T2

Question 1

What is openSSL

Answer 1

a software tool used for encrypting text (has built in ciphers)

Question 2

what is inputted and outputting in the first openssl operation we do

Answer 2

input plaintext.txt ouput ciphertext.bin

Question 3

what is key derivation in reference to the warning we get after obtaining ciphertext.bin?

Answer 3

process of converting password into a cryptographic key. Using openSSL built in key derivation function

Question 4

what did warning message say after I tried to encrypt the plaintext.txt file (first operation)

Answer 4

that i shold use a robust key derivation function like pbkfd2, so i did

Question 5

input + ouput of decryption operation

Answer 5

input ciphertext.bin output plaintext2.txt

Question 6

how to verify that decryption worked

Answer 6

diff plaintext2.txt plaintext.txt

Question 7

list all ciphers available on openssl

Answer 7

openssl help

Question 8

test speed of encryption cipher on your system

Answer 8

openssl speed < name of cipher >

Question 9

how can you improve performance of a cipher

Answer 9

run encryption/decryption on multiple cpu cores (not more than you have though!)

Question 10

is 10^6 decryptions/nano second realistic for hardware of hacker

Answer 10

yes, GPUs can do this and brute force modern DES 56-bit keys in around 10 hors

Question 11

how much faster was aes than des

Answer 11

in terms of encryption/decryption, 800 mb/s vs 40 mb/s