio Steganalysis

Answer 85

Examines noise distortion in the carrier file. Noise distortion could indicate the presence of a hidden signal.

Question 86

Steganography Detection Tools

Answer 86

StegSpy
Stegdetect
StegSecret

Question 87

Suite A (How the NSA classifies cryptography)

Answer 87

This classification of algorithms are not published. Algorithms are classified.

Question 88

Suite B (How the NSA classifies cryptography)

Answer 88

This classification of algorithms are published.

Question 89

How the NSA classifies cryptography

Answer 89

Also classified as Type 1, 2, 3, or 4, with 1 being the highest ranking.

Question 90

NSA Suite A Cryptography Algorithms

Answer 90

That’s CLASSIFIED!

Question 91

NSA Suite B Cryptography Algorithms

Answer 91

• AES w/ key sizes of 128 and 256bits
• For traffic, AES should be used w/ the Galois/Counter Mode (GCM) mode of operation - symmetric encryption
• Elliptic-Curve Digital Signature Algorithm (ECDSA) - digital signatures
• Elliptic-Curve Diffie-Hellman (ECDH) - key agreement
• Secure Hash Algorithm 2 (SHA-256 and SHA-384) - message digest

Question 92

NSA Type 1 Algorithms

Answer 92

Highest level of encryption algorithms. Used for classified or sensitive U.S. government information. Includes:
JUNIPER - Block Cipher
MAYFLY - Asymmetric
FASTHASH - Hashing
WALBURN - High bandwidth link encryption
PEGASUS - Satellite telemetry

Question 93

NSA Type 2 Algorithms

Answer 93

Used for unclassified cryptographic equipment, assemblies, or components. Endorsed by the NSA for use in telecommunications and automated information systems for the protection of national security information. These include:
Skipjack (a block cipher)
KEA (Key Exchange Algorithm - Asymmetric)

Question 94

NSA Type 3 Algorithms

Answer 94

Type 3 product is a device for use with Sensitive But Unclassified (SBU) information on non-national security systems. Algorithms include:
DES
3DES
SHA
AES (some implementations of AES are type 1)

Question 95

NSA Type 4 Algorithms

Answer 95

Algorithms that are registered by NIST but not FIPS published. Also, unevaluated commercial cryptographic equipment, assemblies, or components that neither NSA nor NIST certify for any government usage.

Question 96

One Time Pad (OTP)

Answer 96

The only unbreakable encryption. Has a separate substitution for each character making the key as long as the text. No substitution is used more than once. Key is used one time then destroyed. Impractical for most situations.