Test your basic knowledge |

CISSP Crypto Domain

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Integrity Check Value-makes the hash with the hash algorithm






2. Scrambled version of the alphabet






3. Placementof a secret copy in a secure location






4. Encryption - decryption - signing - verifying






5. Formula is public; used to creat checksums; message digests; or integrity check values






6. Set symbol size usually 64 bits






7. Centralized key mgt key issuer; keeps copy of keys or decentralized key mgt; end user generates keys and submits to CA;does not provide for key escrow; no recovery possible






8. Malled online encryption or traffic flow security- implemented in hardware' encrypts all traffic in a single path






9. Hardware - software - and policies (security association) -






10. Both parties have same key(kept secret) exchage keys before comms begins; faster than asymmetric crypto; best suited for bulk encryption; N(N-1)/2 is the number of keys needed; File Encryption Key (FEK)






11. First public key exchange system - users exchange keys over insecure medium.






12. 32 to 448 bit key - Schneier






13. Hash Mess Auth Code (512bit MD5; SHA-1); calculated using a hash function with secret key- shared key appended to data shared faster than DES CBC- used in IPSEC SSL/TLS and SSH






14. Secret; single; conventional; session; shared; private






15. Looks for patterns in ciphertext to discover the key.






16. Science of breakin the code






17. Cert Revocation List- identifies Certs that are no longer recognized; maintained and updated periodically; Browsers use OCSP for updates.






18. Process of properly destroying keys at end of userful loife






19. Measar cipher






20. Relies on finding weaknesses in the hashing algorithm






21. Monsidered unbreakable- each pad made up of truly random values; used once; securely distributed- protected at sender and reciever sites






22. Secret sequence of bits and instructions used to encrypt/decrypt






23. NIST 1991 - outlines authorized algorithms






24. RC(x) - 32 - 64 - 128 bit blocks - key max at 2048 bits






25. Estimated time resources to break a cryptosystem






26. Asymmetric enc + Hash - validity of message - non repudiation






27. Modified md5 - v means "variable"






28. Public Key Infrastructure- Developed to provide standards for key generation; authentication; x.509 non used with Pretty Good Privacy; good private good "web of trust"






29. Carlisle Adams and Stafford Tavares; CAST 128 64 bit block cipher-uses keys between 48 and 128 bit lengths 12 to 16 rounds of operations CAST 256 uses 48 rounds; of 128; 192; 160; 224; 256






30. Block based - adds padding - same key - same clear = same ciphertext






31. Data Encryption Standard - 64 bit blocks - 56 bit key - 16 rounds - 4 modes






32. Spartans - wrapped around rod.






33. MD5 - SHA1






34. Rearranges bits or bytes






35. Data Encryption Standard (DES) 5 Block Modes; Trple DES runs through it three times; Blowfish; IDEA; RC4; RC5






36. 48 rounds - 2 or 3 keys - enc enc enc (EEE) - or enc dec enc (EDE)






37. Stream cipher; stream algorithm works one bit at a time usually done in Hardware; no memory required; very fast; block cipher; works on blocks of bits; transforms into fixed length blocks; encrypted block by block 64; 128; 256 uses substitution and t






38. SHA - RSA - Eliptical Curve (ECDSA)






39. Hides data in images - usually by LSB (least significant bit)






40. Message Authentication Code - Symmetric enc + Hash






41. Credentials that allow verification; contains serial no; ident info; dig signature;lifetime dates;public key of the cert holder






42. Output feedback; emulates stream cipher; similar to CFB except qty XORed; with each plaintext block; IV used as a seed; then keystream used as IV in continuing process






43. Cipher Feedback Emulates stream cipher data encrypted in smaller units than block size; plaintext pattersn concealed in XOR; previous ciphertext block is encrypted and output produced is conbined with plaintext block using XOR-to produce next ciphert






44. Eliptical Curve Cryptography; encryption; dig signatures and key exchange;highest strength per bit of key length; most efficient;160 bit el gamal= 1024 RSA-used in wireless devices use






45. DES - 3des - aes - idea - two fish - rc4 - blow fish






46. Prove knowledge of a fact to a third party without revealing the fact itself






47. Encrypted data-black side






48. Each pair of entities must receive in secure fashion; requires more overhead than worth; key distro challenging- sender recievermust be on the same sheet






49. Attmpts to conceal data by hiding it; Used by placing information in objectssuch as graphics; sound files or document headers






50. Set of mathmatical rules used in encryption