Exam MCQ

Question 1

_______ is prevention of unauthorised use of a resource.

A) Authenticity

B) Access control

C) Reliability

D) Integrity

Answer 1

B) Access control

Question 2

A common technique for masking contents of messages or other information traffic so that opponents cannot extract the information from the message is _______.

A) integrity

B) analysis

C) encryption

D) masquerade

Answer 2

C) encryption

Question 3

_______ prevents or inhibits the normal use or management of communication facilities.

A) Passive attack

B) Replay

C) Denial of Service

D) Masquerade

Answer 3

C) Denial of Service

Question 4

Using Caesar cipher with key 3, the ciphertext that corresponds to the plaintext “hello” is:

A) IFMMP

B) KHOOR

C) LIPPS

D) GDKKN

Answer 4

B) KHOOR

Question 5

_______ attacks involve trying every possible key until an intelligible translation of the ciphertext into plaintext is obtained.

A) Brute-force

B) Block cipher

C) Transposition

D) Cryptanalysis

Answer 5

A) Brute-force

Question 6

A technique referred to as a _______ cipher is a mapping achieved by performing some sort of permutation on the plaintext letters.

A) polyalphabetic

B) Caesar

C) monoalphabetic

D) transposition

Answer 6

D) transposition

Question 7

The majority of network-based symmetric cryptographic applications make use of _______ ciphers.

A) linear

B) differential

C) transposition

D) block

Answer 7

D) block

Question 8

_______ means that the statistical structure of the plaintext is dissipated into long-range statistics of the ciphertext.

A) Diffusion

B) Confusion

C) Transposition

D) Substitution

Answer 8

A) Diffusion

Question 9

The last round in AES does not include _______ transformation.

A) Substitute bytes

B) AddRoundKey

C) MixColumns

D) ShiftRows

Answer 9

C) MixColumns

Question 10

The word size in AES key expansion is _______ bytes.

A) 2

B) 4

C) 8

D) 16

Answer 10

D) 16

Question 11

In _______ mode of operation, the input to the encryption algorithm is the XOR of the next block of plaintext and the preceding block of ciphertext.

A) ECB

B) CTR

C) OFB

D) CBC

Answer 11

D) CBC

Question 12

Both _______ modes produce output that is independent of both the plaintext and the ciphertext. This makes them natural candidates for stream ciphers that encrypt plaintext by XOR one full block at a time.

A) OFB and CTR

B) CBC and ECB

C) ECB and OFB

D) CTR and CBC

Answer 12

A) OFB and CTR

Question 13

The concept of public-key cryptography evolved from an attempt to attack two of the most difficult problems associated with symmetric encryption: _______ and digital signatures.

A) reverse engineering

B) licensing costs

C) key generation

D) key distribution

Answer 13

D) key distribution

Question 14

To provide authentication using public-key encryption, A can send a message to B as follows:

Answer 14

Question 15

The most common choice of e in RSA public key is 65537 (216+1) because

A) it is easy for programmers to remember

B) it requires only 17 bits to store

C) it has only two 1 bits

D) it is difficult to calculate its corresponding private key d

Answer 15

C) it has only two 1 bits

Question 16

The principal object of a hash function is _______.

A) mapping messages

B) data compression

C) data confidentiality

D) data integrity

Answer 16

D) data integrity

Question 17

Answer 17

A) collision

Question 18

Answer 18

C) digital signature

Question 19

_______ is denial of receipt of message by destination.

A) Disclosure

B) Masquerade

C) Source repudiation

D) Destination repudiation

Answer 19

D) Destination repudiation

Question 20

________ is a function of the message and a secret key that produces a fixed-length value that serves as the authenticator.

A) MAC

B) Hash function

C) Symmetric encryption

D) SHA

Answer 20

A) MAC

Question 21

The type of digital signature forgery where an attacker forges a signature for a particular message chosen by the attacker is called ______.

A) total break

B) universal forgery

C) selective forgery

D) existential forgery

Answer 21

C) selective forgery

Question 22

The concept of ______ greatly reduces the number of keys that must be manually managed and distributed.

A) key distribution

B) key hierarchy

C) key generation

D) key termination

Answer 22

B) key hierarchy

Question 23

Which of the following is true about public-key certificates?

A) They do not expire

B) They can only be used with RSA

C) They contain the private key of the user encrypted with the CA’s pubic key

D) They cannot be modified other than by the CA without being detected

Answer 23

D) They cannot be modified other than by the CA without being detected

Question 24

Presenting or generating authentication information that corroborates the binding between the entity and the identifier is the ______ step.

A) identification

B) clarification

C) binding

D) verification

Answer 24

D) verification

Question 25

To cope with a replay attack, party A, expecting a fresh message from B, first sends B a nonce and requires that the subsequent message received from B contain the correct nonce value. This process is called ______.

A) counter replay

B) fresh nonce

C) challenge/response

D) one-way authentication

Answer 25

C) challenge/response

Question 26

Kerberos ______ issues tickets to users who have been authenticated to AS.

A) realm

B) TGS

C) AS

D) principal

Answer 26

B) TGS

Question 27

TLS ______ Protocol provides confidentiality and message integrity for TLS connections.

A) Record

B) Privacy

C) Handshake

D) Change Cipher Spec

Answer 27

A) Record

Question 28

One of the most useful features of SSH is ______, which allows converting any insecure TCP connection into a secure SSH connection.

A) TCP security

B) TCP conversion

C) HTTPS

D) Port forwarding

Answer 28

D) Port forwarding

Question 29

______ mode authenticates IP payload and selected portions of IP header.

A) AH Transport

B) AH Tunnel

C) ESP Transport

D) ESP Tunnel

Answer 29

A) AH Transport

Question 30

______ is a computer program that can run independently and can propagate a complete working version of itself onto other hosts on a network.

A) Logic bomb

B) Exploit

C) Worm

D) Auto-rooter

Answer 30

C) Worm