Exam1

Question 1

What is key space?

Answer 1

The set of all possible keys that can be used in cryptographic algorithm. The size of key size determines the strength of the encryption making it harder for attackers.

Question 2

Digital certificates use asymmetric keys for validation. True or False?

Answer 2

True

Question 3

What is FRR?

Answer 3

False Rejection Rate: The percentage of valid users incorrectly rejected by a biometric system.

Question 4

What is FAR?

Answer 4

False Acceptance Rate: The percentage of invalid users incorrectly accepted by a biometric system.

Question 5

What is CER?

Answer 5

Crossover Error Rate: The point where FRR and FAR are equal, indicating the balance between security and convenience in a biometric system.

Question 6

Can private key be used to both encrypt and decrypt information?

Answer 6

Yes
For decryption: In asymmetric encryption, the private key is used to decrypt data that was encrypted with the corresponding public key.
For encryption: In digital signatures, the private key is used to “encrypt” a message or hash (sign) to prove the identity of the sender.

Question 7

Which is faster, asymmetric key or symmetric key?

Answer 7

Symmetric key

Question 8

In PKI, what keys do we need?

Answer 8

Public key: Shared openly, used to encrypt data or verify digital signatures.
Private key: Kept secret, used to decrypt data or create digital signatures.

Question 9

Data integrity is insured by what?

Answer 9

Hashing

Question 10

What is authentication based on?

Answer 10

Authentication is based on verifying the identity of a user, device, or entity. There are three main factors: Something you are, Something you have, Something you know

Question 11

What is the concept of crypto analysis?

Answer 11

The study and practice of analyzing and breaking cryptographic systems. This involves finding a weakness in the encryption algorithm without having to know the key.

Question 12

What does the Bell LaPadula model enforce?

Answer 12

Confidentiality

Question 13

What are the two rules of the Bell LaPadula model?

Answer 13

No read up, No write down

Question 14

What does worm software do?

Answer 14

malicious software that self-replicates and spreads independently through networks. it typically happens through network weaknesses, email attachments, and removable media.

Question 15

What are the three factors of authentication?

Answer 15

Something you have (passcode), something you are (typing a passcode), something you do (face-id to scan facial features)

Question 16

A fingerprint is an example of something you are?

Answer 16

Yes, a fingerprint is an example of something you are in biometric security. It falls under the category of biometric identifiers, which are unique physical traits used to verify a person’s identity.

Question 17

Why do we use PKI certificate?

Answer 17

We want secure, detectable, reliable communication

Question 18

What is an access token?

Answer 18

A physical token

Question 19

What is social engineering?

Answer 19

Manipulating people to gain confidential information

Question 20

What does the CA do?

Answer 20

The Certificate Authority (CA) signs digital certificates with its private key. This ensures the authenticity and integrity of the certificate, allowing others to verify it using the CA’s public key

Question 21

Do digital signatures always use asymmetric keys? True or False?

Answer 21

True

Question 22

What are the levels in security policies?

Answer 22

Policies, Procedures, Guidelines

Question 23

If root CA’s private key is compromised, what is the consequence?

Answer 23

Something bad happens

Question 24

Is hashing reversible?

Answer 24

No, it cannot go back to the original plain text document from a hash

Question 25

What does the acronym PKI stand for?

Answer 25

Public key infrastructure

Question 26

In a Local Area Network (LAN), when a device sends a packet to another device within the same network, how does the router determine where to deliver the packet?

Answer 26

MAC addresses

Question 27

what's the component of digital certificate?

Answer 27

Subject: Entity it’s issued to (like a user or device) Issuer: Certification Authority (CA) Serial Number: Unique identifier Validity Period: Start and end date Public Key: For encryption and signature verification Signature Algorithm: Algorithm used by CA to sign the certificate Digital Signature: CA's signature for authenticity

Question 28

What is the difference between class A, B, and C networks? Which class can have the most number of users?

Answer 28

The difference between Class A, B, and C networks lies in their IP address ranges and the number of devices they can support: Class A has a bigger range and support a larger number of devices than B and C. A > B > C

Question 29

Which protocol is faster: TCP or UDP?

Answer 29

UDP is faster

Question 30

digital signature is just a document that has association with the public key and identity (user’s name) t/f

Answer 30

False

Question 31

So when the device is connected to our router, what is the process called when the router manually processes the IP address?

Answer 31

DHCP (Dynamic Host Configuration Protocol) automatically assigns IP addresses to devices on a network, allowing them to communicate without manual configuration.

Question 32

What are the three properties of security?

Answer 32

CIA (confidentiality, integrity, availability)

Question 33

What is two-factor authentication?

Answer 33

A security process that requires two different forms of identification

Question 34

What is plain text encrypted into?

Answer 34

Ciphertext

Question 35

What does AAA stand for?

Answer 35

Authorization, Authentication, Accounting

Question 36

In a company that enforces login time restrictions for employees, which access control model is being used to automatically enforce these time-based policies, preventing unauthorized access outside of designated hours?

Answer 36

The company is using Mandatory Access Control (MAC), where access policies (such as login time restrictions) are enforced by the system based on predefined rules, not by the user's discretion.

Question 37

Difference between hub, switch, router, bridge

Answer 37

Hub: A basic networking device that connects multiple computers in a network. Switch: Connects multiple devices within a LAN (Local Area Network) and directs data to the specific device. Router: Connects different networks together and routes data between them. Bridge: Connects two or more network segments to make them work as a single network.

Question 38

what’s shoulder surfing?

Answer 38

Shoulder surfing is the act of spying on someone’s private information by observing their screen, keyboard, or device in a public or semi-public place. This can involve looking over someone's shoulder to steal sensitive data, like passwords or personal information, without their knowledge.

Question 39

What is used to deliver packets from and through the internet?

Answer 39

Routers are used to deliver packets from and through the internet. They determine the best path for data to travel and direct packets to their destination.

Question 40

What is the main difference between TCP and UDP?

Answer 40

TCP is connection-oriented, meaning it ensures reliable data delivery, error checking, and flow control. (three-way handshake) UDP is connectionless, meaning it sends data without ensuring reliability, speed being its main advantage.

Question 41

what’s the difference between HMAC and digital signature?

Answer 41

HMAC (symmetric) and DS (asymmetric)

Question 42

What is the difference between LAN and WAN?

Answer 42

LAN covers a small geographical area, like a home, office, or building, and is typically faster and more secure. WAN covers a large geographical area, such as cities, countries, or even continents, and connects multiple LANs.

Question 43

In PKI, who validates identity and binds it to the public key certificate?

Answer 43

Certificate Authority (CA)

Question 44

What is the role of RA in PKI?

Answer 44

In Public Key Infrastructure (PKI), the Registration Authority (RA) verifies the identity of users and devices before they can receive a digital certificate from the Certificate Authority (CA).

Question 45

What is the primary use of hashing?

Answer 45

The primary use of hashing is to quickly compare and verify data, such as checking passwords or storing data in hash tables for fast retrieval.

Question 46

Is hashing a two-way function?

Answer 46

No, it is a one-way function and irreversible

Question 47

Network: Lightweight and fast packet

Answer 47

ICMP is used by attackers because it is lightweight

Question 48

Bus Topology

Answer 48

a central line that all devices connected to, so every device is getting network from one cable and if that cable gets destroyed then all the devices will have no internet connection

Question 49

Star Topology

Answer 49

a network design where all devices are connected to a central hub or switch ex: internet box at home or office

Question 50

Single Sign-On (SSO)

Answer 50

another type of authentication that verifies the user through a single login and can be used through multiple applications without having to log in those extra applications ex: canvas

Question 51

Non-Repudiation

Answer 51

ensures that the sender cannot deny signing or sending off a message between the parties