Module 13: Cryptography in Network Security

Question 1

Requirements that cryptography can fulfill

Answer 1

Authentication
Privacy
Integrity (message unaltered)
Non-repudiation (message received)

Question 2

Secret-key (symmetric) cryptography

Answer 2

Encryption and decryption use the same key. Usually faster/more efficient for encrypting.

Question 3

Public-key (asymmetric) cryptography

Answer 3

Different keys used for encryption and decryption. Can scale more easily.

Question 4

4 main components in cryptography for any “practical systems”

Answer 4

Cryptosystems (algorithms)
Modes (how algorithms initialized and used to manage messages longer than one block)
Protocols (how algorithms composed and applied to real problems)
Key management (creating, distributing, storing, updating keys)

Question 5

Common key length

Answer 5

128-bit for symmetric algorithms, 1024 bits for asymmetric algorithms

Question 6

MIC (Message Integrity Code)

Answer 6

Cryptographic checksum, used to confirm data in file has not been maliciously changed

Question 7

Block cipher algorithm

Answer 7

Takes fixed-length block of plaintext, encrypts to a fixed-length block of cipher text. Cons: repetitions are noticed. Solution: CBC (Cipher block chaining)

Question 8

Stream cipher algorithm

Answer 8

Uses key to make pseudorandom key stream, XOR-ed with plaintext to make ciphertext. Con: simple cipher algorithm makes same key stream with each new messsage (solution: use Initialization Vector and key)

Question 9

DES (Data Encryption Standard) (private-key)

Answer 9

Block cipher algorithm

Question 10

Triple DES (private-key)

Answer 10

Uses three 56-bit DES keys to encrypt each block

Question 11

Blowfish (private-key)

Answer 11

Cipher block algorithm, uses variable key lengths

Question 12

AES (Advanced Encryption Standard) (private-key)

Answer 12

Attempt to replace DES

Question 13

What does public key do for authentication?

Answer 13

Digital signature applied to message using private keys

Question 14

How does public key solve security of key directory?

Answer 14

Public-key certificates. CA (certificate authorities) organized in a hierarchy.

Question 15

RSA (named after creators) algorithm

Answer 15

best known public-key cryptosystem.

Question 16

Mode of operation

Answer 16

Method of combining executions of cipher algorithms, for when message is longer than block length of the cipher.

Question 17

ECB (Electronic Codebook) Mode

Answer 17

Encryption algorithm applied independently to each block of message. Cons: same input block always encrypted as same ciphertext block, attacker can substitute blocks to alter part of a message

Question 18

CBC (Cipher Block Chaining) Mode

Answer 18

Each plaintext block XOR-ed with preceding ciphertext block. “bootstrapped” with Initialization Vector (IV)

Question 19

Protocol

Answer 19

Series of steps take to accomplish a task. Used to refer to attainment of user-visible results such as secret communication and digital signatures.

Question 20

Two methods for generating keys

Answer 20

User input
Pseudorandom