Fragen

Question 1

Steps in main rounds of AES encryption?

Answer 1

Mix Columns
ShiftRows
AddRoundkey
Subbytes

Question 2

___ requires operators of essentialservice to implement appropriate

___ adresses an important issue within EU

___ enhance cyber security

Answer 2

NIS2 - Network…
DCRA
EU legislative instruments

Question 3

requierements claudeshanan encryption procedures

Answer 3

-Diffusion
-Confusion

Question 4

NIST objective (CS framework)

Answer 4

• Practices that are known to be effective are described in the NIST CS Framework
• can help organization begin their…

Question 5

AES Algo for key length 128 bit contains how many rounds?

Answer 5

10

Question 6

CIA

Answer 6

Confidentialit
Integrity
Availability

Question 7

Activities to take appropriate action…
Develeop and implementappropriate…
Collecting all assets as Data…
Development and implementation of…
Plans to maintain…

Answer 7

Respond
Protect
Identify
Detect
Recover

Question 8

True statements in regard of block ciphers

Answer 8

• plaintext is broken up
• Use operating models
• AES, DES 3DES

Question 9

Doctor exchanges entry “allergic …”
Which security requirement is broken

Answer 9

Integrity

Question 10

key lengths of AES

Answer 10

192 bit
256 bit
128 bit

Question 11

Stream chipers true statements

Answer 11

• Generate a pseudorandom
• key not repeated.

Question 12

As a replacement for DES and 3DES

Answer 12

1. NIST
2. call for prop
3. symmetric
4. 128, 192, and 256 bits

Question 13

result in Diffusion

Answer 13

ShiftRows and MixColumns

Question 14

NIST key function

Answer 14

Respond
protect
Identify
Detect
Recover

Question 15

Asymetric encryption method

Answer 15

computionally more intesive…

uses key pair. One key used…
uses key pair. Message encrypted…

Question 16

hybrid encryption

Answer 16

utelizes public key of recepient to encrypt symmetric

utelizes symmetric key to encrypt clear text

Question 17

properties of hash functions

Answer 17

fast calculation
fixed length output
hard to gues input when hash is known

Question 18

Hashing functions

Answer 18

• outputs value of fixed size
• easy to calculate hash value of perimage M

Question 19

MAC “Message Authentication Code”

Answer 19

• is calculated on basis…
• small block of data

Question 20

Quantum technology

Answer 20

break key exchange

Quantum key distrib
Quantum key distrib

Question 21

The certificate is signed using the public key of certificate authority (True/false)

Answer 21

False

Question 22

Quantum computer

Answer 22

quantem phenomenon
shor algo
break key exchange

Question 23

The___standard is used to define info

the ____ is a field described…

Answer 23

X.509
Certificate Authority issuer name

Question 24

why do we need digital certificate?

Answer 24

to ensure public key belongs to a person, device org.

Question 25

biometric authentication

Answer 25

* false match rate * false nonmatch rate

Question 26

Alice "read/write" "sales"-flag DAC?

Answer 26

False

Question 27

[DAC, MAC, HMAC, CAC, BRAC, RBAC] allows for users to modify...

Answer 27

DAC - ABAC - RBAC

Question 28

In DAC, the _ consists of identified subjects... The Matrix can be decomposed, yielding _ that lists users and their permitted accessrights and

Answer 28

* access control matrix * access control lists * capability tickets

Question 29

Key characteristic of RBAC

Answer 29

Access control is based on... role in system

Question 30

Characteristic of cloud computing

Answer 30

* Resource pooling * On-demand self-service * Broad networks access * Rapid elasticity

Question 31

Social engineering

Answer 31

* "Social engineering" relies on underlying... * Hacking humans

Question 32

what weekes is exploited by social engineering

Answer 32

the humans

Question 33

cloudsecurity - "NIST" extend organizational practices

Answer 33

governance

Question 34

Which of the following documents is a good basis for assesment of concerns and issues connected to cloud.

Answer 34

NIST SP 800-144

Question 35

Communication protocols

Answer 35

SSH IPSec TLS

Question 36

Correct statements SSH

Answer 36

In the user **authentication layer**... SSH works over **TCP** connections SSH works on the **concept** SSH works over **untrusted networks**

Question 37

TLS statements

Answer 37

* Applications connected connect with secure connection * TLS works on presentation/session layer

Question 38

___are used for communicatoins over untrusted networks Both methods use___

Answer 38

IPSEC and TLS encryption

Question 39

Example of use for IPSEC

Answer 39

* Enhancinh electronic * Secure remote accesss * secure branch office connectivity * Establishing...

Question 40

characterises notion of DMZ in firewall

Answer 40

There is no direct connection...

Question 41

correct statement for stateful packet inspection firewall

Answer 41

A statefull inspection... A stateful inspection...

Question 42

Logging information of routers, servers___ in this system events

Answer 42

* SIEM * alarms raised according...

Question 43

Packetfilter osilayer

Answer 43

Transport layer, network layer

Question 44

SIEM characterisation

Answer 44

SIEM collects logging information...