Part 1

Question 1

What are the 3 aspects of the CIA triad?

Answer 1

Confidentiality: No unauthorised reading/learning of data.
Integrity: No unauthorised modification or destruction.
Availability: Timely and reliable access to data.

Question 2

What is non-repudiation?

Answer 2

The assurance that an entity cannot deny having done an action.

Question 3

What is authenticity?

Answer 3

Property of being genuine and being able to be verified.

Question 4

What is accountability?

Answer 4

Property that an action should be able to be traced back to the entity that performed it.

Question 5

What are the assets of a security system?

Answer 5

Software
Hardware
Data
Communication facilities and networks.

Question 6

What are the 3 types of vulnerability?

Answer 6

Leaky: Unauthorised access
Unavailable: Slow, using becomes impossible/impractical
Corrupted: wrong thing/wrong answers

Question 7

What is an attack?

Answer 7

A thread that is carried out.

Question 8

What are the two attack classifications?

Answer 8

Active: Attempt to alter/affect operation of assets.
Passive: Attempt to learn/make use of information from a system.

Question 9

What is an inside attack?

Answer 9

An attack initiated by an entity inside the security perimeter.
The entity has authorised access to the system.

Question 10

What is an outside attack?

Answer 10

An attack initiated by someone outside the security perimeter.

Question 11

What is a risk?

Answer 11

Measure of the extent to which an asset is threatened by a potential circumstance/event.
The likelihood of occurance.

Question 12

What is a countermeasure?

Answer 12

An action that mitigates the effects of an attack/risk.

Question 13

What is encryption?

Answer 13

Transformation of information using a secret.

Question 14

What is access control?

Answer 14

Rules, policies and mechanisms that limit access to resources to those people/systems with a “need to know”.

Question 15

What is a “need-to-know” determined by?

Answer 15

Identity

Role

Question 16

What is authorisation?

Answer 16

Determining whether a person or system is allowed to access resources, based on an access policy.

Question 17

What is authentication?

Answer 17

Determination of role/identity.

Question 18

How can an entity be authentication?

Answer 18

Something they have (smart card)
Something they know (password)
Something they are (biometrics)

Question 19

What is physical security?

Answer 19

The physical barriers and restrictions used to improve the security of resources and components.

Question 20

What are examples of physical security?

Answer 20

Copper meshes in walls
Locks
Placement of computers in windowless rooms.
Sound dampening materials.

Question 21

What are backups?

Answer 21

Periodic archiving of data to enable restoration in the event of failure.

Question 22

What are checksums?

Answer 22

Functions turning a file into a numerical value.

Question 23

What does a checksum function rely on?

Answer 23

The whole file.

Flipping a single bit should change the output.

Question 24

What are computational redundancies?

Answer 24

Computers/storage devices that serve as fallbacks in the case of failures.

Question 25

What is symmetric encryption?

Answer 25

Encryption using a single, secret key.

Question 26

What is asymmetric encryption?

Answer 26

Encryption using a public-private key pair.

Public for encryption, private for decryption.

Question 27

What is the RSA process?

Answer 27

1. Choose 2 prime numbers (p and q).
2. Calculate N (N = pq).
3. Calcuate T (T = (p-1)(q-1)
4. Choose numbers e,d where ed mod T = 1.
5. PU = (N,e), PR = (N,d)

To encrypt: (message)^e
To decrypt: (message)^d

Question 28

What is a digital signature?

Answer 28

Encryption of the hash of a message using the senders private key that can be used to authenticate their identity using their private key.

Question 29

What is a Man-In-The-Middle attack?

Answer 29

An attack where communication is intercepted by a third party.

Question 30

What is a primitive root?

Answer 30

N is a primitive root of the prime q if its powers mod q is an integer in the range 1-(q-1).
(2,13),(2,17)

Question 31

What is a discrete logarithm?

Answer 31

i is the discrete logarithm of b:

b = a^i mod q

Question 32

What is the diffe-hellman process?

Answer 32

Explain it.

Question 33

What is the job of a certificate?

Answer 33

BInd a user/company identity to their public key.

Question 34

What are the mandatory fields of a certificate?

Answer 34

Version
Serial Number
Signature
Issuer
Validity
Subject
Public Key

Question 35

What is the PKI?

Answer 35

Public Key Infrastructure.

Set of hardware, software, people, processes and policies.

Question 36

What is the role of the PKI?

Answer 36

Faciliate the creation of a verifiable association between a public key and the identity of the holder of the corresponding private key.

Question 37

What cryptography does the PKI use?

Answer 37

Asymmetric

Question 38

What is the job of the CA?

Answer 38

Certification Authority

Issue, revoke and distribute public key certificates.

Question 39

How are certificates signed?

Answer 39

Using the private key of the CA.

Question 40

What is the PKI repository?

Answer 40

A means of storing and distributing x.509 certificates and CRL, and managing updates to certificates.

Question 41

What is the job of the RA?

Answer 41

Registration Authority.

Verify user request for a certificate.

Question 42

What is the process of certificate issuance?

Answer 42

1. RA verifies user request.
2. User chooses PR, CA chooses PU.
3. Certificate issued by CA.

Question 43

What is the process of certificate usage?

Answer 43

1 . User fetches certificate.

2. User fetches CRL.
3. User checks that the certificate is valid using CRL.
4. User checks the signature using certificate.

Question 44

What are the reasons for certificate revocation?

Answer 44

Compromised private key
Company moves physical address
Expiration
HR reasons

Question 45

What is a CRL?

Answer 45

Certificate Revocation List.

List of no longer valid certificates.

Question 46

What are the issues of a CRL?

Answer 46

Expensive to distribute.
Updates not sent quickly enough to defend against atttacks.
Vulnerable to DOS attacks.

Question 47

What are the mandatory fields of a CRL?

Answer 47

Version
Signature
This Update
Next Update
Revoked Certificates [ ]

Question 48

What is TSL?

Answer 48

Transport Layer Security Protocol

Question 49

What does the TLS provide?

Answer 49

Privacy and data integrity

Question 50

What are the 2 protocols of TLS?

Answer 50

Handshake protocol.

Record protocol

Question 51

What is the handshake protocol?

Answer 51

User sends: Client hello, protocol version, suite of supported cryptographic algorithms.
Server responds: Highest common version and suite, public key certificate (with key).
Client checks certificate, generates secret key and sends to server using its public key.

Question 52

How does a client check the certificate of a server?

Answer 52

The certificate is signed by the private key of the CA, so can be verified using the public key of the CA which is included in browsers.

Question 53

What is kerberos?

Answer 53

Network Authentication Protocol.

Question 54

What encryption does kerberos use?

Answer 54

Symmetric encryption

Question 55

What are the goals of kerberos?

Answer 55

Usrs password shouldn’t travel on the network.
Single login for a session
Client and servers mutually authenticate.
User passwords never stored
Authentication information centralised on the authentication server.

Question 56

What is a realm in kerberos?

Answer 56

The users and services authenticated by a KDC.

Question 57

What is a principal?

Answer 57

User, application server, sevices on the network.

Question 58

What is a ticket in kerberos?

Answer 58

Proof of id for a user to access a service.

Question 59

What is the KDC?

Answer 59

Key Distribution Center.`

Question 60

What does the KDC store?

Answer 60

A database of principals and their master keys generated using their passwords.
Database is encrypted using the master key of the KDC.

Question 61

What are the 3 components of the KDC?

Answer 61

Database
Authentication Server
Ticket Granting Server

Question 62

What is phase 1 of Kerberos?

Answer 62

User requests ticket.
AS generates SA.
AS generates TGT: (Username, SA, T1)
AS encrypts TGT with KDC master key.
AS sends to user, encrypting with user’s key KA.
User logins in, KA generated from password.
User decrypts and obtains the TGT.

Question 63

What are the limitations of Kerberos?

Answer 63

Single point of failure
Requires synchronised clocks
Assumes client’s workstation is secure
Vulnerable to password guessing

Question 64

What are the 2 steps of User Authentication?

Answer 64

Identification, Verification

Question 65

What are the problems with passwords?

Answer 65

Password Overload
Passwords can be guessed
Must be stored safely
Password reuse

Question 66

How can an attack crack a password?

Answer 66

Brute Force
Shoulder Surfing
Dumpster Diving
Guessing
Interception
Key Logging
Social Engineering

Question 67

What is phising? + countermeasure

Answer 67

Using a fake site to gain credentials to be used on a target site.
CM: Server-side authentication

Question 68

What is interception? + countermeasure

Answer 68

Clear text information intercepted by an attacker (man in the middle)
CM: Encrypt communication among users and website.

Question 69

What is keylogging?

Answer 69

Using software to record the keys typed by users.
Can get passwords from this.
E.g. Kidlogger, Revealer

Question 70

What are the countermeasures for Shoulder Surfing and Dumpster Diving?

Answer 70

User Training and awareness

Question 71

What are the 2 types of password attacks?

Answer 71

Offline/Online

Question 72

How many combinations are the for a brute force attack?

Answer 72

(Length of alphabet)^(length of password)

Question 73

What is an online dictionary attack?

Answer 73

An attack that tries passwords from a dictionary of words, common passwords, important words to the user (name, address, pet…) etc.
Not 100% guarenteed to crack the password, but can lead to less trials and time needed.

Question 74

What are good countermeasures for password cracking?

Answer 74

Throttling
Locking
Protective Monitoring
Password Blacklisting (common passwords)

Question 75

What is password strength?

Answer 75

The effectiveness of a password against a brute force attack.

Question 76

What is password entropy?

Answer 76

nlog(A)/log(2)

Question 77

What is an offline dictionary attack?

Answer 77

An attack that tries to crack passwords in a password file.

The attacker tries passwords from a dictionary of common passwords and compares the hashes.

Question 78

What are the countermeasures for an offline dictionary attack?

Answer 78

Hashing
Salting
Password File access (only priviledged users)
Separation of user ids to passwords

Question 79

What are the properties of a good hash function?

Answer 79

Non-reversible
Fixed length
Unique for each input

Question 80

What is salting?

Answer 80

The process of adding random bits to a password, then hashing the result to make a brute force attack even harder.

Question 81

What is the salting process?

Answer 81

1. Compute hash of the password.
2. Add salt (prepend/append).
3. Hash the result.
4. Store the hash and salt

Question 82

What can be used to crack passwords?

Answer 82

Pwdump

L0phtcrack

Question 83

What are the password cracking methods?

Answer 83

Brute force
Dictionary: Only as good as your dictionary
Hybrid

Question 84

What is a reduction function? + examples

Answer 84

A function that transforms a hash into a new string (possible password0 to be hashed.
E.g : First 6 letters, first 6 characters, last 5 numbers etc.

Question 85

What is the rainbow table process?

Answer 85

1. Precompute hashes, apply red. funcs, compute hashes etc. to create the rainbow table. Only store first and last column.
2. Apply last red. func to hash to crack.
3. Check if result is in the table.
4. If so, go to the start of that row, and compute the hashes until the plaintext is found. (Its the plaintext that generates the hash.)
5. If not, apply the penultimate red. func, last red. func, check.
6. Repeat until row is found.
7. Go to the start of the row and calculate the hashes forward until the correct value is found.

Question 86

Why are rainbow tables used?

Answer 86

They are a good trade off between time and space.

Question 87

What is online and offline cracking?

Answer 87

Offline: Password of a program (zip file)
Online: Online service to crack (ssh) - Use hydra.

Question 88

What are the security properties of privacy?

Answer 88

Confidentiallity, Integrity, Availability, Accountability

Question 89

What must be considered with privacy?

Answer 89

The system as a whole: Software, Hardware, Physical Environment, Legal, Coroporate, Personnel

Question 90

What is confidentiality?

Answer 90

Unauthorised reading/learning of data.

Presumes an access control security policy.

Question 91

What is privacy?

Answer 91

Keeping individuals information confidential.

Question 92

What is secrecy?

Answer 92

Keeping company information confidential.

Question 93

What is anonimity?

Answer 93

True identity of an individual is not known and cannot be learned.

Question 94

What is intrusion?

Answer 94

Invasive acts that threaten the solitude or tranquility of a person.

Question 95

What is decisional inference?

Answer 95

Government’s incursion into the data subjects decisions regarding their private affairs.

Question 96

What is surveillance?

Answer 96

The watching, listening to or recording of an individuals activies.

Question 97

What is interrogation?

Answer 97

Various forms of questioning and probing for information.

Question 98

What is aggregation?

Answer 98

Combining of data about a person.

Question 99

What is identification?

Answer 99

Linking information to a particular individual.

Question 100

What is insecuity?

Answer 100

Carelessness in protecting stored information from leaks and improper access.

Question 101

What is secondary use?

Answer 101

The unconsensual use of data for purposes other than those for which the data was originally collected.

Question 102

What is exclusion?

Answer 102

Failure to allow the data subject to know about the data that others have about them and participate in its handling and use.

Question 103

What is a breach in confidentiality?

Answer 103

Breaking a promise to keep data confidential.

Question 104

What is disclosure?

Answer 104

Releasing information that influences how an individual is jduged.

Question 105

What is exposure?

Answer 105

Revealing nudity, greif or bodily functions.

Question 106

What is increased accessibility?

Answer 106

Amplifiying accessibility of information.

Question 107

What is blackmail?

Answer 107

The threat to relese personal information.

Question 108

What is appropriation?

Answer 108

The use of someone’s identity in order to serve another’s aims.

Question 109

What is distortion?

Answer 109

Dissemination of false/misleading information about an individual.

Question 110

What is privacy as confidentiality?

Answer 110

Data anonymisation, secure messaging, anonymous communication, data minimisation.

Question 111

What is privacy as control?

Answer 111

Annonymous credentials, privacy policy languages, purpose-based AC.

Question 112

What is privacy as practice?

Answer 112

Feedback and awareness tools, privacy nudges, aid in privacy decision making.

Question 113

What is a privacy policy?

Answer 113

Text that specifies how data may be used, under which conditions and what obligations this entails.

Question 114

What are the privacy requirements?

Answer 114

AC requirements
Actions required before access
Actions that must be performed within a certain time period.
Restrictions on further distribution of data.
Restrictions on purpose of use.
Limitations of retention time.
Mandatory use of protection mechanisms
Duties of keeping data up-to-date.

Question 115

What are the 2 pet families?

Answer 115

Soft Privacy Technology
Assume trust of 3rd party. (AC, tunnel encryption)
Hard Privacy Technology
No trust of 3rd party. (Tor)

Question 116

What is a data controller, data subject and data analyst?

Answer 116

Controller: Entity that collects, holds and controls the data.
Subject: Entities that the data is about.
Analyst: Entities that use the data for studies and predictions.

Question 117

What are the 3 classifications of attributes?

Answer 117

Explicit (key) Identifiers: Name, NI
Quasi-identifierL DOB, Postcode
Sensitive: Medical records

Question 118

What is k-anonimity?

Answer 118

A record must be indistinguishable from at least k-1 other records with the same quasi-identifier.
There must be at least k records with the same equivalence class.
If this holds for each quasi-identifer, a table is k-anonymous.

Question 119

How can k-anonimity be achieved?

Answer 119

Generalisation: Making quasi-identifiers less specific. (>40). Partition ordered-value domains into intervals.
Supression: 478**, if there is too much loss with generalisation.

Question 120

How can k-anonimity be attacked?

Answer 120

If the attacker has backgroud information (background knowledge attack).
If there is not enough diversity in sensitive attributes for each equivalence class. (Homogeniety attack).

Question 121

What is l-diversity?

Answer 121

If an equivalence class has at least l well represented values, then it has l diversity.
If all equivalence classes have l-diversity, the table is l-diverse.

Question 122

What is distinct l-diversity?

Answer 122

Each equivalence class at at least l sensitive values for the field.

Question 123

What is a limitation of l-diversity?

Answer 123

It doesn’t protect again senstive attribute disclosure.

Doesn’t consider overall distribution of sensitive values.

Question 124

What is sensitive attribute disclosure?

Answer 124

The attacker can make broader claims about an individual. (Salary range, illness domain - mental illness, stomach illness)
This is a similarity attack.

Question 125

What is t-closeness?

Answer 125

The distribution of sensitive values in each equivalence class should be within a threshold t of the original distribution.

Question 126

What is differential privacy?

Answer 126

The probability of a result of a query being nearly the same, regardless of whether a individual is included in the dataset.

Question 127

Why is a proxy not fully anonymous?

Answer 127

The proxy server knows where information is coming from and going to.
The sender is not known to the recevier and vice versea, but known to the proxy.

Question 128

What is a VPN?

Answer 128

Virtual Private Network.

Can make computers outside a network be treated as if they are in the network.

Question 129

What is encapsulation in a VPN?

Answer 129

The wrapping of a message for travel over a channel into a VPN. It is unwrapped once it arrives, and is then treated as normal network traffic.

Question 130

Why are VPNs good?

Answer 130

Provide anonymity.
Can access sensitive resources from outside of a network.
Can be used to simulate current position to that of the server (US Netflix).

Question 131

What is a mix network?

Answer 131

A routing protocol that sends traffic to different proxy servers to reach a final destination.

Question 132

What is the process of a mix network?

Answer 132

1. Path identified by the user, public keys of servers collected.
2. Layers of encryption added to message using each public key.
3. Message sent along the path.

Question 133

Why is a mix network anonymous?

Answer 133

Each server only knows its direct neighbours in the path.

Question 134

How are replied returned to the user?

Answer 134

The server sends the data to the last in the path, it encrypts the reply using a key given to it by the user when the first request was sent. Then the data is passed up the path, each with a new layer of encryption being given to it.
Once it reaches the user, it is decrypted.

Question 135

What are the 3 nodes in Tor network?

Answer 135

Guard, relay, exit

Question 136

What is the job of a Tor browser?

Answer 136

To provide a path of nodes for the user to use to send a message.

Question 137

What is perfect forward secrecy?

Answer 137

Using keys of each server to encrypt the data, so no nodes can access the data.

Question 138

What are the 2 types of relay node?

Answer 138

Bridge node: Unlisted

Advertised

Question 139

How is 2-way anonimity achieved?

Answer 139

A rendezvous point is agreed on by a user and server. Messages are routed using paths to this point.
A server will register an Onion URL which can be accessed via a Tor browser. Server has introduction points, via a path, which is used to agree the rendezvous point.

Question 140

What is the process of E-voting in Estonia?

Answer 140

Voter uses ID card and PinPad.
ID card and PinPad used to create key. 
Key used to authenticate website.
Users uses second key to confirm vote. 
Vote sent.
Vote encrypted using PU of government or LA.
Vote wrapped with voter's signature.
Vote collected, unwrapped and mixed.
All votes then counted.

Question 141

What is homomorphic encryption?

Answer 141

Uses mathematical functions that allow for results to be found without decryption.

Question 142

Where can AC be implemented?

Answer 142

Locally or over a network.

Question 143

What is a security policy?

Answer 143

Defines which executions are allowed by which users/systems according to a set of measurable, high-level rules.

Question 144

What is a security model?

Answer 144

A formal representation of a class of systems, highlighting security features.

Question 145

What are 2 security models?

Answer 145

Code based

Database oriented.

Question 146

What is Discretionary Access Control?

Answer 146

Principle: Users own resources and control access to them.

Each resource has a DAC list which specfies which entities have which access.

Question 147

What are the issues of DAC?

Answer 147

Large systems are complex to manage.
Difficult to understand whether correct permissions have been given to the right users.
The objects and users change frequently, so their permissions need to be update frequently as well.

Question 148

What is Mandatory Access Control?

Answer 148

Access control based upon security levels of subjects and objects.
Most systems use multi-level security policies.
Decisions are made by comparing security clearance of a subject with the security clearance of an object.

Question 149

What does each subject have in a MAC system?

Answer 149

A clearance and “need-to-know”.
To access a resource, the subject must have a clearance level or higher than that of the resource, and contain all the “need-to-knows” of an object.

Question 150

What is an RBAC?

Answer 150

Role-Based Access Control.
Access given to subjects based upon their role an organisation.
Permissions are assigned to roles.

Question 151

What are the advantages of RBAC?

Answer 151

Distinct from user groups.
Emphasis on responsibility
Increases abstraction in policies (more managable)
Simple
Reduces user administration.

Question 152

What are the types of RBAC?

Answer 152

Flat
Hierarchical
Constrained

Question 153

What is the Chinese Wall Model?

Answer 153

Commercially inspired confidentiality model.
Uses conflict classes.
A user can only have access to one dataset within each conflict class.

Question 154

What is blockchain?

Answer 154

A decentralised ledger of transactions, fully replicated over a trustless peer to peer network.

Question 155

What are the transactions of blockchain?

Answer 155

Events of interest for a specific application.

Question 156

What is bitcoin?

Answer 156

A decentralised cryptocurrency that transfers currency via blockchain, providing pseudo-anonimity.

Question 157

How are transacrtions carried out in blockchain?

Answer 157

Transaction is broadcasted to the whole network.
All nodes verify the transaction.
Each replica updates its ledger.

Question 158

What are digital signatures used for?

Answer 158

Verifiying the sender, and proving ownership of the UTXO.

Question 159

How are transactions identified?

Answer 159

Using the addresses which are associated to a (PU,PR).

A wallet contains the key pairs associated to the addresses of a user.

Question 160

What are the inputs for a transaction?

Answer 160

An amount of unspent bitcoin to be used for the transaction.

Question 161

What is the UTXO?

Answer 161

Unspent Transaction Output

Question 162

How is ownership of the UTXO proved?

Answer 162

Using digital signatures which verify the ownership of the private key associated to the address.

Question 163

Why does having multiple address provide full anonymity?

Answer 163

A user can be profiled when different transactions are used for a UTXO.

Question 164

Why is decentralisation good?

Answer 164

Doesn’t require trust
No single point of failure
No censorship

Question 165

How are blocks created?

Answer 165

Miners choose which txns to include in a block.
Miners choose which block to use as previous.
Miners solve resource-intensive puzzle to compute Proof-of-Work (PoW).
New block is broadcast to the network.
Each node adds it to its local blockchain replica.

Question 166

What is on a new block?

Answer 166

A number of transactions.
Reference to previous block (hash)
Random number (solution)

Question 167

What is the puzzle?

Answer 167

Find a number s.t the hash of the block has a certain number of zeros as a most significant digit.

Question 168

What are the insentives to mine?

Answer 168

Amount of bitcoin for the block.

Transaction fees.

Question 169

How are branches dealt with?

Answer 169

They are allowed to grow until one becomes longer and is accepted; the others are rejected and the transactions are rolled back.

Question 170

What is pooling?

Answer 170

The combination of computational power between groups of miners.
More chance of branches (and blocks) being accepted, so more fees.
Fees split between the group.

Question 171

What are the advantages of blockchain?

Answer 171

Decentralised
Reliable
Pseudo-anonymity
No need for trust
Immutable history of txns.

Question 172

What are the disadvantages of blockchain?

Answer 172

Not stablised
High transaction fees
Slow txn confirmation
Business may not be protected.

Question 173

What is a smart contract?

Answer 173

A computerised txn protocol that executes the terms of a contract.
Digital representation of a legal contract that can be executed determinisically.

Question 174

What is the life cycle of a contract?

Answer 174

Definition, Execution, Audit

Question 175

What are the 4 conditions of a smart contract?

Answer 175

Integrity of Control: Accountability of contract enforcement
Democratic Control: Responsiblilty should be shared, no controlling party.
Non-repudiation: Cannot argue with any part of the execution.
Building of trust: Should start trustless, build and preserve for duration.

Question 176

How does blockchain adhere to the conditions of smart contracts?

Answer 176

IoC: Transactions are immutable.
DC: Executedby all peers.
N-R: Transactions are immutable
BoT: PoW consensus builds trust.

Question 177

What is ethereum?

Answer 177

Decentralised platform for executing smart contracts.

Question 178

What are the 2 types of account for Ether?

Answer 178

Externally Owned Account

Contract

Question 179

What is EOA used for?

Answer 179

Transferring cryptocurrency.

Question 180

What can contracts do?

Answer 180

Update state

Carry out transactions to EOA/contracts

Question 181

What is the cost of a smart contract?

Answer 181

Gas unit

Question 182

What is a gas limit?

Answer 182

The maximum amount of gas units that a transaction is willing to pay.

Question 183

What is a decentralised application?

Answer 183

An application whos backend runs on a decentralised P2P network.
Multiple stakeholders are willing to manage assets of interest accounding to a business logic encoded as smart contracts.

Question 184

What is a permissioned blockchain?

Answer 184

A blockchain where the peers are invited.

Question 185

Why are permission blockchains used?

Answer 185

Used in buisness, for company to company transactions.

They may not want to make the txns public.

Question 186

What determines the creator of the next block in a permissioned blockchain?

Answer 186

Leader election

Question 187

Which performance is better, permissioned or permissionless?

Answer 187

Permissioned

Question 188

What does responsible distribution ensure?

Answer 188

No single point of failure

No priviledged nodes.