Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Information Security 4472 > Week 13: Secure Password Generation and Storage > Flashcards

Week 13: Secure Password Generation and Storage Flashcards

1
Q

What are some ways that user Alice can authenticate herself to Bob?

A
  • token
  • cookie
  • password
  • passphrase
  • fingerprint
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What’s the difference between an online attack and a offline attack?

A

Online attack - trying to input password into server

Offline attack - password protected data obtained, hacker attempts offline

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Why are passwords salted?

A

Each password has a unique salt added before hashing so same passwords don’t generate the same hash and so finding the password based on hash is harder.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is key stretching?

A

Making hashing deliberately slow so multiple attempts take much longer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is PBKDF2 and how does it work?

A

Function to make hashing slower. Hashes multiple times.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the disadvantage of PBKDF2?

A

It can be done faster with GPUs by parallelization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are memory hard functions?

A

Hash functions that take up a lot of memory (ie. scrypt, bcrypt)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Information Security 4472 (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions