Cyber Intelligence SECE47: Chapter 2 - Symmetric Encryption

Questions and Answers

Which type of encryption is commonly used for encrypting stored data on modern processors?

• Symmetric encryption (correct)
• Stream ciphers
• Asymmetric encryption
• Hash functions

What is a common approach to encrypt stored data for indefinite periods?

• Random numbers
• Symmetric block encryption algorithms
• Back-end appliance (correct)
• Use a commercially available encryption package

Which type of encryption algorithm is typically used for digital signatures and key management?

• Symmetric block encryption algorithms
• Stream ciphers
• Public-key encryption (correct)
• Hash functions

What type of function is used for message authentication without message encryption?

Secure hash functions (D)

Which of the following is a property of hash functions that makes them secure?

Collision resistance (C)

What does DES stand for in the context of encryption?

Data encryption standard (C)

What is a digital signature according to NIST FIPS PUB 186-4?

A data-dependent bit pattern that provides origin authentication, data integrity, and signatory nonrepudiation (D)

Which of the following is NOT one of the three digital signature algorithms specified in FIPS 186-4?

Diffie-Hellman Digital Signature Algorithm (B)

What type of transformation results in a digital signature?

Cryptography (A)

What is a key property required of random numbers for cryptographic applications?

Uniform distribution (D)

Which algorithm is used to generate a symmetric key for a temporary session key?

Diffie-Hellman Key Exchange (C)

What is the purpose of a digital envelope in cryptography?

To encrypt a message with a symmetric key (D)

Which property of random numbers ensures that no value in the sequence can be inferred from others?

Independence (C)

What distinguishes true random number generators (TRNG) from pseudorandom numbers?

They are unlikely to be predictable (B)

Which algorithmic technique is typically used for random number generation in cryptographic applications?

Deterministic algorithms (C)

What is the primary purpose of a digital signature verification algorithm?

To check the authenticity of a digital signature (D)

What is another name for symmetric encryption?

Single-key encryption (A)

What is the main advantage of Triple DES over regular DES?

Longer key length (D)

What is the primary goal of brute-force attacks on symmetric encryption?

Gain access to all future messages encrypted with that key (C)

Which encryption algorithm was selected as the Advanced Encryption Standard (AES) by NIST in 2001?

Rijndael (C)

What is the main drawback of the Electronic Codebook (ECB) mode of symmetric encryption?

Allows cryptanalysts to exploit regularities in the plaintext (B)

How does a Stream Cipher differ from a Block Cipher?

Processes continuously and produces output blocks for each input block (A)

What is the fundamental requirement for secure use of symmetric encryption?

Securely obtaining and keeping the secret key (D)

'Exploits the characteristics of the algorithm to attempt to deduce a specific plaintext or the key being used.' This statement refers to which type of attack?

'Cryptanalytic' attack (C)

What is one of the drawbacks associated with Triple DES (3DES)?

Algorithm is slow in hardware (A)

Why is combining authentication and confidentiality preferable in message encryption?

Ensures message authenticity and confidentiality (B)