Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CISSP > Chapter 6 - Crypto > Flashcards

Chapter 6 - Crypto Flashcards

1
Q

Confusion

A

Occurs when relationship between the plain text and the key is so complicated that an attacker can’t merely continue altering the plaintext and analyzing the resulting ciphertext to determine the key.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Diffusion

A

Occurs when a change in the plaintext results in multiple changes spread throughout the ciphertext.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Crypto Math AND

A

uses ^. Only true (1) when both X and Y are true (1).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Crypto Math OR

A

uses down carrot. Only false when both are false.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Crypto Math NOT

A

uses -. Only used on one variable at a time. X=0, -X=1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Crypto Math Exclusive OR (XOR)

A

Only returns true value when only one of the input values is true. Uses plus in a circle.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

One way function

A

math function that easily produces output values for each possible combination of inputs but makes it impossible to retrieve input values.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Transposition Ciphers

A

Use encryption algorithm to rearrange letters of a plaintext message. Ex: apple=elppa.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Substitution Ciphers

A
  • Use the encryption algorithm to replace each character or bit of the plaintext message with a different character. (Caesar cipher).
  • More sophisticated versions use multiple alphabets. (Vigenere cipher) looks like a crossword puzzle
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

One Time Pads

A

• Use a different substitution alphabet for each letter of the plaintext message. Usually written as a very long series of numbers to be plugged into the function.
• Known as Vernam ciphers
• Must meet these requirements:
○ Pad must be randomly generated.
○ Must be physically protected against disclosure
○ Must be used once.
○ Key must be at least as long as the message to be encrypted.
○ VENONA = soviets used a pattern in key generation.
○ Hard to distribute keys, messages should be short due to key length.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Running Key Ciphers

A

AKA book cipher. Agree to use the same book

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Block Ciphers

A
  • Operate on chunks of a message and apply the encryption algorithm to an entire message block at the same time.
  • Transposition is block cipher
  • Most modern encryption algorithms implement block cipher
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Stream Ciphers

A

Operate on one character or bit of a message at a time.

Ceasar cipher, one time pad

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

AES Block & Key Size

A

128

128,192,256

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Rijndael Block & Key Size

A

Variable

128,192, 256

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Blowfish (often used in SSH) Block & Key Size

A

64

32-448

17
Q

DES Block & Key Size

A

64

56

18
Q

IDEA (used in PGP) Block & Key Size

A

64

128

19
Q

RC2 Block & Key Size

A

64

128

20
Q

RC4 Block & Key Size

A

Streaming

128

21
Q

RC5 Block & Key Size

A

32,64,128

0-2040

22
Q

Skipjack Block & Key Size

A

64

80

23
Q

3DES Block & Key Size

A

64

112 or 168

24
Q

Twofish

A

128

1-256

25
Q

DES Electronic Codebook Mode

A

Least secure, encrypts each 64 bit bock with same key.
Cryptanalysis could break blocks
Impractical for anything but very small amounts of data (keys and parameters to initiate)

26
Q

DES Cipher Block Chaining Mode

A

Each block of ciphertext XORed with the block of ciphertext immediately preceding it before encrypting with DES.
Implements an IV (initialization vector) and XORs it with the first block of the message.
Corruption will flow if one block is corrupted.

27
Q

DES Cipher Feedback Mode

A

Streaming cipher version of CBC.
Operates against data produced in real time.
Instead of breaking message into blocks, it uses memory buffers of the same block size. When buffer fills, it’s encrypted and sent.
Uses IV and chaining.

28
Q

DES Output Feedback Mode

A

Same as CBC, but instead of XORing encrypted version of previous block of ciphertext, it XORs the plain text with a seed value.
IV used to create seed value.
Future seeds values derived by running DES algorithm on previous seed value.
Advantage: no chaining, errors do not propagate

29
Q

DES Counter Mode

A

Uses stream cipher, but instead of creating seed value from each previous encrypted seed values, it uses a simple counter that increments each operation.
Errors do not propagate.

30
Q

Triple DES

A

Four versions:

  1. Encrypts plaintext 3 times using 3 different keys: k1, k2, k3. Known as DES-EEE3 mode.
    a. E(K1,(k2,E(k3,P)))
    b. Effective key length of 168 bits.
  2. Uses 3 keys, but replaces second encryption with decryption. DES-EDE3
    a. E(k1, D(k2, E(k3,P)))
  3. Uses 2 keys (DES-EEE2)
    a. E(K1,E(K2,E(K1,P)))
    b. 112 bits
  4. Uses 2 keys with decryption (DES-EDE2)
    a. E(K1,D(K2,E(K1,P)))
    b. 112 bits
31
Q

IDEA

A
  • Developed because DES too short key length.
  • Operates on 64-bit blocks of plaintext.
  • Begins operation with 128 bit key.
  • Broken up into series of 52 16-bit subkeys.
32
Q

Blowfish

A

Operates on 64-bit block of text.
Uses variable-length keys from 32 to 448 bits.
Much faster than IDEA and DES.

33
Q

Skipjack

A
  • Approved for use by gov in FIPS 185, the Escrowed Encryption Standard (EES).
    • 64 bit block of text.
    • 80 bit key.
    • Provides cryptographic routines supporting the Clipper and Capstone encryption chips.
    • NIST and Dept of Treasury each hold part of the key.
    • Not used at large because of mistrust of government key escrow.
34
Q

AES

A

• Only allows processing of 128-bit blocks, Rjindael allows use of block size equal to key length.
○ 128-bit keys require 10 rounds of encryption
○ 192-bit keys require 12 rounds of encryption
256-bit keys require 14 rounds of encryption

35
Q

Twofish

A

• AES finalist
• Block sipher
• Operates on 128-bit blocks
• Keys up to 256 bits in length
• Uses:
○ Prewhitening - XORing plaintext with a separate subkey before first round of encryption
○ Postwhitening - uses similar operation after 16th round of encryption

CISSP (11 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions