Chapter 07: Cryptography and the Public Key Infrastructure

Question 1

Which of the following is a Cryptography goal (select all that apply)?
a. Confidentiality
b. Integrity
c. Availability
d. Denial

Answer 1

a. Confidentiality
b. Integrity

Question 2

Which of the following is not a cryptography goal?
a. Confidentiality
b. Availability
c. Nonpedudiation
d. Authentication

Answer 2

b. Availability

Question 3

A ______ is a method used to scramble or obfuscate characters to hide their value.

Answer 3

Cipher

Question 4

Name two primary types of nonmathematical cryptography.

Answer 4

Transposition and Substitution.

Question 5

A ________ is a type of coding or ciphering system that changes one character or symbol into another.

Answer 5

Substitution cipher

Question 6

A _______ has multiple substitution alphabets for the same message.

Answer 6

Polyalphabetic substitution ciphers

Question 7

Which category does Vigenere cipher fit?

Answer 7

Polyalphabetic Substitution

Question 8

Which category does Caesar cipher fit?

Answer 8

Substitution Cipher

Question 9

Which category does Columnar cipher fit?

Answer 9

Transposition Cipher

Question 10

A _____ involves scrambling the letters in a certain manner. Typically, a message is broken into blocks of equal size and then scrambled.

Answer 10

Transposition cipher

Question 11

The ________ was created by the German government during WW2 to provide secure communications between military and political units.

Answer 11

Enigma Machine

Question 12

_______ is the art of using cryptographic techniques to embed secret messages within another file.

Answer 12

Steganography

Question 13

______ use a shared secret key available to all users of the cryptosystem.

Answer 13

Symmetric Cryptosystems

Question 14

_____ uses individual combinations of public/private keys for each user of the system.

Answer 14

Asymmetric Cryptosystems

Question 15

How does obfuscation differ from confidentiality?

Answer 15

Obfuscation is the practice of making it intentionally difficult for humans to understand how code works.

Question 16

The recipient of the message simply verifies that the message’s ___________ is valid, ensuring that the message was not altered in transit.

Answer 16

digital signature

Question 17

_______ verifies the claimed identity of system users.

Answer 17

Authentication

Question 18

________ provides assurance to the recipient that the message was originated by the sender and not someone masquerading as the sender.

Answer 18

Nonrepudiation

Question 19

Before a message is put into coded form, it is in _________.

Answer 19

Plain Text, represented by P in encryption algorithms.

Question 20

The sender of a message uses cryptographic algorithm to encrypt the plain-text message and produce a __________.

Answer 20

cypher text message

Question 21

The _______ is that a cryptographic system should be secure even if everything about the system, except the key, is public knowledge.

Answer 21

Kerchoff

Question 22

What is another name for cryptographic keys.

Answer 22

Cryptovariables

Question 23

_______ is the study of methods to defeat codes and ciphers.

Answer 23

Cryptanalysis

Question 24

Specific implementations of code or cipher in hardware and software are known as ___________.

Answer 24

Cryptosystems

Question 25

Modern ciphers fit into 2 major categories. Name them.

Answer 25

Block Ciphers
Stream Ciphers

Question 26

_______ operate on chunks of a message and apply the encryption algorithm to an entire message chunk at the same time.

Answer 26

Block Ciphers

Question 27

______ operate on one character or bit of a message at a time.

Answer 27

Stream Ciphers

Question 28

Name 5 modes of DES.

Answer 28

• Electronic Cookbook (ECB) mode
• Cipher Block Chaining (CBC) mode
• Cipher Feedback (CFB) mode
• Output Feedback (OFB) mode
• Counter (CTR) mode

Question 29

DES uses a ______ key.

Answer 29

56 bit

Question 30

The simplest and least secure. Each time the algorithm processes a 64-bit block, it simply encrypts the block using the chosen secret key.
a. Electronic Cookbook (ECB) mode
b. Cipher Block Chaining (CBC) mode
c. Cipher Feedback (CFB) mode
d. Output Feedback (OFB) mode
e. Counter (CTR) mode

Answer 30

a. Electronic Cookbook (ECB) Mode

Question 31

In ________ mode, each block of unencrypted text is combined with the block of cipher text immediately preceding it before it is encrypted with DES algorithm. This mode also uses an Initialization Vector.
a. Electronic Cookbook (ECB) mode
b. Cipher Block Chaining (CBC) mode
c. Cipher Feedback (CFB) mode
d. Output Feedback (OFB) mode
e. Counter (CTR) mode

Answer 31

b. Cipher Block Chaining (CBC) mode

Question 32

Which authentication framework is commonly used for wireless networks?

Answer 32

EAP

Question 33

______ is an authentication protocol designed to provide more security than protocols like PAP. This authentication protocol uses an encrypted challenge and three way handshake to send credentials.

Answer 33

CHAP

Question 34

What is the name of Microsoft’s authentication protocol which is meant to be alternative of CHAP?

Answer 34

MS-CHAP

Question 35

_______ is a password-centric authentication protocol that was commonly used with the Point-to-Point (PPP) protocol.

Answer 35

Password Authetentication protocol

Question 36

Which authentication protocol is one of the most common for Authentication, authorization, and accounting systems for network devices, wireless networks, and other services. This protocol sends passwords that are obfuscated by a shared secret and MD5 hash.

Answer 36

RADIUS

Question 37

Which IEEE standard includes NAC.

Answer 37

802.1X

Question 38

______, is a cisco designed extension. It uses tcp traffic to provide AAA services and provides full packet encryption as well as granular command controls, allowing individual commands to be secured as needed.

Answer 38

TACACS+

Question 39

_____ designed to operate on untrusted networks and uses authentication to shield its authentication traffic. The users are composed of three main elements: the primary, the instance, and the realms.

Answer 39

Kerberos