IS5403 Week 2 All Quizezz

4

Question

With this type of key cryptography, the sender and receiver of a message share a single common key.

Standard

Symmetric

Metric

Asymmetric

Correct

 

4 of 9

5

Question

Hashing aims to produce:

A 56 bit string

A 64 bit string

A 128 bit string

A variable-size bit string

A fixed-size bit string

Correct

 

5 of 9

6

Question

MD5 uses a hash value to create a hash which is typically a 32 character hex number and how many bits?

64

56

98

192

128

256

Correct

 

6 of 9

7

Question

RIPEMD is a suite of cryptographic hash functions developed basing upon:

3DES

MD5

Blowfish

SHA

MD4

Correct

 

7 of 9

8

Question

Which of the following is true concerning RC4?

It was the most widely used software block cipher.

It was not WEP compatible.

It was the most widely used software stream cipher.

It was not TLS compatible.

Correct

 

8 of 9

9

Question

What is PBKDF2 for?

Upgrading blowfish

Upgrading PGP

Key exchange

Launching brute force attack

Hashing passwords for storage

Enriching Diff-Hellman

Correct 

3

Question

In Active Directory, what does authorization?

Kerberos

SAML

LDAP

RADIUS

TACACS+

Correct

 

3 of 7

4

Question

A Digital signature is a piece of data digest encrypted with:

The private key of the receiver.

The private key of the signer.

The public key of the receiver.

The public key of the key escrow.

The public key of the signer.

Correct

 

4 of 7

5

Question

Which of the following may be used as an alternative to CRLs?

OCSP

CSR

Root CA

Subordinate CA

Cert Escrow

Correct

 

5 of 7

6

Question

What is the faster way for browsers to obtain the revocation status of a digital certificate attached to a Web site?

PBKDF2

CRL

Blowfish

Bcrypt

OCSP

Correct

 

6 of 7

7

Question

The security administrator for Conglomerate.com has been been directed by the CIO to reduce the cost of certificates. Which of the following is the FIRST step that should be taken?

Install a RA

Generate shared public and private keys.

Install a CA.

Establish a key escrow policy.

Correct

3

Question

Which of the following technologies are necessary for implementing USB drive encryption or hard drive encryption? [Choose two that apply.]

TACAC

RADIUS

FAT32

HFS

HSM

TPM

Correct

 

3 of 5

4

Question

When defining data policies, what areas or issues must be covered? [Choose four that apply.]

Relations

Disposing

Retention

Wiping

Storage

Correct

 

4 of 5

5

Question

Which of the following can protect "data at rest"? [Choose four that apply.]

Encrypted file system (EFS)

Full memory encryption

BitLocker To Go

Transparent database encryption (TDE)

BitLocker

Enclaves

CPU-based key storage

Correct

Unit 4 Quiz

Your Score: 100%
20 Correct out of 20
Question 1 of 20

Which of these is NOT part of the certificate life cycle?

• authorization
• revocation
• creation
• expiration

CORRECT

_____ is a protocol for securely accessing a remote computer.

• Secure Sockets Layer (SSL)
• Transport Layer Security (TLS)
• Secure Hypertext Transport Protocol (SHTTP)
• Secure Shell (SSH)

CORRECT

A digital certificate associates _____.

• a private key with a digital signature
• a user's private key with the public key
• a user's public key with his private key
• the user's identity with his public key

CORRECT

_____ performs a real-time lookup of a digital certificate's status.

• Real-Time CA Verification (RTCAV)
• Certificate Revocation List (CRL)
• CA Registry Database (CARD)
• Online Certificate Status Protocol (OCSP)

CORRECT

A centralized directory of digital certificates is called a(n) _____.

• Digital Signature Permitted Authorization (DSPA)
• Authorized Digital Signature (ADS)
• Digital Signature Approval List (DSAP)
• Certificate Repository (CR)

CORRECT

Which digital certificate displays the name of the entity behind the website?

• Session Certificate
• Extended Validation (EV) Certificate
• X.509 Certificate
• Online Certificate Status Certificate

CORRECT

Which digital certificate displays the name of the entity behind the website?

• Session Certificate
• Extended Validation (EV) Certificate
• X.509 Certificate
• Online Certificate Status Certificate

CORRECT

Which of these is considered the strongest cryptographic transport protocol?

• TLS v1.2
• SSL v2.0
• TLS v1.0
• SSL v2.0

CORRECT

Which of the following block ciphers XORs each block of plaintext with the previous block of ciphertext before being encrypted?

• Cipher Block Chaining (CBC)
• Galois/Counter (GCM)
• Electronic Code Book (ECB)
• Counter (CTR)

CORRECT

The strongest technology that would assure Alice that Bob is the sender of a message is a(n) _____.

• digest
• digital certificate
• encrypted signature
• digital signature

CORRECT

Public key infrastructure (PKI) _____.

• creates private key cryptography
• requires the use of an RA instead of a CA
• generates public/private keys automatically
• is the management of digital certificates

CORRECT

An entity that issues digital certificates is a _____.

• Signature Authority (SA)
• Certificate Authority (CA)
• Certificate Signatory (CS)
• Digital Signer (DS)

CORRECT

Which statement is NOT true regarding hierarchical trust models?

• It is designed for use on a large scale.
• The root signs all digital certificate authorities with a single key.
• The master CA is called the root.
• It assigns a single hierarchy with one master CA.

CORRECT

_____ are symmetric keys to encrypt and decrypt information exchanged during the session and to verify its integrity.

• Digital digests
• Encrypted signatures
• Session keys
• Digital certificates

CORRECT

_____ refers to a situation in which keys are managed by a third party, such as a trusted CA.

• Remote key administration
• Trusted key authority
• Key escrow
• Key authorization

CORRECT

A(n) _____ is a published set of rules that govern the operation of a PKI.

• certificate policy (CP)
• signature resource guide (SRG)
• certificate practice statement (CPS)
• enforcement certificate (EF)

CORRECT

What is a value that can be used to ensure that hashed plaintext will not consistently result in the same digest?

• nonce
• algorithm
• initialization vector (IV)
• salt

CORRECT

Which of the following is NOT a method for strengthening a key?

• Randomness
• Variability
• Length
• Cryptoperiod

CORRECT

What entity calls in crypto modules to perform cryptographic tasks?

• OCSP Chain
• Certificate Authority (CA)
• Crypto service provider
• Intermediate CA

CORRECT

Digital certificates can be used for each of these EXCEPT _____.

• to encrypt channels to provide secure communication between clients and servers
• to encrypt messages for secure email communications
• to verify the identity of clients and servers on the Web
• to verify the authenticity of the Registration Authorizer

CORRECT

Illya was asked to recommend the most secure asymmetric cryptographic algorithm to his supervisor. Which of the following did he choose?

• ME-312
• SHA-2
• BTC-2
• RSA

CORRECT

Which areas of a file cannot be used by steganography to hide data?

• in the file header fields that describe the file
• in areas that contain the content data itself
• in the directory structure of the file system
• in data that is used to describe the content or structure of the actual data

CORRECT

What is the latest version of the Secure Hash Algorithm?

• SHA-5
• SHA-4
• SHA-3
• SHA-2

CORRECT

Which of the following key exchanges uses the same keys each time?

• Diffie-Hellman-RSA (DHRSA)
• Elliptic Curve Diffie-Hellman (ECDH)
• Diffie-Hellman (DH)
• Diffie-Hellman Ephemeral (DHE)

CORRECT

At a staff meeting one of the technicians suggested that the enterprise protect its new web server by hiding it and not telling anyone where it is located. Iosif raised his hand and said that security through obscurity was a poor idea. Why did he say that?

• It is an unproven approach and has never been tested.
• It depends too heavily upon non-repudiation in order for it to succeed.
• It would be too costly to have one isolated server by itself.
• It would be essentially impossible to keep its location a secret from everyone.

INCORRECT

See Ch. 3: Basic Cryptography, Section - Cryptography and Security

If Bob wants to send a secure message to Alice using an asymmetric cryptographic algorithm, which key does he use to encrypt the message?

• Bob's private key
• Alice's private key
• Alice's public key
• Bob's public key

CORRECT

Proving that a user sent an email message is known as _____.

• availability
• non-repudiation
• repudiation
• integrity

CORRECT

A(n) _____ is not decrypted but is only used for comparison purposes.

• key
• algorithm
• digest
• stream

CORRECT

Abram was asked to explain to one of his coworkers the XOR cipher. He showed his coworker an example of adding two bits, 1 and 1. What is the result of this sum?

• 2
• 1
• 16
• 0

CORRECT

The Hashed Message Authentication Code (HMAC) _____.

• hashes only the key
• hashes the DHE key only
• hashes the key and the message
• hashes only the message

CORRECT

Which of these is NOT a characteristic of a secure hash algorithm?

• A message cannot be produced from a predefined hash.
• Collisions should be rare.
• The results of a hash function should not be reversed.
• The hash should always be the same fixed size.

CORRECT

Alyosha was explaining to a friend the importance of protecting a cryptographic key from cryptoanalysis. He said that the key should not relate in a simple way to the cipher text. Which protection is Alyosha describing?

• integrity
• confusion
• chaos
• diffusion

CORRECT

Alexei was given a key to a substitution cipher. The key showed that the entire alphabet was rotated 13 steps. What type of cipher is this?

• ROT13
• Alphabetic
• XAND13
• AES

CORRECT

Which of these has an onboard key generator and key storage facility, as well as accelerated symmetric and asymmetric encryption, and can back up sensitive material in encrypted form?

• Trusted Platform Module (TPM)
• self-encrypting hard disk drives (SED)
• Hardware Security Module (HSM)
• encrypted hardware-based USB devices

CORRECT

Which of these is the strongest symmetric cryptographic algorithm?

• Advanced Encryption Standard
• RC 1
• Data Encryption Standard
• Triple Data Encryption Standard

CORRECT

Public key systems that generate random public keys that are different for each session are called _____.

• Diffie-Hellman (DH)
• perfect forward secrecy
• Elliptic Curve Diffie-Hellman (ECDH)
• Public Key Exchange (PKE)

CORRECT

Egor wanted to use a digital signature. Which of the following benefits will the digital signature not provide?

• verify the sender
• prove the integrity of the message
• verify the receiver
• enforce nonrepudiation

CORRECT

What is data called that is to be encrypted by inputting it into a cryptographic algorithm?

• opentext
• plaintext
• cleartext
• ciphertext

CORRECT

Which of these is NOT a basic security protection for information that cryptography can provide?

• confidentiality
• integrity
• authenticity
• risk loss

CORRECT

What is a characteristic of the Trusted Platform Module (TPM)?

• It is available only on Windows computers running BitLocker
• It provides cryptographic services in hardware instead of software
• It allows the user to boot a corrupted disk and repair it
• It includes a pseudorandom number generator (PRNG)

CORRECT