Comptia GCGA Chapter 6 Flashcards

Questions and Answers

What does Integrity provide?

Assurances that data has not been altered

What does hashing ensure?

That data has retained integrity.

What is a hash?

A number derived from performing a calculation on data.

What are MD5 and SHA?

Common hashing algorithms

What does Confidentiality ensure?

Data is viewable only by authorized users.

What does Encryption protect?

The confidentiality of data.

How does Encryption work?

By scrambling or ciphering data.

What two things does Encryption normally need?

An algorithm and a key

What is Symmetric Encryption?

Same key to encrypt and decrypt.

What is Asymmetric Encryption?

Two keys; public and private.

Anything encrypted with the public key can only be decrypted with the matching _________ key.

private

Anything encrypted with the private key can only be decrypted with the matching _____ key.

public

______ ciphers encrypt data one bit at a time.

Stream

______ ciphers encrypt data in blocks.

Block

What validates an identity?

Authentication

What prevents a party from denying an action?

Non-repudiation

_____ ______ provide authentication, non-repudiation, and integrity.

Digital Signatures

How can you verify integrity?

With hashing

What is an analogous term for hash?

Checksum

What is Message Digest 5?

128 bit-hash, shown as hexadecimal.

What are the four variations of SHA?

SHA-0, SHA-1, SHA-2, SHA-3

Which SHA version is not used?

SHA-0

Rootkits can modify what level files?

System-level

What hashing method uses a fixed-length string of bits and a shared secret key?

HMAC

What protocols use HMAC-MD5 and HMAC-SHA1?

IPsec and TLS

What is md5sum.exe?

Free application to calculate hashes.

Hashes will always ____ _____ ____ no matter how many times you calculate it.

stay the same

Hashing is a _____ ____ ____ that creates a string of characters.

one way function

You cannot ______ the hash to re-create the original file.

reverse

How many bits are in MD5?

128 bits

How many bits are in SHA-1?

160 bits

How many bits are in SHA-2?

224, 256, 384, 512

How many bits are in HMAC-MD5?

128 bits

How many bits are in HMAC-SHA1?

160 bits

Are MD5, SHA-1, SHA-2, SHA-3, SHA-0 used for encrypting data?

False

What is an old Windows-based hashing algorithm that is backwards compatible?

LANMAN

What does RACE Integrity Primitives Evaluation Message Digest stand for?

RIPEMD

How many keys does AES use?

128, 256 bit keys

What does RADIUS use for symmetric encryption?

Shared keys

What type of encryption does RADIUS use?

Symmetric

What is AES?

Strong symmetric block cipher that encrypts data in 128 bit blocks.

What is RC4?

Strong symmetric stream cipher.

What is Blowfish?

64 bit block cipher.

What is Twofish?

128 bit block cipher.

What are AES, DES, 3DES, Blowfish, Twofish, and RC4?

All symmetric encryption

Although asymmetric encryption is very strong it is also very resource intensive.

True

What is a certificate?

Digital document that includes the public key and information on the owner of the certificate.

What is RSA?

Asymmetric encryption method using both public and private keys.

What are the two primary categories of asymmetric keys?

Static and Ephemeral

Does RSA use static or ephemeral keys?

False

What does Perfect forward secrecy indicate?

The systems do not reuse keys.

What encryption method is commonly used with small wireless devices?

Elliptical Curve Cryptography

What is Diffie-Hellman?

Secure method of sharing symmetric encryption keys over a public network.

What are the two Diffie-Hellman methods that use ephemeral keys?

DHE, ECDHE

What is Quantum Cryptography?

Based on quantum physics and photons.

During Quantum Cryptography, when a third party reads any of the photons in the stream, what happens?

It will be obvious to the two parties trying to exchange the key that there is someone eavesdropping.

Web site encryption commonly uses a combination of what?

both asymmetric and symmetric encryption

Study Notes

Integrity and Hashing

• Integrity ensures that data has not been altered during transmission or storage.
• Hashing is a method used to confirm data integrity by generating a unique number from input data, maintaining the integrity if the data remains unchanged.
• MD5 and SHA are widely recognized hashing algorithms utilized for various data integrity checks.
• A hash produces a condensed representation of data, making it useful for verification processes.

Confidentiality and Encryption

• Confidentiality guarantees that sensitive data is accessible only to authorized users.
• Encryption safeguards the confidentiality of data by transforming it into an unreadable format for unauthorized access.
• Encryption requires an algorithm and a key; two key types include symmetric (same for encryption and decryption) and asymmetric (public and private keys).

Digital Signatures and Authentication

• Authentication involves validating identity, ensuring a user is who they claim to be.
• Non-repudiation prevents a party from denying their actions, particularly in communications.
• Digital signatures provide authentication, non-repudiation, and integrity.

Hashing Characteristics

• Hash functions are one-way functions that generate a fixed-length output, making it impossible to reverse-engineer the original data.
• Hash values remain consistent for the same input, regardless of how many times generated.

Encryption Context

• MD5 generates a 128-bit hash, SHA-1 produces a 160-bit hash, and SHA-2 supports various bit sizes (224, 256, 384, 512).
• HMAC (Hashed Message Authentication Code) uses a shared secret key combined with a hash function for added security.
• RADIUS employs symmetric encryption using shared keys, specifically for managing network access.

Symmetric and Asymmetric Ciphers

• AES is a strong symmetric block cipher encrypting data in 128-bit blocks with key options of 128, 192, or 256 bits.
• RC4 is a symmetric stream cipher, while Blowfish and Twofish are block ciphers with varying bit sizes (64-bit and 128-bit, respectively).
• Asymmetric encryption, such as RSA, involves static keys and is computationally intensive.

Quantum and Diffie-Hellman Cryptography

• Quantum Cryptography relies on principles of quantum physics, where interference indicates eavesdropping.
• The Diffie-Hellman method is a secure way of exchanging symmetric keys over public networks, using static and ephemeral keys.

General Security Concepts

• Perfect forward secrecy ensures unique keys for each session, preventing key reuse.
• Certificates are digital documents containing public keys and owner information, essential for establishing secure connections.

Description

This quiz focuses on Chapter 6 of the Comptia GCGA course, specifically highlighting key concepts in cryptography. It includes terms related to data integrity, hashing, and common algorithms like MD5 and SHA. Test your understanding of these important security concepts through flashcards.