PKI and Cryptographic Applications

Question 1

What are the THREE most common Public-Key Cryptosystems?

Answer 1

RSA, EL GAMAL and Elliptic Curve

Question 2

In a Public-Key system how many keys does a user have ?

Answer 2

Two

Question 3

What are the names of these TWO keys

Answer 3

Public Key - Known to everyone

Private Key - ONLY known and for the USER.

Question 4

What does RSA stand for ?

Answer 4

Rivset, Shamir,Adleman ( These are the founders)

Question 5

What are some facts about RSA

Answer 5

1. Developed in 1977
2. Worldwide standard
3. Uses large PRIME NUMBERS to create key pairs

Question 6

What letters represent what in the RSA formula?

Answer 6

C = Cipher text

P = Plain Text

e= Public Key

d = Private Key

n = p+q

Question 7

Out of all the expressions/letters in the RSA formula which one is the largest number?

Answer 7

‘n’ as n = p+q

Question 8

Why is Mark Hellman Knapsack different to RSA ?

Answer 8

Uses FACTORING SETS(Super increasing sets) instead of LARGE PRIME NUMBERS

Question 9

What year was Mark Hellman Knapsack broken?

Answer 9

1984

Question 10

What is Key length BEST PRACTICE ?

Answer 10

1. Understand the encryption algorithm and Key length
2. Time lines of the data ( eg. will it be sensitive for only a month then use a smaller key etc)
3. • MORE IMPORTANT THE DATA , STRONGER the KEY to use

Question 11

If the Key length for RSA and DSA is 1024 , what is the key length for Elliptic Curve ?

Answer 11

160 bit

Question 12

What are some facts about EL GAMAL ?

Answer 12

1. Extension of Diffie Hellman ( Symmetric Key exchange algorithm
2. Provides encryption/ decryption of messages (NOT JUST KEY)
3. Developed by Dr.T.EL GAMAL
4. Doubles the length of ANY message it encrypts

Question 13

What are some facts about Elliptic Curve ?

Answer 13

1. Developed by Mathematicians Neal Kobilitz and Victor Miller
2. Proposed in 1985
3. Harder to solve than PRIME FACTORISATION (Used by RSA)
4. Only a small key is needed

Question 14

What does a hash function do ?

Answer 14

Creates a UNIQUE MESSAGE DIGEST

Question 15

What TWO things can the Message digest be used for ?

Answer 15

1. Non-Repudiation

2. Digital Signature

Question 16

What is the bit size of Message digests?

Answer 16

128 bits or LARGER

Question 17

What functions do single digit message digests provide ?

Answer 17

1. Parity

2. Low level/Single digit checksum

Question 18

RSA requirements for HASH FUNCTIONS

Answer 18

1. INPUT can be ANY length.
2. OUTPUT has a FIXED length
3. HASH FUNCTION relatively easy to COMPUTE for any input.
4. HASH FUNCTION are ONE-WAY.
5. COLLISION FREE ( No two messages produce the SAME hash value)

Question 19

What does HAVAL stand for ?

Answer 19

Hash of Variable Length

Question 20

What are some facts about HAVAL?

Answer 20

1. Modification of MD5
2. Uses 1024bit blocks
3. Hash values 128,160,192,224,256

Question 21

What hash function is a modification of MD5 ?

Answer 21

HAVAL

Question 22

What are the FIVE hash values for HAVAL ?

Answer 22

128,160,192,224,256

Question 23

What size block does HAVAL use ?

Answer 23

1024 bit

Question 24

What does SHA stand for

Answer 24

Secure Hashing Algorithm

Question 25

How many versions of SHA is there ?

Answer 25

3 ( SHA-1,SHA-2,SHA-3)

Question 26

Out of all THREE SHA’s what one is considered SECURE?

Answer 26

SHA-2

Question 27

Who developed SHA-1 ?

Answer 27

NIST

Question 28

Where is SHA-1 specified as a SECURE HASH STANDARD?

Answer 28

FIPS-180

Question 29

What length size message can SHA-1 handle ?

Answer 29

Any size

Question 30

What is the message digest size for SHA-1?

Answer 30

160bit

Message length needs to be a multiple of 512, IF not then SHA will parse the message until it is a multiple of 512

Question 31

What are the FOUR variants of SHA-2?

Answer 31

1. SHA-256
2. SHA-224
3. SHA-512
4. SHA-384

Question 32

What TWO of the variants are truncated versions of SHA ?

Answer 32

SHA-224 & SHA-384

Question 33

What is the message digest size for all FOUR of the SHA-2 variants?

Answer 33

SHA-256 = 256 MD

SHA-224 = 224 MD

SHA-512 = 512 MD

SHA-384 = 384 MD

Question 34

What is the BLOCK SIZE for all FOUR of the SHA-2 variants?

Answer 34

SHA-256 = 512 bit block

SHA-224 = 1024 bit block

SHA-512 = 1024 bit block

SHA-384 = 1024 bit block

Question 35

What algorithm is confirmed as the SHA-3 standard ?

Answer 35

KEECAK

Question 36

Is SHA-3 in use ?

Answer 36

no, it is still in DRAFT phase.

Question 37

What does MD2 stand for ?

Answer 37

Message Digest 2

Question 38

Who developed MD2,MD4 & MD5 ?

Answer 38

Ronald Rivset ( One of the RSA founders)

Question 39

When was MD2 developed ?

Answer 39

1989

Question 40

What is the MD2 message digest size ?

Answer 40

128 bit ( Original message + CHECKSUM)

Question 41

What function does MD2 NOT have ?

Answer 41

One way function

Question 42

What size bit processor does MD2 support?

Answer 42

8 bit

Question 43

Is MD2 still in use ?

Answer 43

NO

Question 44

MD2 Facts ?

Answer 44

• Developed by Ronald Rivset in 1989 ( One of the RSA founder)
• Provide a SECURE hash function for 8 bit processors
  
  • Pads the message so that the length is a multiple of 16 bytes.
• Computes a 16 byte CHECKSUM and ADDS it to the END of the message
• 128bit Message digest ( Original message and the added CHECKSUM) ** If CHECKSUM computed after MESSAGE DIGEST – COLLISIONS may OCCUR ( Nathanlie Rogier, Pascal Chavad)
• NO One-Way function !!!

** !! ** THIS IS NO LONGER USED ** !! **

Question 45

What does MD4 stand for ?

Answer 45

Message Digest 4

Question 46

What size bit processor does MD4 support?

Answer 46

32

Question 47

Has the security increased in MD4 compared to MD2

Answer 47

YES

Question 48

What size does a message length need to be for MD4 ?

Answer 48

Message length needs to be 64 bits less than multiple of 512 ( If not then it will pad until it reaches that)

Question 49

EXAMPLE ; No answer required

Answer 49

EXAMPLE: 16 bit message

16 bit Message - - > Padded with 432 additional bits to make it 448 bits

16 + 432 = 448 512 - 448 = 64 ** 64 bits SMALLER than 512 **

Question 50

What is the MD4 message digest size ?

Answer 50

128bit

Question 51

What size block does MD4 process ?

Answer 51

512 bit block

Question 52

Is MD4 still in use ?

Answer 52

NO

Question 53

What does MD5 stand for ?

Answer 53

Message Digest 5

Question 54

What is the MD5 message digest size ?

Answer 54

128bit

Question 55

What size block does MD5 process ?

Answer 55

512bit

Question 56

What size does a message length need to be for MD5 ?

Answer 56

Message length needs to be 64 bits less than multiple of 512 ( If not then it will pad until it reaches that)

Question 57

Why was extra security added to MD5 ?

Answer 57

to REDUCE the speed of MESSAGE DIGEST production.

Question 58

Are MD2,MD4,MD5 recommended and in use ?

Answer 58

MD2, MD4, MD5 - NO LONGER ACCEPTED OR RECOMMENDED

Question 59

HASH Algorithms and Message Digest sizes ?

Answer 59

Hashing Variable Length - HAVAL ( MD5 variant )

128, 160, 192, 224, 256

Hashing Message Authentication Code ( HMAC )

Variable

Message Digest 2 ( MD2 )

128

Message Digest 4 ( MD4 )

128

Message Digest 5 ( MD5 )

128

Secure Hashing Algorithm (SHA/SHA-1)

160

SHA - 224

224

SHA - 256

256

SHA - 384

384

SHA - 512

512

Question 60

What is used to implement digital signatures?

Answer 60

HASHING

Question 61

TWO goals for DIGITAL SIGNATURES?

Answer 61

Non Repudiation ( Assure the receiver that the message truly came from claimed sender.)

Integrity (Assure the receiver that the message WAS NOT altered while in transit between sender & receiver)

Question 62

What does digital signatures require ?

Answer 62

1. PUBLIC KEY cryptosystem (Asymmetric)

2. HASHING function.

Question 63

EXAMPLE ; No answer required

Answer 63

Example: Alice wants to digitally sign a message sing a hashing algorithm

1. Alice generates a MESSAGE DIGEST of the message using a HASHING ALGORITHM ( SHA-1, SHA-256, SHA-512 etc)
2. Alice ENCRYPTS only the MESSAGE DIGEST using her PRIVATE KEY (This is the DIGITAL SIGNATURE).
3. Alice attaches the signed MESSAGE DIGEST to the PLAIN-TEXT message
4. Alice sends the appended message to Bob

Question 64

EXAMPLE ; No answer required

Answer 64

Example: Bob receives the DIGITALLY SIGNED message and does the following:

1. Bob DECRYPTS the DIGITAL SIGNATURE, using Alice’s PUBLIC KEY.
2. Bob uses the same HASH FUNCTION to create the MESSAGE DIGEST (MD) of the full PLAIN-TEXT message.
3. Bob compares the DECRYPTED MESSAGE DIGEST (MD) received from Alice with the MESSAGE DIGEST(MD) he computed himself.

Outcomes:

IF THEY MATCH = Assured the message was sent by Alice

IF THEY DO NOT MATCH = Message not sent by Alice or modified in transit.