Cryptography (CRY)

Question 1

Algorithm

Answer 1

mathematical function that determines the cryptographic operations

Question 2

Asymmetric

Answer 2

encryption system using a pair of mathematically related unequal keys

Question 3

Asymmetric Cryptography

Answer 3

Sender and receiver have public and private keys.
Public to encrypt a message, private to decrypt
Slower than symmetric, secret key (100 to 1000)

Question 4

Asynchronous

Answer 4

encrypt/decrypt request are processed in queues.

Question 5

Birthday attack

Answer 5

statistical probabilities of a collision are more likely than one thinks

Question 6

Black Boxing

Answer 6

manipulates toll-free line voltage to phone for free

Question 7

Block Cipher

Answer 7

Segregating plaintext into blocks and applying identical encryption algorithm and key

Question 8

Blowfish

Answer 8

By Bruce Schneider key lengths 32 to 448 bits, used on Linux systems that use bcrypt (DES alternative)
Confidentiality Symmetric, Algorithm

Question 9

Blue Boxing

Answer 9

tone simulation that mimics telephone co. system and allows long distance call authorization

Question 10

Brute Force

Answer 10

with enough computing power trying all possible combinations

Question 11

Caesar cipher

Answer 11

mono-alphabetic substitution cipher

Question 12

CBC Cipher Block Chaining

Answer 12

blocks of 64 bits with 64bits initialization vector. Errors will propagate

Question 13

Certificate Authority

Answer 13

PKI, entity trusted by one or more users as an authority in a network that issues, revokes, and manages digital certificates.

Question 14

Certificate revocation list (CRL)

Answer 14

a temporary public file to inform others of a compromised digital certificate

Question 15

Certification authority

Answer 15

a trusted issuer of digital certificates

Question 16

CFB

Answer 16

Cipher Feedback: stream cipher where the cipher text is used as feedback into key generation. errors will propagate

Question 17

Checksum

Answer 17

a mathematical tool for verifying no unintentional changes have been made

Question 18

Cipher

Answer 18

cryptographically transformation that operates on characters or bits. DES, word scramble, shift letters

Question 19

Cipher text

Answer 19

scrambled form of the message or data

Question 20

Clustering

Answer 20

situation wherein plain text messages generates identical cipher text messages using the same algorithm but with different crypto-variables or keys

Question 21

Code

Answer 21

substitution at the word or phrase level

Question 22

Codes

Answer 22

cryptographic transformation that operates at the level of words or phrases. Example: “wedding” means “attack”

Question 23

Collisions

Answer 23

outputs within a given function are the same result

Question 24

Concatenation

Answer 24

joining two pieces of text -

Question 25

Confidentiality Asymmetric Algorithms

Answer 25

RSA (Rivest, Shamir, Adelman) - Factoring large primes
Elliptic Curve Cryptosystem - Logs, discrete logs
Diffie-Hellman for key exchange
El Gamal

Question 26

Confidentiality Asymmetric Strengths

Answer 26

Confidentiality
Authentication
Non-repudiation
Key management easier
Access control
Integrity

Question 27

Confidentiality Asymmetric Weaknesses

Answer 27

More processor-intensive than symmetric encryption
Still need to protect private key

Question 28

Confidentiality Symmetric Algorithms

Answer 28

AES (Extended AES, Rijndael)
RC4
DES - Brute force can break it, but not flawed. Types Lucifer, Feistle Cipher, Triple DES.

Question 29

Confidentiality Symmetric Strengths

Answer 29

Confidentiality protection
Speed
Bulk encryption - large files efficiency
Availability of free algorithms

Question 30

Confidentiality Symmetric Weaknesses

Answer 30

Key management
Scalability issues
Shared keys - No authentication or non-repudiation, Forgery by receiver is possible

Question 31

Confusion

Answer 31

mixing the key values during repeated rounds of encryption, make the relationship between ciphertext and key as complex as possible

relationship between the plaintext and the key is so complicated that an attacker can’t merely continue altering the plaintext and analyzing the resulting ciphertext to determine the key

Question 32

Cross certification

Answer 32

two certificate authorities that trust each other

Question 33

Cryptanalysis

Answer 33

code breaking, practice of defeating the protective properties of cryptography.

Question 34

Cryptographic Algorithm

Answer 34

Step by step procedure to encipher plaintext and decipher cipher text

Question 35

Cryptography

Answer 35

code making

Question 36

Cryptography Goals

Answer 36

Confidentiality
Integrity
Proof of origin
Non-repudiation
Protect data at rest
Protect data in transit

Question 37

Cryptology

Answer 37

The study of cryptography and cryptanalysis
We think about Confidentiality, Integrity, and key exchange

Question 38

Cryptology - CRY

Answer 38

cryptography + cryptanalysis

Question 39

Cryptology implementation

Answer 39

IPSec
TLS

Question 40

Cryptosystem

Answer 40

set of transformations from a message space to cipher space

Question 41

Cryptovariable

Answer 41

key

Question 42

CTR

Answer 42

Counter: secure long messages

Question 43

Decipher

Answer 43

descrambling the encrypted message with the corresponding key

Question 44

Dictionary attack

Answer 44

try a list of words in passwords or encryption keys

Question 45

Diffie Hellman Key exchange

Answer 45

switching secret keys over an insecure medium without exposing the keys
Not encryption
Technically - Large prime generation, Groups

Question 46

Diffusion

Answer 46

mix location of plaintext throughout ciphertext, change of a single bit should drastically change hash, dissipate pattern

a change in the plaintext results in multiple changes spread throughout the ciphertext

Question 47

Digital certificate

Answer 47

a electronic attestation of identity by a certificate authority

Question 48

Digital Signature

Answer 48

Asymmetric encryption of a hash of message

Question 49

DSA

Answer 49

Digital Signature Algorithm – the US Government
Equivalent of the RSA algorithm

Question 50

Dumpster Diving

Answer 50

going through someone’s trash to find useful or confidential info –it is legal but unethical in nature

Question 51

ECB

Answer 51

Electronic Code Book - right block/left block pairing 1-1. Replication occurs. Secure short messages.
One of the Block modes of symmetric ciphers

Question 52

ECC

Answer 52

Elliptic Curve Cryptosystem: mathematical properties of elliptical curves, IT REQUIRES FEWER RESOURCES THAN RSA. Used in low power systems (mobile phones etc.)

Question 53

el Gamal

Answer 53

Works with discrete logarithms, based on
Diffie Hellman

Question 54

Encipher

Answer 54

act of scrambling the cleartext message by using a key.

Question 55

End-to-end encryption

Answer 55

Encrypted information that is sent from point of origin to destination. In symmetric encryption this means both having the same identical key for the session

Question 56

Ephemeral keys

Answer 56

cryptographic keys that are generated for each execution of a key establishment process. SYN-Session Key

Question 57

Exclusive OR

Answer 57

Boolean operation that performs binary addition

Question 58

Hash function

Answer 58

one way encryption, for integrity purposes

Question 59

Hybrid Cryptography

Answer 59

z-Uses both asymmetrical and symmetrical encryption:
asymmetrical for key exchange
symmetrical for the bulk - thus it is fast
example: SSL, PGP, IPSEC S/MIME

Question 60

IDEA

Answer 60

International Data Encryption Algorithm
64 bit plaintext and 128 key length with confusion and diffusion used in PGP software patented requires licenses fees/free noncom.

Question 61

Information Theory

Answer 61

Claude Elmwood Shannon

Question 62

Integrity - How do we know about change?

Answer 62

Hash functions
Checksums - Accidental
Message Authentication Code

Question 63

Initialization Vector

Answer 63

randomly-generated value used by many cryptosystems to ensure that a unique ciphertext is generated

Question 64

Kerckhoff’s principle

Answer 64

only the key protects the encrypted information

Question 65

Key clustering

Answer 65

two different keys decrypt the same cipher text

Question 66

Key escrow

Answer 66

for PKI, to store another copy of a key

Question 67

Key Length

Answer 67

use with each algorithm based on the sensitivity of information transmitted, longer key the better!

Question 68

Key management

Answer 68

creation distribution update and deletion

Question 69

Key or Crypto variable

Answer 69

Information or sequence that controls the enciphering and deciphering of messages

Question 70

Key space

Answer 70

total number of keys available that may be selected by the user of a cryptosystem

Question 71

Keyed-Hashing for Message Authentication

Answer 71

a hash that has been further encrypted with a symmetric algorithm

Question 72

Link encryption

Answer 72

stacked encryption using different keys to encrypt each time

Question 73

Man-in-the-middle attack

Answer 73

adversary intercepts encrypted communications, decrypts, views, encrypts, and send along to the true destination

Question 74

Message Authentication Code

Answer 74

Integrity intentional changes

Question 75

Message digest

Answer 75

summary of a communication for the purpose of integrity

Question 76

Message digest size for hash functions

Answer 76

Hash of Variable Length
HAVAL 128, 160, 192, 224, 256 bits

Hash message authentication code
HMAC Variable

Message Digest
MD5 128 bits

Secure Hash Algorithm
SHA-1 160 bits

SHA2-224/SHA3-224
SHA2-256/SHA3-256
SHA2-384/SHA3-384
SHA2-512/SHA3-512

RIPE Message Digest
RIPEMD-128
RIPEMD-160
RIPEMD-256 (security equivalent to 128)
RIPEMD-320 (security equivalent to 160)

Question 77

Moore’s Law

Answer 77

computing power will double every 18 months

Question 78

multi-party control

Answer 78

for PKI, to have more than one person in charge of a sensitive function

Question 79

Non-repudiation

Answer 79

impossibility of denying authenticity and identity

Question 80

Null Cipher

Answer 80

used in cases where the use of encryption is not necessary but yet the fact that no encryption is needed must be configured in order for the system to work. Ex. Testing, stenography

Question 81

OFB

Answer 81

Output Feedback: stream cipher that generates the key but XOR-ing the plaintext with a key stream. No errors will propagate

Question 82

One time pad

Answer 82

a running key using a random key that is never used again

Use a different substitution alphabet for each letter of the plaintext message.

AKA: Vernam cipher

Question 83

Permutation /transposition

Answer 83

Moving letters around

Question 84

PGP

Answer 84

GPG; encrypt attached files

Question 85

Phreakers

Answer 85

hackers who commit crimes against phone companies

Question 86

Plain text

Answer 86

natural or human-readable form of message

Question 87

Plaintext

Answer 87

message in clear text readable form

Question 88

Polyalphabetic

Answer 88

using many alphabets

Question 89

Public Key Infrastructure (PKI)

Answer 89

collection of business processes and technologies used for binding individuals to a digital certificate

Question 90

Rainbow Tables

Answer 90

a list of hash values, presorted to speed lookup. typically for cracking password hashes. It is a form of time-memory tradeoff, using less CPU at the cost of more storage. A control to reduce this type of attack is salting.

Question 91

RC5

Answer 91

Variable algorithm up 0 to 2048 bits key size

Question 92

Red boxing

Answer 92

Pay phones cracking

Question 93

Registration Authority

Answer 93

performs certificate registration services on behalf of a CA. RA verifies user credentials

Question 94

Revocation

Answer 94

for PKI, decertify an entities certificate

Question 95

Rijndael Block Cipher Algorithm

Answer 95

for speed, simplicity and resistance against known attacks. Variable block length and variable key lengths (128,192 and 256 bits)

Question 96

Rivest Cipher 5

Answer 96

RC5: symmetric algorithm patented by Rivest, Shamir, and Adleman (RSA) Data Security, the people who developed the RSA asymmetric algorithm. RC5 is a block cipher of variable block sizes (32, 64, or 128 bits) that uses key sizes between 0 (zero) length and 2,040 bits.

Question 97

RSA

Answer 97

Rivest, Shamir, & Adleman: works with one way math with large prime numbers (aka trap door
functions). Can be used for encryption, key exchange
and digital signatures)

Question 98

Running key

Answer 98

an encryption method that has a key as long as the message

Question 99

Script kiddie

Answer 99

Someone with moderate hacking skills, gets code from the Internet.

Question 100

Shift cipher (Caesar)

Answer 100

moving the alphabet intact a certain number spaces

Question 101

Side channel attack

Answer 101

inference about encrypted communications

Question 102

SP-network

Answer 102

process described by Claude Shannon used in most block ciphers to increase their strength

Question 103

Steganography

Answer 103

hiding the fact that communication has occurred

Question 104

Stream cipher

Answer 104

operate on one character or bit of a message (or data stream0 at a time.

Examples: Caesar cipher, one-time pad

Question 105

Substitution

Answer 105

trading one for another

use the encryption algorithm to replace each character or bit of the plaintext message with a different character

Question 106

Symmetric

Answer 106

encryption system using shared key/private key/single key/secret key

Question 107

Symmetric Cryptography

Answer 107

Both the receiver and the sender share a common secret key. Larger key size is safer > 128
Can be time-stamped (to counter replay attacks)
Does not provide mechanisms for authentication and non-repudiation

Question 108

Symmetric encryption memorization chart

Answer 108

Advanced Encryption Standard (AES), block size 128, key size 128, 192, 256

Rijndael, block size Variable, key size 128, 192, 256

Blowfish (often used in SSH), block size 64, key size 32-448

Data Encryption Standard (DES), block size 64, key size 56

IDEA (used in PGP), block size 64, key size 128

Rivest Cipher 4 (RC4), block size N/A (stream cipher), key size 40-2048

Rivest Cipher 5 (RC5), block size 32, 64, 128, key size 0-2040

Rivest Cipher 6 (RC6), block size 128, key size 128, 192, 256

Skipjack, block size 64, key size 80

Triple DES (3DES), block size 64, key size 112 or 168

CAST-128, block size 64, key size 40-128

CAST-256, block size 128, key size 128, 160, 192, 224, 256

Twofish, block size 128, key size 1-256

Question 109

Synchronous

Answer 109

each encryption or decryption request is performed immediately

Question 110

Transposition/permutation

Answer 110

process of reordering plaintext to hide the message rambo = ombar

Question 111

Two fish

Answer 111

Key lengths 256 bits blocks of 128 in 16rounds BEAT OUT BY Rijndal for AES, based on Blowfish

Question 112

Vernam

Answer 112

cipher (one time pad): key of a random set of non-
repeating characters

Question 113

Vigenere

Answer 113

polyalphabetic substitution

Question 114

Watermarking

Answer 114

intellectual property management technique for identifying after distribution

Question 115

White box

Answer 115

dual tone, multifrequency generator to control phone system

Question 116

Work factor

Answer 116

effort/time needed to overcome a protective measure

Question 117

If you want to encrypt a confidential message

Answer 117

Use the recipient’s public key

Question 118

If you want to decrypt a confidential message sent to you

Answer 118

Use your private key

Question 119

If you want to digitally sign a message you are sending to someone else

Answer 119

Use your private key

Question 120

If you want to verify the signature on a message sent by someone else

Answer 120

Use the sender’s public key