Module 2- Applications of Cryptography

Question 1

The same key is used to encrypt and decrypt the message, faster than asymmetric but have an issue with key exchange

Answer 1

Symmetric Key Cryptography

Question 2

Modern cryptography began in 1949 when Claude Shannon published a paper about the Mathematical Theory of Communication. This idea improved cryptography.

Answer 2

Information Theory

Question 3

Changes to one character in the plain text affect multiple characters in the cipher text, unlike in historical algorithms where each plain text character only affect one cipher text character.

Answer 3

Diffusion

Question 4

Occurs by using a complex substitution algorithm. Attempts to make the relationship between the statistical frequencies of the cipher text and the key as complex as possible.

Answer 4

Confusion

Question 5

A desirable effect where a change to one bit leads to large change in output. This is Fiestel’s take on Claude Shannon’s concept of diffusion. Fiestel’s ideas are important when discussing block ciphers.

Answer 5

Avalanche

Question 6

A cryptosystem should be secure, even if everything about the system is publicly known.

Answer 6

Kerckhoff’s Principle

Question 7

How symmetric algorithm encryption is expressed mathematically

Answer 7

C=E(k,p)

Cipher Text (C) is equal to the encryption function (E) with the key (k) and plain text (p) being passed as parameters to that function.

Question 8

Changing some part of the plain text for some matching part of cipher text. Historical algorithms typically use this.

Answer 8

Substitution

Question 9

Two things all modern block cipher algorithms use

Answer 9

Substitution and Transposition

Question 10

Asks if there is a one in both the first and second number. Numbers are compared one digit at a time.

Example:
Number A 1101
Number B 0110
returns a result of
Number C 0100

Answer 10

Binary AND

Question 11

Asks if there is a one in the first number, or the second, or in both numbers. Each place is compared one at a time.

Example:
Number A 1101
Number B 1001
returns a result of
Number C 1101

Answer 11

Binary OR

Question 12

Important because it reversible. Asks if there is a 1 in one of the numbers but not both. Each place is compared one at a time. To reverse your result back with your second number and you will get the first number.

Example:
Number A 1101
Number B 0110
returns a result of
Number C 1011

Answer 12

Binary XOR (exclusive OR)

Question 13

Two types of symmetric algorithms

Answer 13

Block Ciphers and Stream Ciphers

Question 14

This is how the substitution portion of symmetric key cryptography is accomplished

Answer 14

XORing the plain text message with the key

Question 15

This is how transposition is done in symmetric key cryptography

Answer 15

Swapping blocks of text

Question 16

The same key is used to both encrypt and decrypt a message

Answer 16

single-key encryption

Question 17

List of popular symmetric block cipher algorithms

Answer 17

The Feistel Network, DES, 3DES, AES, Blowfish, Serpent, Twofish, Skipjack, IDEA, CAST, TEA, SHARK

Question 18

Larger Block sizes increase security, Larger key size increases security, if the round function is secure then more rounds increase security

Answer 18

Feistel Function

Question 19

The algorithm(s) needed to encrypt and decrypt a message

Answer 19

Cipher

Question 20

Random bits used to encrypt a message

Answer 20

Key

Question 21

The mathematical process used to alter a message and make it unintelligible to any but the intended party

Answer 21

Algorithm

Question 22

Named after a German physicist named Horst ***. Forms the basis for most block ciphers. Splits a block of plain text data into two parts (L0 and R0). Round function is applied to one half. Output of each round function is XORed with the other half.

Answer 22

The Feistel Function

Question 23

Uses a modified structure where L0 and R0 are not equal lengths. This variation is used with the Skipjack algorithm.

Answer 23

Unbalanced Feistel Cipher

Question 24

Was the premier block cipher for many years but is now considered outdated.

Answer 24

Data Encryption Standard (DES)

Question 25

Was selected as the Federal Information Processing Standard (FIPS) for the U.S. in 1976

Answer 25

Data Encryption Standard (DES)

Question 26

This is a Feistel Cipher with 16 rounds and a 48bit key for each round. To generate round keys a 56bit key is slit into two 28bit halves. This Feistel Cipher uses 8 s-boxes.

Answer 26

Data Encryption Standard (DES)

Question 27

Interim replacement for DES. Performs DES three times with three different 56bit keys.

Answer 27

3DES

Question 28

Variation of DES that uses a technique called Key Whitening. XORs a key with text before or after the round function or both.

Answer 28

DESx

Question 29

Also known as Rijndael block cipher.

Answer 29

Advanced Encryption Standard (AES)

Question 30

Chosen as a replacement for DES in 2001.

Answer 30

Advanced Encryption Standard (AES)

Question 31

Advanced Encryption Standard (AES) key sizes and block size

Answer 31

128, 192, and 256. All three operate on a block size of 128 bits

Question 32

Operates on a 4x4 column-major order matrix of bytes called the state.

Answer 32

Advanced Encryption Standard (AES)

Question 33

Blowfish- who+when created/intended replacement for

Answer 33

1993 by Bruce Schneier/intended replacement for DES

Question 34

Blowfish type/block size/bit sizes

Answer 34

a 16 round Feistel working on 64bit blocks. Can have bit sizes 32bits to 448bits.

Question 35

BCrypt, CryptoDisk, DriveCrypt, Password Safe, Password Wallet, Backup for Workgroups, Crashplan

Answer 35

Some products Blowfish are used

Question 36

Serpent- type and created by

Answer 36

Symmetric key block cipher, created by Ross Anderson, Eli Biham, and Lars Knudsen

Question 37

Serpent- block size/key sizes/rounds

Answer 37

Block size of 128bits. Can have key sizes 128, 192, or 256bits. Uses 32 rounds working with a block of four 32bit words.

Question 38

Finalist to replace DES

Answer 38

Twofish

Question 39

Twofish designed by

Answer 39

Designed by Bruce Schneier, John Kelsey, Doug Whiting, David Wagner, Chris Hall, and Niels Ferguson.

Question 40

Twofish block and key sizes/type

Answer 40

Block size of 128bits and key sizes up to 256bits, it’s a Feistel cipher

Question 41

Developed by the NSA and was designed for the clipper chip, a chip with built in encryption.

Answer 41

Skipjack

Question 42

Decryption key was kept in escrow for law enforcement to decrypt the data without the owner’s cooperation, made this algorithm highly controversial.

Answer 42

Skipjack

Question 43

Skipjack block/key size/type

Answer 43

Uses an 80bit key to encrypt and decrypt 64bit data blocks. An unbalanced Feistel network with 32 rounds.

Question 44

International Data Encryption Algorithm (IDEA) block and key size/ type

Answer 44

A block cipher designed as a replacement for DES. 64bit blocks and a 128bit key. Uses a series of eight identical transformations.

Question 45

CAST-128 and CAST-256 type rounds/size/keysize

Answer 45

block cipher. There are two popular versions. The 128 version can use 12 or 16 rounds working on a 64bit block with key sizes ranging from 40bits to 128bits in 8 bit increments. This version is also used in some versions of PGP.

Question 46

A simple algorithm that is easy to implement in code, a Feistel Cipher that uses 64 rounds.

Answer 46

Tiny Encryption Algorithm (TEA)

Question 47

SHARK- block and size/rounds/type

Answer 47

Uses a 64bit block with a 128bit key in six rounds. Shares similarities with the Rijndael cipher such as the use of S-boxes.

Question 48

This is the most basic encryption mode. The message is divided into blocks and each block is encrypted separately.

Answer 48

Electronic Codebook (ECB)

Question 49

A weakness of this is that the same plain text always equals the same cipher text which gives the attacker a way to begin analyzing the cipher to derive the key.

Answer 49

Electronic Codebook (ECB)

Question 50

Each block of plaintext is XORed with the previous cipher text block before being encrypted. This creates significantly more randomness in the final cipher text.

Answer 50

Cipher-Block Chaining (CBC)- More secure than electronic codebook mode

Question 51

Designed to cause small changes in the cipher text to propagate indefinitely when decrypting, as well as encrypting, a variation of the CBC mode of operation, has not been published as a federal standard.

Answer 51

Propagating Cipher-Block Chaining (PCBC)

Question 52

In this mode the previous cipher text block is encrypted, the cipher text is XORed back with the plain text to produce the current cipher text block, essentially it loops back on itself increasing the randomness of the cipher text.

Answer 52

Cipher Feedback (CFB)

Question 53

Makes a block cipher into a synchronous stream cipher, generates keystream blocks, which are then XORed with the plain text blocks to get the cipher text.

Answer 53

Output Feedback (OFB)

Question 54

Used to turn a block cipher into a stream cipher, much like OFB mode. Generates the next keystream block by encrypting successive values of a “counter”. The counter can be any simple function that does not repeat for a long time.

Answer 54

Counter (CTR)

Question 55

Fixed size input to a cryptographic primitive that is random or pseudorandom. Called a ‘nonce’ if it is non-repeating and not truly random. Used along with a secret key for encryption.

Answer 55

Initialization Vector (IV)

Question 56

Encryption of the same plain text with the same key results in the same cipher text. Use of an IV that is XORed with the first block of plain text solves this problem.

Answer 56

ECB Mode

Question 57

Sometimes called a state cipher. Random key is XORed with stream of plain text.

Answer 57

Symmetric Stream Ciphers

Question 58

A stream of pseudorandom digits is generated independently. That stream is then combined with the plain text (encrypt) or the cipher text (decrypt).

Answer 58

Synchronous Stream Cipher

Question 59

Uses several of the previous N cipher text digits to compute the key stream.

Answer 59

Self-synchronizing Stream Cipher

Question 60

A Symmetric Stream Cipher created by Ron Rivest in 1987. Most widely used software stream cipher. Identically used for encryption and decryption, the data stream is simply XORed with the key.

Answer 60

RC4

Question 61

Uses a variable length key from 1 to 256 bytes.

Answer 61

RC4

Question 62

A symmetric Stream Cipher published by the German engineering firm Seimans in 1993. A software based stream cipher that uses a Lagged Fibonacci generator along with concepts borrowed from shrinking generator ciphers.

Answer 62

FISH

Question 63

Uses an H function that takes a variable size input (m) and returns a fixed size string.

Answer 63

Hash Function

Question 64

Can be expressed mathematically as h=H(m)

Answer 64

hash function

Question 65

You can’t undo it. It is also collision resistant

Answer 65

Hash Function

Question 66

Random bits that are used as one of the inputs to a hash. Complicates dictionary attacks.

Answer 66

Salt

Question 67

128bit hash specified by RFC1321.

Answer 67

MD5

Question 68

This hash is also not collision resistant. Recommended to use SHA-1 instead.
Breaks down message into 512 byte chunks, padded with 0s if needed to reach 512.
Length of the message is appended as the last 64bits.
Operates on a 128bit state, divided into 4 32bit words.
Four nonlinear function (F) rounds.

Answer 68

MD5

Question 69

This hash uses a Merkle Tree like structure to allow for immense parallel computation of hashes for very long inputs. Was submitted to the NIST SHA-3 competition. In 2009 Rivest stated that this hash is not ready to be a candidate for SHA-3 because of speed issues and other concerns.

Answer 69

MD6

Question 70

Most widely used hash algorithm.

Answer 70

Secure Hash Algorithm (SHA)

Question 71

A 160bit hash function that resembles earlier MD5 algorithm. Designed by the NSA to be part of the Digital Signature Algorithm.

Answer 71

SHA-1

Question 72

Two similar hash functions with different block sizes, known as SHA-256 and SHA-512. Uses 64 byte (512bit) words.

Answer 72

SHA-2

Question 73

A proposed hash function still in development. Will be given name in 2012 by NIST.

Answer 73

SHA-3

Question 74

This hash is in analysis phase and not in widespread use. Uses 512bit blocks and implements preset constants that change after each repetition. Each block is hashed into a 256bit block through four branches that divides each 512 block into sixteen 32bit words that are further encrypted and rearranged. Branches are used in parallel making it hard to analyze.

Answer 74

FORK-256

Question 75

RACE Integrity Primitives Evaluation Message Digest is a 160bit hash algorithm created by Hans Dobbertin, Antoon Bosselaers and Bart Preneel. Also has 128, 256, and 320bit versions which replace the original version because of collision issues. Doesn’t follow any standard security policies or guidelines.

Answer 75

RIPEMD-160

Question 76

Hash algortihm created by the Russians.

Answer 76

GOST

Question 77

Produces a fixed length output of 256bits. Input message is broken up into 256 bit blocks. If block is less than 256 bits then it is padded with 0s.

Answer 77

GOST

Question 78

192bit hash function created by Ross Anderson and Eli Biham in 1995.

Answer 78

Tiger

Question 79

Designed using the Merkle-Damgard construction (collision resistant hash functions). One way compression function operates on 64bit words, maintaining 3 words of state and processing 8 words of data. 24 rounds and 8 input words.

Answer 79

Tiger

Question 80

One uses a block cipher in in CBC mode to improve integrity. The other adds a key to a hash to improve integrity.

Answer 80

MAC and HMAC (Message Authentication Mode) and (Hash Message Authentication Mode)