














Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A comprehensive overview of fundamental cryptography and network security concepts. It defines key terms, explains different types of attacks, and outlines security services and mechanisms. Valuable for understanding the basics of cryptography and network security, particularly for students in computer science or related fields.
Typology: Exams
1 / 22
This page cannot be seen from the preview
Don't miss anything!















Cryptography - answer The art or science that encompasses the principles and methods of transforming an intelligible message into one that is unintelligible, and then retransforming that message back to its original form. Network Security - answer Measures to protect data during their transmission The 3 OSI Security Architecture - answer 1. Security Attacks
Passive Attacks - answer Attempts to learn or make use of information from the system but do not affect system resources. It involves eavesdropping or monitoring data transmission. 2 types of Passive Attacks - answer 1. Release of Message Contents
Active: Prevention is challenging due to various vulnerabilities, so focus is on detection and recovery Awareness of Parties - answer Passive: Usually go unnoticed by both sender and receiver. Active: The sender or receiver may notice unusual activity, delays, or disruptions, making them aware of the attack. Variability - answer Passive: Have a consistent pattern of eavesdropping or monitoring Active: Take various forms, including physical, software, or network based methods. Effect on Data - answer Passive: Aim to obtain information without altering it. Active: Can alter, destroy, or disrupt data, affecting its integrity and availability. Preventive Measures - answer Passive: Encryption and secure communication protocols. Active: Firewalls, intrusion detection systems, and security policies. Security Services - answer A service that is provided by a protocol layer of communicating open systems and that
ensures adequate security of the systems or of data transfers. A processing or communication service that enhances the security of the data processing systems and the information transfers of an organization. 5 categories of Security Service - answer 1. Authentication
Selective-Field Confidentiality - answer Confidentiality of selected fields within the user data on a connection or in a single data block. Traffic-Flow Confidentiality - answer Confidentiality of selected fields within the user data on a connection or in a single data block. Data Integrity - answer The assurance that data received are exactly as sent by an authorized entity (i.e., contain no modification, insertion, deletion, or replay). 5 categories of Data Integrity - answer 1. Connection Integrity with Recovery
Selective-Field Connection Integrity - answer Provides for the integrity of selected fields within the user data of a data block transferred over a connection and takes the form of determination of whether the selected fields have been modified, inserted, deleted, or replayed. Connectionless Integrity - answer Provides for the integrity of a single connectionless data block and may take the form of detection of data modification. Additionally, a limited form of replay detection may be provided Selective-Field Connectionless Integrity - answer Provides for the integrity of selected fields within a single connectionless data block; takes the form of determination of whether the selected fields have been modified. Nonrepudiation - answer Provides protection against denial by one of the entities involved in a communication of having participated in all or part of the communication. 2 categories of Nonrepudiation - answer 1. Nonrepudiation, Origin
Notarization - answer The use of third party to assure certain properties of a data exchange. Pervasive Security Mechanisms - answer Mechanisms that are not specific to any OSI security service or protocol layer. 5 categories of Pervasive Security Mechanisms - answer
Known-Plaintext Analysis (KPA) - answer Attacker uses known plaintext-ciphertext pairs to find the encryption key; it's easier due to available information. Chosen-Plaintext Analysis (CPA) - answer Attacker chooses plaintexts, gets ciphertexts, and attempts to find the key; simple but low success rate. Ciphertext-Only Analysis (COA) - answer The attacker only has ciphertext, making it the hardest attack to implement, but most probable. Chosen Ciphertext Analysis (CCA) - answer A chosen ciphertext attack is an attack where a cryptanalyst chooses a ciphertext and attempts to find a matching plaintext. Adaptive Chosen Plaintext Analysis (ACPA) - answer A cryptanalyst chooses further plaintexts or ciphertexts (adapts the attack) based on prior results. Adaptive Chosen Ciphertext (ACC) - answer Just like in adaptive chosen plaintext, a cryptanalyst chooses further plaintexts or ciphertexts (adapts the attack) based on prior results.
Man-In-The-Middle (MITM) attack - answer Attacker intercepts messages/keys between two parties in a secure channel. Birthday attack - answer Exploits the probability of collisions in a hash function, akin to shared birthdays in a group. Side-channel attack - answer Gathers info from the physical implementation of a cryptographic system, like timing, power, or electromagnetic data. Brute-force attack - answer Tries every possible key until the correct one is found; simple but time-consuming. Differential cryptanalysis - answer Compares plaintext- ciphertext pairs to find encryption algorithm patterns, effective against specific block ciphers. Linear cryptanalysis - answer It is a known plaintext attack that requires access to large amounts of plaintext and ciphertext pairs encrypted with an unknown key. It focuses on statistical analysis against one round of decryption on large amounts of ciphertext. Model of Network Security - answer It is a conceptual framework that describes how to protect a network from
Confidentiality - answer Ensuring that information is only accessible to authorized individuals. Integrity - answer Ensuring that information is accurate and complete. Availability - answer Ensuring that information and systems are available to authorized users when needed. 5 Layers of Enterprise Security - answer 1. Human layer
These cyberattacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users via ransomware; or interrupting normal business processes Assets in Cybersecurity - answer • Information