Test your basic knowledge |

Comptia Security +: Cryptography

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Developed to replace DES based on Rijndael variable block cipher - has a fixed block length and key lengths: 128 - 192 - or 256 bits






2. For encrypting web communications - uses Cryptographic Messaging Syntax (CMS) to protect individual message and response






3. Sequence of bits used in encryption and decryption - also known as cryptovariable






4. Runs on top of TLS on port 443 - protected against MITM attacks and creates secure connections






5. Security enhancement for MIME - provides signed (SHA-1) and encrypted (RSA and Diffe-Helman) email messasges






6. Technique of encapsulating one packet of data within another type to create a secure link of transportation






7. Used by WPA - uses RC4 with IV - blocks replay attacks with packet sequence counter - replaced by WPA2






8. A cryptographic checksum used to provide integrity in symmetric key cryptography






9. Has a transport and tunnel mode - tunnel mode is used to create VPN connections






10. Symmetric cryptography - asymmetric cryptography - and hashes provide __________






11. Sender/receiver share the same key - fast - provides confidentiality - key management issue






12. Cipher block chaining (CBC) - cipher feedback (CFB) - electronic code book (ECB) and output feedback (OFB)






13. Process of transforming ciphertext into plaintext (decipherment)






14. SHA-1 - MD2/ MD4 - MD5 - Fasthash - Triple DES-MAC - Tiger - and RIPEMD-160






15. A secure cryptoprocessor embedded in the motherboard used to authenticate a hardware device - TPM stands for






16. A special mathematical function that peforms one way encryption - popular algorithms are SHA and MD - used to verify message/file integrity and passwords






17. Tunneling protocol that merges PPTP with L2F - using port 1701 - is used over UDP - can be combined with IPSec for 5 layered encapsulation






18. Common tunneling protocol integrated in Windows - works well with NAT - maybe blocked at firewall






19. Encryption standard broken in 1998 - has a relatively short key length






20. PPTP - L2TP - IPSec - and SSH






21. Free email security program that uses several algorithms - symmetric (IDEA) - asymmetric (RSA) and hashes (SHA1) and the web of trust






22. AES Encryption standard used to protect sensitive but ________ - default key 128






23. Method of encryption and decryption






24. Discovering the original message using other than normal means (i.e. "breaking" the cryptosystem)






25. Password storage hash for Windows systems after XP - uses MD4 and full unicode character set






26. Allow client/server applcation to communicate in a secure manner across a network - TLS stands for






27. A cryptographic communications protocol at the transport layer that provides public key encryption (RSA or Diffie-Helman) - data encryption (IDEA - DES - 3DES) - server authentication - message integrity (MD5 or SHA-1) - and client authentication.






28. Two different pieces of data have the same hash value






29. PKI standard






30. Mechanism for message authentication that uses one of two algorithms (SHA-1 or MDF5) in combination with a shared secret key - also known as keyed hashing






31. An internet email standard format specifying how multimedia and attachments are handled






32. Most widely used tunneling protocol - over port 1723 - data carried in an IP tunnel over Generic Routing Encapsulation (GRE)






33. Pads messages to a length of 512 bits - then compresses to generate a 128 bit hash value






34. Cryptographic algorithm that operates on plaintext - one bit at a time - and enciphers with a random generated "key stream" using substitution






35. Art of hiding communications - i.e. hide information in graphic files - sound files - or slack space.






36. Provides digests in different lengths including 224 - 256 - 384 - and 512






37. Based on two keys - public and private - one-way function: a key cannot decrypt what it encrypts - provides confidentiality - authentication - integrity - and nonrepudiation - Discovered by Diffie and Hellman - also known as public key






38. A cryptographic protocol that provides security for communications over networks such as the Internet - more secure that SSL






39. Altering the form of a message to disguise its meaning






40. An algorithm developed to secure wireless that uses AES (CCMP + AES)






41. Based on use of one private/secret key - does NOT provide authentication or nonrepudiation - uses MAC






42. Block and stream






43. Impossible to find a message - given only message digest - impossible to find 2 messages that produce the same message digest






44. Provides integrity - authentication - and non-repudiation by encrypting a message digest with a private key






45. Developed to strengthen DES - uses 3 keys (key clustering) to encrypt 3 times






46. Selected by NIST for cryptographic hash functions for public use - 160 bit length






47. Encrypted text - also called cryptogram






48. HMAC stands for...






49. Data encryption standard derived from IBM Lucifer algorithm - 56-bit key - 64-bit block - uses the Data Encryption Algorithm (DEA)






50. A protocol suite for securing network connections using IKE - AH - and ESP