Test your basic knowledge |

Comptia Security +: Cryptography

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Selected by NIST for cryptographic hash functions for public use - 160 bit length






2. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL






3. Encrypted text - also called cryptogram






4. Symmetric cryptography - asymmetric cryptography - and hashes provide __________






5. Data encryption standard derived from IBM Lucifer algorithm - 56-bit key - 64-bit block - uses the Data Encryption Algorithm (DEA)






6. Process of transforming plaintext into unreadable format






7. A protocol suite for securing network connections using IKE - AH - and ESP






8. For encrypting web communications - uses Cryptographic Messaging Syntax (CMS) to protect individual message and response






9. Encryption standard broken in 1998 - has a relatively short key length






10. Security enhancement for MIME - provides signed (SHA-1) and encrypted (RSA and Diffe-Helman) email messasges






11. Protects against removing or installing a bogus hard drive using sealing (measuring system variables - BIOS - boot sector - firmware)






12. Sender/receiver share the same key - fast - provides confidentiality - key management issue






13. SHA-1 - MD2/ MD4 - MD5 - Fasthash - Triple DES-MAC - Tiger - and RIPEMD-160






14. An algorithm developed to secure wireless that uses AES (CCMP + AES)






15. PKI standard






16. Tunneling protocol that merges PPTP with L2F - using port 1701 - is used over UDP - can be combined with IPSec for 5 layered encapsulation






17. An internet email standard format specifying how multimedia and attachments are handled






18. DES - 3DES - AES - Twofish - Blowfish - IDEA - Skipjack - RC2 -RC4 - RC5 - RC6






19. Altering the form of a message to disguise its meaning






20. Process of transforming ciphertext into plaintext (decipherment)






21. A special mathematical function that peforms one way encryption - popular algorithms are SHA and MD - used to verify message/file integrity and passwords






22. Discovering the original message using other than normal means (i.e. "breaking" the cryptosystem)






23. A cryptographic checksum used to provide integrity in symmetric key cryptography






24. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall






25. Allow client/server applcation to communicate in a secure manner across a network - TLS stands for






26. Developed to replace DES based on Rijndael variable block cipher - has a fixed block length and key lengths: 128 - 192 - or 256 bits






27. A cryptographic communications protocol at the transport layer that provides public key encryption (RSA or Diffie-Helman) - data encryption (IDEA - DES - 3DES) - server authentication - message integrity (MD5 or SHA-1) - and client authentication.






28. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for






29. Most widely used tunneling protocol - over port 1723 - data carried in an IP tunnel over Generic Routing Encapsulation (GRE)






30. Unencrypted text - also called cleartext






31. HMAC stands for...






32. Uses symmetric key for integrity and confidentiality (bulk transaction) and asymmetric key for authentication - nonrepudiation - and key exchange






33. Password storage hash for Windows XP - separates password into two 7 character parts and converts to upper case






34. Provides integrity - authentication - and non-repudiation by encrypting a message digest with a private key






35. Encrypting all data on a disk using common algorithms (AES) - requires a key (passpharse - USB key) in memory to decrypt disk






36. Block and stream






37. Free email security program that uses several algorithms - symmetric (IDEA) - asymmetric (RSA) and hashes (SHA1) and the web of trust






38. Cipher block chaining (CBC) - cipher feedback (CFB) - electronic code book (ECB) and output feedback (OFB)






39. Provides digests in different lengths including 224 - 256 - 384 - and 512






40. PPTP - L2TP - IPSec - and SSH






41. Pads messages to a length of 512 bits - then compresses to generate a 128 bit hash value






42. Mechanism for message authentication that uses one of two algorithms (SHA-1 or MDF5) in combination with a shared secret key - also known as keyed hashing






43. Symmetric cryptography with MAC - asymmetric cryptography - and hashes provide __________






44. Method of encryption and decryption






45. An algorithm developed to secure wireless - improperly implemented RC4 - only had a 40 bit key






46. Two different pieces of data have the same hash value






47. Art of hiding communications - i.e. hide information in graphic files - sound files - or slack space.






48. Encrypting a message's hash value with a private key - DOES NOT ensure confidentiality






49. Enciphers fixed-size blocks of bits using substitution and permutation






50. The cipher considered unbreakable in practice - uses XOR - also called the Vernam cipher