Chapter 4 Flashcards
Which of the following is NOT a method for strengthening a key?
Randomness
Cryptoperiod
Length
Variability
Variability
Which of the following block ciphers XORs each block of plaintext with the previous block of ciphertext before being encrypted?
Electronic Code Book (ECB)
Galois/Counter (GCM)
Counter (CTR)
Cipher Block Chaining (CBC)
Cipher Block Chaining (CBC)
What entity calls in crypto modules to perform cryptographic tasks?
Certificate Authority (CA)
OCSP Chain
Intermediate CA
Crypto service provider
Crypto service provider
are symmetric keys to encrypt and decrypt information exchanged during the session and to verify its integrity.
Encrypted signatures
Session keys
Digital certificates
Digital digests
Session keys
Which of these is considered the strongest cryptographic transport protocol?
TLS v1.2
TLS v1.0
SSL v2.0
SSL v2.0
TLS v1.2
The strongest technology that would assure Alice that Bob is the sender of a message is a(n).
digital signature
encrypted signature
digest
digital certificate
digital certificate
A digital certificate associates.
a user’s public key with his private key
the user’s identity with his public key
a user’s private key with the public key
a private key with a digital signature
the user’s identity with his public key
Digital certificates can be used for each of these EXCEPT.
to verify the authenticity of the Registration Authorizer
to encrypt channels to provide secure communication between clients and servers
to verify the identity of clients and servers on the Web
to encrypt messages for secure email communications
to verify the authenticity of the Registration Authorizer(?)
An entity that issues digital certificates is a .
certificate signatory (CS)
digital signer (DS)
certificate authority (CA)
signature authority (SA)
certificate authority (CA)
A centralized directory of digital certificates is called a(n).
Digital Signature Permitted Authorization (DSPA)
Digital Signature Approval List (DSAP)
Certificate Repository (CR)
Authorized Digital Signature (ADS)
Certificate Repository (CR)
performs a real-time lookup of a digital certificate’s status.
Certificate Revocation List (CRL)
Real-Time CA Verification (RTCAV)
Online Certificate Status Protocol (OCSP)
CA Registry Database (CARD)
Online Certificate Status Protocol (OCSP),
What is a value that can be used to ensure that hashed plaintext will not consistently result in the same digest?
Algorithm
Initialization vector (IV)
Nonce
Salt
Salt
Which digital certificate displays the name of the entity behind the website?
Online Certificate Status Certificate
Extended Validation (EV) Certificate
Session Certificate
X.509 Certificate
Extended Validation (EV) Certificate
Which trust model has multiple CAs, one of which acts as a facilitator?
Bridge
Hierarchical
Distributed
Web
Bridge
Which statement is NOT true regarding hierarchical trust models?
It is designed for use on a large scale.
The root signs all digital certificate authorities with a single key.
It assigns a single hierarchy with one master CA.
The master CA is called the root.
It is designed for use on a large scale.