Test your basic knowledge |

Comptia Security +: Cryptography

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Based on use of one private/secret key - does NOT provide authentication or nonrepudiation - uses MAC






2. Runs on top of TLS on port 443 - protected against MITM attacks and creates secure connections






3. Allow client/server applcation to communicate in a secure manner across a network - TLS stands for






4. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall






5. Unencrypted text - also called cleartext






6. A cryptographic checksum used to provide integrity in symmetric key cryptography






7. Art of hiding communications - i.e. hide information in graphic files - sound files - or slack space.






8. Used by WPA - uses RC4 with IV - blocks replay attacks with packet sequence counter - replaced by WPA2






9. The cipher considered unbreakable in practice - uses XOR - also called the Vernam cipher






10. Encrypted text - also called cryptogram






11. Symmetric cryptography with MAC - asymmetric cryptography - and hashes provide __________






12. PKI standard






13. Developed to replace DES based on Rijndael variable block cipher - has a fixed block length and key lengths: 128 - 192 - or 256 bits






14. Selected by NIST for cryptographic hash functions for public use - 160 bit length






15. For encrypting web communications - uses Cryptographic Messaging Syntax (CMS) to protect individual message and response






16. Sender/receiver share the same key - fast - provides confidentiality - key management issue






17. Password storage hash for Windows XP - separates password into two 7 character parts and converts to upper case






18. Two different pieces of data have the same hash value






19. Process of transforming plaintext into unreadable format






20. Encrypting all data on a disk using common algorithms (AES) - requires a key (passpharse - USB key) in memory to decrypt disk






21. AES Encryption standard used to protect sensitive but ________ - default key 128






22. Password storage hash for Windows systems after XP - uses MD4 and full unicode character set






23. An algorithm developed to secure wireless that uses AES (CCMP + AES)






24. PPTP - L2TP - IPSec - and SSH






25. Method of encryption and decryption






26. HMAC stands for...






27. Pads messages to a length of 512 bits - then compresses to generate a 128 bit hash value






28. Most widely used tunneling protocol - over port 1723 - data carried in an IP tunnel over Generic Routing Encapsulation (GRE)






29. Developed to strengthen DES - uses 3 keys (key clustering) to encrypt 3 times






30. DES - 3DES - AES - Twofish - Blowfish - IDEA - Skipjack - RC2 -RC4 - RC5 - RC6






31. Sequence of bits used in encryption and decryption - also known as cryptovariable






32. Digital signature standard that uses 2 algorithms: RSA and DSA (based on El Gamal) - both use the Secure Hash Standard (SHA-1)






33. Free email security program that uses several algorithms - symmetric (IDEA) - asymmetric (RSA) and hashes (SHA1) and the web of trust






34. Mechanism for message authentication that uses one of two algorithms (SHA-1 or MDF5) in combination with a shared secret key - also known as keyed hashing






35. Data encryption standard derived from IBM Lucifer algorithm - 56-bit key - 64-bit block - uses the Data Encryption Algorithm (DEA)






36. Asymmetric cryptography - hashes - and digital signatures provide __________






37. A cryptographic communications protocol at the transport layer that provides public key encryption (RSA or Diffie-Helman) - data encryption (IDEA - DES - 3DES) - server authentication - message integrity (MD5 or SHA-1) - and client authentication.






38. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for






39. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL






40. Provides digests in different lengths including 224 - 256 - 384 - and 512






41. Provides integrity - authentication - and non-repudiation by encrypting a message digest with a private key






42. Encryption standard broken in 1998 - has a relatively short key length






43. Encrypting a message's hash value with a private key - DOES NOT ensure confidentiality






44. Has a transport and tunnel mode - tunnel mode is used to create VPN connections






45. Uses symmetric key for integrity and confidentiality (bulk transaction) and asymmetric key for authentication - nonrepudiation - and key exchange






46. Impossible to find a message - given only message digest - impossible to find 2 messages that produce the same message digest






47. Most widely used asymmetric algorithm - used for digital signatures - key exchange - and encryption






48. An internet email standard format specifying how multimedia and attachments are handled






49. SHA-1 - MD2/ MD4 - MD5 - Fasthash - Triple DES-MAC - Tiger - and RIPEMD-160






50. Based on two keys - public and private - one-way function: a key cannot decrypt what it encrypts - provides confidentiality - authentication - integrity - and nonrepudiation - Discovered by Diffie and Hellman - also known as public key