Cryptography & Encryption I

Question 1

A simple, lightweight file transfer protocol that is often used for transferring small files over a network. Unlike FTP, this protocol does not provide authentication or encryption.

Example: Works over UDP

Answer 1

Trivial File Transfer Protocol (TFTP)

Question 2

A secure version of the FTP protocol, designed to transfer files over a secure SSH connection. It ensures that both the commands and data are encrypted.

Answer 2

Secure File Transfer Protocol (SFTP)

Question 3

An old, unencrypted network protocol used to remotely access and manage network devices or servers via a command-line interface. It is considered insecure due to the lack of encryption.

Answer 3

Telnet

Question 4

An extension of the standard FTP protocol that adds SSL/TLS encryption to protect data during file transfers. Unlike SFTP, this relies on FTP over an encrypted channel.

Answer 4

File Transfer Protocol Secure (FTPS)

Question 5

A standard that extends the format of email messages to support text in character sets other than ASCII, as well as attachments such as images, audio, video, and application files.

Key Note: Allows emails to include attachments

Answer 5

Multipurpose Internet Mail Extensions (MIME)

Question 6

An extension of MIME that adds security features like encryption and digital signatures to email messages, ensuring the confidentiality, integrity, and authenticity of the email content.

Key Note: Uses X.509 Certificates

Answer 6

Secure/Multipurpose Internet Mail Extensions (S/MIME)

Question 7

A communication protocol used in computer networks for sending data without establishing a connection. It is part of the Transport Layer in the OSI model and operates in a connectionless manner, meaning it doesn’t guarantee delivery or order of packets.

Key Note: used in real-time applications where speed is crucial, and minor data loss is acceptable (e.g., VoIP, video streaming, DNS).

Answer 7

User Datagram Protocol (UDP)

Question 8

A widely used standard for digital certificates that authenticate the identity of individuals, devices, or services in a network. They are commonly used in public key infrastructure (PKI) systems to verify that a public key belongs to the entity it claims to represent.

Answer 8

X.509 Certificates

Question 9

A protocol developed by Microsoft that allows users to remotely access and control a computer’s desktop over a network. It provides a graphical interface for users to interact with a remote computer.

Answer 9

Remote Desktop Protocol (RDP)

Question 10

A network protocol used to securely transfer files between computers over a secure SSH (Secure Shell) connection. It is widely used for transferring files in a secure manner across a network.

Answer 10

Secure Copy Protocol (SCP)

Question 11

A suite of protocols used to secure internet protocol (IP) communications by authenticating and encrypting each IP packet in a communication session.

Answer 11

Internet Protocol Security (IPsec)

Question 12

A secure connection over the internet that allows users to send and receive data as if they were directly connected to a private network. It encrypts internet traffic, ensuring privacy and security.

Answer 12

Virtual Private Network (VPN)

Question 13

A database used in networking devices (such as routers or firewalls) to define the security policies for traffic. It is a critical component of IPsec (Internet Protocol Security) implementations and is used to determine how traffic should be encrypted or authenticated.

Answer 13

Security Policy Database (SPD)

Question 14

A property of secure communication protocols that ensures session keys are not compromised even if the server’s private key is compromised in the future. In other words, each session key is independent and not derived from any long-term keys.

Example: Strengthens the security of session keys.

Answer 14

Perfect Forward Secrecy (PFS)

Question 15

A protocol used in IPsec to provide authentication and integrity for IP packets. It ensures that the data within an IP packet has not been altered during transmission and authenticates the source of the packet.

Answer 15

Authentication Header (AH)

Question 16

A protocol used in IPsec to provide confidentiality, data integrity, and authentication for IP packets. Unlike AH, this feature provides encryption for the data payload in addition to authentication.

Provides Confidentiality, Integrity, and Authentication (CIA)

Answer 16

Encapsulating Security Payload (ESP)

Question 17

A type of wireless network that provides mobile broadband access over a large geographical area, such as a city, country, or even globally. This is often used by mobile devices like smartphones, tablets, and laptops to access the internet via cellular networks (e.g., 4G, 5G).

Answer 17

Wireless Wide Area Network (WWAN)

Question 18

A small, localized network typically used for connecting personal devices, such as smartphones, laptops, and wearables, over short distances (usually within a range of a few meters).

Answer 18

Personal Area Network (PAN)

Question 19

A logical grouping of devices within a physical network, allowing network segmentation and isolation of traffic even if the devices are on different physical locations. These help improve security, performance, and management of network traffic.

Answer 19

Virtual Local Area Network (VLAN)

Question 20

A network protocol used for delivering audio and video over IP networks in real-time. It is commonly used in VoIP (Voice over IP) communications, video conferencing, and streaming media.

Answer 20

Real Time Protocol (RTP)

Question 21

A signaling protocol used to initiate, maintain, and terminate communication sessions, such as voice and video calls, over IP networks. This protocol is widely used in VoIP applications.

Answer 21

Session Initiation Protocol (SIP)

Question 22

An extension of RTP that provides encryption, message authentication, and integrity for secure delivery of real-time audio and video streams over IP networks.

Answer 22

Secure Real-Time Protocol (SRTP)

Question 23

A security protocol used in wireless networks to provide encryption and data integrity for Wi-Fi (WLAN) communications. It was designed as a temporary solution to improve the security of WEP (Wired Equivalent Privacy) without requiring new hardware.

Answer 23

Temporal Key Integrity Protocol (TKIP)

Question 24

A security protocol used in Wi-Fi networks that provides strong encryption and message integrity. It is a replacement for TKIP in WPA2 and is based on the AES (Advanced Encryption Standard) algorithm.

Answer 24

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP)

Question 25

A cryptographic protocol used to secure communications over a computer network, primarily the internet. This layer ensures that data transmitted between a client (such as a web browser) and a server is encrypted and protected from eavesdropping and tampering.

Answer 25

Secure Socket Layer (SSL)

Question 26

A stream cipher developed by Ron Rivest in 1987. It was widely used for encryption in various protocols, including WEP (Wired Equivalent Privacy) and TLS (Transport Layer Security), though it is now considered insecure due to vulnerabilities discovered over time.

Answer 26

RC4

Question 27

A security protocol used to secure wireless networks. It is the second generation of the WPA standard, and it replaced WEP (Wired Equivalent Privacy). It uses AES (Advanced Encryption Standard) for encryption, making it significantly more secure than previous protocols.

Answer 27

Wi-Fi Protected Access 2 (WPA2)

Question 28

The latest security protocol for wireless networks, designed to provide stronger encryption and improved security features compared to WPA2. It is intended to enhance protection against offline dictionary attacks and improve security in public networks.

Answer 28

Wi-Fi Protected Access 3 (WPA3)

Question 29

An outdated and insecure security protocol used to secure wireless networks, particularly Wi-Fi (WLAN). It was part of the original IEEE 802.11 standard, but it has since been replaced by stronger protocols like WPA and WPA2 due to significant security vulnerabilities.

Answer 29

Wired Equivalent Privacy (WEP)

Question 30

A set of IEEE (Institute of Electrical and Electronics Engineers) standards that define protocols for wireless local area networks (WLANs). It covers the technology and protocols for wireless communication, including everything from the physical layer (hardware) to the data link layer (protocols for communication between devices).

Answer 30

802.11

Question 31

A symmetric key encryption standard that was widely used for data encryption. It has since been largely replaced by more secure algorithms due to its relatively small key size and vulnerabilities.

56-bit key.

Answer 31

Data Encryption Standard (DES)

Question 32

A symmetric key encryption algorithm used worldwide to secure sensitive data. It is the most widely used encryption standard today due to its strength and efficiency.

Answer 32

Advanced Encryption Standard with 256-bit keys (AES-256)

Question 33

A cryptographic hash function that produces a 128-bit hash value (checksum) used to verify data integrity. It is no longer considered secure due to vulnerabilities.

Answer 33

Message Digest Algorithm 5 (MD5)

Question 34

A form of public-key cryptography based on the algebraic structure of elliptic curves over finite fields. This provides a high level of security with relatively small key sizes.

Answer 34

Elliptic Curve Cryptography (ECC)

Question 35

A cryptographic hash function that produces a 160-bit hash value. It was widely used for data integrity and digital signatures but is now considered weak due to vulnerabilities.

Answer 35

Secure Hash Algorithm 1 (SHA-1)

Question 36

A cryptographic hash function that produces a 256-bit hash value. It is part of the SHA-2 family and is widely used for verifying data integrity and securing sensitive information.

Answer 36

Secure Hash Algorithm 256-bit (SHA-256)

Question 37

A cryptographic protocol that provides secure communication over a network. It is the successor to SSL (Secure Sockets Layer) and is widely used to encrypt data transmitted over the internet.

Examples: HTTP over TLS & VPNs

Answer 37

Transport Layer Security (TLS)

Question 38

A type of encryption where the same key is used for both encrypting and decrypting data. Both the sender and receiver must have access to the shared secret key.

Algorithms: AES, DES, 3DES

Answer 38

Symmetric Encryption

Question 39

A type of encryption that uses a pair of keys: a public key for encryption and a private key for decryption. Only the private key can decrypt data encrypted with the corresponding public key.

Algorithms: RSA, ECC, DSA

Answer 39

Asymmetric Encryption

Question 40

A key exchange protocol that allows two parties to securely establish a shared encryption key over an insecure channel. It is a variant of another algorithm with added security due to the use of ephemeral keys.

Example: Generates temporary keys for each session

Answer 40

Diffie-Hellman Ephemeral (DHE)

Question 41

A symmetric encryption algorithm designed to provide strong data encryption using a 128-bit key. It was widely used in the early days of secure communication.

Answer 41

International Data Encryption Algorithm (IDEA)

Question 42

A data encryption and decryption program used for securing emails and files. It uses both symmetric encryption for the message and asymmetric encryption for key management.

Answer 42

Pretty Good Privacy (PGP)

Question 43

A cryptographic key used to encrypt other keys (e.g., session keys or private keys) rather than data directly. It adds an additional layer of security to key management.

Answer 43

Key Encryption Key (KEK)

Question 44

A secure authentication method used in Wi-Fi networks, especially in WPA3, to enhance security during key exchange. It replaces the weaker PSK (Pre-Shared Key) method.

Answer 44

Simultaneous Authentication of Equals (SAE)

Question 45

A method used for authenticating devices in a Wi-Fi network by sharing a common key (password) among all devices.

Example: Used in WPA, WPA2, and EAP

Answer 45

Pre-Shared Key (PSK)

Question 46

A protocol used in the IPsec suite to establish and manage secure communication by negotiating, authenticating, and exchanging cryptographic keys between devices.

Example: Uses Diffie-Hellman

Answer 46

Internet Key Exchange (IKE)

Question 47

A key exchange protocol that uses elliptic curve cryptography (ECC) to securely generate shared encryption keys over an insecure network.

Provides Perfect Forward Secrecy (PFS).

Answer 47

Elliptic Curve Diffie-Hellman Ephemeral (ECDHE)

Question 48

A cryptographic algorithm used for digital signatures, leveraging elliptic curve cryptography (ECC) for strong security.

Uses: TLS Certificates for secure web communications.

Answer 48

Elliptic Curve Digital Signature Algorithm (ECDSA)

Question 49

A feature in Microsoft Windows that allows users to encrypt individual files or folders to protect sensitive data from unauthorized access.

Answer 49

Encrypting File System (EFS)

Question 50

A file format used to store private keys, certificates, and optionally the certificate chain. It is also known as PKCS #12.

Answer 50

Personal Information Exchange (PFX)

Question 51

A mode of operation for block ciphers that divides plaintext into fixed-size blocks and encrypts each block independently using the same key.

Answer 51

ECB (Electronic Codebook)

Question 52

A symmetric encryption algorithm that applies the DES (Data Encryption Standard) cipher three times to each block of data to enhance security.

Answer 52

Triple Data Encryption Standard (3DES)

Question 53

An asymmetric encryption algorithm widely used for secure data transmission and digital signatures.

Example: Digital signatures, Secure Key Exchange, and Encryption.

Answer 53

Rivest-Shamir-Adleman (RSA)