Exam 8: Cryptography

An X.509 v3 certificate binds a ___________, which uniquely identifies a certificate entity, to a user's public key.

Also known as the one-time pad, the ____________________ cipher, which was developed at AT&T, uses a set of characters only one time for each encryption process.

One of the most widely known cryptographic algorithms is the ____________________, which was developed by IBM and is based on the company's Lucifer algorithm.

One encryption method made popular by spy movies involves using the text in a book as the key to decrypt a message.

Adopted by NIST in 1976 as a federal standard, DES uses a 64-bit block size and key.

In transport mode the entire IP packet is encrypted and is then placed as the content portion of another IP packet. _________________________

__________ are encrypted message components that can be mathematically proven to be authentic.

In PKI, the CA periodically distributes a(n) _________ to all users that identifies all revoked certificates.

The Secure ____________________ Standard issued by the National Institute of Standards and Technology specifies secure algorithms, such as SHA-1, for computing a condensed representation of a message or data file.

SSL builds on the encoding format of the Multipurpose Internet Mail Extensions protocol and uses digital signatures based on public-key cryptosystems to secure e-mail.

Asymmetric encryption systems use a single key to both encrypt and decrypt a message.

The encapsulating security payload protocol provides secrecy for the contents of network communications as well as system-to-system authentication and data integrity verification.

Describe how hash functions work and what they are used for.

The __________ is responsible for the fragmentation, compression, encryption, and attachment of an SSL header to the cleartext prior to transmission.

__________ functions are mathematical algorithms that generate a message summary or digest to confirm the identity of a specific message and to confirm that there have not been any changes to the content.

Encryption methodologies that require the same secret key to encipher and decipher the message are using what is called public-key encryption. _________________________

The __________ protocol provides system-to-system authentication and data integrity verification, but does not provide secrecy for the content of a network communication.

Digital ____________________ are public-key container files that allow computer programs to validate the key and identify to whom it belongs.

Privacy Enhanced Mail was proposed by the Internet Engineering Task Force and is a standard that uses 3DES symmetric key encryption and RSA for key exchanges and digital signatures. _________________________

__________ is the amount of effort (usually in hours) required to perform cryptanalysis to decode an encrypted message when the key or algorithm (or both) are unknown.