Question 1

3)The strlen function should only be used when '\0' terminated string is guaranteed.

Accepted Answer

The strlen function calculates the length of a string by counting the number of characters until it reaches the '\0' terminator. If the string is not properly terminated with '\0', the function will continue to count beyond the actual end of the string, leading to undefined behavior. Therefore, it should only be used when a '\0' terminated string is guaranteed.

Question 2

12)Certificate revocation is done in OpenSSL by using the ca command with the -____ option.&#10;A) remove&#10;B) retire&#10;C) revoke&#10;D) crl

Accepted Answer

The correct option for revoking a certificate in OpenSSL is the -revoke option with the ca command. This option generates a Certificate Revocation List (CRL) entry for the specified certificate, marking it as revoked. The -remove option is not valid for revocation, and the -retire option does not exist in OpenSSL. The -crl option, while related to revocation, generates a CRL and does not explicitly revoke a specific certificate.

Question 3

6)C/C++ developers must do their own memory management using the standard APIs malloc(), alloc(), realloc(), free(), new() and ____ .&#10;A) delete()&#10;B) remove()&#10;C) revoke()&#10;D) erase()

Accepted Answer

The standard API for deallocating dynamically allocated memory in C++ is delete(). Therefore, the best choice is A.

Question 4

15)____ encoding is very useful when binary data needs to transfer correctly among platforms with different code pages over the Internet.&#10;A) Base64&#10;B) SHA1&#10;C) MD5&#10;D) RC4

Accepted Answer

Base64 encoding converts binary data into ASCII characters, making it suitable for transferring data among platforms with different code pages over the Internet. It is widely used in email attachments, file uploads, and HTML forms. Both SHA1 and MD5 are hash functions, which are used for data integrity and authentication, but they do not convert binary data into a suitable format for cross-platform transmission. RC4 is a symmetric encryption algorithm, which is used for securing data transmission, but it is not a encoding format.

Question 5

1)C is &#34;close to the machine,&#34; as the abstractions the language introduced are readily grounded in the concrete data types and operations supplied by conventional computers

Accepted Answer

C was designed to be a low-level language that provides direct access to memory and system resources, making it very "close to the machine." Its data types and operations reflect the fundamental capabilities of a computer's hardware.

Question 6

4)As part of a shell program or batch program, OpenSSL commands are usually run in interactive mode.

Accepted Answer

OpenSSL commands are commonly run in non-interactive mode as part of a shell or batch program, using command line options to specify the necessary arguments.

Question 7

9)The OpenSSL command-line tool executable is called ____ on UNIX.&#10;A) openssl.exe&#10;B) openssl&#10;C) cmdssl&#10;D) opensslcmd

Accepted Answer

On UNIX, the OpenSSL command-line tool executable is simply called "openssl". The ".exe" extension is not necessary on UNIX systems. The other options listed (cmdssl and opensslcmd) are not valid names for the OpenSSL tool.

Question 8

20)____ is a popular software program that uses encryption techniques to encrypt and digitally sign e-mail.&#10;A) PKCS&#10;B) EVP&#10;C) PGP&#10;D) FIPS

Accepted Answer

PGP (Pretty Good Privacy) is a popular software program that uses encryption techniques to encrypt and digitally sign e-mail. PKCS (Public-Key Cryptography Standards) is a set of standards for public-key cryptography, EVP (Envelope Encryption) is a technique for encrypting data at rest, and FIPS (Federal Information Processing Standards) is a set of security standards for federal government computer systems.

Question 9

17)OpenSSL provides the APIs ____ for Base64 decoding.&#10;A) EVP_DecodeBase64&#10;B) EVP_B64Decode&#10;C) EVP_Base64DecodeBlock&#10;D) EVP_DecodeBlock

Accepted Answer

EVP_DecodeBlock is the correct API provided by OpenSSL for Base64 decoding. The other options do not represent actual OpenSSL API functions for Base64 decoding.

Question 10

2)Totally strong type checking is possible to achieve.

Accepted Answer

Totally strong type checking is not possible to achieve as there will always be some trade-off between flexibility and strictness in type checking.

Question 11

19)____ is a symmetric block cipher designed in 1993 by Bruce Schneier as a fast, free alternative to existing encryption algorithms.&#10;A) IDEA&#10;B) AES&#10;C) RC5&#10;D) Blowfish

Accepted Answer

The answer of 19)____ is a symmetric block cipher designed...

Question 12

11)The ____ command is a PKCS#10 certificate request and certificate generating utility.&#10;A) cert&#10;B) req&#10;C) pkcs&#10;D) pkcsreq

Accepted Answer

The answer of 11)The ____ command is a PKCS#10 certificate...

Question 13

14)OpenSSL provides a single API set that serves as an interface to all hashing and symmetric cryptography algorithms: the ____ interface.&#10;A) SSL&#10;B) EVP&#10;C) Crypt&#10;D) Security

Accepted Answer

The answer of 14)OpenSSL provides a single API set that...

Question 14

8)Buffer overflow provides the ability to overwrite a return address causing ____.&#10;A) heap overruns&#10;B) variable overruns&#10;C) stack overruns&#10;D) variable smashing

Accepted Answer

The answer of 8)Buffer overflow provides the ability to overwrite...

Question 15

7)A language is ____ typed if it enforces type abstractions where operations can be applied only to objects of the appropriate type.&#10;A) weakly&#10;B) virtually&#10;C) securely&#10;D) strongly

Accepted Answer

The answer of 7)A language is ____ typed if it...

Question 16

5)OpenSSL contains a minimal CA application that ships with the toolkit.

Accepted Answer

The answer of 5)OpenSSL contains a minimal CA application that...

Question 17

16)OpenSSL provides the APIs ____ for Base64 encoding.&#10;A) EVP_B64EncodeBlock&#10;B) EVP_Base64EncodeBlock&#10;C) EVP_EncodeBlock&#10;D) EVP_Base64Block

Accepted Answer

The answer of 16)OpenSSL provides the APIs ____ for Base64...

Question 18

13)The ____ option in the ca command is used to generate the CRL.&#10;A) -gencrl&#10;B) -crl&#10;C) -revoke&#10;D) -crlcert

Accepted Answer

The answer of 13)The ____ option in the ca command...

Question 19

10)The OpenSSL command-line tool executable is called ____ on Windows.&#10;A) openssl.bat&#10;B) openssl.com&#10;C) cmdssl.exe&#10;D) openssl.exe

Accepted Answer

The answer of 10)The OpenSSL command-line tool executable is called...

Question 20

18)____ is a symmetric key-encryption technique that will replace the commonly used DES standard.&#10;A) AES&#10;B) RC2&#10;C) IDEA&#10;D) Blowfish

Accepted Answer

The answer of 18)____ is a symmetric key-encryption technique that...

Question 21

25)The standard organization ____ has been developing a standard for transport layer security based on SSL, and the result is TLS version 1.&#10;A) IEFT&#10;B) ACM&#10;C) OSI&#10;D) IEEE

Accepted Answer

The answer of 25)The standard organization ____ has been developing...

Question 22

33)Why is it hard to write secure code with C?

Accepted Answer

The answer of 33)Why is it hard to write secure...

Question 23

22)A ____ cipher is a symmetric cipher in which the input digits are encrypted one at a time.&#10;A) block&#10;B) group&#10;C) bit&#10;D) stream

Accepted Answer

The answer of 22)A ____ cipher is a symmetric cipher...

Question 24

34)What causes a buffer overflow?

Accepted Answer

The answer of 34)What causes a buffer overflow?...

Question 25

29)____________________ is a specific type of stack overrun attack where the goal is to overwrite the return address of subroutines on the stack.

Accepted Answer

The answer of 29)____________________ is a specific type of stack...

Question 26

28)One common buffer overflow attack is called the ____________________, where the target is to overwrite internal data of a program.

Accepted Answer

The answer of 28)One common buffer overflow attack is called...

Question 27

35)Why are most high-level programming languages essentially immune to buffer overflow problems?

Accepted Answer

The answer of 35)Why are most high-level programming languages essentially...

Question 28

36)Describe the memory arrangement of a C program.

Accepted Answer

The answer of 36)Describe the memory arrangement of a C...

Question 29

24)____ is a protocol that provides a secure channel between two systems.&#10;A) AES&#10;B) FIPS&#10;C) SSL&#10;D) EVP

Accepted Answer

The answer of 24)____ is a protocol that provides a...

Question 30

31)____________________ is the mathematical process that produces the message digest or &#34;hash.&#34;

Accepted Answer

The answer of 31)____________________ is the mathematical process that produces...

Question 31

37)What is the general algorithm for a stack overrun attack?

Accepted Answer

The answer of 37)What is the general algorithm for a...

Question 32

39)How can you revoke a certificate in OpenSSL?

Accepted Answer

The answer of 39)How can you revoke a certificate in...

Question 33

38)Describe the structure of a configuration file for OpenSSL.

Accepted Answer

The answer of 38)Describe the structure of a configuration file...

Question 34

40)How does hashing work?

Accepted Answer

The answer of 40)How does hashing work?...

Question 35

26)____ are usually used in conjunction with nonsecret parameters to derive one or more keys from a common secret value.&#10;A) TLS&#10;B) EVPs&#10;C) KDFs&#10;D) MACs

Accepted Answer

The answer of 26)____ are usually used in conjunction with...

Question 36

30)The open source toolkit ____________________ is the de facto standard library for full-feature cryptography and SSL implementation for use with the C programming languages.

Accepted Answer

The answer of 30)The open source toolkit ____________________ is the...

Question 37

21)____ is a block cipher designed by Xuejia Lai and James L. Massey in 1991.&#10;A) AES&#10;B) IDEA&#10;C) Blowfish&#10;D) RC4

Accepted Answer

The answer of 21)____ is a block cipher designed by...

Question 38

27)____________________ helps to insure the security and portability of the code, and it usually requires that the programmer explicitly define the types of each object in a program.

Accepted Answer

The answer of 27)____________________ helps to insure the security and...

Question 39

41)What is the core path for hashing with EVP API?

Accepted Answer

The answer of 41)What is the core path for hashing...

Question 40

23)Most block ciphers are constructed by composing several simpler functions. These ciphers are called iterated block ciphers or ____ ciphers.&#10;A) hybrid&#10;B) product&#10;C) stream&#10;D) group

Accepted Answer

The answer of 23)Most block ciphers are constructed by composing...

Question 41

Match between columns&#10;                        Premises: detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;detect any attempt to run illegal code on the stack&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;an extremely common security flaw in C/C++&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;tool that detects memory leak, out-of-bound arrays, and other run-time memory problems&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;a set of programming language compilers produced by the GNU Project&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;the new standard cryptographic algorithm for U.S. government organizations to protect sensitive information&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;holds all dynamic variables allocated by malloc() and the new operator&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used to store program state such as procedure arguments, local variables, and register values&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;used as a tool to write software programs that interact well with the operating system&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters&#10;a data-encoding scheme that converts binary-encoded data to printable ASCII characters

Accepted Answer

The Answer of Buffer overflow and Library-based defenses and Base64 is...

Question 42

42)Briefly describe DES and its variants.

Accepted Answer

The answer of 42)Briefly describe DES and its variants....

Deck 8: Secure Programming With C and Openssl