Chapter 12 - Cryptography

Question 1

Cryptography

Answer 1

Science or study of protecting information whether in transit or at rest.

Question 2

Cryptanalysis

Answer 2

Study and methods used to crack cipher text

Question 3

Linear Cryptanalysis

Answer 3

Works best on block ciphers

Question 4

Differential Cryptanalysis

Answer 4

Applies to symmetric key algorithms. Compares differences in the inputs to how each one affects the outcome.

Question 5

Integral Cryptanalysis

Answer 5

Input vs Output comparison same as differential; however, runs multiple computations of the same block size input.

Question 6

Nonrepudiation

Answer 6

Means by which a recipient can ensure the identity of the sender and neither party can deny sending

Question 7

What are the 2 general forms of cryptography?

Answer 7

Substitution - bits are replaced by other bits. Transposition - Doesn’t

Question 8

Stream Cipher

Answer 8

Readable bits are encrypted one at a time in a continuous sream. Usually done by an XOR operation.

Question 9

Block Cipher

Answer 9

Data bits are split up into blocks and fed into the cipher

Question 10

XOR

Answer 10

Exclusive OR; If inputs are the same (0,0 or 1,1), function returns 0; if inputs are not the same (0,1 or 1,0), function returns 1 . Key chosen for cipher must have a length larger than the data; if not, it is vulnerable to frequency attacks.

Question 11

Symmetric Encryption

Answer 11

Known as a single key or shared key. One key is used to encrypt and decrypt the data. Suitable for LARGE amounts of data. Problems are key distribution and management

Question 12

Algorithm - DES

Answer 12

Symmetric Encryption - Block cipher; 56 bit key; quickly outdated and now considered not very secure.

Question 13

Algorithm - 3DES

Answer 13

Symmetric Encryption - Block cipher; 168 bit key; more effective than DES but much slower.

Question 14

Algorithm - AES

Answer 14

Symmetric Encryption - Advanced Encryption Standard - Block cipher; 128, 192, or 256 bit key; repalces DES; much faster than DES and 3DES

Question 15

Algorithm - IDEA

Answer 15

Symmetric Encryption - International Data Encryption Algorithm - block cipher; 128 bit key; originally used in PGP 2.0

Question 16

Algorithm - Twofish

Answer 16

Symmetric Encryption - Block cipher; up to 256 bit key.

Question 17

Algorithm - Blowfish

Answer 17

Symetric Encryption - Fast block cipher; replaced by AES; 64 bit block size; 32 to 448 bit key: considered public domain.

Question 18

Algorithm - RC (Rivest Cipher)

Answer 18

Symmetric Encryption - RC2 to RC6; block cipher; comparable key length up to 2040 bits; RC6 (latest) uses 128 bit blocks and 4 bit working registers; RC5 uses varaible block sizes and 2 bit working registers. RC4 is stream cipher.

Question 19

Asymmetric Encryption

Answer 19

Uses two types of keys for encryption and decryption ( public and private key)

Question 20

Public vs Private key

Answer 20

Public key generally used for encryption; can be sent to anyone. Private keys are kept secret; used for decryption

Question 21

Algorithm - Diffie-Hellman

Answer 21

Asymmetric - Developed as a key exchange protocol; used in SSL and IPSec; if digital signatures are waived, vulnerabl to MITM attacks.

Question 22

Algorithm - Elliptic Curve Cryptosystem (ECC)

Answer 22

Asymmetric - Uses points on elliptical curve along with logarithmic problems; uses less processing power; good for mobile devices.

Question 23

Algorithm - El Gamal

Answer 23

Asymmetric - Not based on prime number factoring; uses solving of discrete logarithm problems.

Question 24

Algorithm - RSA

Answer 24

Asymmetric - Achieves strong encryption through the use of two large prime numbers; factoring these create key sizes up to 4096 bits; moder de facto standard.

Question 25

Hash

Answer 25

One-way mathematical function that produces a fix-length string (hash) based on the arrangements of data bits in the input.

Question 26

MD5

Answer 26

Hash - Message digest algorithm) - Produces 128 bit hash expressed as 32 digit hexadecimal number; has flaws ; still used

Question 27

SHA-1

Answer 27

Hash - Developed by NSA; 160 bit value output

Question 28

SHA-2

Answer 28

Hash - Four separate hash functions; produce outputs of 224, 256, 384 and 512 bits; not widely used.

Question 29

SHA-3

Answer 29

Hash - Uses sponge construction (random permutations)

Question 30

RIPEMD-#

Answer 30

Hash - Works through 80 stages; executing 5 blocks 16 times each; uses modulo 32 addition . The # indicates bit length.

Question 31

Collision

Answer 31

Occurs when two or more files create the same output

Question 32

DUHK Attack

Answer 32

Don’t use hard coded Keys - Allows attackers to access keys in certain VPN implementation; affects devices using ANSI X.931 with a hard-coded seed key.

Question 33

Rainbow Tables

Answer 33

Contain precomputed hashes to try and find out passwords

Question 34

Salt

Answer 34

adds random characters bits to increase hash complexity

Question 35

HashCalc

Answer 35

Hash tool

Question 36

MD5 Calculator

Answer 36

Hash Tool

Question 37

HashMyFiles

Answer 37

Hash Tool

Question 38

Steganography

Answer 38

Practice of concealing a messag inside another medium so that only the sender and recipient know of its existence.

Question 39

Ways to Identify Steganography

Answer 39

Text, images, audio and video

Question 40

Steganography Methods

Answer 40

Least significant bit insertion - changes least meaningful bit. Masking and Filtering (grayscale images) - like watermarking . Algorithmic Transformation - hides in mathematical functions used in image compression.

Question 41

QuickStego

Answer 41

Steganography tool

Question 42

gifshuffle

Answer 42

Steganography tool

Question 43

SNOW

Answer 43

Steganography tool

Question 44

Steganography Studio

Answer 44

Steganography tool

Question 45

OpenStego

Answer 45

Steganography tool

Question 46

Public Key Infrastructure (PKI)

Answer 46

Structure desinged to verify and authenticate the identity of individuals.

Question 47

Registration Authority

Answer 47

Verifies user identity

Question 48

Certificate Authority

Answer 48

Third party to the organization; creates and issues digital certificates

Question 49

Certificate Revocation List (CRL)

Answer 49

Used to track which certificates have problems and which have been revoked.

Question 50

Validation Authority

Answer 50

Used to validate certificates via Online Certificate Status Protocol (OCSP)

Question 51

Trust Model

Answer 51

How entities within an enterprise deal with keys, signatures and certificates

Question 52

Cross-Certification

Answer 52

Allows a CA to trust another CS in a completely different PKI; allows both Cas to validate certificates from either side.