Chapter 7 Cryptography and the PKI

Questions and Answers

What role does the OCSP server play in the certificate validation process?

It issues new digital certificates.

It confirms the revocation status of a user.

It verifies the validity of a digital certificate. (correct)

It generates timestamped responses for certificate authorities.

How does certificate stapling improve the process of validating digital certificates?

It reduces the number of requests made to the OCSP server. (correct)

It requires every user to contact the OCSP server independently.

It enables longer validity periods for digital certificates.

It allows users to skip the verification process entirely.

What is the significance of the timestamp included with the stapled OCSP response?

It ensures the signature authority was valid.

It determines how long the certificate will remain valid.

It indicates when the certificate was issued.

It verifies the OCSP response is recent and authentic. (correct)

What is a potentially negative consequence of not utilizing certificate stapling?

The web server has to process all requests without help.

What does the certificate authority (CA) sign in the certificate stapling process?

The OCSP response provided to the user.

Why is it beneficial for a stapled certificate to have a validity period of 24 hours?

It reduces server requests to just once per day.

What happens when a user requests a secure web connection and receives a stapled certificate?

The browser verifies both the certificate and OCSP response.

What is the main purpose of the Online Certificate Status Protocol (OCSP)?

To verify the validity of digital certificates.

What are the implications of a certificate authority (CA) being removed from a major browser's list of trusted CAs?

It greatly limits the usability of certificates issued by that CA.

Why is proper validation of certificate requests essential for a certificate authority?

To maintain a trusted reputation and prevent business loss.

What is the primary function of certificate pinning?

To associate a specific site with its public key for security.

What is a disadvantage of using Certificate Revocation Lists (CRLs)?

CRLs must be downloaded and cross-referenced periodically

How does the Online Certificate Status Protocol (OCSP) improve upon CRLs?

It eliminates the latency through real-time certificate verification

What is one common reason for a certificate authority to revoke a digital certificate?

The private key was compromised.

How can digital certificate verification algorithms benefit users?

They verify digital signatures without user input.

What are the contents of a Certificate Revocation List (CRL)?

Serial numbers of revoked certificates along with their revocation dates

What is the role of the Certificate Practice Statement (CPS)?

To outline the practices a CA employs for certificate management

What was the outcome of the security failures involving Symantec certificates?

Symantec sold its certificate issuing business to DigiCert.

What is the primary issue associated with OCSP servers?

They place a significant burden on the OCSP server resources

What is a potential result of a Certificate Authority not being trusted?

Users will be warned against the CA's certificates.

Under what circumstance might a certificate be revoked?

If the subject's name has changed

What happens when a small lapse in the certificate issuance procedure occurs?

It can lead to significant security breaches.

What does certificate pinning help to protect against?

Man-in-the-middle attacks

What is the primary purpose of a root CA in the CA trust model?

To create subordinate intermediate CAs for certificate chaining.

What is the correct sequence for validating a digital certificate?

Verify the intermediate CA(s) first, then trace the trust path to the root CA.

What differentiates an internal CA from a third-party CA?

Internal CAs provide self-signed certificates that may not be trusted by external browsers.

What information do you provide to a CA during the enrollment process?

A Certificate Signing Request (CSR) and your public key.

What is certificate chaining?

Establishing a trust path from a root CA through intermediate CAs.

What is a primary function of a Certificate Authority (CA)?

To facilitate notarization services for digital certificates

Which statement best explains the importance of trust in Certificate Authorities?

Trust is essential for the validity of any digital certificate issued.

What is the purpose of a Certificate Signing Request (CSR)?

To prove identity and provide the public key to the CA.

How do registration authorities (RAs) support Certificate Authorities (CAs)?

They validate user identities before certificates are issued.

Which of the following is NOT a method of identity verification for obtaining a digital certificate?

Confirmation of existing user accounts by email.

What action must a CA take if a digital certificate is compromised?

Revoke the compromised certificate to prevent further use.

What is the role of an offline CA in a Certificate Authority's infrastructure?

To protect the CA's root certificate from unauthorized access.

Why might a digital certificate for www.cissp.certmike.com not be valid if issued for certmike.com?

Subdomain and domain must match for validation.

Which of the following is a widely accepted Certificate Authority?

IdenTrust

What is the effect of configuring a browser to trust a particular Certificate Authority?

The browser will automatically trust any certificates issued by that CA.

What is a potential consequence of a compromised Certificate Authority?

Mistrust can spread to all certificates issued by that CA.

What is the fundamental principle behind a substitution cipher?

It alters each character to another predetermined character.

Which method utilizes a shift of 13 to encrypt and decrypt messages?

ROT13

What happens when the Caesar cipher reaches the end of the alphabet during encryption?

It wraps around to the beginning of the alphabet.

Which of the following best describes the difference between substitution and transposition ciphers?

Substitution ciphers replace characters, while transposition ciphers rearrange them.

Which of the following statements about ROT13 is accurate?

It decrypts messages by shifting letters 13 places in the opposite direction.

What is required to decrypt a message encoded with the Caesar cipher?

The number of positions shifted for encryption.

What is the primary role of a cryptographic key in encryption?

It maintains the security of the encryption process.

How is the key space for a cryptographic algorithm defined?

By the number of bits in the key.

What does the Kerckhoffs’ principle imply about cryptographic systems?

The system is secure even if the algorithm is public.

What is a potential consequence of not adequately protecting cryptographic keys?

Compromise of the entire encryption process.

Which of the following statements best describes a cipher's function?

A cipher is a method that can secure data by modifying its structure.

What is the maximum value for a 256-bit cryptographic key?

$2^{256}$

What aspect of a cryptographic algorithm does the term 'key length' refer to?

The total number of bits in the key.

Why is it said that all cryptographic security relies on key secrecy?

If the algorithm is public, the key must be secret to maintain security.

What is the primary focus of early cryptographic efforts?

Translation of messages between languages

Which method relies on scrambling text without the use of mathematics?

Classical cryptography methods

What distinguishes a substitution cipher from a transposition cipher?

A substitution cipher alters character values; a transposition cipher changes their positions.

What is a characteristic of the Vigenère cipher?

It employs a keyword to determine the letter offset.

How do modern cryptographic methods primarily differ from historical methods?

Modern cryptography mostly incorporates advanced mathematical techniques.

Which of the following statements about ciphers is accurate?

Ciphers are methods used to scramble or obfuscate characters to hide their value.

What is the main challenge faced by cryptographers in modern times?

Utilizing sophisticated encryption to protect data from advanced threats

What is the primary advantage of record-level encryption compared to database-level encryption?

It allows for more precise control over data access for different users.

Which encryption method encrypts only specific columns within a table?

Column-level Encryption (CLE)

What does Transparent Data Encryption (TDE) primarily focus on?

Encrypting the entire database without altering the operations.

In what scenario would record-level encryption be particularly advantageous?

In highly regulated environments where data access is restricted.

Which of the following statements about database encryption is true?

Column-level Encryption (CLE) targets specific columns allowing for selective encryption.

What is the primary purpose of a digital certificate?

To verify the identity of the parties involved in communication

Which attribute is NOT typically included in an X.509 digital certificate?

Disk space allocation

What distinguishes a wildcard certificate from a regular certificate?

It can cover multiple subdomains of a domain.

Why might a digital certificate contain Subject Alternative Names (SANs)?

To allow encryption of more than one domain without separate certificates.

Which version of X.509 currently supports certificate extensions?

Version 3

What does the signature algorithm identifier in a digital certificate specify?

The technique used by the CA to sign the certificate

Which of the following is NOT a purpose for which digital certificates may be issued?

Protecting emails from phishing attacks

How does a wildcard certificate typically function concerning subdomains?

It protects only first-level subdomains of the specified domain.

What file extensions are commonly associated with the Personal Information Exchange (PFX) format?

.pfx and .p12

Which statement accurately describes the difference between DER and PEM certificate formats?

DER format is binary and PEM is text-based.

Why is the file extension '.crt' considered confusing in the context of digital certificates?

It can represent both binary DER and text PEM formats.

Which certificate format is used primarily by Windows systems?

PFX

What is a unique characteristic of P7B certificates?

They are stored in ASCII text format.

What is a characteristic of a related key attack?

It involves obtaining ciphertexts encrypted under two different keys.

How does the birthday paradox apply to cryptography?

It indicates a higher likelihood of collisions with fewer inputs than expected.

What is the outcome of a downgrade attack in secure communications?

It may cause the system to use less secure encryption methods.

What is the main purpose of differential cryptanalysis?

To analyze the behavior of encryption under modified plaintexts.

What probability is associated with two people sharing a birthday in a group of 23?

There is a 50 percent likelihood that two share a birthday.

What criterion is the birthday theorem primarily based on?

The probability of unique birthdays amid a set group.

Which of the following best defines a collision in hashing?

Two distinct inputs producing the same output.

In terms of probability, how many inputs are needed for a 51 percent chance of a collision with a hash function using $n$ as the number of possible inputs?

$1.7 √ n$ inputs

What is the main limitation of the brute force method in code-breaking?

It is guaranteed to find the key but is often too slow.

In which scenario would known plain text be an effective attack method?

When the attacker possesses pairs of known plaintext and ciphertext.

What is the primary advantage of the chosen plain text method in code-breaking?

It allows the attacker to select the plaintext for which they want ciphertext.

Which statement accurately reflects the process of frequency analysis?

It leverages known patterns of common letters and words in the language.

What scenario demonstrates the successful use of a known plain text attack?

Using the phrase 'Heil Hitler' from German Naval messages.

What is a critical weakness of the brute force method when applied to modern encryption algorithms?

The vast key space makes it computationally impractical.

How might an attacker utilize frequency analysis to break an ancient cipher?

By targeting the most frequently used single-letter words.

What is the primary purpose of salting in the context of password hashing?

To ensure unique hashes for identical passwords.

Which algorithm is primarily used for key stretching to enhance password security?

Password-Based Key Derivation Function v2 (PBKDF2)

How do rainbow table attacks bypass the security of hashed passwords?

By precomputing hashes of common passwords and using them for comparison.

What is a direct benefit of using key stretching techniques on passwords?

They make it difficult for attackers to brute-force passwords.

Which of the following statements regarding rainbow table attacks is NOT true?

They require real-time hacking of systems to be successful.

What is a key feature of homomorphic encryption technology?

It preserves the capacity to perform computations on encrypted data.

What potential impact could quantum computing have on existing cryptographic algorithms?

It may defeat algorithms reliant on factoring large prime numbers.

What is one of the anticipated contributions of quantum computing to cryptography?

Creation of cryptographic algorithms that are stronger than current methods.

Which statement reflects a current limitation of quantum computing in relation to cryptography?

Quantum computing lacks practical implementation strategies at this time.

What outcome can be expected when using homomorphic encryption and then performing computations on the data?

The decrypted result matches the outcome of plaintext computation.

What is a key characteristic of lightweight cryptography?

It minimizes energy consumption for constrained devices.

Which scenario exemplifies a situation that requires low latency cryptography?

Transmitting data across a fast network without delays.

How can specialized hardware enhance lightweight cryptographic operations?

It accelerates the encryption and decryption process.

What is a main advantage of homomorphic encryption?

It enables computations to be performed on encrypted data.

In terms of data resiliency during encryption, what is the most secure method?

Retain a backup copy until successful decryption is confirmed.

What is a limitation commonly faced by smartcards in cryptography?

Restrictions on power supply requiring efficient algorithms.

Which of the following scenarios does not require specialized cryptographic solutions?

Local storage of sensitive documents on a private computer.

Why do cryptographers often use specialized hardware for lightweight algorithms?

To minimize power consumption and enhance performance.

Study Notes

Digital Certificate Verification

• Certificates like those issued to Bill Jones vouch for associated personal information, including name, address, and telephone number.
• Most web browsers and email clients have built-in digital certificate verification algorithms, simplifying the user's experience.
• Understanding underlying technical details helps organizations make informed security decisions.

Importance of Trusted Certificate Authorities (CAs)

• Choosing a widely trusted CA is crucial for the effectiveness of the certificate.
• A CA's removal from a major browser's trusted list can severely limit a certificate's utility.

Significant Events in Digital Certificate Security

• In 2017, Symantec faced a security crisis due to allegations of issuing substandard certificates.
• Google’s Chrome stopped trusting Symantec certificates, forcing Symantec to sell its issuing business to DigiCert.
• Importance of rigorous validation processes is emphasized, as lapses can severely damage a CA's reputation.

Certificate Pinning

• Certificate pinning involves associating a site with its public key for extended durations, allowing users to identify unauthorized certificate changes.

Certificate Revocation

• CAs may revoke certificates if they are compromised, erroneously issued, or if the subject's credentials change.
• Revocation requests are managed according to a grace period defined in the Certificate Practice Statement (CPS).

Certificate Validity Verification Techniques

• Certificate Revocation Lists (CRLs) compile serial numbers of revoked certificates but may introduce latency due to the need for periodic updates.
• Online Certificate Status Protocol (OCSP) offers real-time verification, reducing latency as requests are processed immediately.
• Certificate Stapling reduces OCSP server load by allowing web servers to present a timestamped OCSP response alongside the digital certificate, speeding up subsequent requests.

Certificate Authorities Structure and Function

• Offline root CAs generate subordinate intermediate CAs for issuing certificates.
• Validation involves checking the identity of intermediary CAs and tracing the trust path back to a root CA.

Internal Certificate Authorities (CAs)

• Organizations can establish internal CAs for internal certificate issuance, saving on costs associated with third-party certificates, although these may not be trusted outside the organization.

Certificate Enrollment Process

• Obtaining a digital certificate requires identity verification to the satisfaction of the CA through various methods including physical appearance or alternative verification means.
• A Certificate Signing Request (CSR) is submitted containing the user's public key.

Certificate Authority and Trust Relationships

• Major CAs include IdenTrust, Amazon Web Services, DigiCert Group, and others, providing widely trusted certificates.
• Trust in a CA is crucial; if a CA's name is unrecognized, the associated certificate should not be trusted.
• Browsers are pre-configured to trust established CAs, alleviating individual user burdens.

Role of Registration Authorities (RAs)

• RAs assist CAs in verifying user identities prior to certificate issuance, not issuing certificates directly but facilitating the certification process.

Security of CA Private Keys

• CAs must safeguard their private keys to maintain trust, often utilizing offline CAs to protect their root certificates, forming the foundational trust for all issued certificates.

Ciphering Process

• Ciphering scrambles messages using a specific algorithm or cipher.
• Two main types of ciphering methods: substitution and transposition.

Substitution Ciphers

• Substitution ciphers change characters or symbols into others.
• The Caesar cipher shifts letters a certain number of spaces; Julius Caesar used a shift of three.
• Example: "I WILL PASS THE EXAM" becomes "L ZLOO SDVV WKH HADP" with a shift of three.
• Decryption reverses the shift by moving letters back to their original positions.

ROT13 Cipher

• ROT13 is a substitution cipher that rotates each letter 13 places in the alphabet.
• An A turns into an N, a B into an O, etc.
• Because the alphabet has 26 letters, applying ROT13 twice returns the original message.

Cryptography Goals

• Authentication uses encryption to validate individual identities.
• Nonrepudiation ensures proof of message origin for the sender and recipient.
• Different cryptographic systems target various goals, extending beyond the CIA triad's "availability."

Historical Context of Cryptography

• Cryptography dates back 4,000 years, focusing initially on confidentiality.
• Early methods used basic techniques easily broken; modern cryptography employs sophisticated algorithms.
• Historical methods relied on text scrambling rather than mathematics.

Cryptographic Algorithm Overview

• A cipher scrambles characters to hide their value, producing ciphertext from plain-text using an algorithm.
• Sending parties encrypt messages, while recipients decrypt them using predetermined algorithms.

Cryptographic Keys

• Cryptographic algorithms use keys, primarily large binary numbers ranging in defined key space.
• Key space varies based on key length, with possible values running from 0 to 2^n.
• Example: A 128-bit key spans from 0 to approximately 3.4 x 10^38.
• Protecting the confidentiality of secret keys is vital for overall security.

Kerckhoffs’ Principle

• All cryptographic systems depend on algorithms—a set of rules for encoding and decoding messages.
• Kerckhoffs’ principle asserts that systems should remain secure even if the algorithm is public; only the key remains secret.
• This principle promotes transparency, allowing examination and testing of algorithms by cryptographers.

Database Encryption Overview

• Databases may manage sensitive information and must ensure its confidentiality.
• Two main types of encryption exist for database data: database-level and record-level encryption.

Database-Level Encryption

• Targets the entire database, providing overall protection from unauthorized access.
• Transparent Data Encryption (TDE)
  • Encrypts the entire database seamlessly without changing how the database operates.
• Column-Level Encryption (CLE)
  • Allows specific columns in tables to be encrypted, targeting sensitive data more selectively.

Record-Level Encryption

• A more detailed encryption method that encrypts individual records within a database.
• Offers precise control over data access, allowing different users or groups to access specific subsets of data.
• Particularly useful in shared environments where users have varying data access requirements.

Digital Certificates Overview

• Digital certificates authenticate the identities of parties in communication.
• They serve as endorsed copies of an individual's public key guaranteeing legitimacy.
• Trust is established by verifying if a certificate is signed by a recognized certificate authority (CA).

X.509 Standard

• Governed by international standards, specifically X.509.
• Certificates must conform to specific attributes defined by this standard.

Key Attributes of X.509 Certificates

• Version: Indicates conformance to X.509 standards.
• Serial Number: Unique identifier assigned by the certificate creator.
• Signature Algorithm Identifier: Specifies the signing technique used by the CA.
• Issuer Name: The identification of the CA that issues the certificate.
• Validity Period: Defines the start and end dates/times for certificate use.
• Subject's Common Name (CN): Clearly identifies the certificate owner (e.g., certmike.com).
• Subject Alternative Names (SANs): Optional field specifying additional protected items like IP addresses or domain names.
• Subject's Public Key: The actual public key used for secure communications.

Current Version and Extensions

• X.509 Version 3: Supports certificate extensions which include custom data from the CA.
• Extensions aid in tracking certificates and facilitating various applications.

Issuance Purposes

• Certificates can assure the public keys of:
  • Computers and machines
  • Individual users
  • Email addresses
  • Developers (via code-signing certificates)

Wildcard Certificates

• Allow for a wildcard in the subject name, indicated by an asterisk (e.g., *.certmike.com).
• Valid for all subdomains of the specified domain (e.g., certmike.com, www.certmike.com).
• Wildcard certificates only apply to one level of subdomain; they do not cover further subdomains (e.g., www.cissp.certmike.com is invalid under *.certmike.com).

Digital Certificate Formats

• Digital certificates are stored in various file formats, including both binary and text-based types.

Distinguished Encoding Rules (DER)

• The most common binary format for digital certificates.
• DER certificates typically use file extensions .der, .crt, or .cer.

Privacy Enhanced Mail (PEM)

• An ASCII text representation of the DER format.
• PEM certificates usually have the .pem or .crt file extension.
• .crt extension can represent both binary DER files and text PEM files, causing potential confusion.

Personal Information Exchange (PFX)

• Often utilized by Windows systems.
• PFX certificates are generally stored in binary format with file extensions .pfx or .p12.

P7B Format

• Also used by Windows systems.
• P7B certificates are stored in ASCII text format, differentiating them from PFX.

Overview of Cryptographic Attacks

• Continuous evolution of cryptographic techniques often results in breakthroughs in code-breaking methods.
• New codes perceived as unbreakable are frequently compromised by innovative attacks.

Brute Force Attack

• Involves exhaustively trying every possible key to decrypt data.
• Guaranteed to be effective but impractically time-consuming.
• Breaking a Caesar cipher requires testing only 26 keys, while breaking DES requires testing 2^56 (72 quintillion) keys.
• Testing 1 million keys per second would take over 46 million years for DES.

Frequency Analysis

• Analyzes patterns within encrypted messages to identify common characteristics or letter frequencies.
• For English, frequent letters include 'e' and 't', while single-letter words are typically 'a' and 'I'.
• This method is primarily effective on historical ciphers, not modern encryption algorithms.

Known Plain Text Attack

• Relies on the attacker having samples of both known plaintext and corresponding ciphertext.
• Enables deriving the encryption key, but requires numerous combinations for modern ciphers.
• Example: Bletchley Park codebreakers used this method to crack the German Naval Enigma by identifying consistent message endings.

Chosen Plain Text Attack

• Involves obtaining ciphertexts for specifically selected plaintexts to decipher the key.
• Although challenging, it allows attackers to decrypt additional messages encoded with the same key.
• Techniques like differential cryptanalysis fall under chosen plaintext attacks.

Related Key Attack

• Similar to the chosen plaintext method but utilizes ciphertexts encrypted under two different keys.
• Particularly effective when plaintext and matching ciphertext can be accessed.

Birthday Attack

• A concept based on the birthday paradox, targeting vulnerabilities in cryptographic hash functions.
• Illustrates the likelihood of two individuals sharing a birthday; with 23 individuals, there's a 50% chance of a match.
• Collision occurs when two different inputs yield the same hash output.
• For hash functions (e.g., MD5), a large number of inputs is required to establish a guaranteed collision, but only 1.7 √ n inputs are necessary for a 51% chance of one.

Downgrade Attack

• Targets secure communications like TLS to manipulate users or systems into adopting less secure protocols.
• Trickery leads users to engage weaker cryptographic methods, making the system more susceptible to breaches.

Hashing and Rainbow Table Attacks

• Rainbow table attacks aim to reverse hashed password values using precomputed hashes of commonly used passwords.
• Attackers generate a rainbow table by hashing a list of common passwords through a specific hash function.
• The attacker searches for matches between hashed passwords and entries in the rainbow table to crack user credentials.

Salting

• Salting is a protective measure against rainbow table attacks that involves adding a randomly generated value to each password before hashing.
• This ensures that even if two users have the same password, their hashed values will differ due to unique salts, making precomputation ineffective.

Key Stretching

• Key stretching enhances the security of encryption keys derived from passwords.
• It involves algorithms like Password-Based Key Derivation Function v2 (PBKDF2), which employs multiple iterations of salting and hashing.
• PBKDF2 typically performs thousands of iterations, significantly increasing the time required for attackers to crack the keys, thus enhancing resistance against brute-force attacks.

Lightweight Cryptography Overview

• Specialized cryptographic applications arise from limited computing power and energy constraints.
• Low-power devices, such as satellites and remote sensors, necessitate energy-efficient cryptographic solutions.
• Smartcards operate securely with minimal energy, communicating with readers without depleting power reserves.

Specialized Hardware

• Purpose-built hardware minimizes power consumption for lightweight cryptographic algorithms.
• Specialized encryption hardware meets low latency needs, ensuring rapid encryption and decryption operations.
• Dedicated devices (e.g., VPN hardware) enhance speed and efficiency in cryptographic processes.

High Resiliency Requirements

• Critical data preservation during encryption necessitates retention of original data until successful receipt confirmation by the recipient.

Homomorphic Encryption

• Enables computations on encrypted data, maintaining privacy while allowing analytical processing.
• Results obtained from computations on encrypted data yield the same outcomes as computations on plaintext data after decryption.

Quantum Computing

• Quantum computing harnesses quantum mechanics for advanced computing and communication, currently largely theoretical.
• Potential implications include the ability of quantum cryptography to challenge existing algorithms reliant on large prime number factorization.
• Future advancements may yield stronger cryptographic algorithms exceeding the capabilities of current systems.

Description

This quiz covers the essentials of digital certificate verification, including the role of trusted Certificate Authorities (CAs) and the importance of certificates in verifying personal information online. Understanding these concepts is crucial for making informed security decisions in organizations.