Chapter 3: Security Engineering

Question 1

5 Symmetric Block Cyphers

Answer 1

EDB, CBC, DES, 3DES, AES last two are bay far most common 3DES very processor intensive

Question 2

Abstraction

Answer 2

hides unnecessary data from user

Question 3

access control matrix

Answer 3

a table defining what accesss permission exist between subject and object.

Question 4

AES

Answer 4

Most common ecryption algorithm

what block cypher does bla bla bla:

AES

default standard for most apps.

Question 5

AES Finalists

Answer 5

MARSRC6Rijndael - Winner!SerpentTwofishAES has four functions: SubBytes, ShiftRows, MixColumns, and AddRoundKey.

Question 6

AES winner from 5 finalists

Answer 6

Rijndael was chosen and became aes.

Question 7

AH

Answer 7

Authentication Header provides Auth and integrity for each packet of network data. provideds dig. signature protects against replay attacks.

Question 8

Algorithm

Answer 8

a collection of all the math functions can be performed.

block of data goes though a bunch of math functions…

we want confusion…good strong math.

diffusion plain text intesperced with cypher text adds to confusion…

Permutation- rounds of encryption.

Kerkoff… principle

Question 9

ALU

Answer 9

Algorithmetic logic unit and control unit performs math functions fed by the control unit

Question 10

Aspects of Asym Cryptography

Answer 10

PAIN

Privacy, Authenticity, Integritiy, Non- Repudiationdd

Privacy = Every - user has a key pair private and public.

the two key’s are mathimatically related..

aka public key cryptography

Authenticity = sender encrypts with private key (random info) like time of day sent.

Integrity - Hashing comapre hashing that no change has happened.

Question 11

Asymmetric Crypto - Inegrity Examples

Answer 11

MD5, SHA-1, SHA 256

Question 12

Bell-Lapadula

Answer 12

It is focused on maintaining the confidentiality of objects. Protecting confidentiality means not allowing users at a lower security level to access objects at a higher security level.no read up no write down

*****all about confidentiality protecing gov secrets!

Question 13

Bibba

Answer 13

Integrity of Information no read down no write up.

“Down Data is Dirty”

worried about integrity

Question 14

Birthday Attack

Answer 14

Attempt to cause hash collisions.

it is based on the idea that it is easier to find two hashes that happen to match than to produce a specfic hash. “dump luck”

Question 15

Block Cyphers

Answer 15

Symmetric Encryption encrypt blocks of data each round 56bit for DES, 128,192, 256 for AES

uses:

Confusion: carried out through substitution

Diffusion: is carried out though transpositon

Question 16

Blowfish & Twofish

Answer 16

Blowfish and Twofish are symmetric block ciphers created by teams led by Bruce Schneier, author of Applied Cryptography. Blowfish uses 32- through 448-bit (the default is 128) keys to encrypt 64 bits of data. Twofish was an AES finalist, encrypting 128-bit blocks using 128- through 256-bit keys. Both are open algorithms, unpatented, and freely available.

Question 17

Bollard

Answer 17

A security barrier for a car.

Question 18

Brewer-Nash

Answer 18

aka chinese wall avoid conflict of interest by assigning someone to one item.

Question 19

burn rating

Answer 19

2 hrs.

Question 20

Ceasar Cipher

Answer 20

• Simple Substitution
• Shift Characters 3 spaces
• A=D, B=E, C=F, etc
• Substitusion Ciphers are subject to pattern analysis.

Question 21

Chaining Feedback in Stream Modes called feedback

Answer 21

seeds the previous encrypted block into the next block to be encrypted. This destroys patterns in the resulting ciphertext.

Question 22

Chosen Ciphertext Attack

Answer 22

An attacker can see whatever they want in palin or ciphertext. They have compromised a workstation. Sometimes called a lunchtime or midnight attack.

Question 23

chosen plaintext attack

Answer 23

attacker can see the full text excrypted and decrypted. Usually the attacker has initiated the message.

you now have both and can compare them.

Question 24

Cipher

Answer 24

a crypographic algorithm

Question 25

Cipher Block Chaining

Answer 25

is a block mode of DES that XOR’s the previous encrypted block of ciphertext to the the next block of plaintext to be encrypted.

Question 26

Ciphertext Only Attack

Answer 26

Attacker has captured encrypted text on the network. Usually means all the attacker can do it brute force. not very successful

Question 27

Clark-Wilson

Answer 27

users access object via contrained programs/user interface

enforece well-formed trasactions throught the access triple

Helps to enforce integrity of the data

“keep users out of your stuff or they’ll break it.”

Question 28

Clipper Chip

Answer 28

encryption in telecom devices skipjack key used went defunct in ‘96

Question 29

Collision

Answer 29

When two different documents product teh same hash it is called a collision.

Question 30

Common Asymmetric alorithms 6

“buddy system”

**importamento**

Answer 30

• DSA
• RSA
• ECC (Elipitcal Curve Crypto)
• El Gamal
• Diffie Hellman
• Knapsack

If it ain’t in the list then it is symmetric

Write down before test

RSA and DSA - “the SA bros”

ECC and El Gamal “start with e’s”

DH (Diffie Hellman) and Knapsack - doogie hauser has a knapsack

Question 31

common criteria

Answer 31

iternationally agreed upon standard for describing and testing security of IT products

Question 32

Confusion

Answer 32

Good strong math complex math for substitution

Question 33

CPTED

Answer 33

CPTED (Crime Prevention Through Environmental DesignProvides instruction on direction of the use of:Organizational (People)Mechanical (Technology, hardware)Natural Design (landscaping, natural environment)

Question 34

CPU Cycles

Answer 34

• Fetch - retrieves instruction from application
• Decode - control unit deciphers teh instruction and directs data from sys memory to ALU
• Execute - control and alu performs the math
• Store - result is stored in memory.

Question 35

cpu modes

Answer 35

priveledge more level 0

user mode level 3 - non root

Question 36

Cryptoanalysis

Answer 36

Science of breaking ecrypted messages

Question 37

Cryptography

Answer 37

Secret Writing - communication that can only be understood by recipient

Question 38

Cryptology

Answer 38

Science of Secure communications

Question 39

CSRF

Answer 39

uses session ID

grab session information if you

cross site request fogery

takes advantage of a website’s trust in a user.

Question 40

DAC

Answer 40

Discretionary Access Control

• Security of an object is as the owner’s discretions
• Access is granted through and ACL (access control list)
• Commonly implemented in commercial products and all client based systemes
• Identity Based

***Microsoft uses this…all about the owner.

linux and unix

Question 41

Datacenter Location

Answer 41

Not in basement because of floods Not on first floor because of trafficNot on top floor because of fireIdeally on 2nd or 3rd floorShould be located in center of the building to avoid data emanation

Question 42

CipherText

Answer 42

PlainText +Initialization Vextor + Algorithm(aka Cipher) + Key.

Question 43

Deluge System

Answer 43

Same as dry pipe but sprinker head is open - releases much water faaaaaaast. no good for data processing environment.

Question 44

DES Electronic Code Book

Answer 44

does not use an initialization vector or chaining and patterns can be clearly visible in the resulting ciphertext.

Question 45

Diffie-Hellman

Answer 45

First asymmetric alogrithm

Key agreement allows two parties to securely agree on a symmetric key via a public channel like the internet, with no prior key exchange.

secure key agreements without pre-shared secrets.

we can agree on the 5h number based on the info we already have.

Question 46

Diffusion

Answer 46

Permutations Rounds

Question 47

Digital Certificate

Answer 47

x.509 v4 stardard

provides authenticity of a servers public key.

via hash the compare the has

encrypted by the certificate authority.

Question 48

Digital Signature

Answer 48

Hash + Sender Private key…

standard.guarantee’s non-repuditaion = integ & auth

require PKI

Question 49

Discrete Algorithm

Answer 49

Discrete logarithms apply logarithms to ((((GROUPS)))), which is a much harder problem to solve. This one-way function is the basis of the Diffie-Hellman and ElGamal asymmetric algorithms. a logarithm is the opposite of exponentiation…much harder to compute.

Question 50

Door Security

Answer 50

Hinges should be protectedHinges internal to the door provide protection for the hinges while still allowing door to open outwardlyPanic bar allows for quick evacuationKick plate provides cosmetic protection for doorStrike plate—T-shaped component of lock which provides reinforcementIn the event of power failure, electronic doors can:Fail secure: Fails locked. No evacuation. Only in facilities where value of what is being protected exceeds human lifeFail Soft: Opens outward, but door is locked to bar returnFail Safe: Door fails open (easiest to evacuate)On the CISSP exam never choose fail secure . Fail soft/safe is the best choice

Question 51

DRAM

Answer 51

less expensive uses capacitors can leak charge

requires constant charge

Question 52

Drawbacks to Symmetric Cryptography

Answer 52

out of band key exchange

not scalable

no authenticity, Integrity or Non-Repudiation

we only get privacy.

Question 53

ECC

Answer 53

Elliptical Curve Cryptography

Asymmetric

Based on plotting point upon a curve

super fast and efficient..only designed to work with certain enviornments.

Question 54

eeprom

Answer 54

being able to flash the bios with software.

Question 55

electromechanical alarms

Answer 55

Most commonRely on a connection being brokenmagnet on door and frame. Alarm sounds if the connection is brokenWeight based systems based on the same concept

Question 56

Elliptic Curve Algorithm

Answer 56

much stronger per bit than systems using discrete algorithms.

Question 57

Enigma Machine

Answer 57

Enigma Machine/Purple Machines

used by germans and japs.

add rotors to incrase comlexity.

Question 58

Exclusive or XOR

Answer 58

Bits are different answer is 1 same answer is 0

Question 59

Facility Considerations CPTED

Answer 59

Improve Surveillance: Improve visibility and eliminate concealment opportunitiesAccess Control:Actively control traffic, direct visitors, limit accessTerritoriality:Providing the impression of a well-tended building provides a deterrentActivity Support:Ensure all areas of the facility are occupied at least occasionally. Use activities like meetings, luncheons to populate these area

Question 60

Fail Soft

Answer 60

door works as normal allows people out not in.

Question 61

Fencing

Answer 61

Controls entrance accessCan be costly and unsightlyHeights provide degrees of protection3-4 feet – deters casual trespassers 5-7 feet – too high to climb easily (preventive)8 feet with 3 strands of barbed wire – (preventive) Will discourage all but the most determined intruder

Question 62

Firmware

Answer 62

PROM (Programmable Read-Only Memory) can be written to once, typically at the factory. EPROM (Erasable Programmable Read-Only Memory) and EEPROM (Electrically Erasable Programmable Read-Only Memory) may be “flashed,” or erased and written to multiple times.

Question 63

Goals in Protecting Property

Answer 63

Most important goal is to protect life, property and operations

Question 64

halon

Answer 64

halon good fatal to people though…

Question 65

HASH

Answer 65

one way math = for integritiyhash on both sides sender/receiver to ensure integrity

assurance it hasn’t been corrupted.

all hash are fixed length..

Question 66

Hash Collision

Answer 66

two pieces of text/documents create the same hash

Question 67

HASH MAC

Answer 67

Message agreed upon symmetric key + agreed upon hash never truly as good as dig sig. with it true non repudiation reasonalble assurance of authenticity without the overhead of a PKI

Question 68

Hashing Algorithms 3 main- know bit lengths 4 less known

Answer 68

MD5 128 bits

SHA1 160 bits

SHA -256

Less common:RipeMD, Tiger, Whirlpool Haval

one way math..

Question 69

Haval

Answer 69

hash of various length uses principles of md5…

Question 70

How many ways are Hashes

Answer 70

One- Way

Question 71

Humidity

Answer 71

Humidity should be around 50%Too high causes condensation/rustToo low causes ESD (Electro static discharge aka static electricity

Question 72

hypervisor

Answer 72

key to virtualization security it is the traffic cop for virtualization

Question 73

IaaS

Answer 73

linux server hosting

Question 74

IKE

Answer 74

Internet Key Exchange negotiates the algorithm selection process or the two sides of the ipsec tunnel.

Question 75

Initialization Vector

Answer 75

Used in some symmetric cyphers to ensure that the first encrypted block of data is random

make sure initial number is random..go from there.

sudo random number

similar to “seed” or a “salt”

Question 76

International Data Encryption Algorithm

Answer 76

a block cipher designed as an international replacement to DES. The IDEA algorithm is patented in many countries. It uses a 128-bit key and 64-bit block size.

Question 77

IPsec

Answer 77

An Encapsulation Framework.

tunnel mode and transport mode

Internet Protocol Security is a suite of protocols that provice a cryptographic layer to both IPv4 & 6 IPsec includes 3 primary sub-protocols:

Authentication Header (AH) - runs ICV integrity check value ie hash on the header (doesn’t work with NAT) - non-repudiation

Encapsulating Security Payload (ESP). - you need it for privacy - encryption

Internet Key Exchange (IKE) key management config of security associations and security paramater indexes.

Question 78

IPSec Sub - Protocols 3

Answer 78

AH - non-repudiation

ESP - Encryption

testable: any indication you need confidentiality you need ESP

IKE - key management for security parameter and associations is the rodey…comes out ahead of the show and sets everything up.

two subs: oakly- diffe hellman

isakamp manages keys, security associations.

Question 79

IPsec Transport Mode

Answer 79

only the packet is encapsulated.

ESP transport mode only encrypts the data (and not the original headers); this is commonly used when the sending and receiving system can “speak” IPsec natively

Question 80

IPSec Tunnel Mode

Answer 80

Tunnel mode is used by security gateways (which can provide point-to-point IPsec tunnels). whole packet is encapsulated.

ESP tunnel mode encrypts the entire packet, including the original packet headers. ESP

most secure mode….greater security.

Question 81

ITSEC

Answer 81

first successful euro evaluation model

Question 82

Kerkoff Principle

Answer 82

Let the algorithms be open

more people looking at it the better!

Question 83

Known Key Attack

Answer 83

cryptanalyst knows something about the key

Question 84

Known Plaintext

Answer 84

A known plaintext attack relies on recovering and analyzing a matching plaintext and ciphertext pair: the goal is to derive the key that was used.

Question 85

Known PlainText Attack

Answer 85

the attacker has captured cipher text, but also knows what a portion of the message is in plain text (like an automatic signature)

figure out how the key encrypts based on some known data.

Question 86

Lattice Security Model

Answer 86

upper lower access limits on subject and object.

In a lattice model, there are pairs of elements that have the least upper bound of values and greatest lower bound of values.

Question 87

External Consistency

Answer 87

Ensures that the data stored in the database is consistent with the real word.

Question 88

Layered Defense

Answer 88

Outer PerimeterBuilding Grounds and ConstructionIngress/EgressInterior

Question 89

levels of evaluation EAL

Answer 89

EAL 4 is what most companies go for no total overkill

Question 90

Linear crytanalysis

Answer 90

cryptanalyst finds large amounts of plaintext/ciphertext pairs created with the same key. the pairs are studied to derive information about the key.

Question 91

MAC

Answer 91

Higher Security

heart and sould is label.

• Data owners cannot grant access
• OS makes teh decision based on a security label system
• Subject label must cominate the object label.
• Rules for access are configured by the security officer and enforced by the OS.

Labels are written in stone

Gov. Organiztions use…ie confidential label.

Question 92

MAC - Cryptography

Answer 92

Message Authentication Code - less overhead than PKI Integrity and reasonable authenticity.

Hash Messaged and Shared Symetric Key with is a HMAC has mac…have symmetric key issues…got to share it…

Message + Symmetric (shared) key + hashing algorithm = HMAC

*does not provide true authenticity*

Question 93

masking

Answer 93

mask out inportant data.

Question 94

MD5

Answer 94

128bit hash not secure replaced by MD6

Question 95

Meet in the middle attack

Answer 95

A known plaintext attack relies on recovering and analyzing a matching plaintext and ciphertext pair: the goal is to derive the key that was used.

Question 96

Meet in the middle attack

Answer 96

these attacks are targeted towards algorithms like 3des where there are muliple keys. an attacker tries to learn what each key does individually.

Question 97

monoalphabetic cipher

Answer 97

uses one alphabet: a specific letter (like “E”) is substituted for another (like “X”).

Question 98

Montreal Protocal

Answer 98

got rid of halon cause of ozone.

Question 99

Most secure windows

Answer 99

polycarbonate

Question 100

multi - core cpu

Answer 100

for multi threading…

Question 101

multi programming

Answer 101

did not allow for isolation of individual processes. hard for multiple programs to run at the same time….they had to be written to deal with other programs.

Question 102

Multi Threading

Answer 102

is the ability to perform more than one thread at a time. is was done via OS but to get true MT. we need mult. processors.

Question 103

multiprocessing

Answer 103

mult processes on mult cpu’s

Question 104

multitasking

Answer 104

mult tasking allowed for the true isolation of resources each application was running in its own space and could be isolated.

Question 105

Nonce

Answer 105

to add uniqueness add randomness trwart replay attack

Question 106

OCSP

testable :)

Answer 106

Online Certification Status Protocol- streamlines the process of verifying whether or not a cert has been revoked.

Question 107

One Way Function Factoring Prime Numbers

Answer 107

typical in asymmetric alogrithms example: Factoring prime numbers An example of a one-way function is factoring a composite number into its primes. Multiplying the prime number 6269 by the prime number 7883 results in the composite number 49,418,527. That “way” is quite easy to compute, taking milliseconds on a calculator. Answering the question “which prime number times which prime number equals 49,418,527” is much more difficult. That problem is called factoring, and no shortcut has been found for hundreds of years. This is the basis of the RSA algorithm.

Question 108

OWASP

Answer 108

The Open Web Application Security Project (OWASP; see http:// www.owasp.org) represents one of the best application security resources. OWASP provides a tremendous number of free resources dedicated to improving organizations’ application security posture. One of their best-known projects is the OWASP Top 10 project, which provides consensus guidance on what are considered ten most significant app risks

Question 109

PasS

Answer 109

web service hosting

Question 110

Permutation/Transposition

Answer 110

provides diffusion by rearranging the characters of the plaintext, anagram style. “ATTACKATDAWN” can be rearranged to “CAAKDTANTATW,” for example. Substitution and permutation are often combined.

Question 111

PGP

Answer 111

pretty good privacy

symmetric block cypher

uses IDEA alogrithm instead of AES

“PGP is a good idea”

Question 112

PIDAS Fencing

Answer 112

Perimeter Intrusion Detection and Assessment SystemDetects if someone tries to climb a fence or damage the fenceMesh-wire fence with a passive cable vibration sensor that sets off an alarm if detected

Question 113

pipelining

Answer 113

multiple steps into one unit.

Question 114

PKI

Answer 114

Public Key Infrastructure

Question 115

polyaphabetic ciphier

Answer 115

Uses Multiple alphabets.

Question 116

Polyinstantiation

Answer 116

two different objects that have the same name

multiple instances of an event.

Enter fasle information for sensitive data.

a Big work for lying.. :)

Question 117

Positive airflow

Answer 117

HVAC Positive Airflow (Contaminants/smoke should flow out, not in)

Question 118

Power issues terms

Answer 118

Power ExcessSpike: Momentary high voltageSurge: Prolonged high voltagePower DegradationSag: Momentary degradationBrownout: Prolonged degradationPower LossFault: Temporary outageBlackout: Prolonged outage

Question 119

Pre-Action System

Answer 119

combo of wet and dry pipe

Question 120

process

Answer 120

from an executable program

Question 121

RBAC

Answer 121

used to prevent priveledge creep.

based on role of organization…not like the indivuals like DAC.

Question 122

RC4

Answer 122

Stream Cypher

Question 123

RC5 & RC6

Answer 123

RC5 and RC6 are symmetric block ciphers by RSA Laboratories. RC5 uses 32- (testing purposes), 64- (replacement for DES), or 128-bit blocks. The key size ranges from 0 to 2040 bits. RC6 was an AES finalist. It is based on RC5, altered to meet the AES requirements. It is also stronger than RC5, encrypting 128-bit blocks using 128-, 192-, or 256-bit keys.

Question 124

Ref Monitor

Answer 124

mediates access between subject/objects

Question 125

ring model

Answer 125

4 rings 0 - kernel1 - other os components2 - device drivers3 - user apps

Question 126

ROM

Answer 126

memory that maintains without power bios is a ROM

Read only memory

Question 127

RSA

Answer 127

named for Rivest, Shamir, Adleman creators

Current Standard for Dig. Signatures

once doc get hashed RSA encrypts hash with senders private key.

**factorization** trap door function

one way math…

Question 128

S/MIME

Answer 128

(Multipurpose Internet Mail Extensions) provides a standard way to format e-mail, including characters, sets, and attachments. S/ MIME (Secure/ MIME) leverages PKI to encrypt and authenticate MIME-encoded e-mail. The client or client’s e-mail server (called an S/ MIME gateway) may perform the encryption.

Question 129

SaaS

Answer 129

software as a service: webmail

Question 130

SBox

Answer 130

substitution round for block cypher all driven by the key. for number of rounds…etc.

Question 131

Scytale

Answer 131

based on rod size

tape wrapped around rod.

Question 132

Secuirty Services Provided by Cryptography

Answer 132

P - Prevents unauthorized disclosure of info.

A - Authenticity: Verifies the claimed indentity

I - Integrity: detects modification or corruption

N - Non - repudiation: combine uthenticity and integrity a user can’t dispute sent message and its contents.

PAIN

Question 133

Security Association

Answer 133

made of of a destinsation address and spi

(security parameter index) for IPSec sub protocol IKE - ISAKMP

unique identifier for every secure connection.

this is a socket for a secure connection.

2 one for outgoing and one for incoming.

Question 134

Security Domain

Answer 134

a list of objects a subject is allowed to access

Question 135

Service Oriented Architecture

Answer 135

neutral services so vendors can communicate with eath other…

Question 136

SHA-1

Answer 136

160bit hash

Question 137

Single DES

Answer 137

Single DES is the original implementation of DES, encrypting 64-bit blocks of data with a 56-bit key, using 16 rounds of encryption. The work factor required to break DES was reasonable in 1976, but advances in CPU speed and parallel architecture have made DES weak to a brute-force key attack today, where every possible key is generated and attempted. Triple DES Triple DES applies single DES encryption

Question 138

SRAM

Answer 138

more expensive uses small latches flip-flops and fast

holds it info without power…use for cache.

Question 139

SSL/TLS

Answer 139

know this phrase:

Asymmetric Key Exchange

Symmetric Data Exchange

need symmetric for speed.

public key encrypts the clients session key

both parties have secure channel with symmetric key…like secure cb radios…

1. client set up secure session
2. server sends certificate
3. client decrypts the servers cert using the public key from the trusted CA.
4. server decrypts session key using its private key and estblished secure session.

client

Question 140

Stream Cypher

Answer 140

1 bit at a time XOR, transpositon or substituion

Question 141

Substitution

Answer 141

Crypto Substitution replaces one character for another

Question 142

Symmetric Algorithm

Answer 142

ie: Private Key, Shared key, Secret Key, Session Key - (limited time)

Same key to encrypt and decrypt

Stream Cypher - very fast not as secuire used in hardware. Only know RC4

Block Cypher - slower AES = standard /3DES still around not used as much

Question 143

Symmetric Stream Cypher

Answer 143

RC4

Question 144

Target Hardening

Answer 144

four D’sDeterDelayDetectDeny

Question 145

TCSEC

Answer 145

trusted computing evaluation criterea ie the orange book one of the first security standards implemented most tings are based from that.c - discretionary controlsb - mand. controlsa - verified protection all of b plus addl…

Question 146

temp

Answer 146

nice constant temp.dd

Question 147

threads

Answer 147

child threads from a parent process

Question 148

TOCTOU

Answer 148

Time of Check/ Time of Use (TOCTOU) attacks are also called race conditions: an attacker attempts to alter a condition after it has been checked by the operating system, but before it is used. Maintenance Hooks

Question 149

Triple DES

Answer 149

Triple DES applies single DES encryption three times per block. Formally called the “Triple Data Encryption Algorithm” (TDEA) and commonly called “TDES” or “3DES,” it became a recommended standard in 1999. 48 Rounds - Kurt :)

Question 150

Trusted Computer Base

Answer 150

Originated from orange book.

Security Perimiter - delineates trussted and the untrusted components in a computer system.

Reference Monitor - mediates access between subject and objects

Security kernel - enformant of ref monitor

is defined as the total combination of protection mechanisms within a computer system.

Question 151

Type C

Answer 151

need to be in electrical fires tested quartly

Question 152

Ubiquitous Computing

Answer 152

Wireless Networking

RFID

NFC - wireless keys in hotel

LBS - location based security.

Question 153

UL325

Answer 153

Class I: Ornamental/ResidentialClass II: Commercial usage where general public access is expected: Gated community, self-storage facilityClass III: Industrial Usage where limited access is expected. Example: A WarehouseClass IV: Restricted access: Prisons, military

Question 154

Vernam Cipher

Answer 154

• One time pad
• only mathematically unbreakable form of cryptography.

key must be used only once

pad must be at leas as long as the message

key pad is statistacally unpredictable

key pad must be delivered and stored securely.

one tiem key rsa…evey minute…etc.

Question 155

Vignere

Answer 155

• First polyaplphabetic cipher
• key word is agreed upon ahead of time
• First letter fo teh key is matched up against fist letter of the message and so on.

Question 156

Virtual Memory

Answer 156

provides virtual address mapping between apps and hardware memory

Question 157

Volumetric detection

Answer 157

More expensive (used for higher value assetsPhoto-electric: Changes in light—no windowsAcoustic systems: detect certain frequencies of sounds

Question 158

What block cypher does bla bla bla

Answer 158

Guess AES default standard.

Question 159

What Makes up a Ciphertext

Answer 159

Plaintext + Initialization Vector + Algorithm + Key

Question 160

what type of crytopgraphy does tls use

Answer 160

best hybrid.

if not that then asymmetric…

Question 161

what type of cryptography use for data exchange

Answer 161

symmetric cryptography.

for key exchange it it asymmetric.

Question 162

whats the forumla for the number of keys in an asymetric enviornment

Answer 162

2N

Question 163

Which fence will deter a determined intruder

Answer 163

8 feet with 3 strands of barbed wire – (preventive) Will discourage all but the most determined intruder

Question 164

who is responsible for the safety of employees

Answer 164

Senior Management

Question 165

Work Factor

Answer 165

How long it will take to break a cryptosystmem. (decrypt cyphertext without key)

Question 166

x.509 v.4

Answer 166

the Standard digital certificate format for Pub. key interface PKI.

stardarized….

Question 167

XOR

Answer 167

Steam Ciphers XOR

exclusive or

plain text + key

Values:

same = 0

diffrent =1

Question 168

XSS

Answer 168

client side threat

cross site scripting

attacker takes control of a trusted website. with a code injection.

question: cross site scripting takes advantage of a user trust of a website.

Question 169

Refencence Monitor

Answer 169

defined as an abstract machine that mediates all access to objects by subjects to ensure that subjects have the necessary access rights and to protect objects from unauthorized access

Question 170

Access control - Dominate

Answer 170

Higher or equal to access class. The reason is the term dominates refers to a subject being authorized to perform an operation if the access class of the subject is higher or dominates the access class of the object requested.

Question 171

Rainbow Attack

Answer 171

Rainbow attacks involve using pre-computed hashes of their password equivalents.

Basically we take a rainbow table; a list of passwords and hash value equivalents and just compare the hashes we see on the wire (Or file elsewhere like in the SAM file or in the process lsass.exe memory space) to the list of pre-computed cleartext password equivalents in the rainbow table for instant cleartext passwords.

Mitigation: Password salting involves adding random characters to the password hash making the attack infeasible. There are millions of possible salt values which means you would need one 67 GB database for each of the possible.

Question 172

ISO 9126

Answer 172

is a standard to assist in evaluating the quality of a product

The functions are those that satisfy stated or implied needs.
Suitability
Accuracy
Interoperability
Security
Functionality Compliance