Encryption + PKI - Exam Prep Flashcards

1
Q

What standard is used in modern PKI for Certificate generation

A

X.509

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a SAN

A

Subject Alternative Name - A field in a cert that specified what other domains or IP’s are supported with the Cernt

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a single sided Cert

A

A connection where only the server is required to be validated when a secure session is being established. A dual sided, requires both the server and remote host to have their certs validated.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the current Digital Cert encoding framework and the three standards that it includes

A

X.609

Ber
Cer
Der

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Explain BER CER and DER

A

BER Basic encoding rules- Original rule set for certificates
Allows the use of multiple encoding types

Cer - Canonical Encoding Rules - Restricted version of BER
Allows only one encoding type

Der - Distinguished - Restricted version of BER - Allows only one encoding type, and has restritcitons on how elements are stored, and lengths of strings. MOST Commonly used with X.509

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is PEM

A

Privacy Enhanced Eemail -
Uses DER encoding, and makes use of
.PEM .CER .CRT .KEY file types

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is PFX

A

Personal INFO Exchange, used by MSOFT
File types .PFX,

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Other types of cert file types includeL

A

.P7 and .P12

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Name the Symmetrical Encryption types and if they are a stream or block Cipher and Block size

A

DES & 3DES - Block - 64 bit block
IDEA - Block - 64-bit
AES - Block - 128, 168, 256 bit
TwoFish - Block - 128 Bit
RC4 - Stream
RC5 Block - Variable 32, 64, 128
RC6 Block - 128

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the key lengths for
DES
3DES -
IDEA -
AES -

A

DES - 56
3DES -168
IDEA - 128
AES - 128, 192. 256

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the key lengths for
BLOWFISH
TWOFISH
RC5
RC4

A

BLOWFISH 32-448
TWOFISH - SAME AS AES
RC5 - UP TO 2048
RC4 20-2048

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

list the Asymmetrical encryption types

A

DH
RSA
ECC
PGP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Describe RSA

A

RSA - Depends on the difficulty of factoring large numbers.
used for key exchange, encryption, digital sigs
Key sizes from 1024-4096 bits

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Describe ECC

A

ECC - Most common use is for mobile devices
ECC with key size of 256bit is as secure as RSA with a 2048 size key

has a couple of versions:

ECDH - EC Diffie-Hellman
ECDHE - EC Diffie-Hellman Ephemral
ECDSA - ECC Digital signature Alg

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Describe DH

A

DH - Used for Key exchange and secure key distribution over untrusted networks
Uses Key size 1024 - 2048

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Describe PGP

A

pretty good privacy -
encryption program used for signing and the encryption/decryption of emai,

Symmetric functions use 128-bit or higher key lengths
Asymetric functions use 512-2048 bit key sizes