Lecture 5 Flashcards

Question 1

Q

What is Message Authentication?

Answer

A

Is a piece of information used to authenticate a message
Protects against active attacks
Verifies that a message is authentic
Contents is not altered– comes from a reliable source
Timely and in a correct sequence
Receiver performs same computation on message and checks that it matches the MAC
Only sender & receiver share a key

Question 2

Q

Hash Function Requirements

Answer

A

A group of characters (keys) that maps onto a hash value and compares it to a the receiver with the message.
If both hash values are the same, the message is authenticated.

Question 3

Q

Two approaches to attacking a secure hash function and the additional secure hash function applications

Answer

A

Cryptanalysis

Exploits logical weakness in an algorithm

Brute-Force attack

Strength of hash function depends on the length of the hash code produced

Additional secure hash function applications:

Passwords
Hash function stores is the OS

Question 4

Q

What is Public-Key Encryption Structure?

Answer

A

Based on mathematical functions
Asymmetric
Uses two separate keys – PUBLIC and PRIVATE
Public made “public” for others
Protocol needed: **Key distribution **

Question 5

Q

Public key 6 ingredients of Asymmetric

Answer

A

Plaintext – Readable message fed into the algorithm

*Encryption algorithm** – Transformation from plaintext
*Public** and
*Private key** – Pair of keys for encryption and decryption
*Ciphertext** – Scrambled message produced as an output
*Decryption algorithm** – produces the original plaintext

Question 6

Q

Requirements of public-key Cryptosystems

Answer

A

Computationally easy to create key pairs
Sender knowing the public key to encrypt messages
Receiver knowing the private key to decrypt ciphertext
Computationally infeasible
For opponent to determine the private key from public key
For opponent to **recover original message **

Question 7

Q

Asymmetric Encryption Algorithm

Answer

A

Enables two users to securely agree about a shared secret that can be used as a secret key for subsequent symmetric encryption of messages
Limited exchange of the keys

Question 8

Q

What is Digital Signature Standard and Elliptic Curve Photography?

Answer

A

Digital Signature Standard (DSS)

Provides a digital signature function

Cannot be used for encryption or key exchange

Elliptic Curve Photography (ECC)

Security like RSA but with smaller keys

Question 9

Q

What is Digital Signature?

Answer

A

is a mathematical technique used to validate the authenticity and integrity of a message/source
Attach a code that acts like a signature
Identity of an electronic document/message** **and acknowledging the signer for consent
Encrypts hash code with private key
Does not provide confidentiality
When there is a complete encryption
Message is safe from **alteration **

Question 10

Q

Digital Envelops

Answer

A

Does not require having the same key to protect a message arranged by the sender and receiver
Equates to the same as “sealing an envelope containing a unsigned letter”

Question 11

Q

Random Numbers

Answer

A

Uses generation of:

Keys for public-key
Stream key for symmetric stream cipher
Symmetric key used as a temporary session key or creating a digital envelope
Handshaking to prevent replay attacks

Question 12

Q

andom VS Pseudorandom

Answer

A

Cryptographic applications make use of algorithmic techniques for random number generation

Question 13

Q

What are Pseudorandom?

Answer

A

Sequences to produce to satisfy the statistical randomness tests
Likely to be predicable

Question 14

Q

What is aTrue Random Number Generator?

Answer

A

Uses nondeterministic source to produce randomness
Operates by measuring unpredictable **natural processes **

Question 15

Q

Practical Application of encryption

Answer

A

: Encryption of stored data
Common to encrypt transmitted data
Less common for encryption
There is little protection beyond domain authentication and OS access controls