Test your basic knowledge |

Comptia Security +: Cryptography

Subjects : certifications, comptia-security-+, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. Cipher block chaining (CBC) - cipher feedback (CFB) - electronic code book (ECB) and output feedback (OFB)
encryption
symmetric key
four modes of DES
WPA2

2. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for
SSL
symmetric key
key
trusted platform module

3. Impossible to find a message - given only message digest - impossible to find 2 messages that produce the same message digest
symmetric ciphers
cryptography
secure hash algorithm
DES

4. Symmetric cryptography - asymmetric cryptography - and hashes provide __________
block cipher
cryptography
confidentiality
triple DES

5. SHA-1 - MD2/ MD4 - MD5 - Fasthash - Triple DES-MAC - Tiger - and RIPEMD-160
TKIP
secure hash algorithms
cryptanalysis
decryption

6. Encrypted text - also called cryptogram
ciphertext
elliptic curve
collision
L2TP

7. Enciphers fixed-size blocks of bits using substitution and permutation
SHA
block cipher
symmetric key
one time pad

8. Encrypting all data on a disk using common algorithms (AES) - requires a key (passpharse - USB key) in memory to decrypt disk
cryptography
DES
tunneling
whole disk encryption

9. A special mathematical function that peforms one way encryption - popular algorithms are SHA and MD - used to verify message/file integrity and passwords
PG
MD5
cryptanalysis
hashing

10. PGP and SSH
one time pad
DSS
cipher
hybrid

11. Sender/receiver share the same key - fast - provides confidentiality - key management issue
DES
secure hash algorithm
symmetric key
TKIP

12. Process of transforming ciphertext into plaintext (decipherment)
digital signature
cipher
confidentiality
decryption

13. Most widely used asymmetric algorithm - used for digital signatures - key exchange - and encryption
IPSec
RSA
PPTP
key

14. Selected by NIST for cryptographic hash functions for public use - 160 bit length
SHA-2
MD5
steganography
SHA

15. Mechanism for message authentication that uses one of two algorithms (SHA-1 or MDF5) in combination with a shared secret key - also known as keyed hashing
tunneling
HMAC
symmetric key algorithms
SSL

16. Provides digests in different lengths including 224 - 256 - 384 - and 512
TPM
S/MIME
SHA-2
IPSec

17. Password storage hash for Windows systems after XP - uses MD4 and full unicode character set
NTLM
MD5
PPTP
integrity

18. Process of transforming plaintext into unreadable format
confidentiality
encryption
four modes of DES
collision

19. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall
confidentiality
WPA2
PPTP
tunneling

20. Technique of encapsulating one packet of data within another type to create a secure link of transportation
MIME
tunneling
X.509
unclassified data

21. Method of encryption and decryption
TKIP
cipher
DSS
decryption

22. An internet email standard format specifying how multimedia and attachments are handled
HMAC
MIME
four modes of DES
WPA2

23. Security enhancement for MIME - provides signed (SHA-1) and encrypted (RSA and Diffe-Helman) email messasges
Hash Message Authentication Code
symmetric ciphers
S/MIME
steganography

24. Digital signature standard that uses 2 algorithms: RSA and DSA (based on El Gamal) - both use the Secure Hash Standard (SHA-1)
DSS
ciphertext
TLS
digital signature

25. Discovering the original message using other than normal means (i.e. "breaking" the cryptosystem)
elliptic curve
cryptanalysis
digital signature
IPSec

26. Unencrypted text - also called cleartext
hashing
encryption
plaintext
Message Authentication Code

27. Allow client/server applcation to communicate in a secure manner across a network - TLS stands for
transport layer security
key
wired equivalency privacy
secure hash algorithms

28. Based on use of one private/secret key - does NOT provide authentication or nonrepudiation - uses MAC
S/MIME
symmetric key
L2TP
PPTP

29. AES Encryption standard used to protect sensitive but ________ - default key 128
IPSec
digital signature
unclassified data
WPA2

30. Based on two keys - public and private - one-way function: a key cannot decrypt what it encrypts - provides confidentiality - authentication - integrity - and nonrepudiation - Discovered by Diffie and Hellman - also known as public key
PPTP
wired equivalency privacy
asymmetric key
IPSec

31. Has a transport and tunnel mode - tunnel mode is used to create VPN connections
transport layer security
key
asymmetric key algorithms
IPSec

32. Encryption standard broken in 1998 - has a relatively short key length
IPSec
HTTPS
elliptic curve
DES

33. Asymmetric cryptography - hashes - and digital signatures provide __________
non repudiation
encryption
HMAC
Message Authentication Code

34. The cipher considered unbreakable in practice - uses XOR - also called the Vernam cipher
encryption
secure hash algorithm
one time pad
PPTP

35. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL
TLS
SSL
non repudiation
hybrid cryptosystem

36. Cryptographic algorithm that operates on plaintext - one bit at a time - and enciphers with a random generated "key stream" using substitution
tunneling
tunneling protocols
stream cipher
collision

37. Provides integrity - authentication - and non-repudiation by encrypting a message digest with a private key
secure hash algorithm
DES
symmetric key
digital signature

38. Tunneling protocol originally used on UNIX - uses port 22 - typically used for remote administration - replaces telnet and FTP
Hash Message Authentication Code
Message Authentication Code
SSH
symmetric key algorithms

39. PKI standard
symmetric key
X.509
transport layer security
plaintext

40. Developed to replace DES based on Rijndael variable block cipher - has a fixed block length and key lengths: 128 - 192 - or 256 bits
AES
Hash Message Authentication Code
TKIP
plaintext

41. Tunneling protocol that merges PPTP with L2F - using port 1701 - is used over UDP - can be combined with IPSec for 5 layered encapsulation
integrity
L2TP
digital signature
cryptography

42. Two different pieces of data have the same hash value
IPSec
collision
whole disk encryption
symmetric ciphers

43. RSA - Diffie and Hellman - Elliptic Curve (EC) - DSS (Digital Signature Standard) - El Gamal - Merkel-Hellman
symmetric key algorithms
TKIP
elliptic curve
asymmetric key algorithms

44. A protocol suite for securing network connections using IKE - AH - and ESP
SHA-2
DSS
IPSec
S/MIME

45. Symmetric cryptography with MAC - asymmetric cryptography - and hashes provide __________
DSS
confidentiality
PPTP
integrity

46. Developed to strengthen DES - uses 3 keys (key clustering) to encrypt 3 times
IPSec
triple DES
confidentiality
symmetric key

47. PPTP - L2TP - IPSec - and SSH
integrity
tunneling protocols
WPA2
HMAC

48. Protects against removing or installing a bogus hard drive using sealing (measuring system variables - BIOS - boot sector - firmware)
TPM
digital signature
cryptanalysis
hybrid

49. Runs on top of TLS on port 443 - protected against MITM attacks and creates secure connections
HTTPS
PPTP
whole disk encryption
IPSec

50. Password storage hash for Windows XP - separates password into two 7 character parts and converts to upper case
key
non repudiation
block cipher
lanman