Cryptography

Question 1

Symmetric vs. Asymmetric Encryption

Answer 1

Symmetric: Sender & receiver must know the same secret using privately held key
(100-1000x faster than asymmetric)

Ex: DES/3DES, IDEA, AES, Blowfish, Twofish, RC4/RC5/RC6

Asymmetric: Different keys are use to encrypt/decrypt the data

Ex: Diffie-Hellman, RSA, ECC

Question 2

Encryption: Hybrid Implementation

Answer 2

Utilizes asymmetric encryption to securely transfer a private key that can then be used with symmetric encryption

Question 3

Stream Cipher

Answer 3

Utilizes a keystream generator to encrypt data bit by bit using a mathematical XOR function to create the ciphertext

Bit-by-bit process

Question 4

Block Cipher

Answer 4

Breaks the input into fixed-length blocks of data and performs the encryption on each block

Block ciphers are easier to implement through a software solution

Question 5

DES & 3DES

Answer 5

Data Encryption Standard:
Encryption algorithm which breaks the input into 64-bit blocks and uses transposition and substitution to create ciphertext using an effective key strength of only 56-bits

(8 bits are used for parity)

Triple DES:
Encryption algorithm which uses three separate symmetric keys to encrypt, decrypt, then encrypt the plaintext into ciphertext in order to increase the strength of DES

Question 6

IDEA

Answer 6

International Data Encryption Algorithm:

Symmetric block cipher which uses 64-bit blocks to encrypt plaintext into ciphertext

Question 7

AES

Answer 7

Advanced Encryption Standard:
Symmetric block cipher that uses 128-bit, 192-bit, or 256-bit blocks and a matching encryption key size to encrypt plaintext into ciphertext

AES is the standard for encrypting sensitive U.S. Government data

Question 8

Blowfish

Answer 8

Symmetric block cipher that uses 64-bit blocks and a variable length encryption key to encrypt plaintext into ciphertext

Question 9

Twofish

Answer 9

Symmetric block cipher that replaced blowfish and uses 128-bit blocks and a 128-bit, 192-bit, or 256-bit encryption key to encrypt plaintext into ciphertext

Question 10

RC (4, 5, 6)

Answer 10

Rivest Cipher 4:
Symmetric stream cipher using a variable key size from 40-bits to 2048- bits that is used in SSL and WEP

RC5:
Symmetric block cipher (key sizes up to 2048-bits)

RC6:
Symmetric block cipher introduced as replacement for DES (but AES won)

Question 11

Public Key Cryptography

Answer 11

Asymmetric algorithms are also known as Public Key Cryptography

▪ Confidentiality
▪ Integrity
▪ Authentication
▪ Non-repudiation

Question 12

Digital Signature

Answer 12

A hash digest of a message encrypted with the sender’s private key to let the recipient know the document was created and sent by the person claiming to have sent it

Question 13

Diffie-Hellman

Answer 13

Used to conduct key exchanges and secure key distribution over an unsecured network

Diffie-Hellman is used for the establishment of a VPN tunnel using IPSec

Question 14

RSA

Answer 14

Rivest, Shamir, & Adleman:
Asymmetric algorithm that relies on the mathematical difficulty of factoring large prime numbers

RSA is widely used for key exchange, encryption, and digital signatures
RSA can use key sizes of 1024-bits to 4096-bits

Question 15

ECC

Answer 15

Elliptic Curve Cryptography:
Algorithm that is based upon the algebraic structure of elliptic curves over finite fields to define the keys

ECC with a 256-bit key is just as secure as RSA with a 2048-bit key
6 times more efficient than RSA

ECDH
Elliptic Curve Diffie-Hellman

ECDHE
Elliptic Curve Diffie-Hellman Ephemeral

ECDSA
Elliptic Curve Digital Signature Algorithm

ECC is most commonly used for mobile devices and low-power computing device

Question 16

PGP

Answer 16

Pretty Good Privacy:
An encryption program used for signing, encrypting, and decrypting emails

The IDEA algorithm is used by PGP

Symmetric functions: 128-bit or higher keys
Asymmetric functions: 512-bit to 2048-bit key sizes

Question 17

GPG

Answer 17

GNU Privacy Guard:
A newer and updated version of the PGP encryption suite that uses AES for its symmetric encryption functions

GPG has cross-platform availability

Question 18

One-Time Pad

Answer 18

A stream cipher that encrypts plaintext information with a secret random key that is the same length as the plaintext input
(Not commonly used)

There are no such thing as truly random numbers in computers

Question 19

PRNG

Answer 19

Pseudo-Random Number Generator:

A simulated random number stream generated by a computer that is used in cryptography, video games, and more

Question 20

Steganography

Answer 20

The science and art of hiding messages within other messages

Steganography is a form of obfuscation, not encryption

Question 21

Blockchain

Answer 21

A shared, immutable ledger for recording transactions, tracking assets and building trust

Most famous example of the blockchain is those used in cryptocurrencies

Question 22

Public Ledger

Answer 22

A record-keeping system that maintains participants’ identities in secure and anonymous form, their respective cryptocurrency balances, and a record book of all the genuine transactions executed between network participants

A permissioned blockchain is used for business transactions and promotes new levels of trust and transparency using an immutable public ledger

Question 23

Quantum Computing

Answer 23

A computer that uses quantum mechanics to generate and manipulate quantum bits (qubits) in order to access enormous processing powers

Question 24

Quantum Communication

Answer 24

A communications network that relies on qubits made of photons (light) to send multiple combinations of 1s and 0s simultaneously which results in tamper resistant and extremely fast communications

Question 25

Qubit

Answer 25

A quantum bit composed of electrons or photons that can represent numerous combinations of 1s and 0s at the same time through superposition

Cryptography is used to secure our communications and data by relying on how difficult a math problem is to compute…

Asymmetric encryption algorithms have been mathematically proven to be broken by quantum computers

Question 26

Post-Quantum Cryptography

Answer 26

A new kind of cryptographic algorithm that can be implemented using today’s classical computers but is also impervious to attacks from future quantum computers

One method is to increase the key size to increase the number of permutations needed to be brute forced

Researchers are working on a wide range of approaches, including lattice-based cryptography and supersingular isogeny key exchange

Question 27

Ephemeral Key

Answer 27

A cryptographic key that is generated for each execution of a key establishment process

Ephemeral keys are short-lived and used in the key exchange for WPA3 to create perfect forward secrecy

Question 28

Homomorphic Encryption

Answer 28

An encryption method that allows calculations to be performed on data without decrypting it first

Homomorphic encryption can be used for privacy-preserving outsourced storage and computation

Question 29

Symmetric Algorithms

Answer 29

DES, 3DES, IDEA, AES, Blowfish, Twofish, RC4, RC5, RC6

Question 30

Obfuscation

Answer 30

The process of making something unclear

Not impossible to understand