Cryptography and PKI .

Question 1

Forensic investigators must take steps to ensure that they do not accidentally tamper with evidence and that they preserve the _____ of _____ documenting evidence handling from collection until use in court.

Answer 1

Chain of Custody

Question 2

When performing forensic analysis, be certain to observe the _____ of ______ and capture information that is not likely to exist for a long period of time first.

Answer 2

Order of Votality

Question 3

Common use cases for encryption include:

• Providing confidentiality for sensitive information.
• Confirming the integrity of stored or transmitted information.
• Authenticating users.

(T/F)?

Answer 3

True!

Question 4

What are the two basic cryptographic operations?

Answer 4

• Substitution

- Transposition

Question 5

In terms of cryptographic operations, what is Substitution?

Answer 5

Modifies characters

Question 6

In terms of cryptographic operations, what is Transposition?

Answer 6

Moves characters around

Question 7

_______ encryption uses the same shared secret for encryption and decryption.

Answer 7

Symmetric

Question 8

In _______ encryption, users each have their own public/private keypair.

Answer 8

Assymetric

Question 9

In asymmetric encryption, in regards to Confidentiality, the Sender Encrypts with the Recipient’s _____ key.

Answer 9

Public

Question 10

In asymmetric encryption, in regards to the Digital Signature, the Sender Encrypts with the Sender’s _____ key.

Answer 10

Private

Question 11

In asymmetric encryption, in regards to Confidentiality, the Recipient Decrypts with the Recipient’s _____ key.

Answer 11

Private

Question 12

In asymmetric encryption, in regards to the Digital Signature, the Recipient Decrypts with the Sender’s _____ key.

Answer 12

Public

Question 13

Anything encrypted with one key from a pair may only be decrypted with the other key from that same pair (T/F)?

Answer 13

True!

Question 14

This is the formula for which type of cryptography?

n(n-1) / 2 keys

Answer 14

Symmetric Cryptography

Question 15

This is the formula for which type of cryptography?

2 n keys

Answer 15

Asymmetric Cryptography

Question 16

What secure Symmetric Algorithms are there?

Answer 16

• 3DES
• AES
• IDEA
• Twofish
• Blowfish

Question 17

Are DES and RC4 secure?

Answer 17

No

Question 18

What asymmetric algorithms are there?

Answer 18

• RSA
• El Gamal
• Elliptic Curve (ECC)

Question 19

The _____-______ may be used for secure exchange of symmetric keys.

Answer 19

Diffie-Hellman

Question 20

______ are one-way functions that produce a unique value for every input and cannot be reversed.

Answer 20

Hashes

Question 21

Common hashing algorithms include SHA, HMAC and RIPEMD (T/F)?

Answer 21

True!

Question 22

The MD5 hashing algorithm is still widely used, but it has significant security vulnerabilities (T/F)?

Answer 22

True!

Question 23

What is the replacement for Secure Sockets Layer (SSL) and uses public key cryptography to exchange a shared secret key used to secure web traffic and other network communications.

Answer 23

Transport Layer Security (TLS)

Question 24

The ______ ______ _____ (TCB) is the secure core of a system that has a secure perimeter with access enforced by a reference monitor.

Answer 24

Trusted Computing Base

Question 25

What are the three Data States?

Answer 25

• Data at Rest
• Data in Motion
• Data in Use

Question 26

This Data State…

Stores data on a system or media device.

Answer 26

Data at Rest

Question 27

This Data State…

Has data in transit over a network.

Answer 27

Data in Motion

Question 28

This Data State…

Has data being actively processed in memory.

Answer 28

Data in Use

Question 29

When configuring security for a wireless network, what should you always use?

Answer 29

WiFi Protected Access (WPA or WPA2) protocols.

Question 30

Which wireless network is insecure?

Answer 30

Wired Equivalent Privacy (WEP) protocol

Question 31

WPA uses the _____ ____ _____ _____ to rapidly change encryption keys.

Answer 31

Temporal Key Integrity Protocol (TKIP)

Question 32

WPA2 uses the _____ _____ _____ to provide security.

Answer 32

CCM Mode Protocol (CCMP)

Question 33

digital certificates are a secure means to provide an unknown third party with a trusted copy of the public key belonging to an individual, organization, or device (T/F)?

Answer 33

True!

Question 34

Digital Certificates are issued by a trusted ______ ______.

Answer 34

Certificate Authority (CA)

Question 35

When a user or application wishes to verify the digital certificate, they do so by validating the digital signature using the CA’s ____ key.

Answer 35

public

Question 36

If the signature is authentic and the CA is trusted, the public key may then be trusted (T/F)?

Answer 36

True!

Question 37

Certificate authorities may revoke a digital certificate by placing it on the ______ ______ _____ .

Answer 37

Certificate Revocation List (CRL)

Question 38

Certificate Revocation List (CRL) is a slow approach, so it was replaced by what?

Answer 38

Online Certificate Status Protocol (OCSP)

Question 39

What does Online Certificate Status Protocol (OCSP) provide?

Answer 39

Real-time certificate verification.

Question 40

How many varieties do Digital Certificates issued by CAs come in?

Answer 40

Three varieties

Question 41

In this Certificate Type…

CA verifies that the certificate subject controls the domain name. It is the weakest form of validation.

Answer 41

Domain Validation (DV)

Question 42

In this Certificate Type…

CA verifies the name of the business purchasing the certificate in addition to domain ownership.

Answer 42

Organization Validation (OV)

Question 43

In this Certificate Type…

CA performs additional checks to verify the physical presence of the organization at a registered address.

Answer 43

Extended Validation (EV)

Question 44

Organizations not wishing to purchase a digital certificate from a CA may create their own _____-_____ certificates.

Answer 44

self-signed

Question 45

Self-signed certificates are fine for internal use but will not be trusted by external users (T/F)?

Answer 45

True!

Question 46

In cryptography, key strength is directly associated with which of the following (select two).

• Key Length
• Certificate Chaining
• Cipher Technology
• Key Exchange

Answer 46

• Key Length

- Cipher Technology

Question 47

As a developer you need to protect code from tampering or reverse engineering. You choose to obfuscate the data using a Boolean operation. Which of the following methods will you choose?

A. Shift Cipher
B. XOR
C. Substitution Ciphers
D. ROT-13

Answer 47

B. XOR

XOR is a type of bitwise or Boolean operation used to manipulate values. Any two binary input values must differ for the result to be true and return to one. If they are the same, the result is false and returns to zero. A unique value can be paired with blocks of data to create a unique result based upon this XOR operation, obfuscating the data.

Question 48

What is ROT-13?

Answer 48

A simple letter substitution cipher that replaces (rotates) a letter with the 13th letter after it, in the English alphabet, obfuscating the data.

Question 49

What is a Shift Cipher?

Answer 49

aka Caesar Cipher, is a type of substitution cipher in which each letter in the plaintext is replaced by a letter some fixed number of positions down the alphabet, obfuscating the data.

Question 50

What is a Substitution Cipher?

Answer 50

Encrypts data using a fixed system of consistently replacing one value with standardised different value, obfuscating the data. The receiver can decrypt the data by performing the reverse substitution.

Question 51

Which of the following is a function of DHE (Ephemeral Diffie-Hellman)?

A. Provides authentication
B. Uses elliptic curves
C. Uses static keys
D. Provides perfect forward secrecy

Answer 51

D. Provides perfect forward secrecy

Which means that a key cannot be compromised in the future; since the keys are only used once, they can’t be compromised even if the private key is compromised in the future.

Question 52

DHE uses static keys (T/F)?

Answer 52

False!

New temporal keys are created for every exchange.

Question 53

Why does Elliptic Curve Diffie-Hellman Exchange (ECDHE) combine Diffie-Hellman with elliptic curves?

Answer 53

It allows for better security