Question 1

Digital signatures are used for ________ authentication.

Accepted Answer

A)  initial 
B)  message-by-message 
C)  Both A and B 
D)  Neither A nor B 
A)  initial 
B)  message-by-message 
C)  Both A and B 
D)  Neither A nor B

Question 2

________ ciphers move letters around within a message but characters are not substituted.

Accepted Answer

A)  Transposition 
B)  Substitution 
C)  Both A and B 
D)  Neither A nor B 
A)  Transposition 
B)  Substitution 
C)  Both A and B 
D)  Neither A nor B

Question 3

Electronic signatures usually provide ________.

Accepted Answer

A)  message-by-message authentication 
B)  message integrity 
C)  Both A and B 
D)  Neither A nor B 
A)  message-by-message authentication 
B)  message integrity 
C)  Both A and B 
D)  Neither A nor B

Question 4

Which of the following is transmitted across a network?

Accepted Answer

A)  The plaintext 
B)  The ciphertext 
C)  Both A and B 
D)  Neither A nor B 
A)  The plaintext 
B)  The ciphertext 
C)  Both A and B 
D)  Neither A nor B

Question 5

A remote access VPN typically gives users access to multiple resources within a site.

Accepted Answer

A) True 
 B)False

Question 6

When two parties communicate with each other using symmetric key encryption, how many keys are used in total to encrypt and decrypt?

Accepted Answer

A)  1 
B)  2 
C)  4 
D)  8 
A)  1 
B)  2 
C)  4 
D)  8

Question 7

HMACs provide the cryptographic protection of ________.

Accepted Answer

A)  authentication 
B)  nonrepudiation 
C)  Both A and B 
D)  Neither A nor B 
A)  authentication 
B)  nonrepudiation 
C)  Both A and B 
D)  Neither A nor B

Question 8

Nearly all encryption for confidentiality uses ________ encryption ciphers.

Accepted Answer

A)  public key 
B)  symmetric key 
C)  hashing 
D)  None of the above 
A)  public key 
B)  symmetric key 
C)  hashing 
D)  None of the above

Question 9

Hashing is ________.

Accepted Answer

A)  reversible 
B)  repeatable 
C)  Both A and B 
D)  Neither A nor B 
A)  reversible 
B)  repeatable 
C)  Both A and B 
D)  Neither A nor B

Question 10

________ offers transparent protection.

Accepted Answer

A)  SSL/TLS 
B)  IPsec 
C)  Both A and B 
D)  Neither A nor B 
A)  SSL/TLS 
B)  IPsec 
C)  Both A and B 
D)  Neither A nor B

Question 11

Someone who breaks encryption is called a ________.

Accepted Answer

A)  cracker 
B)  coder 
C)  hacker 
D)  cryptanalyst 
A)  cracker 
B)  coder 
C)  hacker 
D)  cryptanalyst

Question 12

To check a certificate's revocation status, the verifier can ________.

Accepted Answer

A)  download the CRL from the CA 
B)  send an OCSP message to the CA 
C)  Both A and B 
D)  Neither A nor B 
A)  download the CRL from the CA 
B)  send an OCSP message to the CA 
C)  Both A and B 
D)  Neither A nor B

Question 13

In SSL/TLS, a specific set of protocols that a particular cryptographic system will use to provide protection is called a ________.

Accepted Answer

A)  system standard 
B)  cipher suite 
C)  security method 
D)  security method and options 
A)  system standard 
B)  cipher suite 
C)  security method 
D)  security method and options

Question 14

Companies can enforce policies for ________.

Accepted Answer

A)  SSL/TLS 
B)  IPsec security associations 
C)  Both A and B 
D)  Neither A nor B 
A)  SSL/TLS 
B)  IPsec security associations 
C)  Both A and B 
D)  Neither A nor B

Question 15

What protection do cryptographic systems provide on a message-by-message basis?

Accepted Answer

A)  Message authentication 
B)  Message integrity 
C)  Message confidentiality 
D)  All of the above 
A)  Message authentication 
B)  Message integrity 
C)  Message confidentiality 
D)  All of the above

Question 16

In public key encryption for authentication, the supplicant must prove that it knows ________, which nobody else should be able to know.

Accepted Answer

A)  the supplicant's public key 
B)  the supplicant's private key 
C)  the true party's private key 
D)  the verifier's private key 
A)  the supplicant's public key 
B)  the supplicant's private key 
C)  the true party's private key 
D)  the verifier's private key

Question 17

The best way to thwart exhaustive searches by cryptanalysts is ________.

Accepted Answer

A)  to use codes 
B)  to make the key very long 
C)  randomize the key thoroughly 
D)  All of the above 
A)  to use codes 
B)  to make the key very long 
C)  randomize the key thoroughly 
D)  All of the above

Question 18

A ________ is a cryptographic system that provides secure communication over an untrusted network.

Accepted Answer

A)  virtual private network 
B)  secure link 
C)  complete cryptographic system 
D)  None of the above. 
A)  virtual private network 
B)  secure link 
C)  complete cryptographic system 
D)  None of the above.

Question 19

Which of the following is a type of VPN?

Accepted Answer

A)  Host-to-host 
B)  Remote access 
C)  Both A and B 
D)  Neither A nor B 
A)  Host-to-host 
B)  Remote access 
C)  Both A and B 
D)  Neither A nor B

Question 20

Most CAs are not regulated.

Accepted Answer

A) True 
 B)False

Digital signatures are used for ________ authentication.

________ ciphers move letters around within a message but characters are not substituted.

Electronic signatures usually provide ________.

Which of the following is transmitted across a network?

A remote access VPN typically gives users access to multiple resources within a site.

When two parties communicate with each other using symmetric key encryption, how many keys are used in total to encrypt and decrypt?

HMACs provide the cryptographic protection of ________.

Nearly all encryption for confidentiality uses ________ encryption ciphers.

Hashing is ________.

________ offers transparent protection.

Someone who breaks encryption is called a ________.

To check a certificate's revocation status, the verifier can ________.

In SSL/TLS, a specific set of protocols that a particular cryptographic system will use to provide protection is called a ________.

Companies can enforce policies for ________.

What protection do cryptographic systems provide on a message-by-message basis?

In public key encryption for authentication, the supplicant must prove that it knows ________, which nobody else should be able to know.

The best way to thwart exhaustive searches by cryptanalysts is ________.

A ________ is a cryptographic system that provides secure communication over an untrusted network.

Which of the following is a type of VPN?

Most CAs are not regulated.

The Threat Environment

Planning and Policy

Secure Networks

Access Control

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module A: Networking Concepts

Filters

Exam 3: Cryptography

Digital signatures are used for ________ authentication.

________ ciphers move letters around within a message but characters are not substituted.

Electronic signatures usually provide ________.

Which of the following is transmitted across a network?

A remote access VPN typically gives users access to multiple resources within a site.

When two parties communicate with each other using symmetric key encryption, how many keys are used in total to encrypt and decrypt?

HMACs provide the cryptographic protection of ________.

Nearly all encryption for confidentiality uses ________ encryption ciphers.

Hashing is ________.

________ offers transparent protection.

Someone who breaks encryption is called a ________.

To check a certificate's revocation status, the verifier can ________.

In SSL/TLS, a specific set of protocols that a particular cryptographic system will use to provide protection is called a ________.

Companies can enforce policies for ________.

What protection do cryptographic systems provide on a message-by-message basis?

In public key encryption for authentication, the supplicant must prove that it knows ________, which nobody else should be able to know.

The best way to thwart exhaustive searches by cryptanalysts is ________.

A ________ is a cryptographic system that provides secure communication over an untrusted network.

Which of the following is a type of VPN?

Most CAs are not regulated.

The Threat Environment

Planning and Policy

Secure Networks

Access Control

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module A: Networking Concepts

Filters