Introduction to Cryptography

Questions and Answers

What is a significant flaw associated with MD5 hash algorithms?

They can have collisions. (correct)

They are computationally expensive.

They require large key sizes.

They are secure against all forms of attack.

Which hash algorithm is known to produce outputs of varying lengths such as SHA-256 and SHA-512?

Secure Hash Algorithm (SHA) (correct)

Message Digest (MD)

HAVAL

RIPEMD

What information is typically included in a digital certificate?

User's social media handles

Access permissions

Personal identification number

Public key (correct)

What was the significant achievement of researchers regarding SHA-1 as documented in 2017?

They demonstrated the first ever SHA-1 hash collision.

Which of the following hash algorithms should not be trusted due to known weaknesses?

MD4

What impact does a hash collision have on data integrity?

It allows data to be safely altered undetected.

Which characteristic is unique to hash algorithms like SHA and MD?

They produce fixed-length hash values.

What can the presence of collisions in hash algorithms lead to?

Endanger the security of digital signatures.

Which hashing algorithm was initially published by Ronald Rivest?

MD5

What algorithm family includes SHA-256 and SHA-512 as components?

Secure Hash Algorithm

What is a primary disadvantage of asymmetric cryptography?

It is significantly slower than symmetric cryptography.

Which of the following is a characteristic of symmetric key algorithms?

Keys must be distributed secretly.

Which asymmetric key algorithm is known for its commercial use?

Rivest Shamir Adleman (RSA)

What are the central aspects of modern cryptography?

Data confidentiality, data integrity, authentication, and non-repudiation

In a hybrid cryptosystem, what is the function of the session key generated by Alice?

To encrypt messages for both Alice and Bob efficiently.

What is the role of hash functions in cryptography?

To compute a unique hash value reflecting large datasets.

In symmetric cryptography, what is the first step that Alice and Bob must take?

Alice and Bob agree on a cryptosystem

Which of the following statements about hybrid cryptosystems is correct?

They combine both asymmetric and symmetric encryption techniques.

What does non-repudiation in cryptography ensure?

The data was created or modified by a specific individual

How does asymmetric cryptography primarily differ from symmetric cryptography?

Alice and Bob do not need to agree on a common key

What is a common weakness of symmetric encryption methods?

The same key is used for both encryption and decryption.

Which asymmetric algorithm is known for its open-standard characteristics?

PGP (Pretty Good Privacy)

Which of the following applications does NOT directly relate to cryptography?

Data analytics

What is the main challenge associated with key distribution in asymmetric cryptography?

The keys must remain private at all times.

What is the primary purpose of maintaining data integrity in cryptography?

To verify that unauthorized changes have not occurred

Which statement is true regarding the efficiency of asymmetric cryptography?

It is primarily used to encrypt keys rather than actual messages.

When Alice encrypts her message using Bob's public key, what cryptographic principle is she employing?

Asymmetric encryption

Which field does modern cryptography intersect with?

Mathematics, computer science, and electrical engineering

What does the term 'confidentiality' primarily refer to in the context of cryptography?

Ensuring that secret data is protected from unauthorized access

What common feature do both symmetric and asymmetric cryptography share?

They both use encryption algorithms

Study Notes

Introduction to Cryptography

• Cryptography is the art and science of protecting data, ensuring only intended recipients can read and process it, while blocking adversaries.
• Various aspects of information security, such as confidentiality, integrity, authentication, and non-repudiation, are central to modern cryptography.
• Modern cryptography combines mathematics, computer science, and electrical engineering
• Cryptography is used in ATMs, computer passwords, and electronic commerce.

Goals of Cryptography

• Confidentiality: Ensuring secret data remains secret from unauthorized access.
• Integrity: Verifying data hasn't been altered unauthorizedly.
• Non-repudiation: Proving data was created or modified by a specific individual.
• Authentication: Determining if someone or something is genuinely who or what it claims to be.

Two Kinds of Cryptography

• Symmetric Cryptography:
  • Alice and Bob agree on a cryptosystem and a key
  • Alice encrypts the plaintext message using the algorithm and key, creating ciphertext
  • Alice transmits ciphertext to Bob
  • Bob decrypts the message using the same algorithm and key.
• Asymmetric Cryptography:
  • Alice and Bob agree on a public-key cryptosystem.
  • Bob sends Alice his public key.
  • Alice encrypts her message with Bob's public key and sends it to Bob.
  • Bob decrypts the message with his private key.

Symmetric Cryptography Detail

• Uses the same key for encryption and decryption.
• Efficient for bulk data processing.
• Works well with smaller key sizes.
• Key distribution is a challenge.

Symmetric Key Algorithms

• Data Encryption Standard (DES)
• Triple DES (3DES)
• Blowfish & Twofish
• IDEA
• RC4, RC5, and RC6
• Advanced Encryption Standard (AES)

Asymmetric Cryptography Detail

• Uses two different but related keys.
• Encryption with one key, decryption with the other key.
• Solves key distribution challenges.
• Inefficient for large data blocks.
• Slower than symmetric cryptography.

Problems with Cryptography

• Symmetric: Keys need secure distribution. If a key is compromised, anyone can decrypt messages. Doesn't scale well for networks.
• Asymmetric: Significantly slower than symmetric. Vulnerable to attacks like chosen-plaintext attacks.

Public-Key Algorithms

• Not a substitute for symmetric algorithms.
• Used to encrypt keys (session keys) used by symmetric algorithms for message traffic.

Asymmetric Key Algorithms

• Rivest Shamir Adleman (RSA)
• Pretty Good Privacy (PGP)
• Open Standard PGP (RFC 4880) - implemented as Gnu Privacy Guard
• Elliptic Curve Cryptosystem (ECC)

Hybrid Cryptosystems

• Bob sends Alice his public key.
• Alice generates a session key, encrypts it with Bob's public key, and sends it to Bob.
• Bob decrypts the session key using his private key.
• Both use the same session key for further communication.

Hash Functions

• Computes a small hash value from large amounts of data.
• Different data results in different hash values.
• Protects data integrity - verifying no unauthorized alterations.
• Used in digital signatures.

Hash Algorithms

• Message Digest (MD) (e.g., MD2, MD4, MD5)
• Secure Hash Algorithm (SHA) (e.g., SHA-1, SHA-256, SHA-512)
• HAVAL

Digital Certificates

• Electronic documents containing information about the certificate (who issued it, whom it's issued to, valid until, public key, algorithms and key sizes, digital signature).
• Digital signatures verify data integrity.

Description

This quiz covers the fundamental concepts of cryptography, including its goals such as confidentiality, integrity, and authentication. Learn about the different types of cryptography, such as symmetric and asymmetric systems, and explore how they are used in modern technology. Test your understanding of how cryptography secures data.