Chapter 10: Understanding Cryptography and PKI

Question 1

Certificate signing request (CSR)

Answer 1

Used to request a certificate

Question 2

Certificate revocation list (CRL)

Answer 2

Revoked certificates that are cached

Question 3

Subject Alternative Name (SAN)

Answer 3

Multiple domains with different names but owned by same organization

Question 4

Online Certificate Status Protocol (OCSP)

Answer 4

Real-time response to validate certificates issued by a CA

Question 5

Message Direct 5 (MD5)

Answer 5

128-bit hash
32 hexadecimal

Question 6

Secure Hash Algorithms (SHA)

Answer 6

Verifies the integrity of files
SHA-1 - 160-bit

Question 7

Hash-Based Message Authentication (HMAC)

Answer 7

Uses a shared secret key to add randomness to the resulted hash

Question 8

Steganography

Answer 8

Hide data inside other data or in plain sight

Question 9

Homomorphic Encryption

Answer 9

Allows data to remain encrypted while being processed

Question 10

Lightweight Cryptography

Answer 10

Smaller devices such as RFID tags, sensor nodes, smart cards

Question 11

Elliptic Curve Cryptography (ECC)

Answer 11

Graphs points on a curve to create keys
Commonly used on low-power devices