General Security 4 Flashcards

1
Q

What are Hashes?

A
  • Data represented as String of Text
  • Impossible to recover Data
  • Integrity
  • Can be Digital Signature
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a Collission?

A
  • Different input same output
  • MD5
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are practical uses of Hashes?

A
  • Verify downloaded files
  • Password storage
  • Digital Signature
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is salting?

A
  • Adding random data to password when using hash
  • slows brute forcing down
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the Blockchain?

A
  • Distributed Ledger: Keeps track of transactions
  • Everyone on Blockchain maintains ledger
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are practical applications of Blockchain?

A
  • Payment Processing
  • Digital Identification
  • Supply Chain monitoring
  • Digital voting
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How does the Blockchain work?

A
  1. Any kind of Transaction
  2. Transaction is sent to every computer (node) on the Blockchain
  3. Transaction is verified by every node on Blockchain
  4. Verified Transaction is added to block of verified transactions
  5. Hash is added to Block to keep integrity of all transactions of block
  6. Copy of Block is sent to everyone on ledger
  7. If Block has been modified, everyone will notice and will be consequently be thrown out of ledger
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are Certificates?

A
  • Binds Public Key with digital signature
  • Adds trust
  • Can be built in OS or via third party

Digital Certificate
* X.509 standart format
* Included Certificate Details: Serial Number, Version, Algorithm, issuer, Name of Cert holder, public key, extensions and more…

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is a CA?

A

Certificate Authority
* Third Party signing certificates
* Built into Browser
* Does verification of the website and its owner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are private Certificate Authorities?

A

You are your own CA
* Build it in-house
* Your devices must trust the internal CA

Needed for medium-to-large organizations
* Many web servers and privacy requirements

Implement as part of your overall computing strategy
* Windows Certificate Services, OpenCA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How does certificate signing process work?

A
  1. Applicant creates Key Pair
  2. Combines public key with applicant information to Certificate Signing Request (CSR)
  3. Sends CSR to Certificate Authority
  4. CA validates CSR and digitally signs it with private key
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are self-signed certificates?

A

Internal certificates don’t need to be signed by a public CA

  • Your company is the only one going to use it
  • No need to purchase trust for devices that already
    trust you

Build your own CA

  • Issue your own certificates signed by your own CA

Install the CA certificate/trusted chain on all devices

  • They’ll now trust any certificates signed by your
    internal CA
  • Works exactly like a certificate you purchased
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are Wildcard Certificates?

A
  • Type of SSL/TLS certificate that certifies domain and subdomains with the same certificate
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is Key Revocation?

A
  • Certificates can be revoked by CA via Certificate Revocation list (CRL)
  • Reason can be vulnerability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is OCSP stapling?

A

Online Certificate Stapling Protocol
* Certificate holders verify their own status
* OCSP status is “stapled” into SSL/TLS handshake
* Digitally signed by CA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly