Lecture 9

Question 1

What algorithm depends upon the computational complexity inherent in factoring large integer numbers?

Answer 1

RSA

Question 2

_____ cryptography has a higher degree of computational requirements.

Answer 2

asymmetric

Question 3

______ is the backbone of a large number of well-known security infrastructures

Answer 3

RSA

Question 4

______ is based upon the computational complexity of factoring large integer numbers.

Answer 4

RSA

Question 5

What is a super-increasing sequence?

Answer 5

Every element of a sequence is greater than the sum of all previous elements in the sequence.

Question 6

________ depends on the ability to compute a point multiplication and the inability to compute the multiplicand given the original point and the product.

Answer 6

Elliptic Curve Cryptography

Question 7

The problem of finding x, given P and Q is known as what?

Answer 7

elliptic curve discrete logarithm problem

Question 8

A ______ takes a potentially long message and generates a unique output value.

Answer 8

Hash function

Question 9

A sender generates a message digest. What must be true to verify that the message was not modified?

Answer 9

The recipient uses the same hash function to recompute the message digest and compare. If the 2 match the message was not altered.

Question 10

What is true of a hash function?

A. Input can be any length
B. output can be any length
C. It is one-way
D. Difficult to compute
E. Output has a fixed length

Answer 10

A. Input can be any length
C. It is one-way
E. Output has a fixed length

Question 11

_____ takes an input of any length and produces a 160-bit message digest. It processes a message in 512-bit blocks.

A. SHA-1
B. SHA-2
C. MD5
D. RSA

Answer 11

A. SHA-1

Question 12

____ has 4 variants. It can produce a 224,256,512, or 382-bit message digest. The block size can be 512-bit bock or 1024-bit block.

A. SHA-1
B. SHA-2
C. MD5
D. RSA

Answer 12

B. SHA-2

Question 13

Digital signatures provide for what? Select all that apply.

A. Delivery verification
B. Nonrepudiation
C. Protection again modification

Answer 13

B. Nonrepudiation

C. Protection again modification

Question 14

NIST created ______ which specifies the approved digital signature algorithms.

Answer 14

Digital Signature Standard (DSS) FIPS 186-4

Question 15

______ provides assurance that people are who they claim to be.

Answer 15

Digital Certificates

Question 16

Certificates generally conform to the _____ standard.

A. X.500
B. X.510
C. X.509
D. X.515

Answer 16

C. X.509

Question 17

____ are neutral organizations offering notarization services for digital certificates.

A. Certificate Authorities (CA)
B. Registration Authorities (RA)
C. Intermediate Authorities (IA)

Answer 17

A. Certificate Authorities (CA)

Question 18

________ can be authorized to help verify identities before certificates are issued.

A. Certificate Authorities (CA)
B. Registration Authorities (RA)
C. Intermediate Authorities (IA)

Answer 18

B. Registration Authorities (RA)

Question 19

What are at least 2 reasons a certificate may be revoked?

Answer 19

it was compromised
it was erroneously issued
details may have changed
security association changed (example: employee was fired)

Question 20

The _____ or ______ checks for revoked certificates.

Answer 20

CRL (certificate revocation list)

OCSP (online certificate status protocol)

Question 21

This is the ‘defacto’ standard as email encryption and uses RSA encryption and X.509 certificates for exchanging cryptographic keys.

Answer 21

Secure multipurpose internet mail extensions (S/MIME)

Question 22

Websites can use which 2 technologies for secure communications?

A. HTTPS
B. SSL
C. S-HTTP
D. TLS

Answer 22

B. SSL

C. S-HTTP

Question 23

____ uses port 443 to negotiate encrypted communications between web servers and clients. It keeps a channel open for the entire session.

Answer 23

HTTPS (uses SSL)

Question 24

______ secures individual messages between a client and server and supports 2 way authentication between clients and servers.

Answer 24

S-HTTP

Question 25

______ is the science of hiding messages in plain sight.

Answer 25

Steganography

Question 26

_____ is a standard for protecting e-commerce transactions.

Answer 26

Secure Electronic Transaction (SET)

Question 27

In ____ encryption, the entire communication is encrypted (data, header, trailer, address, etc.)

Answer 27

link

Question 28

The standard architecture set by the IETF for setting up a secure channel between 2 parties. It uses public key cryptography.

Answer 28

IPSec (internet protocol security)

Question 29

____ provides assurances of message integrity and nonrepudiation.

Answer 29

Authentication Header

Question 30

IPSec has two modes.

Answer 30

Transport - packet payload is encrypted

Tunnel- entire packet, including header, is encrypted

Question 31

Wireless encryption provides encryption from the client to the______.

Answer 31

wireless access point