B3P4 - Security

Question 1

asymmetric encryption

Answer 1

encryptionKey != decryptionKey;

Question 2

asymmetric keys

Answer 2

encryptWithPublicKey and decryptWithPrivateKey;

Question 3

authentification

Answer 3

checking that nominalSender = actualSender;

Question 4

confidentiality

Answer 4

checking that messageContent is only visible to intendedRecipient;

Question 5

cryptography

Answer 5

design of algorithms for secureDataComms;

Question 6

Diffie-Hellman (DH) algorithm

Answer 6

enables eachParty to locally generate an identicalSecretKey without exchanging it;

Question 7

encapsulating security payload (ESP)

Answer 7

a combination of algorithms providing integrity, authentification, and confidentiality;

Question 8

file transfer protocol (FTP)

Answer 8

layer 4 [transport] protocol for file transfer;

Question 9

hash

Answer 9

hashFunction(message) = aHash;

Question 10

hash function

Answer 10

a mathFunction returning aHash to check messageIntegrity;

Question 11

integrity

Answer 11

ensuring message can’t be changed in transit;

Question 12

internet key exchange (IKE) (IPsec VPN)

Answer 12

a protocol establishing a secureAssociation between endpoints of an IPsec VPN;

Question 13

IP Security (IPsec) protocol

Answer 13

a layer 3 [network] protocol for secureDataTransfer;

Question 14

message digest

Answer 14

= aHash;

Question 15

public-key algorithm

Answer 15

uses asymmetric encryption;

Question 16

secure socket layer (SSL)

Answer 16

a protocol for secureDataTransfer over IPnets;

Question 17

security association

Answer 17

two ends agreeing options for confidentiality, integrity, and authentification;

Question 18

symmetric encryption

Answer 18

encryptionKey = decriptionKey;

Question 19

transport mode (IPsec)

Answer 19

where IPsec provides security at layer 4 [transport] for layers 4 and above;

Question 20

tunnel mode (IPsec)

Answer 20

where IPsec provides security at layer 3 [network] for layers 3 and above;