Chapter 7 - Crypto

Question 0

Monoalphabetic vs polyalphabetic

Answer 0

Mono - one alphabet

Poly - many alphabets

Question 1

Substitution cypher

Answer 1

Replacing a letter for each letter with a predetermined one

Question 2

Cipher

Answer 2

Algorithm or key

Question 3

Scytale cipher

Answer 3

A piece of paper wrapped around a staff that could only be viewable on the correct size staff

Question 4

Project lucifer

Answer 4

The original IBM project that NSA used to make DES

Question 5

Cryptanalysis

Answer 5

Analyzing an encryption trying to figure out the key

Question 6

Crypto system

Answer 6

A system that creates a crypto

Question 7

Cryptovariable

Answer 7

The key

Question 8

Key space

Answer 8

This is how large the key is in bits

Question 9

Kerchiefs principle

Answer 9

Algorithm of a crypto system should always be known, only the key should be secret, others believe it should all be secret.

Question 10

What gives a cryptosystem strength?

Answer 10

Algorithm
Key length
Secrecy
Initialization
Interoperability

Question 11

Work factor

Answer 11

The length of time it will take to discover a message by brute force

Question 12

Crypto offers what benefits?

Answer 12

Confidentiality
Integrity
Authentication
Authorization
Nonrepudiation - cannot deny it came from the sender

Question 13

Encipher

Answer 13

Making data unreadable

Question 14

Vernam cipher - one time pad

Answer 14

DUO could be an example of this..

Exclusive-OR (XOR) - if different than 1 if same than 0

Message - 1001
Key - 1100 (same length as message)
Ciphertext - 0100

Only useful one time to not develop patterns

Question 15

Rules of crypto as I see it

Answer 15

Key - keep it secret, keep it safe
Random - computers are NOT random
Cipher - the word “the” is your enemy

Question 16

Running key cipher

Answer 16

Physically analyzing data like the letter in a book with coordinates

Running to piece to piece to get the answer

Question 17

Concealed cipher

Answer 17

Every third word is part of the message

Question 18

Steganography

Answer 18

Hiding messages within other media .. Ex. Inside the Theodore jpg image

Security through obscurity.. Yikes

Question 19

Least significant bit - LSB

Answer 19

These are the bits in the medium that do not affect the output, a perfect place to hide a message

Question 20

Digital watermarking / DRM

Answer 20

Uses stenography to embed a logo or company specific information in the data using the LSB

Question 21

Microdot

Answer 21

A micro photo put inside the wax of a stamp

Question 22

Caesar cipher

Answer 22

Substitution cipher, a=z

Question 23

Transposition cipher

Answer 23

Word grouping and scrambling based on a key

Question 24

How do algorithms work within a cipher?

Answer 24

They are substitution and transposition methods randomized into several different sequence functions

Many algorithms to choose from, the key chooses the algorithms to use per message

Question 25

Frequency analysis

Answer 25

E is the most common letter, the most common 8bit sequence therefor equals E

The comes next and so forth so on

Question 26

KDF - key derivation function

Answer 26

This is the master key that creates all other subkeys

Question 27

N(N-1)/2

Answer 27

Formula for # symmetrical keys needed

Question 28

Out of band method

Answer 28

Using a completely separate media to transfer the key

Question 29

Symmetrical key

Answer 29

Shared secret key

Pros:
Fast!
Hard to break
Confidentiality

Cons:
Requires secure delivery of key
Each pair needs unique key
No authenticity or nonrepudiation

Question 30

Examples of symmetric algorithms

Answer 30

DES
3DES
Blowfish
IDEA
RC4,5,6
AES

Question 31

Asymmetrical key

Answer 31

PKI - private / public keys

Private to public is open message format as anyone can open the message

Public to private is secure message format because only the intended person can open it

Question 32

What are the pros and cons of asymmetrical algorithms?

Answer 32

Pros:
Better key distribution
Better scalability
Can provide authentication and nonrepudiation

Cons:
Slow. . .

Question 33

Examples algorithms for asymetrical keys

Answer 33

RSA
DH
ECC
El Gamal
Merkle-Hellman Knapsack

Question 34

Block ciphers

Answer 34

A chunk of data is encrypted at a time in a block (s-box) of 32/64/128

Question 35

Confusion vs diffusion

Answer 35

Substitution vs transposition respectively

Question 36

Avalanche effect

Answer 36

One bit change can cause all the cipher text to change or as close as possible

Question 37

Stream cipher

Answer 37

XOR based encryption but by bit using a keystream generator

Question 38

Initialization vector

Answer 38

Randomness within the algorithm, cause a pattern in the plaintext to not cause a pattern in the cryptotext

Question 39

Strong stream cipher characteristics

Answer 39

Long periods of no pattern repeat
Statistically unpredictable
Key stream is unrelated to key
Same number of 0’s and 1’s

Question 40

Stream vs block

Answer 40

Stream is fast and less secure

Block is slower but more secure

Question 41

Compression

Answer 41

Compression will cause redundancy to be reduced

Question 42

Expansion

Answer 42

Expanding the plaintext to the key size

Question 43

Padding

Answer 43

Adding material to make it more difficult to know what is legitimate message

Question 44

Key mixing

Answer 44

This is just a subkey

Question 45

Block ciphers

Answer 45

A chunk of data is encrypted at a time in a block (s-box) of 32/64/128

Question 46

Confusion vs diffusion

Answer 46

Substitution vs transposition respectively

Question 47

Avalanche effect

Answer 47

One bit change can cause all the cipher text to change or as close as possible

Question 48

Stream cipher

Answer 48

XOR based encryption but by bit using a keystream generator

Question 49

Initialization vector

Answer 49

Randomness within the algorithm, cause a pattern in the plaintext to not cause a pattern in the cryptotext

Question 50

Strong stream cipher characteristics

Answer 50

Long periods of no pattern repeat
Statistically unpredictable
Key stream is unrelated to key
Same number of 0’s and 1’s

Question 51

Stream vs block

Answer 51

Stream is fast and less secure

Block is slower but more secure

Question 52

Compression

Answer 52

Compression will cause redundancy to be reduced

Question 53

Expansion

Answer 53

Expanding the plaintext to the key size

Question 54

Padding

Answer 54

Adding material to make it more difficult to know what is legitimate message

Question 55

Key mixing

Answer 55

This is just a subkey

Question 56

Public key cryptography

Answer 56

A hybrid approach using both asymetrical and symetrical algorithms

Asymetrical to encrypt the symetrical key and symetrical to encrypt the message

Private to public is nonrepudiation
Public to private is confidentiallity

Question 57

Digital envelope

Answer 57

More common name for hybrid crypto approach.

Question 58

What is the NSA version of DES?

Answer 58

DSA - data encryption algorithm - 56 bit intentionally weakened to 128 bit

Question 59

What is the replacement for DES?

Answer 59

Rijndael - AES

Question 60

How does DES work?

Answer 60

64 bit block goes in 64 bit block comes out..

Question 61

What are the modes of symmetrical encryption?

Answer 61

Electronic code book ECB
Cipher block chaining CBC
Cipher feedback CFB
Output feedback OFB
Counter mode CTR

Question 62

Electronic code book

Answer 62

Translative 1:1 cipher goes in hdkfjr comes out every time in 64 bit blocks

This is easily reverse engineered and stolen

Question 63

Cipher block chaining

Answer 63

Plaintex 1 to ciphertext1 using IV
Plaintext2 to ciphertext2 using ciphertext1

Changing the Initialization Vector per message will assist in randomness
Processes 64 bit blocks at a time

Question 64

Cipher feedback

Answer 64

Similar to stream cipher, uses an IV and a key to choose an algorithm generating the key stream and cipher text

The difference is in CFB the next block of plaintext uses the key and the last ciphertext to feed the key stream

Question 65

Output feedback

Answer 65

This is exactly like cipher feedback except the key stream is used instead of the cipher text on the next plaintext block

It does not rely on the data for the crypto therefor corrupt data will not affect the output

Question 66

Synchronous vs asynchronous cipher

Answer 66

Synchronous is stream/block

Asynchronous is chaining

Question 67

3DES

Answer 67

Uses 48 rounds of encryption chaining to force random into the ciphertext

This was a quick fix until AES could be ratified using Rijndael

Question 68

What does DES-EDE2 actually mean?

Answer 68

DES is used to encrypt plaintext with the first key the decrypt with a different key then encrypt that with the original key

Question 69

What is IDEA?

Answer 69

IDEA is 64 bit block broken in 16 block chunks for processing

IDEA is an algorithm used in RSA

Question 70

PGP

Answer 70

Software used to encrypt mail and files at rest

Question 71

Blowfish

Answer 71

Block cipher with 32 - 448 bit key lengths and is completely open to the public

Question 72

RC4

Answer 72

Very common stream cipher used in SSL and WEP

Question 73

RC5

Answer 73

Highly variable round size, key size and block size..

Question 74

RC6

Answer 74

RC5 but faster

Question 75

What does rc5-32/12/16 mean?

Answer 75

Rc5
32 bit words or 64 bit encryption
12 rounds
16 byte key (128 bit)

Question 76

Diffe-Hellman

Answer 76

Asymetrical key

A combines A’s private and B’s public keys to make a shared key

B combines B’s private and A’s public key to derive the same shared key

Question 77

How can Non authenticated DH be broken by man in the middle?

Answer 77

Man in the middle generates two shared keys in either direction of the communication

Question 78

RSA

Answer 78

An algorithm devised by multiplying two 2^300 prime numbers (numbers only divisible by themselves or 1) times the random encryption key.

One side does encryption one side does signatures each other side does the inverse

Question 79

Key exchange vs key agreement?

Answer 79

Exchange means it needs to be shared from one side to the other

Agreement is when the keys are calculated on each side independently to be the same value

Question 80

Trapdoor

Answer 80

This is the easiest way to solve for a crypto algorithm, in RSA this is to factor the large numbers

Question 81

One way function

Answer 81

Easy to calculate hard to solve for

Like breaking a glass and putting it back together again

Question 82

El Gamal

Answer 82

Extension of DH but slowest of the asymmetric algorithms

Question 83

Elliptical curve cryptography

Answer 83

Uses an elliptical curve based on the encryption key to quickly get the values need for the crypto

Very fast, with small keys, used in mobile devices

Question 84

Knapsack

Answer 84

Insecure Crypto based on the knapsack problem in math

Question 85

What is zero knowledge proof?

Answer 85

Giving people only the information they need and nothing more and is relevant in private key to public key crypto

Question 86

One way hash

Answer 86

Appended to the end of the message to ensure integrity

This is also called a message digest

Question 87

What is a MAC in terms of hash and crypto

Answer 87

Message authentication code

It is used to protect message integrity
Uses a symmetric key to encrypt a message digest to ensure man in the middle has not occurred

Question 88

HMAC

Answer 88

A symmetric key is appended to the message and the message is hashed with it together

Question 89

CBC-MAC

Answer 89

Encrypts message, uses the final block of code as MAC value appended to a message

Question 90

MAC offers system protection, what is this?

Answer 90

Data origin protection, you know the person who sent it had the symmetric key and is the weakest for of authentication

Question 91

Should the same key be used for authentication and encryption?

Answer 91

NO

Question 92

What is the block cipher MAC called

Answer 92

CMAC, same as CBC-Mac with a bit more complexity

Question 93

CCM

Answer 93

Combines CMAC and CBC-MAC

CMAC for the encryption and the IV for the CBC-Mac

Question 94

What is a collision free hashing algorithm?

Answer 94

This means no two messages can give the same hash value

Question 95

MD2 MD4 MD5

Answer 95

Message Digest 2 - 128bit hash slowly
MD4 - 128 bit fast
MD5 - 128 bit fast and complex

None are suitable to prevent collision

Question 96

SHA

Answer 96

160 bit message digest using an asymmetrical algorithm like Diffe-Hellman

Question 97

HAVAL

Answer 97

Variable length modification to MD5

Question 98

Tiger

Answer 98

Most notably a 192 bit message digest not using the MD4 architecture and does not use IVs

Question 99

Birthday attack

Answer 99

It is easy to find two matching values I a sea of values than to find a match for a specific value, it’s a statistics problem

Meaning that 2^n/2 where n is the bit rate of the message digest is the number of attempts needed to find a duplicate of the hash value

Question 100

Digital signature

Answer 100

Message digest encrypted by a private key giving both integrity and norepudiation

Question 101

Registration Authority

Answer 101

Verifies the user is who they say they are

Question 102

Cross certification

Answer 102

CA one trusts CA two and each acts as the other would

Question 103

What is a certificate revoke list and online certificate status protocol?

Answer 103

CRL is the list of dead certificates

OCSP is the method to check when you enter a site

Question 104

X.509

Answer 104

Certificate building standard, v3 is the most common.

Question 105

How is the private key issued from as certificate authority?

Answer 105

It isn’t, the CER you submit has public key the certificate is made from, this public key is based off the private key generated from your machine

Question 106

PKI offers what security services?

Answer 106

Confidentiality
Access control
Integrity
Authentication
Nonrepudiation 

But not all at once, it depends on the direction and these are specifically for the slow asymmetrical encryption of the symmetric keys

Question 107

Key escrow

Answer 107

This is the process or person who can recover a lost key

Question 108

Multiparty key recovery

Answer 108

Requirement of 2 or more people in order to reassemble a key, this forces collusion to compromise

Question 109

Trusted platform module

Answer 109

A hardware technology for encrypting, particularly hard drives. Provides sealing which is a hash of the configuration files to verify integrity

Question 110

Link encryption vs end-to-end encryption ?

Answer 110

Link is with headers encrypted and is considered traffic flow security
End to end is just the data encrypted

Question 111

What is MIME?

Answer 111

A mime type is a way to differentiate handling data types .txt is type/plaintext

Question 112

S/MIME

Answer 112

Uses PKI for email encryption

Question 113

What is a web of trust ?

Answer 113

Each request generates a public trust .. I give you my public key for yours and now we trust each other

Question 114

Where are the public keys stored on PGP?

Answer 114

A key ring

Question 115

What is the difference between SSL and TLS?

Answer 115

TLS is the open standard

Question 116

What is secure electronic transaction ETS?

Answer 116

A superior technology of securing credit card data that requires participation and implementation from merchant, bank and vendor, not used much due to complexity .. SSL is still the standard

Question 117

What is the primary purpose of a cookie?

Answer 117

To make stateless HTTP act more stateful.

This is how even though you close a browser your items stay in the cart..

Question 118

How do I make a timeout page with cookies?

Answer 118

Have the client loaded web page check cookies client side periodically for session authenticity.

Cookies have timeouts.

Question 119

IPSec

Answer 119

Used to establish a server to server VPN tunnel

Question 120

What are the two security protocols and what do they do for IPSec?

Answer 120

Authentication header AH- does auth only

Encapsulating security payload ESP - does auth and crypto

Question 121

What modes does IPSec work in?

Answer 121

Transport mode - payload encryption

Tunnel mode - routing/header/payload encryption

Question 122

What is a security association SA?

Answer 122

A directional (out/in) store for the encryption keys and configurations used in an IPSec tunnel

Question 123

How does a security parameter index assist in IPSec VPN?

Answer 123

These are used to organize and globally configure the SA for each device outbound and inbound separately

Question 124

What is an ICV?

Answer 124

Basically just a hash, AH does the entire packet, ESP does just the data/transport for integrity

Question 125

How is IKE used in IPSec?

Answer 125

As a key management architecture

ISAKMP is infrastructure
OAKLEY is the worker

Question 126

Passive vs active attack

Answer 126

Passive is just listening

Active is actually modifying

Question 127

Ciphertext only attack

Answer 127

Sniffing the ciphertext and trying to decode it

Question 128

Known plaintext attack

Answer 128

I know this message starts with to:
And I see every message start with cypher text zxs

Zxs must be to:

Question 129

Chosen-ciphertext attacks

Answer 129

I send you a note of importance in plaintext you feel compelled to send to others encrypted, I sniff the encrypted output and have a direct correlation

Question 130

Chosen-ciphertext

Answer 130

I have cypher text part and the plaintext whole, where does it match?

Question 131

Differential cryptanalysis

Answer 131

Figuring out which algorithms are more likely to run within a cryptosystem

Question 132

Linear cryptanalysis

Answer 132

Sensing plaintext into an algorithm many ones to discover a pattern in s boxes chosen

Question 133

Side channel attacks

Answer 133

Attacks using non mathematical means , like power voltage consumption

Question 134

Replay attack

Answer 134

Capturing data and resubmitting it

Question 135

Algebraic attack

Answer 135

Using mathematical principles to discover information, like 0 times something is always 0

Question 136

Analytic attack

Answer 136

Isolated specific flaws in the algorithm to attack (double DES died this way)

Question 137

Statistical attack

Answer 137

Checking for more 1 than 0, could identify the use of a weak random number generator

Question 138

Social engineering attack

Answer 138

Persuasion, coercion, or bribery used to get keys

Question 139

Meeting in the middle attack

Answer 139

Tries to match the decryption to the encryption by attacking both sides at the same time