Semester 1 Test

Question 1

What is the easiest form of attack against a Caesar Cipher?

Answer 1

Brute force

Question 2

Decode the following message encoded using a Caesar Cipher: JSTZLMJCFRX

Answer 2

x = -5. “enough exams”

Question 3

Decode the following Rail Fence encoded message: TSASHITTISE

Answer 3

TSAS
HITT
ISE
“This is a test”

Question 4

Why are Mono-alphabetic Substitution Ciphers not as strong as they may initially appear?

Answer 4

Mono-alphabetic substitution ciphers appear strong as brute force attacks can take long (2^88.4). However the language used can be exploited to find letter frequencies.

Question 5

Using a Playfair Cipher with ‘EDUCATION’ as the Keyword encode the word FIRSTCLASS

Answer 5

playfair a 5 * 5 matrix and keyword.

“GT SM NE SB QZ QZ”

Question 6

What is meant by a letter frequency graph and why is it important to try and get it as flat as possible?

Answer 6

Because accurate average letter frequencies can be easily gleaned by analyzing a large amount of representative text, one must try to make it so their ciphertext has even frequency counts to prevent bruteforce with knowledge of the plaintext langauge.

Question 7

What type of encryption is a Vigenere Cipher an example of?

Answer 7

It is a simple form of polyalphabetic substitution.

Question 8

Using a Vigenere Cipher with ‘EDUCATION’ as the Keyword encode the word FIRSTCLASS

Answer 8

“JLLUTVTOFW”

Question 9

What is the primary concern associated with the use of any symmetric encryption mechanism?

Answer 9

Secure communication of the key

Question 10

Explain what is meant by the terms ‘confusion’ and ‘diffusion’ in terms of symmetric encryption

Answer 10

Diffusion seeks to make the statistical relationship between plaintext and ciphertext as complex as possible in order to thwart attempts to deduce the key.

Confusion seeks to make the relationship between the statistics of the cipher text and the value of the encryption key as complex as possible ( achieved by use of complex substitution cipher)

Question 11

List the main variables/parameters associated with any implementation of a Fiestel Cipher

Answer 11

Block size
Key size
Number of rounds

Question 12

Describe what is meant when an encryption algorithm is said to exhibit a ‘strong avalanche effect’

Answer 12

A change in a single bit results in the change of at least half of the bits in the cipher text

Question 13

Name the four separate functions performed within each round of AES

Answer 13

Subbytes
Mix Columns
Shift Rows
Add Round key

Question 14

Explain why the security of RSA depends upon the difficulty of factoring large numbers

Answer 14

Instead of using substitution and permutation, Asymmetric cryptography instead treats input as numbers and performs calculations.

Question 15

Describe what a digital signature is and briefly explain how one is constructed

Answer 15

A digital signature is an unique identifier for the sender created by putting a message through a hash algorithm, encrypted with using their private keys.

Question 16

List the five separate functions provided by PGP when using it to secure emails

Answer 16

Authentication
Compression
Segmentation
Email compatibility
Confidentiality

Question 17

List the two main protocols that make up the SSL/TLS architecture

Answer 17

handshake protocol

Record protocol

Question 18

What is the main difference between Transport Mode and Tunnel Mode when using IP Sec?

Answer 18

Transport Mode - Encrypts the data

Tunnel Mode - Also encrypts sender and receiver identifiers

Question 19

Briefly describe why WEP is not considered a secure protocol for use with WLANs

Answer 19

Wired Equivalent Privacy uses a stream cipher, the same traffic key must never be used twice. The purpose of an IV, which is transmitted as plain text, is to prevent any repetition, but a 24-bit IV is not long enough to ensure this on a busy network. The way the IV was used also opened WEP to a related key attack. For a 24-bit IV, there is a 50% probability the same IV will repeat after 5000 packets.

Question 20

Why was TKIP considered as a replacement for WEP even though AES-CCMP was available?

Answer 20

Unlike AES - CCMP, TKIP is compatible with hardware currently in use.