Chapter 3

Question 1

The Hashed Message Authentication Code (HMAC) __________.

· encrypts only the message
· encrypts only the key
· encrypts the key and the message
· encrypts the DHE key only

Answer 1

encrypts the key and the message

Question 2

What is the latest version of the Secure Hash Algorithm?

Answer 2

SHA-3

Question 3

Alexei was given a key to a substitution cipher. The key showed that the entire alphabet was rotated 13 steps. What type of cipher is this?

Answer 3

ROT13

Question 4

Abram was asked to explain to one of his coworkers the XOR cipher. He showed his coworker an example of adding two bits, 1 and 1. What is the result of this sum?

Answer 4

0

Question 5

Which of the following key exchanges uses the same keys each time?

· Diffie-Hellman-RSA (DHRSA)
· Diffie-Hellman Ephemeral (DHE)
· Diffie-Hellman (DH)
· Elliptic Curve Diffie-Hellman (ECDH)

Answer 5

DH

Question 6

Public key systems that generate random public keys that are different for each session are called __________.

Answer 6

perfect forward secrecy

Question 7

What is data called that is to be encrypted by inputting it into a cryptographic algorithm?

Answer 7

Plaintext

Question 8

Which of these is NOT a basic security protection for information that cryptography can provide?

· Authenticity
· Risk loss
· Integrity
· Confidentiality

Answer 8

Risk loss

Question 9

Which areas of a file cannot be used by steganography to hide data?

Answer 9

In the directory structure of the file system

Question 10

Proving that a user sent an email message is known as __________.

Answer 10

Non-repudiation

Question 11

A(n) __________ is not decrypted but is only used for comparison purposes.

Answer 11

Digest

Question 12

Which of these is NOT a characteristic of a secure hash algorithm?

· Collisions should be rare.
· A message cannot be produced from a predefined hash.
· The results of a hash function should not be reversed.
· The hash should always be the same fixed size.

Answer 12

Collisions should be rare.

Question 13

Alyosha was explaining to a friend the importance of protecting a cryptographic key from cryptoanalysis. He said that the key should not relate in a simple way to the cipher text. Which protection is Alyosha describing?

Answer 13

Confusion

Question 14

Which of these is the strongest symmetric cryptographic algorithm?

· Data Encryption Standard
· Triple Data Encryption Standard
· Advanced Encryption Standard
· RC 1

Answer 14

Advance Encryption Standard

Question 15

If Bob wants to send a secure message to Alice using an asymmetric cryptographic algorithm, which key does he use to encrypt the message?

Answer 15

Alice’s public key

Question 16

Egor wanted to use a digital signature. Which of the following benefits will the digital signature not provide?

· Verify the sender
· Prove the integrity of the message
· Verify the receiver
· Enforce nonrepudiation

Answer 16

Verify the reciever

Question 17

Illya was asked to recommend the most secure asymmetric cryptographic algorithm to his supervisor. Which of the following did he choose?

· SHA-2
· ME-312
· BTC-2
· RSA

Answer 17

RSA

Question 18

At a staff meeting one of the technicians suggested that the enterprise protect its new web server by hiding it and not telling anyone where it is located. Iosif raised his hand and said that security through obscurity was a poor idea. Why did he say that?

· It is an unproven approach and has never been tested.
· It would be too costly to have one isolated server by itself.
· It would be essentially impossible to keep its location a secret from everyone.
· It depends too heavily upon non-repudiation in order for it to succeed.

Answer 18

It would be essentially impossible to keep its location a secret from everyone.

Question 19

What is a characteristic of the Trusted Platform Module (TPM)?

· It provides cryptographic services in hardware instead of software.
· It allows the user to boot a corrupted disk and repair it.
· It is available only on Windows computers running BitLocker.
· It includes a pseudorandom number generator (PRNG).

Answer 19

It provides cryptographic services in hardware instead of software.

Question 20

Which of these has an onboard key generator and key storage facility, as well as accelerated symmetric and asymmetric encryption, and can back up sensitive material in encrypted form?

· Trusted Platform Module (TPM)
· Hardware Security Module (HSM)
· Self-encrypting hard disk drives (SED)
· Encrypted hardware-based USB devices

Answer 20

HSM