Cryptography

Question 1

MD5

Answer 1

Hash -

Message Digest - Hashing (128 bit)

Question 2

SHA

Answer 2

Hash -

SHA - Secure Hash Algorithm

Question 3

SHA1

Answer 3

Hash -

SHA - Secure Hash Algorithm 160 bit

Question 4

SHA2

Answer 4

Hash -

SHA - Secure Hash Algorithm. 128, 256, 384, 512

Question 5

SHA3

Answer 5

Hash -

SHA - Secure Hash Algorithm

Question 6

HMAC

Answer 6

Hash -

Hash-Based Message Authentication code. Uses a shared key to improve randomness.

Question 7

RIPEMD

Answer 7

Hash -
RACE Integrity Primitives Evaluation Message Digest
Used mostly for integrity.

Question 8

LANMAN

Answer 8

Older MS password hashing alg

Question 9

NTLM

Answer 9

v2 is the current MS password hashing alg.

Question 10

Encrypts data in specific block sizes

Answer 10

Block cipher

Question 11

Encrypts data on bit or byte at a time

Answer 11

Stream cipher

Question 12

Uses a different encryption key each time

Answer 12

Stream cipher

Question 13

AES

Answer 13

Advanced Encrypting Standard - block cipher
Encrypts data in 128-bit blocks
Symetric

Question 14

Key size for AES-128

Answer 14

128 bits

Question 15

Key size for AES-256

Answer 15

256 bits

Question 16

Key size for AES-192

Answer 16

192 bits

Question 17

DES

Answer 17

Data Encryption Standard - block cipher

Symetric

Question 18

Commonly used cipher that encrypts data in one pass.

Answer 18

AES

Question 19

3DES

Answer 19

3DES - 3 passes to encrypt - block cipher

Symetric

Question 20

RC4

Answer 20

Symmetric Stream Cipher - 
RC4 - Ron Rivest.
40 - 2,048 bit encryption.
Ron Rivest cipher.
Also known as ARC4
Recommended for SSL, TLS when encrypting HTTPS

Question 21

ARC4

Answer 21

Same as RC4

Question 22

Stream cipher used in WEP

Answer 22

RC4. Symmetric and reuses keys.

Question 23

Blowfish

Answer 23

Symmetric block cipher -
Strong 64-bit block cipher.  
Encrypts 64-bit blocks,
32 and 448-bit keys
Faster than AES

Question 24

Twofish

Answer 24

Symmetric block cipher -
Strong 128-bit block cipher.
128, 192, 256 key lengths.

Question 25

OTP

Answer 25

One Time Pad
Been around since 1917
Identical pads. Each page has a key and a serial number.
Once the key is used, the page/key is destroyed.
Symetric

Question 26

RSA

Answer 26

Asymmetric cipher -
Ron Vivest Adi Shamir
Used since 1997
Asymmetric
Used with key pairs.
Widely used in SSL/TLS handshakes.

Question 27

Keys that remain static over a long period of time.

Answer 27

Static Key

Question 28

Keys that created for each session.

Answer 28

Ephemeral keys. Also called session keys.

Question 29

RCA uses this type of key

Answer 29

Static key

Question 30

How big is the block in AES?

Answer 30

128-bit block

Question 31

What are the possible AES key lengths?

Answer 31

128, 192, 256

Question 32

How big is the block in DES?

Answer 32

64-bit block

Question 33

What are the possible DES key lengths?

Answer 33

56-bit

Question 34

How big is the block in 3DES?

Answer 34

64-bit block

Question 35

What are the possible 3DES key lengths?

Answer 35

56, 112, 168

Question 36

How big is the block for Blowfish encryption?

Answer 36

64-bit

Question 37

What are the possible Blowfish key lengths?

Answer 37

32, 448

Question 38

How big is the block for Twofish encryption?

Answer 38

128-bit

Question 39

What are the possible key lengths for Twofish encryption?

Answer 39

128, 192, 256

Question 40

How big is the block for RC4 encryption?

Answer 40

RC4 is a streaming cipher.

Question 41

What are the possible key lengths for RC4?

Answer 41

40,2048

Question 42

bcrypt

Answer 42

Hash -
Based on Blowfish.
Used in Linux and Unix systems
Salts passwords before encrypting it with Blowfish

Question 43

PBKDF2

Answer 43

Hash -

Uses salts of at least 64 bits and a pseudo-random function such as HMAC to protect passwords.

Question 44

Argon2

Answer 44

Hash -

Winner of the Password Hashing Competition (PHC) in 2015 and is recommended to replace PBKDF2

Question 45

CRL

Answer 45

Certificate Revocation List

List of revoked certificates

Question 46

PGP

Answer 46

Pretty Good Privacy

Question 47

GPG

Answer 47

?

Question 48

CSR

Answer 48

Certificate Signing Request

Question 49

Perfect Forward Secrecy

Answer 49

Used with ephemeral keys in asymmetric encryption.
Different key is generated for each session.
Uses non-deterministic algorithm to ensure randomness. So the same input will generate a different output every time.

Question 50

Used with ephemeral keys in asymmetric encryption.
Different key is generated for each session.
Uses non-deterministic algorithm to ensure randomness. So the same input will generate a different output every time.

Answer 50

Perfect Forward Secrecy

Question 51

Elliptic Curve Cryptography

Answer 51

Cipher -
Uses less processing power so is often used on lower-powered devices.
Uses math to create a curve then plots points on the curve to create keys.
Tough to crack.

Question 52

Uses less processing power so is often used on lower-powered devices.
Uses math to create a curve then plots points on the curve to create keys.
Tough to crack.

Answer 52

Elliptic Curve Cryptography

Question 53

Diffie-Hellman

Answer 53

Key Exchange Algorithm
Used to privately share session keys.
RSA key exchanges

Question 54

Key Exchange Algorithm
Used to privately share session keys.
RSA key exchanges

Answer 54

Diffie-Hellman

Question 55

EDHE

Answer 55

Ephemeral DHE

Question 56

ECDHE

Answer 56

Elliptic Curve DHE

Question 57

Which key is used to digitally sign an email

Answer 57

Sender’s private key.

Recipient can decrypt signature with the public key to verify authenticity.

Question 58

I want to encrypt an email and send to a user. How do I keep my email private?

Answer 58

Encrypt with the recipient’s public key. Only they will be able to decrypt it with their private key.

Question 59

Digital Signature Algorithm (DSA)

Answer 59

Message is hashed with sender's private key.  Recipients can decrypt the hash with public key.
Provides:
Authentication
Non-repudiation
Integrity

Question 60

S/MIME

Answer 60

Secure Multipurpose Internet Mail Extensions.
Most popular standards do sign and encrypt email.
Uses RSA asymmetric encryption along with AES to dfo the encryption.
Uses RSA to it would require some sort of PKI.

Question 61

Most popular standards do sign and encrypt email.

Answer 61

S/MIME

Question 62

PBP/GPG

Answer 62

Pretty Good Privacy/GNU Privacy Guard
Can sign, encrypt and decrypt email.
Works much like S/MIME
Open Source…Free

Question 63

Attack that forces the use of weaker encryption by tricking the server to report it doesn’t support the better standards

Answer 63

Downgrade Attack

Question 64

Downgrade Attack

Answer 64

Attack that forces the use of weaker encryption by tricking the server to report it doesn’t support the better standards

Question 65

A group of technologies used t request, create, manage, store, distribute and revoke digital certificates.

Answer 65

PKI Components

Question 66

What allows entities on the internet to communicate for the 1st time over the internet securely?

Answer 66

PKI

Question 67

A trusted entity that issues, manages, validates and revokes certificates.

Answer 67

Certificate Authority (CA)

Question 68

Certificate Authority (CA)

Answer 68

A trusted entity that issues, manages, validates and revokes certificates.

Question 69

The process of placing a copy of all private keys in a safe environment.

Answer 69

Key Escrow

Question 70

Key Escrow

Answer 70

The process of placing a copy of all private keys in a safe environment.

Question 71

Recovery Agent

Answer 71

An individual who is designated to recover cryptographic keys including an organization’s private keys.

Question 72

An individual who is designated to recover cryptographic keys including an organization’s private keys.

Answer 72

Recovery Agent

Question 73

Type of certificate used to ID computer on a domain.

Answer 73

Machine/Computer certificate

Question 74

Machine/Computer certificate

Answer 74

Type of certificate used to ID computer on a domain.

Question 75

Certificate often used for users’ smart cards, EFS and other personnel uses.

Answer 75

User Certificate

Question 76

User Certificate

Answer 76

Certificate often used for users’ smart cards, EFS and other personnel uses.

Question 77

Certificate used to sign and/or encrypt emails.

Answer 77

Email Certificate

Question 78

Email Certificate

Answer 78

Certificate used to sign and/or encrypt emails.

Question 79

Certificate used for signing code.

Answer 79

Code signing certificate.

Question 80

Code signing certificate.

Answer 80

Certificate used for signing code.

Question 81

Type of certificate not issued by any trusted CA. Created by private CA.

Answer 81

Self-signed certificates

Question 82

Can be used for multiple domains or child domains. Domains must have the same root domain. Uses a * wildcard.

Answer 82

Wildcard certificate

Question 83

Wildcard certificate

Answer 83

Can be used for multiple domains or child domains. Domains must have the same root domain. Uses a * wildcard.

Question 84

Used for trusting multiple domains with different root names but owned by the same organization.

Answer 84

Subject Alternative Name (SAN)

Question 85

Subject Alternative Name (SAN)

Answer 85

Used for trusting multiple domains with different root names but owned by the same organization.

Question 86

X.509 v3

Answer 86

Certificate formats