Domain 5 - Cryptography Flashcards

Question 1

Q

What is the most obvious use for Cryptography?

Answer

A

Confidenitaly

Question 2

Q

Hashes and Cryptographic Hashes provide what?

Answer

A

Integrity

Question 3

Q

Why isn’t everything encrypted at all times?

Answer

A

Availability.

Availability is adversely impacted by cryptography through the introduction of extra risk from loss, distribution, or mismanagement of cryptographic keys.

Question 4

Q

Key Distribution Definition

Answer

A

Method of getting a key from where it was generated to where it needs to be used.

Question 5

Q

Key Clustering

Answer

A

When different encryption keys generate the same ciphertext from the same plaintext message.

Question 6

Q

Synchoronous

Answer

A

Refers to when each encryption or decryption request is performed immediately.

Question 7

Q

Asynchoronous

Answer

A

When ENC/DEC requests are processed in a queues.

Question 8

Q

Key benefit of asynchronous cryptography

Answer

A

Utilization of hardware devices and multiprocessor systems for cryptographic acceleration.

Question 9

Q

Hash Function

Answer

A

One-way mathematical operation that reduces a message or data file into smaller fixed length output, or hash value.

Question 10

Q

Digital Signatures

Answer

A

Provide authentication of a sender, and integrity of a sender’s message.

Question 11

Q

How do Digital Signatures work?

Answer

A

Sender

> Message goes into Hash Function
> Hash Value is encrypted using Sender’s Private Key

Receiver

> Verifies the digital signature by decryption the hash value using the sender’s public key.
> Performs same Hash Function

Compares the Hash Functions

Question 12

Q

Asymmetric

Answer

A

Term used in cryptography in which two different but mathematically related keys are used where one key is used to encrypt and another is used to decrypt.

Term is used in reference to PKI

Question 13

Q

Digital Certificate

Answer

A

Electronic Document that contains the name of an organization or individual, the business address, the digital signature of the CA issuing the certificate, the Certificate’s holder Public Key, a serial number, and an expiration date.

Used to ID the certificate holder when conducting electronic transactions.

Question 14

Q

CA

Answer

A

Certificate Authority

Entity trusted by one or more users as an authority in a network that issues, revokes, and manages digital certificates.

Question 15

Q

RA

Answer

A

Registration Authority

Performs certificate registration services on behalf of a CA.

The RA, a single-purpose server, is responsible for the accuracy of the information contained in a certificate request.

RA is also expected to perform user validation before issuing a CR.

Question 16

Q

Plaintext/Cleartext

Answer

A

Message in its natural format.

Question 17

Q

Ciphertext/Cryptogram

Answer

A

Altered form of a plaintext message, so that it’s unreadable for anyone except the intended recipients.

Question 18

Q

Cryptosystem

Answer

A

Entire Cryptographic Operation.

Includes: algorithm, key, and key management functions

Question 19

Q

Encryption

Answer

A

aka enciphering

Process of converting the message from its plaintext to ciphertext.

Question 20

Q

Decryption

Answer

A

Reverse of encryption. Convert ciphertext to plaintext.

Question 21

Q

Cryptovariable

Answer

A

AKA Key

Input that controls the operation of the cryptographic algorithm.

Determines the behavior of the algorithm and permits the reliable encryption and decryption of the message.

Both Secret and Public Keys

Question 22

Q

Nonrepudiation

Answer

A

Security service by which evidence is maintained so that the sender and the recipient of data cannot deny having participated in the communication.

Question 23

Q

Algorithm

Answer

A

Mathematical function that is used in the encryption and decryption process.

Question 24

Q

Cryptanalysis

Answer

A

Study of techniques for attempting to defeat cryptographic techniques and, more generally, IS Services

Question 25

Q

Cryptology

Answer

A

Science that deals with hidden, disguised, or encrypted communications.

Question 26

Q

Collision

Answer

A

Occurs when a hash function generates the same output for different inputs.

Question 27

Q

Key Space

Answer

A

Represents the total number of possible values of keys in a cryptographic algorithm or other security measure. such as a password.

Question 28

Q

Work Factor

Answer

A

Time and effort required to break a protective measure.

Question 29

Q

IV

Answer

A

Initialization Vector

Non-secret binary vector used as the initializing input algorithm for the encryption of a plaintext block sequence to increase security by introducing additional cryptographic variance and to synchronize cryptographic equipment.

Question 30

Q

Encoding

Answer

A

Action of changing a message into another format through the use of a code.

Often done by taking a plaintext message and converting it into a format that can be transmitted via radio or some other medium, and is used for message integrity.

Question 31

Q

Decoding

Answer

A

Reverse process of encoding - converting the encoded message back into its plaintext format.

Question 32

Q

Transposition

Answer

A

AKA Permutation

Process of reordering the plaintext to hide the message.

Question 33

Q

Substitution

Answer

A

Process of exchanging one letter or byte for another.

Question 34

Q

SP-Network

Answer

A

Process described by Claude Shannon and used in most block ciphers to increase strength.

Most block ciphers do a series of repeated substitutions and permutations to add confusion and diffusion to the encryption process.

Question 35

Q

Confusion

Answer

A

Provided my mixing (changing) the key values used during the repeated rounds of encryption. When the key is modified for each round, it provides added complexity that the attacker would encounter.

Question 36

Q

Diffusion

Answer

A

Mixing up the location of the plaintext throughout the ciphertext.

Using transposition, the location of the 1st character of the plaintext may change several times during the encryption process.

Question 37

Q

Avalanche Effect

Answer

A

Important Consideration

All Cryptography used to design algorithms where a minor change in either the key or the plaintext will have a significant change in the resulting ciphertext.

Feature of strong-hashing algorithms.

Question 38

Q

Two Primary Methods of Encrypting Data

Answer

A

Stream & Block

Stream is bit-by-bit encryption, most common with streaming applications. WEP uses this.

Block - encrypts in blocks. Used in newer cryptography implements such as AES

Question 39

Q

XOR

Answer

A

Exclusive OR

Very fast mathematical operation used in stream ciphers.

Question 40

Q

Stream Based Cipher

Answer

A

Stream is bit-by-bit encryption, most common with streaming applications. WEP uses this

Relies primary on substitution

More commonly implemented in hardware.

Question 41

Q

Block Ciphers

Answer

A

Operates on blocks or chunks of text.

As plaintext is fed through cryptosystem, it’s divided into blocks of a preset size..usually 64b, 128b, 192b, etc

Uses combination of substitution and transposition

More computationally intensive and usually more expensive to implement compared to Stream Based.

More commonly implemented in software.

Question 42

Q

Name the basic Block Cipher Modes

Answer

A

ECB - Electronic Code Book
CBC - Cipher Block Chaining
CFB - Cipher Feedback
OFB - Output Feedback
CTR - Counter

Question 43

Q

ECB

Answer

A

Electronic Code Book (Block Cipher)

Most Basic

How?
Each block is ciphered independently,

Use?
Any file with non-repeating blocks (less than 64b), such as DES

Question 44

Q

CBC

Answer

A

Cipher Block Chaining (Block Cipher)

How?
Result of a block of encrypting data is fed back into the process to encrypt the next block of data.

Use?
Data at rest

Question 45

Q

CFB

Answer

A

Cipher Feedback (Stream Cipher)

How?
Cipher is used as a keystream generator rather than for confidentiality. Each keystream comes from previous block.

Use?
N/A - Retired due to the delay imposed by encrypting each block of keystream before proceeding.

Question 46

Q

OFB

Answer

A

Output Feedback (Stream Cipher)

How?
Keystream is generated independently of the message.

Use?
N/A - Retired due to Avalanche problems. Was used in Pay-Per-Views apps.

Question 47

Q

CTR

Answer

A

Counter (Stream Cipher)

How?
Uses the formula Encrypt (Base+N) as a keystream generator where Base is a starting 64 bit number and N is a simple, incrementing function.

Use?
Where High Speed or Random Access Encryption is needed. Examples include WPA2 and the Content Scrambling System.

Question 48

Q

IV

Answer

A

Initialization Vector

Arbitrary number that can be used along with a secret key for data encryption. This number, also called a nonce, is employed only one time in any session.

24-bit key used along with a WEP key of 40-bit, making the sum to be 64-bit

USED ONLY ONCE

Question 49

Q

Nonce

Answer

A

Arbitrary number used as the IV.

Question 50

Q

Two main categories of encryption algorithms?

Answer

A

Symmetric - AKA Secret Key Encryption uses only 1 key
Asymmetric - AKA Public Key Encryption - uses two keys (public and private). Public is used for encryption and private is used for decryption.

Question 51

Q

DES

Answer

A

Data Encryption Standard

First Encryption Standard recommended by NIST.

64-bit key size
64-bit block size

NOT Secure

Question 52

Q

3DES

Answer

A

Triple Data Encryption Standard

192-bit key size
64-bit block size

Slower than other Block Cipher Methods.

Question 53

Q

RC2

Answer

A

Variable Key Size (8-128b)
64-bit Block Cipher

Not Secure because of related-key attack

Question 54

Q

Blowfish

Answer

A

Variable Key Sizes (32 - 448b) Default is 128
64-bit block cipher

Unpatented and Free

Question 55

Q

AES

Answer

A

Advanced Encryption Standard (Block Cipher)

Variable Key Length (128, 192, 256 bits) Default is 256

Encrypts 128-bit data blocks in 10, 12, 14 rounds depending on key size.

Fast, Flexible

Question 56

Q

RC6

Answer

A

Block Cipher derived from RC5

128 -bit Block Size
Key Sizes of 128, 192, 256 bits

Question 57

Q

MD

Answer

A

Message Digest, or just Digest

Hash Value

Small representation of a larger message. Used to ensure authentication, integrity of information, not confidentiality.

Question 58

Q

Main properties of a Hash Function

Answer

A

Easy to Compute for any message
Infeasible to generate a hashed message
infeasible to modify message without modifying hash
Infeasible to find 2 different message with same hash.

Question 59

Q

MD 2, 4, & 5

Answer

A

Message Digest Hash Functions used to create message digests for digital signatures.

MD2 - 128-bit message using 128-bit block, through 18 rounds of operation. Still used in certain PKI enviroments.

MD4 - 128-bit message using 512-bit block, through 3 rounds of operations. Popular for File sharing and synchronization applications.

MD5 - 512-bit block generating 128-bit MD as well, over 4 rounds of operation.

Question 60

Q

SHA

Answer

A

Secure Hash Algorithm, V 0, 1, and 2

Collection of hash functions created by US gov’t.

SHA-0 is retired

SHA-1 uses a block size of 512b to create a message of 160b through 80 rounds of operation. Susceptible to Bday Attacks.

SHA-2 MD are either 224, 256, 384, 512b in length.

SHA-224 and SHA-256 uses block lengths of 512bits

SHA-384 and SHA-512 uses block lengths of 1024bits

Question 61

Q

HAVAL

Answer

A

Highly Flexible and configurable Hash Function

Hashes can be 128, 160, 192, 224, and 256 bits and use a fixed block size of 128 with 3, 4, or 5 rounds of operation. l

Question 62

Q

RIPEMD-160

Answer

A

Hash Function

Produces 160-bit MD using 512-bit block size.

Not patented
Created in Europe

Question 63

Q

Two ways to attack Hash Algorithms

Answer

A

Brute-Force

Cyptanalysis

Question 64

Q

Cryptanalysis

Answer

A

Art and Science of defeating cryptographic systems and gaining access to encrypted message even when the keys are unknown.

Responsible for creating Rainbow Tables.

Answer 65

A

Pre-computed tables or lists used in cracking password hashes.

And Open Source version is called Cain and Abel.

Answer 66

A

Fights against Rainbow Tables

Made of random bits and is an input to the one-way hash function with the target plaintext as the only other input.

Salt is stored in the resulting hash.

Answer 67

A

To defend against dictionary attacks and against pre-computed rainbow tables.

Answer 68

A

Means using a different channel to transmit the keys. Used in Symmetric Cryptography.

Answer 69

A

Advantages include: Speed, Secure, Cheap

Disadvantages: Key Management Issue, Limitation that algorithm doesn’t provide benefits past confidentiality.

Answer 70

A

COUNTER MODE WITH CIPHER BLOCK CHAINING MESSAGE AUTHENTICATION CODE

Encryption Protocol based on AES using CTR with CBC-MAC.

Uses 128-b key and 128-b block size

Answer 71

A

Message Integrity Code

Provides data origin authentication and data integrity for the packet payload data.

Answer 72

A

International Data Encryption Algorithm

Answer 73

A

Feistel-Type Block Cipher

Answer 74

A

Secure and Fast Encryption Routine

Patent-Free

Variation of SAFER is used as a block cipher in Bluetooth

Answer 75

A

Symmetrical algorithm.
Very Fast
Key Sizes from 23- 448

S-boxes are stored for later use.

Answer 76

A

Upgrade of Blowfish

Answer 77

A

Fast and Secure

Answer 78

A

Stream-Based Cipher

Most widely used stream cipher.

Answer 79

A

n(n-1) / 2

Answer 80

A

Used for secure data transmission. Slow. Uses Prime Numbers

Commonly used to encrypt shared keys for symmetric key cryptography.

Brute Force - Trying all possible private keys
Mathematical Attacks - factoring the product of two prime numbers
Timing Attack - measuring the running time of decryption

Answer 81

A

Key Exchange Algorithm

Does NOT provide confidentiality.

Enables two users to exchange or negotiate a secret symmetric key that will be used for encryption.

Answer 82

A

Cryptographic algorithm based on Diffie-Hellmann, but includes confidential and digital signatures services.

Answer 83

A

Elliptic Curve Cryptography

Used on smart cards, wireless, and other applications.

Provides confidentiality, digital signatures, and message authentication.

Answer 84

A

MAC

AKA cryptographic checksum

Small block of data that is generated using a secret key and then appended to the message. Receiver can decrypt the data and ensure the data has not changed.

Slow when based on DES

Answer 85

A

Much smaller than the message generating it.
Impractical to compute the message that generated it.
Impractical to find another message generating same MAC.

Answer 86

A

Provides cryptographic strength similar to hashing, except is has additional protection because of a secret key, but is fast.

Answer 87

A

One way hash of data and then uses private key to encrypt the hash. That has, along with other information is the digital signature.

High quality non-repudiation

Answer 88

A

Service that ensures that the sender cannot deny a message was sent and the integrity of the message in intact.

Answer 89

A

Digital Signatures

PKI

Answer 90

A

When the receiver decrypts the digital signature with the sender’s public key, it confirms integrity but not ownership of private key.

A CA is used to provide association between private key and sender for non-repudiation.

Answer 91

A

Cryptanalytic Attack

Attacker knows the algorithm used for encrypting, and may have access to machine used for encrypting.

Answer 92

A

Cryptanalytic Attack

AKA Side Channel Attack

Attacker measures the exact execution times and power required by the crypto device.

Answer 93

A

Cryptanalytic Attack

Known plaintext attack, uses linear approximation to describe the behavior of the block cipher.

Answer 94

A

Cryptanalytic Attack

Release on block ciphers exhibiting a high degree of mathematical structure.

Answer 95

A

Hash each plaintext until a matching hash is found.
Hash each plaintext but store each generated hash in a table that can be used as a lookup table so hashes do not need to be generated again.

Answer 96

A

Cryptanalytic Attack

Loopup table of sorted hash outputs.

Answer 97

A

Cryptanalytic Attack

One of the most difficult attacks as the attacker just has some unintelligible data that he suspects may be an important encrypted message.

Answer 98

A

States that available computing power doubles every 18 months.

Answer 99

A

Attacker has access to both the ciphertext and the plaintext versions of the same message.

Goal of this type of attack is to find the link…the cryptographic key that was used to encrypt the message.

Answer 100

A

Attacker has access to the decryption device or software and is attempting to defeat the cryptographic protection by decrypting chosen pieces of ciphertext to discover the key.

Answer 101

A

Idea that it’s easier to find two messages that has to the same message digest than to match a specific message and its specific message digest.

Answer 102

A

Use a hash algorithm with twice the MD length as the desired work factor.

Answer 103

A

Most commonly used against password files.

Encrypts all words in the dictionary and then check whether the resulting hash matches an encrypted password stored in the SAM File.

Answer 104

A

Attack meant to disrupt and damage processing by the attacker sending repeated files to the host.

Answer 105

A

Aimed at RSA Algorithm, attempts to find the keys through solving the factoring of these numbers.

Answer 106

A

One of the most common.

Act of reverse engineering something to find any vulnerabilities or gain crucial information about the operations of the algorithm.

Answer 107

A

Common and Popular because they are easy and reliable on system elements outside of the algorithm.

Side-Channel Analysis - Passive and rely on physical attribute
Fault Analysis - Attempts to force system into an error state.
Probing Attacks - Attempts to watch the circuity.

Answer 108

A

Set of ‘Good Faith’ Conditions that may temporarily or indefinitely protect the organization from the penalties of a new law or regulation.

Answer 109

A

FEDERAL INFORMATION SECURITY MANAGEMENT ACT

Mandates use of specific actions, standards, and requirements for agencies to ensure sensitive information and vital mission services are not disrupted, distorted, or disclosed to improper individuals.

Answer 110

A

PUBLIC KEY INFRASTRUCTURE

Set of system, software, and communication protocols required to use, manage, and control public key cryptography.

Answer 111

A

Publish Public Keys/Certificates
Certify that a key is tied to an individual or entity
Provide verification of the validity of a public key.

Answer 112

A

Setting up a trusted public directory of keys

2. Use of Public Key Certificates

Answer 113

A

Size of Key

Secrecy of the Key

Answer 114

A

CRL (Certificate Revocation List

2. OCSP (Online Certificate Status Protocol

Answer 115

A

Concept that a cryptographic system should be designed to be secure, even if all its details, except for the key, are publicly known

Answer 116

A

Extensible Markup Language

Flexible data framework that allows applications to communicate on the internet.

Preferred infrastructure of e-commerce.

Answer 117

A

XML Key Management Specifications

Defines protocols for distributing and registering public keys

Answer 118

A

Simplicity

Answer 119

A

S/MIME

PGP

Answer 120

A

Randomness intrinsically generated by the computer.

Answer 121

A

Random Number Generators

Special purpose built hardware and software to implement random numbers.

Answer 122

A

To making the cost of breaking the key worth more than the information being protected.

Answer 123

A

Key Encrypting Keys

Solution to protect session key with a special purpose long-term use key. This encrypts a symmetric key.

Answer 124

A

Key wrapping.

Answer 125

A

KDC - Key Distribution Center

2 Types of keys, Master Key and Session Key

Answer 126

A

Process of ensuring a third party maintains a copy of a private key or key needed to decrypt information

Answer 127

A

Web of Trust

Concept used in PGP, GnuP, and other OpenPGP compatible systems to establish the authenticity of the binding between a public key and its owner.

Answer 128

A

Suite of protocols for communicating securely with IP by providing mechanisms for authenticating and encrypting.

Mandatory in IPv6

2 Modes:
Standard: Only authenticates hosts with one another.
Non-standard: Forces users to authenticate.

Answer 129

A

Authentication Header

Used to prove the identity of the sender and ensure that the transmitted data has not been tampered with.

Answer 130

A

Through the ESP (Encapsulating Security Protocol)

Answer 131

A

Security Associations

Defines the mechanisms that an endpoint will use to communicate with it’s partner. Speaks in one-way only.

Answer 132

A

Internet Key Exchange

Allows communicating partners to prove their identity to each other and establish a secure communication channel.

Answer 133

A

HAIPE (High Assurance IP Encryptor)

Answer 134

A

SSL/TLS

Uses both symmetric and asymmetric keys

Answer 135

A

S/MIME

Secure/Mutlipurpose Internet Mail Extensions

Answer 136

A

Secure/Multipurpose Internet Mail Extensions

Allows you to encrypt emails and digitally sign them.

Provides Authentication, Integrity, and non-repudiation.

Answer 137

A

Electronic Code Book

Uses the same Cipher for each code of block

Answer 138

A

Cipher Block Chaining

Modifying the previous block of ciphertext.

Answer 139

A

2 Different Keys should not generate the same ciphertext from the same plaintext, using the same algorithm.

Answer 140

A

Concerned primarily with the protection and secrecy of keys.

Answer 141

A

Adds secret key value to the input function along with the source message.

Answer 142

A

Side-Channel Analysis
Fault Analysis
Probing.

Answer 143

A

Protection of Words and Symbols

Answer 144

A

Protection of creative works

Answer 145

A

Protection of inventions

Answer 146

A

Require maintain secrecy but don’t expire.

Answer 147

A

Randomly generated number added during the CTR Encryption

Answer 148

A

Galois/Counter Mode

Adds authentication to the the CTR

Answer 149

A

NIST’s 5 Phases

Initiation
Devleop/Acquire
Implement/Assess
Operations/Maintenance
Sunset

Answer 150

A

Shared Secret Key

Answer 151

A

Transposition

Answer 152

A

DES
3DES
AES
Blowfish
Twofish
RC4
Steganography

Answer 153

A

Symmetric
Block - 64 bit
Key - 56 bit
Insecure

Answer 154

A

Symmetric
Block - 64 bit
Key - 112 bit
Secure through 2030

Answer 155

A

Rijndael algorithm
Symmetric
Block - 128 bit
Key - 128, 192, or 256 bit
All 3 are considered Secure

Answer 156

A

Public Domain Algorithm
Symmetric
Block - 64 bit
Key - Any key you want through 32 - 448 bit
Not Secure

Answer 157

A

Public Domain Algorithm
Symmetric
Block - 128-bit
Key - 128, 192, 256 bit
Secure

Answer 158

A

Used on WEP and WPA
Used on SSL and TSL

Uses a pseudorandom keystream

No longer secure

Symmetric
Stream Cipher
Key between 40-2048 bit

Answer 159

A

Assymetric
Keys between 1024 - 4096 b
Considered Secure

Answer 160

A

Pretty Good Privacy
Uses both Symmetric and Asymmetric Cryptography
Open source is known as GnuPG

Answer 161

A

Elliptical Curve Cryptography

Doesn’t sure Prime Facorization

Answer 162

A

My Public Key

Answer 163

A

Randomly generated key (remember psuedo random)

Answer 164

A

Algorithm using shared secret.

Answer 165

A

14 with 2048-bit

Answer 166

A

Clipper Chip

Answer 167

A

a value that was insecure, but has things added to it to add security.

2 Processes - Salting and Hashing

Answer 168

A

Adds a value to the encryption key to make it more complex.

Answer 169

A

Adds time to the verification process by requiring more math.

Answer 170

A

Key Stretching Technique

Uses salting and hashing.

Should be used 4k times

Answer 171

A

Key stretching with blowfish.

Answer 172

A

Personal Knowledge
WOT
PKI

Answer 173

A

Decentralized Approach makes it difficult to manager
High Barrier to Entry
Requires Technical knowledge

Answer 174

A

Public Key Infastructure

Depends upon CAs

Answer 175

A

Certificate Authorities

Trusted 3rd Party organizations who verify the identity of individuals and issues digital certificates

Answer 176

A

From the CA

Contains both the ID information and a copy of the subject’s public key.

Answer 177

A

They are able to encrypt a message using a public key, but can’t do anything else as long as the private key remains private.

Answer 178

A

One way functions that transforms variable length input into a unique, fixed-length output.

Answer 179

A

Hash Function

Produces 128 bit hash

No longer Secure

Answer 180

A

Created by NIST as Government Standard

SHA-1 (160b) Not secure

SHA-2 (224, 256, 384, 512b) Not secure

SHA -3 (variable hashes set by user)

Answer 181

A

128, 160, 256, 320b outputs

128 is insecure

Rest are secure

Answer 182

A

Has-Based Message Authentication Code

Combines Symmetric Cryptography & Hashing

Provides Authentication & Integrity

Answer 183

A

Yes.

Used for digital signatures and digital certificates.

Answer 184

A

Use asymmetric cryptography

Achieves Integrity, Authentication, & non-repudiation

Answer 185

A

Private key - because we want to be able to be verified by the public key.

Answer 186

A

Digital Certificate Standard

Answer 187

A

OCSF - Live, updated in real time. Used on most browers.

2. CRL - Old school list of numbers.

Answer 188

A

Relieves burden on CA.

Extension of OCSP, and reduces the CA’s burden.

Answer 189

A

It places a significant burden on the servers operated by the CA.

Answer 190

A

TSL - Encrypts network Communications using cipher suites (other encryption/hashing functions)

Can’t be used to encrypt anything!

Answer 191

A

ESP - Provides Confidentiality and Integrity for payload packets.

AH - Provides integrity protection for packet headers.

Answer 192

A

Both components of IPSec

ESP - Provides Confidentiality & Integrity for packet payloads

AH - Provides Integrity protection for packet headers and payloads.

Answer 193

A

HTTP - Port 80
HTTPS - Port 443

HTTPS adds TLS to web browsing.

Answer 194

A

FTP - Insecure
FTPS - Adds TLS to FTP
SFTP - Transfers files over SSH
SCP - Provides secure command line transfer vs SSH

Answer 195

A

FTPS - Adds TLS to FTP

SFTP - Transfers over SSH

Answer 196

A

Secure Copy Protocol

Provides secure command-line file transfer over SSH

Answer 197

A

Trivial File Transfer Protocol

Rarely used and not secure.

Answer 198

A

DomainKeys Identified Mail

Provides email authentication by allowing email serves to digitally sign outbound messages.

Must have Public/Private Key Pairs

Answer 199

A

Known Cipher Text attack

Answer 200

A

Set of all possible encryption keys usable with an algorithm.

Answer 201

A

Detects patterns in the ciphertext

Answer 202

A

Attacker has access to an unencrypted message.

Answer 203

A

Attacker can create an encrypted message of his or her choice.

Brainscape's Knowledge GenomeTM

Domain 5 - Cryptography Flashcards

Brainscape's Knowledge Genome^TM