Cryptography - Symmetric, Asymmetric, Basics

Question 1

Define

Symmetric Cryptography

Answer 1

Encryption key = decryption key

Question 2

Algorithm for Symmetric Cryptography

Answer 2

1. Generate key (KeyGen() => K )
2. Encrypt message (E(K, M) = EK(M) = C )
3. Decrypt message (D(C, K) = DK(C) = M )

Question 3

What is the attacker’s goal in symmetric cryptography?

Answer 3

Find out any information on the message(s) or the key

Question 4

What is the goal of the defender in symmetric cryptography?

Answer 4

The attacker shouldn’t be able to distinguish which 2 messages were encrypted in cipher

Question 5

List the types of symmetric cryptography attacks

Answer 5

• Ciphertext
• Known plaintext
• Chosen plaintext
• Chosen ciphertext

Question 6

Describe

Ciphertext Attack

Symmetric Cryptography

Answer 6

Eve observes every instance of Cipher and has partial information Message (i.e. knows what language was used)

Question 7

Describe

Known Plaintext Attack

Symmetric Cryptography

Answer 7

Eve knows part of Message and/or entirty of numerous Messages

Question 8

Describe

Chosen Plaintext Attack

Symmetric Cryptography

Answer 8

Eve picks a Message for Alice to encrypt

Question 9

Describe

Chosen Ciphertext Attack

Symmetric Cryptography

Answer 9

Eve picks a ciphertext for Bob to decrypt

Question 9

Describe

Secure Cryptic System

Answer 9

A costly system to break into

Question 10

Why are the costs high to break into a Symmetric Crypto system?

Answer 10

• Expensive - exhaustion of resources and efforts
• Useful lifetime of information may expire

Question 11

Probability of an Attacker winning

Symmetric Cryptography

Answer 11

Pr[Attacker wins] <= 50% or 1/2 + e

Question 12

Describe

Pseudorandom Number Generators

Symmetric Cryptography

Answer 12

A random-looking value that is actually determinastically created for inital vector

Question 12

Describe

Stream ciphers

Symmetric Cryptography

Answer 12

Encrypting a plaintext with a pseudrandom digit 1 bit/byte at a time

Question 13

Pros of Symmetric Cryptography

Answer 13

Strong confidentiality

Question 14

Cons of Symmetric Cryptography

Answer 14

• Weak authenticity
• Weak integrity
• Difficult to manage and distribute the secret keys

Question 15

Describe

One-Time Pad

Answer 15

When a random key is chosen and used once for each message

Question 16

How long is a one-time pad?

Answer 16

As long as the message itself (revealing the length of the message)

Question 17

What type of secure are one-time pads?

Answer 17

IND-CPA and IND-KPA

Question 18

What are the limits to one-time pads?

Answer 18

• Must be truly random and independent
• Requires secure distribution of secret keys
• A large message would make a difficult one-time pad to manage

Question 19

Define

IND-KPA

Answer 19

When attacker can’t distinguish between 2 encryptions of the same key while knowing 2 plaintexts

Question 20

Define

IND-CPA

Answer 20

When the attacker can’t distinguish between encryptions of different plaintext under the same key while knowing ciphertexts

Question 21

Which is stronger between IND-CPA and IND-KPA?

Answer 21

IND-CPA

Question 22

What does IND-CPA imply?

Answer 22

That IND-KPA also holds true

Question 23

# Describe Caesar Cipher

Answer 23

Rotation of letters by the kth position

Question 24

How can you defeat a Caesar Cipher?

Answer 24

* Brute force * Frequency analysis * Known plaintext attacks * Chosen plaintext attacks

Question 25

# Upgrade Caesar Cipher

Answer 25

Rotate the first character by K1 position, the second character by K2 position, ... the nth character by Kn position

Question 26

# Describe Block Cipher

Answer 26

A determinalistic algorithm on a fixed block/length of bits

Question 27

A Block Cipher is not what type of secure?

Answer 27

IND-CPA

Question 28

Using a Block Cipher: short message

Answer 28

Includes padding

Question 29

Using a Block Cipher: long message

Answer 29

Repeat block cipher (Block Cipher Mode) and hide the same block encrypted twice along with inital vector (IV) for randomness

Question 30

Block Cipher Modes

Answer 30

* Electronic Code Block (ECB) * Cipher Block Chaining (CBC) * Counter (CTR)

Question 31

# Describe Electronic Code Block (ECB) Mode

Answer 31

The message is split into n-bit blocks where each is independently encrypted/decrypted. All blocks will then be concatenated (output)

Question 32

# Describe Cipher Block Chaining (CBC) Mode

Answer 32

Uses a one time initial vector and includes the output of the previous block as input for the current block

Question 33

What type of secure is the CBC Block Chaining Mode?

Answer 33

IND-CPA

Question 34

# Describe Counter (CTR) Mode

Answer 34

Selects a random initial vector and increments it for each block

Question 35

What type of secure is the CTR Block Chaining Mode?

Answer 35

IND-CPA

Question 36

# Define Key

Answer 36

A randomly chosen value

Question 37

# Define Cryptoanalysis

Answer 37

Analysis of the algorithm/implementation to interfere with cryptography

Question 38

List all cryptographical algorithms

Answer 38

* Symmetric * Asymmetric * One-Way Function * One-Way Hash Function

Question 39

# Define One-Way Function

Answer 39

A computation that is difficult to inverse

Question 40

# Define One-Way Hash Function

Answer 40

Given any string input, a fixed binary sequence random output would be returned

Question 41

Two ways to preserve integrity and authentication in cryptography

Answer 41

Strong hash functions and message authentication code (MAC)

Question 42

Why are strong hash functions not sufficient for cryptography?

Answer 42

Strong hash function values can be guessed

Question 43

Properties of a strong hash function

Answer 43

* One-way: given y, it's difficult to find x * Collision resistance: difficult to find x, x' * Second pre-image resistance: given x, it's difficult to find x'

Question 44

# Describe Message Authentication Code (MAC)

Answer 44

A tag that verifies authentication and requires a shared secret key

Question 45

# Define Asymmetric Cryptography

Answer 45

Encrypting a message with recevier's public key and decrypting the message with receiver's private key

Question 46

Requirements for asymmetric cryptography

Answer 46

* Key Generation: public key can't compute the secret key (or vice versa) * Trapdoor permutation: 1-way perm without special instructions

Question 47

# Describe RSA Key Generation | Asymmetric Cryptography

Answer 47

Uses Euler's Toitent to create the keys

Question 48

# Describe Euler's Totient

Answer 48

Finding two very large prime numbers

Question 49

Pros of Asymmetric Cryptography

Answer 49

* Secure key distribution * Confidentiality

Question 50

Cons of Asymmetric Cryptography

Answer 50

* Weak integrity * No authentication * Repudiation (can be seen as falsified)

Question 51

# Define Diffie-Hellman Key (DHK) Exchange

Answer 51

The same secret key is shared

Question 52

Limitations of Diffie-Hellman Key (DHK) Exchange

Answer 52

* No authenticity * Subject to MITM attacks (doesn't verify who's involved)

Question 53

# Define Ephemeral Diffie-Hellman Key (EDHK) Exchange

Answer 53

Temporary DH key (shared secret key) generated for every connection

Question 54

Limitations of the Ephemeral Diffie-Hellman Key (EDHK) Exchange

Answer 54

Higher overhead costs

Question 55

What does the Ephemeral Diffie-Hellman Key (EDHK) Exchange provide?

Answer 55

Forward secrecy

Question 56

# Define Forward Secrecy

Answer 56

When future compromises of passwords/secret keys from previous sessions cannot be used to retrieve encrypted sessions/communications from the past.

Question 57

# Define RSA Signature

Answer 57

A verifiable message that anyone can prove that a private key was used (digital signature algorithm)

Question 58

# Upgrade Asymmetric Cryptography Approach

Answer 58

A encrypts message with A's secret key => A encrypts message again with B's public key => B decrypts ciphertext with A's public key

Question 59

Limitation to the Upgraded Asymmetric Cryptography Approach

Answer 59

MITM attacks can still occur

Question 60

What does the Upgraded Asymmetric Cryptography Approach resolve?

Answer 60

CIA and repudiation concerns

Question 61

# Describe Public Key Certificates

Answer 61

Binds an identity with their public key and prevents interception by endorsing/guaranteeing legitimacy from the Certificate Authority (3rd party)

Question 62

How does the Certificate Authority publish their own certificate?

Answer 62

Self-sign or have it signed by another Certificate Authority (company)

Question 63

Why do Certificate Authorities have to publish their own certificates?

Answer 63

To avoid interception