Chapter 7 Key Terms

Question 1

Cryptography

Answer 1

The science and study of concealing information.

Question 2

Cipher/Algorithm

Answer 2

The process or formula used to encrypt a message or otherwise hide the message’s meaning.

Question 3

Encryption key

Answer 3

A string of bits randomly generated using a specific cipher. An encryption key is used to encrypt or decrypt data.

Question 4

Plaintext

Answer 4

The readable form of a message.

Question 5

Ciphertext

Answer 5

The encrypted form of a message that is readable only by those for whom the message is intended.

Question 6

Encryption

Answer 6

The process of using an algorithm or cipher to transform data from cleartext to ciphertext in order to protect the confidentiality, integrity, and authenticity of the message.

Question 7

Decryption

Answer 7

The process of converting data from ciphertext into plaintext.

Question 8

Steganography

Answer 8

The practice of concealing a file, message, image, or video within another file, message, image, or video.

Question 9

Blockchain

Answer 9

A decentralized and distributed ledger of transactions between two or more parties. Blockchain uses cryptography to keep sensitive data secure.

Question 10

Hybrid Cryptosystem

Answer 10

A hybrid cryptosystem combines the efficiency of symmetric encryption with the convenience of asymmetric encryption.

Question 11

Digital Signature

Answer 11

A digital signature is a combination of symmetric encryption with the convenience of asymmetric encryption.

Question 12

Hashing

Answer 12

The process of using an algorithm to convert data to a fixed-length key called a hash.

Question 13

Trusted Platform Module

Answer 13

TPM is a hardware chip on the motherboard that can generate and store cryptographic keys.

Question 14

Hardware security module

Answer 14

A hardware security module (HSM) is a piece of hardware and associated software/firmware that is connected to a computer system to provide cryptographic functions.

Question 15

Hash

Answer 15

A function that converts a variable-length string into a compressed, fixed-length value known as a message digest or hash.

Question 16

Hash collision

Answer 16

A hash collision occurs when two files generate the same hash.

Question 17

Rainbow table

Answer 17

A rainbow table is a table of passwords and their generated hashes.

Question 18

Encrypting File System

Answer 18

EFS provides a easy and seamless way for users to encrypt files on Windows computers. EFS is used to encrypt only individual files and folders.

Question 19

File Encryption Key (FEK)

Answer 19

A pseudo-random number used with the AES encryption algorithm to encrypt files and folders in EFS.

Question 20

Data Decryption Field (DDF)

Answer 20

A special location in a EFS encrypted file’s header that stores the FEK.

Question 21

Data Recovery Agent

Answer 21

The DRA is an account that has been granted the right to decrypt files and folders on a EFS.

Question 22

GNU Privacy Guard

Answer 22

GPG is an encryption tool that encrypts emails, digitally signs emails, and encrypts documents.

Question 23

Pretty Good Privacy

Answer 23

PGP is a commercial encryption program that is now owned by NortonLifeLock (previously Symantec). PGP is used by products that protect laptops, desktops, USB drives, optical media, and smart phones.

Question 24

BitLocker

Answer 24

BitLocker is used to encrypt an entire volume. All data on the volume is protected even if the hard drive is moved to another computer.

Question 25

Public key infrastructure

Answer 25

PKI is an environment in which public encryption keys can be created and managed throughout the key lifecycle.

Question 26

Certificate authorities

Answer 26

Certificate authorities are reputable organizations that are responsible for issuing public certificates to companies or organizations that want to securely communicate over the internet.

Question 27

X.509

Answer 27

The standard that defines the format of certificates.

Question 28

Certificate chaining

Answer 28

Certificate authorities are usually setup in a hierarchy of multiple CA’s to increase security. This structure is known as certificate chaining or the chain of trust.

Question 29

Trust model

Answer 29

A PKI uses a trust model to establish trust between two communicating entities. Depending on the number of CAs being implemented and the use, there are a few configurations that can be used to setup certificate authorities.