Test your basic knowledge |

Comptia Security +: Cryptography

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Block and stream






2. Encrypting a message's hash value with a private key - DOES NOT ensure confidentiality






3. Password storage hash for Windows XP - separates password into two 7 character parts and converts to upper case






4. Most efficient algorithm - used for smart cards and cell phones - provides digital signatures - secure key exchange - and encryption






5. Protects against removing or installing a bogus hard drive using sealing (measuring system variables - BIOS - boot sector - firmware)






6. A cryptographic communications protocol at the transport layer that provides public key encryption (RSA or Diffie-Helman) - data encryption (IDEA - DES - 3DES) - server authentication - message integrity (MD5 or SHA-1) - and client authentication.






7. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL






8. Impossible to find a message - given only message digest - impossible to find 2 messages that produce the same message digest






9. Based on two keys - public and private - one-way function: a key cannot decrypt what it encrypts - provides confidentiality - authentication - integrity - and nonrepudiation - Discovered by Diffie and Hellman - also known as public key






10. Art of hiding communications - i.e. hide information in graphic files - sound files - or slack space.






11. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for






12. Runs on top of TLS on port 443 - protected against MITM attacks and creates secure connections






13. Based on use of one private/secret key - does NOT provide authentication or nonrepudiation - uses MAC






14. Allow client/server applcation to communicate in a secure manner across a network - TLS stands for






15. Encrypting all data on a disk using common algorithms (AES) - requires a key (passpharse - USB key) in memory to decrypt disk






16. Process of transforming plaintext into unreadable format






17. Symmetric cryptography with MAC - asymmetric cryptography - and hashes provide __________






18. Data encryption standard derived from IBM Lucifer algorithm - 56-bit key - 64-bit block - uses the Data Encryption Algorithm (DEA)






19. Most widely used tunneling protocol - over port 1723 - data carried in an IP tunnel over Generic Routing Encapsulation (GRE)






20. Discovering the original message using other than normal means (i.e. "breaking" the cryptosystem)






21. Uses symmetric key for integrity and confidentiality (bulk transaction) and asymmetric key for authentication - nonrepudiation - and key exchange






22. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall






23. A special mathematical function that peforms one way encryption - popular algorithms are SHA and MD - used to verify message/file integrity and passwords






24. RSA - Diffie and Hellman - Elliptic Curve (EC) - DSS (Digital Signature Standard) - El Gamal - Merkel-Hellman






25. Encryption standard broken in 1998 - has a relatively short key length






26. DES - 3DES - AES - Twofish - Blowfish - IDEA - Skipjack - RC2 -RC4 - RC5 - RC6






27. Password storage hash for Windows systems after XP - uses MD4 and full unicode character set






28. PPTP - L2TP - IPSec - and SSH






29. Sender/receiver share the same key - fast - provides confidentiality - key management issue






30. A cryptographic checksum used to provide integrity in symmetric key cryptography






31. Most widely used asymmetric algorithm - used for digital signatures - key exchange - and encryption






32. Sequence of bits used in encryption and decryption - also known as cryptovariable






33. For encrypting web communications - uses Cryptographic Messaging Syntax (CMS) to protect individual message and response






34. Encrypted text - also called cryptogram






35. Technique of encapsulating one packet of data within another type to create a secure link of transportation






36. HMAC stands for...






37. Security enhancement for MIME - provides signed (SHA-1) and encrypted (RSA and Diffe-Helman) email messasges






38. Developed to strengthen DES - uses 3 keys (key clustering) to encrypt 3 times






39. Altering the form of a message to disguise its meaning






40. Used by WPA - uses RC4 with IV - blocks replay attacks with packet sequence counter - replaced by WPA2






41. Two different pieces of data have the same hash value






42. Provides digests in different lengths including 224 - 256 - 384 - and 512






43. AES Encryption standard used to protect sensitive but ________ - default key 128






44. Cryptographic algorithm that operates on plaintext - one bit at a time - and enciphers with a random generated "key stream" using substitution






45. Selected by NIST for cryptographic hash functions for public use - 160 bit length






46. Asymmetric cryptography - hashes - and digital signatures provide __________






47. The cipher considered unbreakable in practice - uses XOR - also called the Vernam cipher






48. Method of encryption and decryption






49. Unencrypted text - also called cleartext






50. An algorithm developed to secure wireless - improperly implemented RC4 - only had a 40 bit key