Public Key Crptography (week 10)

Question 1

What principle did William Stanley Jevons illustrate with his factorisation example?

Answer 1

The difficulty of reversing factorisation underpins RSA security.

Question 2

Who invented the RSA algorithm?

Answer 2

Ron Rivest, Adi Shamir, and Leonard Adleman.

Question 3

What are the key components required for RSA key generation?

Answer 3

Two large prime numbers (p, q) and a public/private key pair.

Question 4

How does public key encryption ensure confidentiality?

Answer 4

The sender encrypts data with the recipient’s public key; only the recipient can decrypt it using their private key.

Question 5

What is non-repudiation in public key cryptography?

Answer 5

Proof that a message was sent by the claimed sender.

Question 6

Why is encrypting the entire document often unnecessary in practice?

Answer 6

Encrypting a hash is faster and provides equivalent authenticity.

Question 7

What are the two processes combined for confidentiality and authentication?

Answer 7

Encrypting with the recipient’s public key and signing with the sender’s private key.

Question 8

How can Bob verify Linda’s identity using public key cryptography?

Answer 8

Using Linda’s public key to decrypt her signed message.

Question 9

What is a Certificate Authority (CA)?

Answer 9

An entity that issues digital certificates to verify identities.

Question 10

What role does a Registration Authority (RA) play in public key infrastructure?

Answer 10

It verifies user requests before certificates are issued.

Question 11

What is the Web of Trust model?

Answer 11

A decentralized method where users vouch for each other’s keys.

Question 12

Why is the Web of Trust difficult to manage in practice?

Answer 12

Trust chains can be complex and difficult to maintain.

Question 13

What is the primary role of Pretty Good Privacy (PGP)?

Answer 13

Encrypting and signing emails for privacy and authentication.

Question 14

How does the Estonian ID-Card model ensure public key verification?

Answer 14

Through government-backed digital certificates.

Question 15

What are the key properties of cryptographic hash functions?

Answer 15

Deterministic, fast, irreversible, and collision-resistant.

Question 16

Why is MD5 considered flawed for modern security purposes?

Answer 16

It is vulnerable to collision attacks.

Question 17

What hash algorithm is recommended for modern applications?

Answer 17

SHA-256 or SHA-3.

Question 18

How does Linux secure passwords using hashing and salts?

Answer 18

By combining a password with a unique salt before hashing.

Question 19

What is the purpose of a Message Authentication Code (MAC)?

Answer 19

To ensure data integrity and authenticity.

Question 20

How does a Digital Signature ensure message authenticity?

Answer 20

By signing the message with the sender’s private key.

Question 21

What is the Diffie-Hellman key exchange?

Answer 21

A method for securely exchanging cryptographic keys.

Question 22

Why is public key cryptography not used for real-time encryption?

Answer 22

It is slower than symmetric encryption methods.

Question 23

What vulnerability exists in the Diffie-Hellman exchange?

Answer 23

Man-in-the-middle attacks if authentication isn’t applied.

Question 24

How can you mitigate a man-in-the-middle (MITM) attack in Diffie-Hellman?

Answer 24

Use digital certificates to verify identity.

Question 25

What does GSM stand for?

Answer 25

Global System for Mobile Communications.

Question 26

What is the primary purpose of GSM encryption?

Answer 26

To protect voice and data transmission over mobile networks.

Question 27

How does GSM encryption use XOR for secure communication?

Answer 27

By combining plaintext with a generated keystream.

Question 28

What is the relationship between XOR and addition modulo 2?

Answer 28

They are mathematically identical.

Question 29

Why does XOR provide better security than AND or OR in encryption?

Answer 29

XOR’s output reveals no direct information about the inputs.

Question 30

How does GSM’s A5 stream cipher generate a key?

Answer 30

Using the session key (Kc) and frame number.

Question 31

What is the role of the SIM card in GSM encryption?

Answer 31

It stores the secret key for generating Kc.

Question 32

What is the significance of the session key (Kc) in GSM encryption?

Answer 32

It is unique for each communication session.

Question 33

Why is the A5/1 cipher considered vulnerable?

Answer 33

It can be cracked using rainbow tables and brute force.

Question 34

What encryption algorithms replaced A5/1 in later generations of mobile communication?

Answer 34

A5/3, Kasumi, and AES.

Question 35

What are the key differences between 3G, 4G, and 5G encryption methods?

Answer 35

Each iteration improved encryption strength and added enhanced authentication methods.

Question 36

How does AES improve security in modern mobile communication?

Answer 36

With stronger encryption keys and improved performance.

Question 37

What is the role of a pseudo-random key stream in GSM encryption?

Answer 37

It ensures data appears random to attackers.

Question 38

Why is XOR encryption reversible using the same XOR operation?

Answer 38

XORing twice with the same key cancels out the original encryption.

Question 39

What property makes XOR ideal for encryption?

Answer 39

Its ability to easily encrypt and decrypt data by repeating the same process.

Question 40

What logic gate does XOR resemble?

Answer 40

The exclusive OR (XOR) gate in digital logic.