Cryptography

Protect data using encryption

Cryptography subtopic covers algorithms, protocols, and the implementation of cryptography, including encryption, hashing, and digital signatures.

5 minutes 5 Questions

Concepts covered: Asymmetric Encryption, Hash Functions, Public Key Infrastructure (PKI), Cipher Suites and Algorithms, Cryptanalysis and Attack Vectors, Cryptographic Key Management, Symmetric Encryption, Digital Signatures, Secure Key Exchange, Steganography

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

CISSP - Cryptography Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

What is key stretching in cryptography?

A technique used to increase the complexity and length of a password, making it more secure against brute force attacks A technique used to reverse the encryption process of a cipher A technique used to create strong symmetric keys for encryption purposes A technique used to reduce the length of a password, making it easier to remember

Correct Answer: A technique used to increase the complexity and length of a password, making it more secure against brute force attacks

Key stretching is a technique used to make a password more resistant to brute force attacks by increasing the complexity and length of the password. This is typically achieved by using a hashing algorithm that repeatedly applies a one-way function to the password with a salt, to generate a longer and more complex key. The resulting key is still usable for cryptographic operations, but is much harder to guess or crack by an attacker.

Question 2

What is the difference between data at rest and data in transit?

Data at rest refers to data that is stored on a device or server, while data in transit refers to data that is being transmitted over a network. Data at rest refers to data that is encrypted using symmetric-key cryptography, while data in transit refers to data that is encrypted using public key cryptography. Data at rest refers to data that is being transmitted over a network, while data in transit refers to data that is stored on a device or server. Data at rest refers to data that is encrypted using public key cryptography, while data in transit refers to data that is encrypted using symmetric-key cryptography.

Correct Answer: Data at rest refers to data that is stored on a device or server, while data in transit refers to data that is being transmitted over a network.

Data at rest refers to data that is stored on a device or server, such as a hard drive, USB stick, or cloud storage. This data is vulnerable to theft, loss, or unauthorized access. In contrast, data in transit refers to data that is being transmitted over a network, such as email, web traffic, or file transfers. This data is vulnerable to interception or tampering. Both types of data require different security measures to protect them.

Question 3

What is a block cipher mode of operation?

A type of public-key cryptography A method for using block ciphers to encrypt messages of arbitrary length A technique for encrypting plaintext using a one-time pad An encryption algorithm used only for symmetric-key cryptography

Correct Answer: A method for using block ciphers to encrypt messages of arbitrary length

Block cipher modes of operation enable the use of a block cipher, which can only encrypt fixed-length blocks, to encrypt messages of arbitrary length. Common modes include ECB (electronic codebook), CBC (cipher block chaining), and OFB (output feedback).

Go Premium

CISSP Preparation Package (2024)

4537 Superior-grade CISSP practice questions.
Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
Unlock Effortless CISSP preparation: 5 full exams.
100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
Bonus: If you upgrade now you get upgraded access to all courses
Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!

Start Your Free 7-Day Trial