Chapter 3 Study guide

Question 1

What does Hashing ensure?

Answer 1

Integrity

Question 2

What does encryption ensure?

Answer 2

Confidentialty

Question 3

Collision attack

Answer 3

When two distinct and different messages happen to have the same hash value.

Question 4

Birthday attack

Answer 4

Exploits the birthday paradox in probability.

The attacker tries to find two different input messages that produce the same hash value, called a collision

Question 5

How does NT LAN Manager (NTLM) work?

Answer 5

• Each of the characters in the input password are converted into Unicode

Question 6

LDAP uses what?

Answer 6

• Uses X.500

Question 7

Explain the Digital Signature (Integrity) process when sending a message.

Answer 7

• Bob is sending Alice a message.
• Bob will run and attach a hash onto the message (Integrity).
• Bob uses his private key to Digitally Signing it (hash included).
• Bob will encrypt and send the message, which will be decrypted by Alice (Confidentiality).
• Alice can verify the hash (Integrity Check) after using Bobs public key to decrypt the Digital Signature.

Question 8

Explain the encryption process (Confidentiality) when sending a message.

Answer 8

• Bob is sending Alice a message.
• Bob Digitally signs the message.
• Bob encrypts his message using Alice’s Public key
• Alice decrypts Bob’s message using her private key.
• Alice can now decrypt the digitally signature.

Question 9

One Time Password (OTP) and TOTP

Answer 9

• OTP - Password used once.
• TOTP - Password used once, but has a timer on it.

Question 10

Give a simplified version of the Digital Signature and Encryption process.

Answer 10

1. Digitally sign (Integrity/Hash)
2. Encrypt (Confidentiality)
3. Send
4. Decrypt (Condidentiality)
5. Decrypt Digital Signature (Integrity)