Set3 CompTIA Security+ Sample Questions: Cryptography

1. The higher the number of bits, more secure is the key. T/F?

True

False

Keys are measured by bits. Higher the value of keys used, more reliable will be the encryption system.

Explanation

Keys are measured by bits. Higher the value of keys used, more reliable will be the encryption system.

2. In asymmetric-key encryption, one key will be used for encryption and another will be used for decryption to provide maximum security. T/F?

True

False

In asymmetric-key encryption, one key will be used for encryption as well as decryption.

Explanation

In asymmetric-key encryption, one key will be used for encryption as well as decryption.

3. Which of the following components decides how secure an encryption protocol is?

The number of keys used by the encryption protocol

The number of keys used by the algorithm

Number of bits used for encryption by the algorithm

None of the above

The number of bits used for encryption by the algorithm decides how secure that encryption type will be.

Explanation

The number of bits used for encryption by the algorithm decides how secure that encryption type will be.

4. Even today only upto 20% of critical information being transmitted is really secure. T/F?

True

False

A lot of information being transmitted through the Internet is still not entirely secure. Only 15-20% of data transmission is completely secure.

Explanation

A lot of information being transmitted through the Internet is still not entirely secure. Only 15-20% of data transmission is completely secure.

5. The concept of public key cryptography was introduced by Julius Caesar. T/F?

True

False

The issues with key distribution faced by conventional encryption, was overcome by the Public-key cryptography concepts introduced by Diffie-Hellman.

Explanation

The issues with key distribution faced by conventional encryption, was overcome by the Public-key cryptography concepts introduced by Diffie-Hellman.

6. Choose the odd one out.

RC5

Blowfish

MAC

ECC

RC5, ECC and Blowfish are encryption systems. MAC is a type of hardware address.

Explanation

RC5, ECC and Blowfish are encryption systems. MAC is a type of hardware address.

7. ECC is the encryption system used in cellular devices. T/F?

True

False

ECC is the encryption system used in cellular devices.

Explanation

ECC is the encryption system used in cellular devices.

8. Which of the following is true?

PK cryptography is a very complex and nearly impossible setup

You need just one single key for encrypting as well as decrypting in PK cryptography

Public key can only encrypt and private key can only decrypt

None of the above

PK cryptography, or public-key cryptography, is not necessarily very complex and nearly impossible to set up. Additionally, in public-key cryptography, you use one key for encryption (the public key) and a different key for decryption (the private key). Therefore, the statement "You need just one single key for encrypting as well as decrypting in PK cryptography" is incorrect. Finally, both the public key and private key have specific functions: the public key is used for encryption, and the private key is used for decryption. Therefore, the statement "Public key can only encrypt and private key can only decrypt" is also incorrect.

Explanation

PK cryptography, or public-key cryptography, is not necessarily very complex and nearly impossible to set up. Additionally, in public-key cryptography, you use one key for encryption (the public key) and a different key for decryption (the private key). Therefore, the statement "You need just one single key for encrypting as well as decrypting in PK cryptography" is incorrect. Finally, both the public key and private key have specific functions: the public key is used for encryption, and the private key is used for decryption. Therefore, the statement "Public key can only encrypt and private key can only decrypt" is also incorrect.

9. PKI requires skilled and continuous maintenance on the network. T/F?

True

False

PKI when implemented on a network will require a skilled person to oversee its maintenance in the long run.

Explanation

PKI when implemented on a network will require a skilled person to oversee its maintenance in the long run.

10. Which of the following is an advantage of using conventional encryption?

It is the most secure

It is very fast

It is economical

None of the above

When conventional encryption is used for stored data rather than the data being transmitted, encryption and decryption process can be very fast.

Explanation

When conventional encryption is used for stored data rather than the data being transmitted, encryption and decryption process can be very fast.

11. Which of the following does cryptography use to encrypt?

Hash

Digital signature

Token

None of the above

When cryptography uses hash function on a plain text, a fixed length of data called the message digest is generated. This message digest helps to preserve the data integrity by generating a digest value when the data is transmitted.

Explanation

When cryptography uses hash function on a plain text, a fixed length of data called the message digest is generated. This message digest helps to preserve the data integrity by generating a digest value when the data is transmitted.

12. Which of the following is not used by certificate system?

Public key

Private key

Session key

Session ID

The Certificate security system uses the basic logic of Public/Private key pairs in combination of session ID. There is no key such as session key.

Explanation

The Certificate security system uses the basic logic of Public/Private key pairs in combination of session ID. There is no key such as session key.

13. Which of the following statements is true?

A private key may be derived from a public key

Given a public key it is very difficult to derive the private key

A session ID is used to create a public key

None of the above

Given a public key it is extremely difficult to derive a private key from it. A session ID is used to provide security to a key being transmitted and is not used to generate any key.

Explanation

Given a public key it is extremely difficult to derive a private key from it. A session ID is used to provide security to a key being transmitted and is not used to generate any key.

14. Which of the following is true regarding Caesar�s key value 3?

It uses an offset value of 3 for sliding alphabets

There is a difference of 3 between the alphabets when the sliding action occurs

It uses 3 keys for encryption

None of the above

According to Caesars Cipher key value of 3, you would be sliding up the alphabetical value by 3. The difference would be 2 and not 3. If A has to be represented by Caesars key value 3 system, it would be represented as C.

Explanation

According to Caesars Cipher key value of 3, you would be sliding up the alphabetical value by 3. The difference would be 2 and not 3. If A has to be represented by Caesars key value 3 system, it would be represented as C.

15. Traditional PKI uses self assembly process to maintain security. T/F?

True

False

Traditional PKI us incapable of self assembly, which is a draw back with PKI.

Explanation

Traditional PKI us incapable of self assembly, which is a draw back with PKI.

16. Which of the following is an improvement over the scheme used in digital signatures?

Token

One-way hash functions

Cryptanalysis

None of the above

One-way hash functions generate significantly less data and are much more.

Explanation

One-way hash functions generate significantly less data and are much more.

17. PKI uses which of the following to ascertain identity?

Certificate

Digital signature

Hand print

None of the above

Digital signature is ideal for an Intranet or LAN scenario. Handprint is used in Biometrics. PKI uses certificates for establishing Identity.

Explanation

Digital signature is ideal for an Intranet or LAN scenario. Handprint is used in Biometrics. PKI uses certificates for establishing Identity.

18. Which of the following is the latest version of SHA?

SHA-1

SHA-4.1

SHA-4

None of the above

The correct answer is None of the above. The latest version of the Secure Hash Algorithm (SHA) is SHA-3, which was chosen in 2012 after a public competition among non-NSA designers. It supports the same hash lengths as SHA-2, and its internal structure differs significantly from the rest of the SHA family. As of now, there is no SHA-4 or SHA-4.1.

Explanation

The correct answer is None of the above. The latest version of the Secure Hash Algorithm (SHA) is SHA-3, which was chosen in 2012 after a public competition among non-NSA designers. It supports the same hash lengths as SHA-2, and its internal structure differs significantly from the rest of the SHA family. As of now, there is no SHA-4 or SHA-4.1.

19. Cryptanalysis is nothing but pattern finding T/F?

True

False

Pattern finding is a part of cryptanalysis it does not form the entire process of cryptanalysis.

Explanation

Pattern finding is a part of cryptanalysis it does not form the entire process of cryptanalysis.

20. Cryptography is an essential in encapsulation protocols. T/F?

True

False

Cryptography is essential in encryption protocols.

Explanation

Cryptography is essential in encryption protocols.

21. Which of the following is an improvement over PKI?

Certificates

SMSA

Token

None of the above

SMSA is an improvement over PKI where implementation maintenance and administration is concerned. This is because SMSA is capable of self assembly.

Explanation

SMSA is an improvement over PKI where implementation maintenance and administration is concerned. This is because SMSA is capable of self assembly.

22. Which of the following is used to sign the certificate created by the CA?

CA�s digital signature

CA�s private key

CA�s certificate

None of the above

The certificate generated by the CA is signed using the CAs private key.

Explanation

The certificate generated by the CA is signed using the CAs private key.

23. A digital signature is used for which of the following?

Encrypting

Identifying

Encapsulating

None of the above

A digital signature is used to establish Identity of the communicating user as well as encrypting in specific cases.

Explanation

A digital signature is used to establish Identity of the communicating user as well as encrypting in specific cases.

Submit