Cryptography

Question 1

A developer wants to send a system administrator a message and wants to use a cipher that reorders the plaintext characters to create the ciphertext. Which cipher meets this requirement?

Answer 1

Transposition cipher is a method of encryption in which the location of the characters in the plaintext is rearranged throughout the ciphertext while the characters themselves are left unchanged.

Question 2

A developer wants to encrypt a data stream using a symmetric key and wants to encrypt the data in such a way that the cipher method encrypts the individual bits. Which cipher method can the developer use to meet this requirement?

Answer 2

Stream cipher is an encryption algorithm that breaks a plaintext message down into single bits and encrypts 1 bit of plaintext at a time.

Question 3

the science of keeping information secret and safe by transforming it into a form that unintended recipients cannot understand using an algorithm (a series of mathematical operations)

Answer 3

cryptography

Question 4

the art of breaking or “cracking” the protection provided through cryptography algorithms

Answer 4

cryptanalysis

Question 5

the study and practice of both cryptography and cryptanalysis

Answer 5

cryptology

Question 6

a human-readable unencrypted message used as an input to a cipher (encryption algorithm) before encryption or after decryption

Answer 6

plaintext

Question 7

unreadable encrypted message output after an encryption algorithm has been used on the plaintext

Answer 7

ciphertext

Question 8

the process (or algorithm) used to encrypt and decrypt a message

Answer 8

cipher

Question 9

what could you use to encrypt individual files?

Answer 9

Aescrypt

Question 10

What would you use to encrypt full disks?

Answer 10

Bitlocker

Question 11

where a single mapping from our alphabet to a cipher alphabet is created. Many early
cryptosystems used this

Answer 11

Mono-alphabetic

Question 12

refers to the mapping of our alphabet to a number of cipher alphabets. This approach
added a bit of complexity to early cryptosystems

Answer 12

Polyalphabetic

Question 13

considered to be unbreakable since it only uses its cipher code once

Answer 13

One-time pad

Question 14

repeats the random numbers after a given time (periodic). They are
fast and are also deterministic and are useful in producing a repeatable set of random numbers

Answer 14

Pseudo-Random Number Generators (PRNGs)

Question 15

This method generates a true random number and uses some form of random
process. One approach is to monitor the movements of a mouse pointer on a screen or from the pauses between keystrokes. Overall, the method is generally slow, especially if it involves human interaction, but is non-deterministic and aperiodic

Answer 15

True Random Number Generators

Question 16

s cipher cracking methodology that involves identifying patterns and variations in the probability of codes.
i.e. a three-letter ciphered text combination spotted at the beginning of a string too often could tip us off that those three
letters correlate the letters THE in the English alphabet.

Answer 16

Frequency Analysis

Question 17

measures the amount of unpredictability; in encryption relates to the degree of uncertainty of the encryption process.

Answer 17

Entropy

Question 18

Two common binary to characters encoding methods are

Answer 18

ASCII and UTF-16

Question 19

encoding method (8-bit values, up to 256 characters)

Answer 19

ASCII

Question 20

Encoding method:16- bit values, up to 65,536 characters

Answer 20

UTF-16

Question 21

which is more efficient? hardware or software encryption?

Answer 21

Hardware encryption is more efficient than software encryption.

Question 22

tamper-evident and an intrusion-resistant physical device that safeguards and manages cryptographic keys and provides cryptographic processing

Answer 22

hardware security module (HSM)

Question 23

a dedicated processor that handles hardware-level encryption. allows the use of full-disk encryption on a hard drive in a manner that minimizes the impact on system performance. contains encryption keys.

Answer 23

trusted platform module (TPM)

Question 24

Simply divide the first number by the second and return the remainder. Annotated using the (mod) or (%). Example:
5 mod 2 = 1 [2 goes into 5 a max of twice (4), 5-4 = the remainder which is 1]

Answer 24

Modulus Operator Math

Question 25

not concerned with the order

Answer 25

combinations

Question 26

all options considered inlcuding sequence

Answer 26

permutations

Question 27

determining the likelihood of an event happening

Answer 27

probability

Question 28

single secret key for both encryption and decryption

Answer 28

secret key encryption (symmetric Cryptography)

Question 29

challenges in secret key cryptography

Answer 29

finding a secure way to share or transport the key between encrypting and decrypting

Question 30

widely used key exchange algorithm; used to exchange the secret key in symmetric cryptography

Answer 30

diffie-helman

Question 31

two types of symmetric encryption

Answer 31

block and stream

Question 32

stream encryption is ______ than block and be applied in real time applications

Answer 32

faster

Question 33

In symmetric encryption; what is padding used for?

Answer 33

to fill blocks to operating size when the data does not fit properly

Question 34

ECB, CBC, CFB, OFB, AND CTR

Answer 34

block cipher modes

Question 35

CFB, OFB AND CTR essentially allow the block cipher to operate like a

Answer 35

stream cipher

Question 36

secret key ciphers make use of ___________ to perform substitution as part of the encryption process

Answer 36

S-Boxes (substitution boxes)

Question 37

take a given input and leverage look-up tables to produce a given output

Answer 37

S-Boxes

Question 38

measure of the security of a code is __________

Answer 38

work factor

Question 39

amount of time it would take to break the code based on computational power available.

Answer 39

work factor

Question 40

process of adding an initialization vector to the ciphering process to change it’s operation and ensure that the ciphertext does not give the original plaintext when played back.

Answer 40

salting

Question 41

involves the same key being applied to the encrypted data, in order that the original data is recovered. Methods: DES, 3-DES,RC2, AND AES.

Answer 41

symmetric key-based encryption

Question 42

using a different key to decrypt the encrypted data, in order that the original data is recovered. Methods: RSA, DSA, and ElGamal

Answer 42

Asymmetric key-based encryption

Question 43

with _______ it should not be mathematically possible to reverse the derived cipher back to the original data.

Answer 43

one way hash

Question 44

how are one-way hashes broken?

Answer 44

by knowing the mapping of the data to the hashvalue, or by brute-force analysis on stored hash.

Question 45

method of knowing the mapping between the hashed values and the original data

Answer 45

rainbow table attack

Question 46

brute force analysis is also known as

Answer 46

dictionary-type attack

Question 47

Major advantage secret key encryption has over public key

Answer 47

must faster to decrypt. can be used in real time encryption

Question 48

stream cipher examples

Answer 48

RC4 and ChaCha

Question 49

examples of block encryption

Answer 49

RC2, RC5, IDEA, DES, 3-DES, AES, Blowfish and Twofish

Question 50

RC2 key size

Answer 50

40 bits

Question 51

RC5 block size

Answer 51

variable

Question 52

RC5 block sizes

Answer 52

32, 64 or 128

Question 53

AES Key size

Answer 53

128, 192, or 256

Question 54

AES block size

Answer 54

128 bits

Question 55

DES key size

Answer 55

56 bits

Question 56

DES Block size

Answer 56

64 bit

Question 57

3-DES Key size

Answer 57

112 bit

Question 58

3-DES Block size

Answer 58

64 bit

Question 59

Blowfish block size

Answer 59

64-bits

Question 60

This pads with the same value as the number of padding bytes. Defined in RFC 5652, PKCS#5, PKCS#7 and RFC 1423 PEM

Answer 60

CMS ( Cryptographic Message Syntax)

Question 61

improvement over ECB; uses the IV for the first block, and then results from the previous block to encrypt the current block. the IV value must be sent w/ the ciphertext, in order to be deciphered.

Answer 61

Cipher Block Chaining

Question 62

similar to CBC, but it makes the block cipher into a self-synchronising stream cipher

Answer 62

Cipher Feedback (CFB)

Question 63

The first stage takes the data blocks and X-OR’s with the encrypted version of the IV value. The output of the first stage encryption is then feed into the next stage, and encrypted, with the output being X-OR’ed with the second block

Answer 63

Output Feedback

Question 64

converts the block cipher into a stream cipher. With this it generates a counter value and a nonce, and encrypts this, in order to EX-OR with the plain text block

Answer 64

Counter mode

Question 65

each column is taken one at a time and each byte within the column is transformed to a new value based on all four bytes in the column

Answer 65

Mix Column Transformation

Question 66

In DES, The secret key has only __ useful bits, as eight of its bits are used for parity (which gives 256 or 1017 possible keys)

Answer 66

56

Question 67

Uses a pseudo random number generator, and where the output of the generator is XOR’ed with the plaintext. It is a fast algorithm and can use a wide range of key length

Answer 67

RC4

Question 68

IDEA key size

Answer 68

128

Question 69

IDEA block size

Answer 69

64

Question 70

secret key encryption algorithm, designed by the NSA, and was used with the Clipper chip

Answer 70

Skipjack

Question 71

Skipjack key size

Answer 71

80

Question 72

Skipjack block size

Answer 72

64 bit

Question 73

a general-purpose private key encryption algorithm, using either a 128-, 192- or a 256-bit encryption key. Unlikely many other encryption methods, it was unpatented, and could be freely used by anyone.

Answer 73

Blowfish

Question 74

as a general-purpose private key encryption algorithm, using either a 128-, 192- or a 256-bit encryption key.

Answer 74

Twofish

Question 75

block cipher created by Mitsubishi and NTT.

Answer 75

Camellia

Question 76

XTEA (eXtended TEA) is a block cipher which uses a __-bit block size and a ___-bit key

Answer 76

64 and 128

Question 77

diffie helman weaknesses?

Answer 77

easy to precompute on values for two popular parameters.

Question 78

involves forcing the key negotiation process to default to 512-bit prime numbers. For this
the client only offers DHE_EXPORT for the key negotiation, and the server, if it is setup for this, will accept it. The
precomputation of 512-bit keys with g values of 2 and 5 (which are common) are within a reasonable time limits.

Answer 78

DHE_EXPORT Downgrade attack

Question 79

three groups (bases): Group 1, Group 3 or Group 5, which vary in the size of the prime number used

Answer 79

diffie helman

Question 80

What kind of attacks does diffie-helman suffer from?

Answer 80

man-in-the-middle attacks

Question 81

the strength of the diffie-helman method relates to the ______ _____ _____ ______ _____- which are used in the public key exchange.

Answer 81

size of the prime number bases

Question 82

involves first grouping data to be encrypted (typically your plaintext) into blocks of a specific size and then encrypting those blocks.

Answer 82

symmetric block encryption

Question 83

Block cipher modes merely outline __ __ ___ ___ ___ ___depending on the implementation selected (i.e., which mode is used). Implementation selection can be based on anything just as type of cipher can. Factors can include security needs or not, processing capacity, organization preference and so on.

Answer 83

how the blocks will be handled

Question 84

minor step up from ECB; incorporation of an IV

Answer 84

(CBC) Cipher Block Chaining

Question 85

Converts the block cipher into a self-synchronizing stream

cipher. Current block takes the output of the XOR.

Answer 85

Cipher Feedback

Question 86

difference between CFB(cipher block chaining) and OFB(Output feedback)

Answer 86

current block takes output of XOR vs from cipher stage of the previous block

Question 87

Converts the block cipher into a stream cipher.
➢ Generates a counter value and a nonce, and encrypts this, in
order to EX-OR with the plain text block

Answer 87

Counter Mode (CTR) = block cipher mode

Question 88

advantage of CTR Mode

Answer 88

each block is processed independent of the others; ability to conduct parallel processing of blocks. (feedback from other stages to feed into the current one is not required.

Question 89

_____ _____encryption makes use of a key pair (one public, one private) to perform encryption and
decryption. If a given key in a key pair is used for encryption, only the opposite key in that key pair can perform the reverse decryption.

Answer 89

Public Key

Question 90

Public-key encryption is an excellent method of keeping data secure, but it is often_____ _____ for real-time communications

Answer 90

too slow

Question 91

Two main applications of public key encryption are

Answer 91

identity checking and key protection

Question 92

____ leverages the fact that products of large prime numbers are difficult to factorize as basis of its encryption

Answer 92

RSA

Question 93

With ______ -________, we can perform mathematical operations on ciphered values i.e., before decryption.

Answer 93

homomorphic encryption

Question 94

RSA has a ____ _____ on processor loading

Answer 94

heavy overhead

Question 95

RSA is not well suited for ______ _____ (as the power drain can be high, along
with heavy requirements for processing and memory).

Answer 95

embedded systems

Question 96

an improved solution over RSA is _________ -________-

Answer 96

elliptic curve

Question 97

Elliptic curve encryption is used in ______ _____ ______ and for the creation of _____ _____

Answer 97

key exchange methods / digital signatures

Question 98

The main advantages of Elliptic Curve methods are:

Answer 98

Much smaller keys, more difficult to crack than RSA, and can be used to factorize values.

Question 99

El Gamal is a public key method that is used in both ______ and _________.

Answer 99

encryption and digial signing

Question 100

El gamal uses discrete __________

Answer 100

logarithms

Question 101

public key encryption method that is an extension of El Gamal but adds a one-way hashing method which protects
against an adaptive chosen ciphertext attack

Answer 101

Cramer-shoup

Question 102

The Paillier cryptosystem supports __________ encryption

Answer 102

homomorphic

Question 103

DES Key and Block Size

Answer 103

56 bit (Key) and 64 bit (block)

Question 104

1993 by Bruce Schneider. Key size 32 to 448 bits.

Answer 104

Blowfish

Question 105

Bruce Schneider, Neil Ferguson; designed to replace DES. Key size of 80 bits.

Answer 105

Skipjack

Question 106

Symmetric Block Cipher ; James Massey ; Key Size 128 bits

Answer 106

IDEA

Question 107

CAST Key Size

Answer 107

128 or 256 Bits

Question 108

Symmetric Block Cipher: 128 bit key ; Vincent Rijmen

Answer 108

SHARK

Question 109

RC5 & RC6 Key Size

Answer 109

up to 2048

Question 110

Symmetric Block Cipher : Key size 128,192 & 256 bits : Ross Anderson

Answer 110

SERPEANT

Question 111

RCA Key Size

Answer 111

1-256

Question 112

Asymmetric / Leverages prime number characteristics, 1024-4096 bit variable key size, 1 round

Answer 112

RSA

Question 113

Asymmetric Cipher: Leverages discrete logarithm characteristics /provides authentication and encryption/ faster than RSA / Uses less resources than RSA (Used in smaller devices like smartphones) / authentication through digital signatures

Answer 113

ECC

Question 114

Used in recent versions of PGP / Extension of Diffie Hellman (DH)/ Similar level of protection as RSA and ECC/ usually the slowest

Answer 114

El Gamal

Question 115

A Federal Information Processing Standard for digital signatures (FIPS 186)

Answer 115

DSA

Question 116

4 Basic Steps to send a digitally signed message using public key cryptography.

Answer 116

Step 1: Sender signs w own private key.
Step 2: Sender Encrypts message w/ receiver’s public key
Step 3: Receiver decrypts message w/ receiver’s own private key
Step 4: Receiver verifies message w/ senders public key.

Question 117

Server authentication, Client authentication, Code signing, Email signing, Time stamping,
IP security, Windows hardware driver verification, Smart card logon, Document signing, Public key transport

Answer 117

Common Certificate Applications

Question 118

IKE, PKCS #7, PKCS #10, RSA signatures, X.509v3.

Answer 118

common certificate types

Question 119

Step 1: Requester generates a key-pair (one public, one private).
▪ Step 2: Requester creates a Certificate Signing Request (CSR).
▪ Step 3: Trusted CA generates the digital certificate for the requester.
▪ Step 4: Trusted CA signs the requester’s digital certificate with the CA’s own private key

Answer 119

4 Basic steps for obtaining a digital certificate signed by a trusted Certificate Authority (CA):

Question 120

Two major encoding schemes for X.509 certificates

Answer 120

PEM (Base64 ASCII text) format, and DER (binary) format

Question 121

describes one-way or irreversible encryption used for protecting the integrity of data and in authentication applications. Hashing is
normally used to either hide the original contents of a message (such as hiding a password), or to check the integrity of data

Answer 121

hashing

Question 122

Hashing involves taking a ___ _____ input and producing a _____ ____ output (message digest)

Answer 122

variable length / fixed length

Question 123

A weakness of one-way hashing is that the same piece of plaintext will result in the _____ ______ (unless salt is applied)

Answer 123

same ciphertext

Question 124

This is where another match is found, no matter the similarity of the original message. Collision attacks exploit this

Answer 124

Collision

Question 125

This is where part of the message has some significance to the original and generates the same hash signature. This is
defined as a Pre-image attack

Answer 125

Similar context

Question 126

This is where an alternative message is created with the same hash signature and has a direct relation to the original
message. This is an extension to a Pre-image attack

Answer 126

full context

Question 127

is a message authentication code (MAC) that can be used to verify the integrity and authentication of the message. It involves
hashing the message with a secret key, and thus differs from standard hashing, which is purely a one-way function.

Answer 127

HMAC

Question 128

This includes the main standardized hashing techniques, such as MD5, SHA1, SHA256 and SHA512.

Answer 128

general hashes

Question 129

(with salt). This includes ARP1, PBKDF2, PHPASS, DES, MD5, Bcrypt, Sun MD5, SHA1, SHA256 and SHA512.

Answer 129

UNIX hases

Question 130

This includes LM, NTLM, DCC and DCC2

Answer 130

Microsoft Windows hashes

Question 131

This includes MD5, MD5 (Salted), SHA, SHA (Salted), MD5 (Crypt).

Answer 131

LDAP hashes

Question 132

This includes MS SQL 2000, MS SQL 2005, My SQL 323, My SQL 41, Postgres, Oracle 10, and Oracle 11.

Answer 132

database hashes

Question 133

128 BIT HASH, RFC 1321

Answer 133

MD5

Question 134

SUBMITED TO THE NIST SHA-3 COMPETITION (HASH)

Answer 134

MD6

Question 135

160 bit hash, SHA-1, SHA-2(SHA-224, SHA-256, SHA-384, SHA-512), SHA3.

Answer 135

SHA

Question 136

HASH USES A 512 BITS BLOCKS/ 256 bit Hash Value

Answer 136

Fork 256

Question 137

160 BIT HASH, EXIST 128, 256 AND 320 VERSIONS

Answer 137

RIPEMD-160

Question 138

HASH: Defined by Russian Nat’l Standard ; 256 bits output

Answer 138

GOST

Question 139

Hash / 192 bit function

Answer 139

Tiger

Question 140

Hash ; uses a block cipher in CBC nmode to improve integrity

Answer 140

MAC and HMAC

Question 141

relationship with prime numbers, security derives from large prime numbers

Answer 141

RSA

Question 142

Group of PRNGs. 3 main components: generator, entropy accumulator and seed file.

Answer 142

Fortuna

Question 143

BY Bruce Schneider, john Kesley & Niels Ferguson, supplanted by Fortuna

Answer 143

Yarrow

Question 144

The three most common tunneling protocols are

Answer 144

PPTP (Point-to-point Tunneling Protocol), L2TP (Layer 2 Tunneling Protocol) and IPSec

Question 145

One of the greatest flaws of ___ ___ was the usage of “export-grade ciphersuites” – which were created to comply with US Export
regulations, and which made sure that the keys were crackable. This included a small key size, such as using a 40-bit session key for a
connection. Additional SSL risks include DROWN, POODLE, and FREAK.

Answer 145

SSL v2

Question 146

the tunnel is created with a symmetric key method (such as with RC4 or AES), and then a signature is created with a
defined hashing method (such as SHA-1 or MD5)

Answer 146

SSL/TLS

Question 147

we aim to create a connection from a host machine to a trusted network, and which is
tunneled through a public network

Answer 147

VPN

Question 148

The IPSec protocol includes two mechanisms which can be used separately or together

Answer 148

ESP and AH

Question 149

takes the original data packet, and breaks off the IP header. The rest of the packet is
encrypted, with the original header added at the start, along with a new field at the start, and one at the end. It is important that
the IP header is not encrypted as the data packet must still be read by routers as it travels over the Internet. Only the host at the
other end of the IPSec tunnel can decrypt the contents of the IPSec data packet

Answer 149

ESP (Encapsulated Security Protocol)

Question 150

Encrypts the complete contents of the IP data packet, and adds a new packet header

Answer 150

authenication header

Question 151

Authentication header weakness

Answer 151

intruder can replay previously sent data,

Question 152

Two Main Phases in setting up an IPsec connection

Answer 152

1) define internet key exchange

2) defines the policies to be used for the tunnel

Question 153

e, where the hashing method, and encryption and key exchange methods are defined

Answer 153

Internet key exchange

Question 154

With _______ __ _____, we have end-to-end tunneling, where the encryption scope spans across of the network, and where no
intermediate scanning is possible for the content stored within the packets.

Answer 154

IPsec transport mode

Question 155

the connection is tunneled over a public network, but the network traffic is unprotected on either side of
the connection. This mode allows for the inspection of network packets on either side

Answer 155

tunnel mode

Question 156

involves using subscriber computers to route data packets over the internet, instead of using publicly available routers.

Answer 156

Onion routing

Question 157

With the ____ network, the routing is done using computers of volunteers around the world to route the traffic around the Internet, and
within each hop the chances to trace the original source significantly reduces.

Answer 157

Tor

Question 158

In terms of a backdoor in cryptography, the two main methods which could be used are:

Answer 158

Key escrow and NOBUS

Question 159

This is where a copy of the encryption key is kept in escrow so that it can be used by a government agent.

Answer 159

Key escrow

Question 160

(‘nobody but us’) backdoor. This is where it is mathematically possible for government agents to crack the encryption, but
no-one else can

Answer 160

NOBUS

Question 161

Where the intruder uses brute force to decrypt the ciphertext and tries every possible key

Answer 161

exhaustive search

Question 162

intruder knows part of the ciphertext and the corresponding plaintext. The known ciphertext and plaintext can then be used to decrypt the rest of the ciphertext.

Answer 162

Known plaintext attack

Question 163

Where the intruder sends a message to the target, this is then encrypted with the target’s private-key and the
intruder then analyses the encrypted message. For example, an intruder may send an e-mail to the encryption file server and the
intruder spies on the delivered message

Answer 163

Chosen-ciphertext attack

Question 164

Where the intruder inserts or modifies messages.

Answer 164

active attack

Question 165

Where the intruder takes a legitimate message and sends it into the network at some future time.

Answer 165

replay system

Question 166

Where the intruder mixes parts of two different encrypted messages and is able to create a new message. This
message is likely to make no sense but may trick the receiver into doing something that helps the intruder.

Answer 166

cut-and-paste

Question 167

Some encryption schemes use the time of the computer to create the key. Resetting this time or determining the time
that the message was created can give some useful information to the intruder

Answer 167

Time resetting

Question 168

This involves determining the amount of time that a user takes to decrypt the message; from this the key could be found

Answer 168

time attack

Question 169

AES has proven to be free from major vulnerabilities, but poor implementation of the _____________ method leaves it susceptible to attacks
such as: Brute force, use of Non-Random Numbers, and copy-and-paste

Answer 169

encryption

Question 170

consists of cryptosystems able to support IoT, embedded systems, RFID etc. (i.e.
provide cryptographic functions but require less processing power, physical space, and battery power than conventional
cryptosystems).

Answer 170

Light-weight cryptography

Question 171

NIST outlines the device spectrum as:

▪ Conventional cryptography which includes….

Answer 171

servers and desktops. tablets and smart phones.

Question 172

have fast multiplication circuits, and thus can be used to perform multiplications and search a
range of prime numbers at a speed which would break most existing RSA implementations

Answer 172

quantum computers

Question 173

a tree that defines each non-leaf node with a value or a label and contains a hash of its children. This
builds a hash trees and is used to provide a verification of large-scale data structures

Answer 173

Merkle tree

Question 174

uses asymmetric cryptographic primitives based on lattices. It has been known about for
several decades, and is now being investigated because of its quantum robustness, whereas many of the existing public
key methods such as RSA and Diffie-Hellman cryptosystems can be broken with quantum computers

Answer 174

Lattice-based cryptography

Question 175

(Light-Weight Symmetric Methods) Another contender for light-weight cryptography is the super-fast ______ method. block cipher which uses a 64-bit block size and a 64-bit key. It was designed by David Wheeler and Roger Needham at the Cambridge Computer Laboratory, and part of an unpublished technical report in 1997. The amazing thing about ______ is that it does its operations with just a few lines of code

Answer 175

XTEA

Question 176

. A key focus for the crypto-currency to protect against someone
spending money that they do not have, so Bitcoin uses __________

Answer 176

Blockchain

Question 177

is a publicly available ledger of transactions that allows the Bitcoin network to know the number of bitcoins
that a given user has in their account. Can be public or private.

Answer 177

blockchain

Question 178

Conventional currencies usually have a central bank that creates money and then controls its supply. The Bitcoin
currency is instead created when users _____ ____ ___

Answer 178

mine for it

Question 179

Bitcoin transactions will be captured by _______ who will compile a list of the latest transactions. If valid, the transaction
is then recorded within a mining process, where mining nodes gather new transactions and compute a hash of the new
block, and which should also contain the hash of the previous block, and then build a transaction log. Once complete,
this becomes part of the official Blockchain in the network, and the miners reach a consensus on the current
Blockchain. _____________ receive rewards for successful mining efforts.

Answer 179

miners

Question 180

built on the Bitcoin/Blockchain concept but included the concept of smart contracts

Answer 180

Ethereum

Question 181

he unit that is used to measure the amount

of work that is required to perform a single Keccak-256 hash

Answer 181

Gas (Ethereum)

Question 182

are programs stored on a blockchain that run when predetermined conditions are met; they typically
are used to automate the execution of an agreement so that all participants can be immediately certain of the outcome,
without an intermediary’s involvement or time loss

Answer 182

smart contracts

Question 183

Along with creating a new currency (Ether), the main contribution of Ethereum is to create the concept of _____ ____ _____ _____ _____s which enables users to create their own contracts, and which will be strictly abided to

Answer 183

peer-to-peer smart contracts

Question 184

Encryption schemes commonly used with Wi-Fi include

Answer 184

40-bit RC4 (WEP), 128-bit RC4 (WPA – Wi-Fi Protected Access), or 128-bit/ 256-
bit AES (WPA-2)

Question 185

Because of export restrictions, the size of the original key in RC4 was limited to _________ and was then increased to

Answer 185

40 bits (WEP) ; 128 bits (TKIP)

Question 186

Overall WEP is weak from a number of viewpoints:

Answer 186

▪ Small value of IV (24 bits). This meant that it repeated within a reasonable time, and the key could then be attacked.
▪ Construction of keys made it susceptible to the weak key attacks (FMS attack).
▪ Lack of protection against message replay. There was no protection against cipher streams being played back over the network.
▪ Lack of message tampering identification. The method did not support the detection of message tampering.
▪ Directly used a master key. The method had no way of updating the keys.

Question 187

After WEP, there was a strong need to fix the problems, but to keep compatibility, thus WPA supported ____, and which increased the
IV value to 48 bits (rather than 24 bits)

Answer 187

TKIP

Question 188

WPA addressed the weaknesses of WEP, and without requiring significant hardware changes, and focused on two main methods:

Answer 188

WPAPSK and WPA Enterprise

Question 189

advanced the WPA standard, by keeping compatibility with WPA, but adding AES-CCMP (AES-Counter Mode
CBCMAC Protocol), which is a block encryption method. Again, it supported two modes: Personal (with a pre-shared key) and
Enterprise.

Answer 189

WPA-2

Question 190

as with WPA, no pre-shared key is used, and it also includes a MIC (Message Integrity Check). The MIC mainly
guards against the bit flipping attacks identified within WEP

Answer 190

WPA Enterprise

Question 191

Mobile phone networks/GSM typically uses the ____ _____ _____ _____ _____ encryption method, but almost on its first day of operation it has
been a target for crackers, and the source code to crack A5/2 was released within one month of being made public.

Answer 191

A5/1 or A5/2 stream

Question 192

known as KASUMI – the Japanese word for “mist” – is the upgrade to A5/1 and uses a block cipher. A5/1
is designed to be used for the GSM networ

Answer 192

A5/3

Question 193

for 3GPP, and is based on the MISTY1 cipher. 128-bit key

Answer 193

A5/3

Question 194

While WEP contains many weaknesses, a properly defined stream cipher can be

Answer 194

much faster than block ciphers ( they just have to

create a key stream from an IV (also known as a nonce value) and a key.

Question 195

Google proposed ______ ___ – named as it has 20 rounds – as an
alternative to AES to be used with TLS connections

Answer 195

ChaCha20

Question 196

Mono- alphabetic substitution cipher that makes use of mapping plaintext characters to graphical characters rather than to alphabetic
ones. i.e. A=(pick a symbol), vs A=(pick a letter). Disadvantage: once the mapping is known, it is difficult to keep the message secret

Answer 196

Pigpen

Question 197

Employs a method to scramble text by writing it in a sequence across a number of rails.

Answer 197

Rail code

Question 198

Makes use of a grid and which maps the letters into numeric values

Answer 198

BFID

Question 199

5 × 5 matrix containing the alphabet less the letter J. Cipher/decipher process consists of a set of rules outlining use of column and row
combinations.

Answer 199

Playfair

Question 200

Polyalphabetic cipher that involves using a different mapping, based on a keyword, for each character of the cipher. An advantage of
this type of cipher is that the same plaintext character is likely to be coded to different mappings, depending on the position of the
keyword, making guessing more difficult

Answer 200

Vigenere

Question 201

Cipher code mapping that is used only once. Advantage is it is essentially unbreakable, disadvantage is it takes lots of work as you’d
have to generate the pad to be used, each time

Answer 201

One Time Pad

Question 202

Uses four 5 × 5 matrices arranged in a square, are where each matrix contains 25 letters for encoding and decoding operations

Answer 202

Four-square cipher

Question 203

Used a polyalphabetic substitution cipher, which did not repeat within a reasonable time period, along with a secret key. For the
cracking of the Enigma cipher, the challenge was thus to determine both the algorithm used and the key. Enigma’s main weakness,
though, was that none of the plain text letters could be ciphered as itself

Answer 203

Enigma Machine

Question 204

DES: Rounds?

Answer 204

16

Question 205

DES: Key Size?

Answer 205

56

Question 206

3DES Key size?

Answer 206

112

Question 207

3DES rounds?

Answer 207

48

Question 208

IDEA KEY SIZE

Answer 208

128

Question 209

MD4 HASH VALUE

Answer 209

128

Question 210

MD5 HASH VALUE

Answer 210

128

Question 211

SHA-1 HAS VALUE

Answer 211

160

Question 212

Partially homomorphic crypto system that leverages prime number characteristics, 1024-4096
bits variable key size, 1 round

Answer 212

RSA

Question 213

Partially homomorphic crypto system that leverages prime number characteristics, 1024-4096
bits variable key size, 1 round

Answer 213

ECC

Question 214

Federal Information Processing Standard (FIPS 186) for digital signatures, based on the
mathematical concept of modular exponentiation and the discrete logarithm problem

Answer 214

DSA

Question 215

PRESENT BLOCK SIZE

Answer 215

64

Question 216

PRESENT KEY SIZE

Answer 216

80 OR 128

Question 217

PRESENT ROUNDS

Answer 217

32

Question 218

Relatively small key and block sizes. Uses an SPN
(substitution permutation network) method. One of the
1st considered as an AES replacement for use in lightweight implementations.

Answer 218

PRESENT

Question 219

XTEA BLOCK SIZE

Answer 219

64

Question 220

SIMON LBOCK SIZE

Answer 220

32,48,64,96,128

Question 221

(Light weight)Variable block sizes key sizes, and rounds. Optimized for
hardware implementations

Answer 221

SIMON

Question 222

CLEFIA BLOCK SIZE

Answer 222

128

Question 223

Rabbit key size

Answer 223

128

Question 224

mickey v2 key size

Answer 224

80

Question 225

trivium key size

Answer 225

80

Question 226

(lightweight) Grain key size

Answer 226

80

Question 227

(lightweight) enocoro key size

Answer 227

128

Question 228

Rabbit IV size

Answer 228

64

Question 229

Mickey v2 IV size

Answer 229

Variable up to 80

Question 230

Trivium IV size

Answer 230

80

Question 231

Enocoro IV size

Answer 231

64

Question 232

Lightweight Hashing- Quark Hash value

Answer 232

64 or 112

Question 233

Light-weight cryptography method for signing messages (MAC).
Relatively undemanding hardware implementation (only ~3,333
gates required at 1MHz clock rate) making it suitable for IoT
implementation. 128 bit key.

Answer 233

Chaskey

Question 234

Light-Weight public key solution. Short for “Elliptic Light”. Uses Elliptic
Curves along with a Diffie-Hellman related handshake between the RFID
tag and the RFID reader in RFID implementations

Answer 234

Elli

Question 235

Which lightweight symmetric encryption method operates on a 64-bit block using rounds of substitution boxes (S-boxes) and permutation boxes (P-boxes)?

Answer 235

PRESENT

Question 236

shuffles the input bits around to provide diffusion

Answer 236

p-box