Question 1

AES uses a 128-bit key and is used in PGP encryption software.

Accepted Answer

False

Question 2

Symmetric algorithms support confidentiality,but not authentication and nonrepudiation.

Accepted Answer

Symmetric algorithms only provide confidentiality and do not support authentication and nonrepudiation. Authentication and nonrepudiation require the use of asymmetric algorithms.

Question 3

Asymmetric algorithms are more scalable than symmetric algorithms.

Accepted Answer

Asymmetric algorithms use different keys for encryption and decryption, which makes them more scalable than symmetric algorithms. This is because the encryption key can be shared with multiple users without compromising the security of the data.

Question 4

Which of the following is a function that takes a variable-length string or message and produces a fixed-length message digest?&#10;A) RSA algorithm&#10;B) hashing algorithm&#10;C) data algorithm&#10;D) VLS algorithm

Accepted Answer

A hashing algorithm takes a variable-length string and produces a fixed-length message digest. The other options listed do not refer to this specific function.

Question 5

Which of the following is a mathematical function or program that works with a key?&#10;A) encryption algorithm&#10;B) key&#10;C) generated algorithm&#10;D) key algorithm

Accepted Answer

An encryption algorithm is a mathematical function or program that uses a key (either symmetric or asymmetric) to transform plaintext into ciphertext.

Question 6

What encryption algorithm can be used for both encryption and digital signing,uses a one-way function,and is still widely used in e-commerce?&#10;A) ECC&#10;B) RSA&#10;C) DES&#10;D) AES

Accepted Answer

RSA encryption algorithm can be used for both encryption and digital signing, uses a one-way function, and is still widely used in e-commerce. ECC is also used for encryption and digital signing but it is not as widely used in e-commerce as RSA. DES and AES are symmetric encryption algorithms and cannot be used for digital signing.

Question 7

What encryption algorithm is efficient requiring few resources,and is based on complex algebra and calculations on curves?&#10;A) RSA&#10;B) DES&#10;C) ECC&#10;D) IDEA

Accepted Answer

ECC (Elliptic Curve Cryptography) is an efficient encryption algorithm that requires fewer resources than RSA or DES. It is based on complex algebraic computations on elliptic curves, making it very secure. It is widely used in modern cryptography due to its efficiency and security.

Question 8

If a security expert decides to study the process of breaking encryption algorithms,they are performing which of the following?&#10;A) cryptography&#10;B) ciphering&#10;C) cryptanalysis&#10;D) substitution analysis

Accepted Answer

Cryptography involves creating and using codes and ciphers to secure communication. Ciphering is the act of encrypting or deciphering a message. Cryptanalysis is the study of breaking encryption algorithms, which is what a security expert studying this process would be doing. Substitution analysis involves analyzing ciphers that use letter substitutions.

Question 9

ECC is an efficient algorithm requiring few hardware resources,so it's a perfect candidate for wireless devices and cell phones.

Accepted Answer

ECC is well suited for use in wireless devices and cell phones due to its efficiency and low hardware requirements.

Question 10

What type of cryptography is demonstrated by reversing the alphabet so A becomes Z,B becomes Y,and so on?&#10;A) complete cipher&#10;B) substitution cipher&#10;C) alphabet cipher&#10;D) roman cipher

Accepted Answer

This is a substitution cipher where each letter is replaced with another letter, in this case, the letter is replaced with its corresponding letter in the reverse order of the alphabet.

Question 11

Which of the following refers to verifying the sender or receiver (or both)is who they claim to be?&#10;A) Authentication&#10;B) Nonrepudiation&#10;C) Availability&#10;D) Authorization

Accepted Answer

The answer of Which of the following refers to verifying...

Question 12

Which of the following is the process of converting ciphertext back into plaintext?&#10;A) ciphering&#10;B) encryption&#10;C) decryption&#10;D) decoding

Accepted Answer

The answer of Which of the following is the process...

Question 13

Symmetric algorithms use two keys that are mathematically related.

Accepted Answer

The answer of Symmetric algorithms use two keys that are...

Question 14

What type of system converts between plaintext and ciphertext?&#10;A) opensystem&#10;B) cryptokey&#10;C) keyedsystem&#10;D) cryptosystem

Accepted Answer

The answer of What type of system converts between plaintext...

Question 15

Which type of symmetric algorithm operates on plaintext one bit at a time?&#10;A) open ciphers&#10;B) plain ciphers&#10;C) stream ciphers&#10;D) block ciphers

Accepted Answer

The answer of Which type of symmetric algorithm operates on...

Question 16

Which of the following is a range of allowable values that is used to generate an encryption key?&#10;A) algorithm area&#10;B) key range&#10;C) keyspace&#10;D) keyarea

Accepted Answer

The answer of Which of the following is a range...

Question 17

Which function ensures that a sender and receiver cannot deny sending or receiving a specific message?&#10;A) Authentication&#10;B) Nonrepudiation&#10;C) Availability&#10;D) Integrity

Accepted Answer

The answer of Which function ensures that a sender and...

Question 18

Which of the following encryption standards is part of the NSA's suite B cryptographic algorithms and is validated strong enough to protect classified data?&#10;A) DES&#10;B) AES-256&#10;C) Triple DES&#10;D) IDEA

Accepted Answer

The answer of Which of the following encryption standards is...

Question 19

Cryptography is the process of converting plaintext,which is readable text,into unreadable or encrypted text called which if the following?&#10;A) ciphertext&#10;B) cleartext&#10;C) maskedtext&#10;D) subtext

Accepted Answer

The answer of Cryptography is the process of converting plaintext,which...

Question 20

Cryptosystems that have a single key that encrypts and decrypts data are using what type of algorithm?&#10;A) ciphered&#10;B) single&#10;C) asymmetric&#10;D) symmetric

Accepted Answer

The answer of Cryptosystems that have a single key that...

Question 21

When an attacker has access to a password file,they can run a password-cracking program that uses a dictionary of known words or passwords as an input file.What type of attack is this attacker performing?

A) brute force
B) replay
C) ciphertext-only
D) dictionary

Accepted Answer

The answer of When an attacker has access to a...

Question 22

Which of the following is a scripting language for Windows and Linux that performs repetitive tasks,such as password cracking?&#10;A) John the Ripper&#10;B) Hydra (THC)&#10;C) Pwdump3v2&#10;D) EXPECT

Accepted Answer

The answer of Which of the following is a scripting...

Question 23

How can confidentiality and authentication be achieved using public key cryptography?

Accepted Answer

The answer of How can confidentiality and authentication be achieved...

Question 24

A certificate contains a unique serial number and must follow which standard that describes the creating of a certificate?&#10;A) NIST&#10;B) IEEE 802&#10;C) PKI&#10;D) X.509

Accepted Answer

The answer of A certificate contains a unique serial number...

Question 25

What application is considered the original password-cracking program and is now used by many government agencies to test for password strength?&#10;A) John the Ripper&#10;B) Hydra (THC)&#10;C) Pwdump3v2&#10;D) L0phtcrack

Accepted Answer

The answer of What application is considered the original password-cracking...

Question 26

What is an encryption algorithm?

Accepted Answer

The answer of What is an encryption algorithm?...

Question 27

In what type of attack does the attacker have the ciphertext of several messages that were encrypted with the same encryption algorithm,but has no access to the plaintext so he or she must try to calculate the key used to encrypt the data?

A) chosen-ciphertext
B) chosen-plaintext
C) known plaintext
D) ciphertext-only

Accepted Answer

The answer of In what type of attack does the...

Question 28

What is the difference between a public key and a private key?

Accepted Answer

The answer of What is the difference between a public...

Question 29

What is a one-way function? Provide an example or an analogy to help explain the concept.

Accepted Answer

The answer of What is a one-way function? Provide an...

Question 30

What type of attack is being conducted when the attacker has messages in both encrypted form and decrypted forms?&#10;A) chosen-ciphertext&#10;B) chosen-plaintext&#10;C) known plaintext&#10;D) ciphertext-only

Accepted Answer

The answer of What type of attack is being conducted...

Question 31

What type of attack is being attempted when an attacker uses a password-cracking program to guess passwords by attempting every possible combination of letters?&#10;A) brute force&#10;B) replay&#10;C) ciphertext-only&#10;D) dictionary

Accepted Answer

The answer of What type of attack is being attempted...

Question 32

What is Triple Data Encryption Standard (3DES)?

Accepted Answer

The answer of What is Triple Data Encryption Standard (3DES)?...

Question 33

What type of attack is being performed when an attacker intercepts the initial communications between a Web server and a Web browser while forcing a vulnerable server to insecurely renegotiate the encryption being used down to a weaker cipher?

A) Cross Server attack
B) SSL/TLS downgrade attack
C) Hydra attack
D) TCP/IP attack

Accepted Answer

The answer of What type of attack is being performed...

Question 34

What is a digital signature?

Accepted Answer

The answer of What is a digital signature?...

Question 35

What type of attack is being performed when an attacker intercepts the initial communications between a Web server and a Web browser while forcing a vulnerable server to insecurely renegotiate the encryption being used down to a weaker cipher?

A) Cross Server attack
B) SSL/TLS downgrade attack
C) Hydra attack
D) TCP/IP attack

Accepted Answer

The answer of What type of attack is being performed...

Question 36

In what type of attack does the attacker have the ciphertext of several messages that were encrypted with the same encryption algorithm,but has no access to the plaintext so he or she must try to calculate the key used to encrypt the data?

A) chosen-ciphertext
B) chosen-plaintext
C) known plaintext
D) ciphertext-only

Accepted Answer

The answer of In what type of attack does the...

Question 37

What is cryptanalysis?

Accepted Answer

The answer of What is cryptanalysis?...

Question 38

How does public key infrastructure work?

Accepted Answer

The answer of How does public key infrastructure work?...

Question 39

What is the RC5 algorithm?

Accepted Answer

The answer of What is the RC5 algorithm?...

Question 40

What is a certificate?

Accepted Answer

The answer of What is a certificate?...

Question 41

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
A structure consisting of programs,protocols,and security policies for encrypting data and uses public key cryptography to protect data transmitted over the Internet

Accepted Answer