Test your basic knowledge |

Comptia Security +: Cryptography

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Sequence of bits used in encryption and decryption - also known as cryptovariable






2. Process of transforming ciphertext into plaintext (decipherment)






3. Mechanism for message authentication that uses one of two algorithms (SHA-1 or MDF5) in combination with a shared secret key - also known as keyed hashing






4. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall






5. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL






6. Encrypted text - also called cryptogram






7. Has a transport and tunnel mode - tunnel mode is used to create VPN connections






8. Password storage hash for Windows systems after XP - uses MD4 and full unicode character set






9. Uses symmetric key for integrity and confidentiality (bulk transaction) and asymmetric key for authentication - nonrepudiation - and key exchange






10. PGP and SSH






11. PPTP - L2TP - IPSec - and SSH






12. Impossible to find a message - given only message digest - impossible to find 2 messages that produce the same message digest






13. Runs on top of TLS on port 443 - protected against MITM attacks and creates secure connections






14. PKI standard






15. Developed to replace DES based on Rijndael variable block cipher - has a fixed block length and key lengths: 128 - 192 - or 256 bits






16. An internet email standard format specifying how multimedia and attachments are handled






17. Password storage hash for Windows XP - separates password into two 7 character parts and converts to upper case






18. Selected by NIST for cryptographic hash functions for public use - 160 bit length






19. Encrypting a message's hash value with a private key - DOES NOT ensure confidentiality






20. Most widely used tunneling protocol - over port 1723 - data carried in an IP tunnel over Generic Routing Encapsulation (GRE)






21. Encrypting all data on a disk using common algorithms (AES) - requires a key (passpharse - USB key) in memory to decrypt disk






22. Provides integrity - authentication - and non-repudiation by encrypting a message digest with a private key






23. Altering the form of a message to disguise its meaning






24. Used by WPA - uses RC4 with IV - blocks replay attacks with packet sequence counter - replaced by WPA2






25. Protects against removing or installing a bogus hard drive using sealing (measuring system variables - BIOS - boot sector - firmware)






26. Asymmetric cryptography - hashes - and digital signatures provide __________






27. Tunneling protocol that merges PPTP with L2F - using port 1701 - is used over UDP - can be combined with IPSec for 5 layered encapsulation






28. AES Encryption standard used to protect sensitive but ________ - default key 128






29. Tunneling protocol originally used on UNIX - uses port 22 - typically used for remote administration - replaces telnet and FTP






30. Technique of encapsulating one packet of data within another type to create a secure link of transportation






31. Developed to strengthen DES - uses 3 keys (key clustering) to encrypt 3 times






32. Encryption standard broken in 1998 - has a relatively short key length






33. Process of transforming plaintext into unreadable format






34. HMAC stands for...






35. Most widely used asymmetric algorithm - used for digital signatures - key exchange - and encryption






36. An algorithm developed to secure wireless that uses AES (CCMP + AES)






37. A cryptographic communications protocol at the transport layer that provides public key encryption (RSA or Diffie-Helman) - data encryption (IDEA - DES - 3DES) - server authentication - message integrity (MD5 or SHA-1) - and client authentication.






38. Most efficient algorithm - used for smart cards and cell phones - provides digital signatures - secure key exchange - and encryption






39. Discovering the original message using other than normal means (i.e. "breaking" the cryptosystem)






40. Cryptographic algorithm that operates on plaintext - one bit at a time - and enciphers with a random generated "key stream" using substitution






41. Unencrypted text - also called cleartext






42. Sender/receiver share the same key - fast - provides confidentiality - key management issue






43. The cipher considered unbreakable in practice - uses XOR - also called the Vernam cipher






44. A protocol suite for securing network connections using IKE - AH - and ESP






45. Digital signature standard that uses 2 algorithms: RSA and DSA (based on El Gamal) - both use the Secure Hash Standard (SHA-1)






46. Method of encryption and decryption






47. RSA - Diffie and Hellman - Elliptic Curve (EC) - DSS (Digital Signature Standard) - El Gamal - Merkel-Hellman






48. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for






49. DES - 3DES - AES - Twofish - Blowfish - IDEA - Skipjack - RC2 -RC4 - RC5 - RC6






50. Two different pieces of data have the same hash value