Chapter 5 / 5.10
Back to reading
5.10 REVISION QUESTIONS
- List and briefly describe the six security services.
- Briefly describe the encryption/decryption process using such terms as plain text, cipher text, cipher, and key.
- Briefly explain why simple transformations, such as those used in the Caesar cipher, are not suitable for strong encryption systems.
- Draw the block diagram of a stream cipher system and briefly describe its operation.
- Briefly describe how to generate a pseudo-random key stream using a linear shift register.
- List the desirable properties of an encryption system, briefly explaining each.
- What is a systematic weakness in an encryption system? What is the impact of systematic weaknesses? How may they arise?
- What is the basic principle upon which public-key encryption systems rely for their security?
- Describe briefly the structure of the DES algorithm, including the purpose of the iteration, compression permutation, and left circular shift functions.
- Describe briefly the structure and operation of Triple DES (3DES).
- Explain why Triple DES was developed and why it was eventually replaced by AES.
- List the four primary transformation steps used in AES and briefly describe the purpose of each.
- Explain how AES achieves both confusion and diffusion within its internal operations.
- Discuss the advantages of AES over 3DES in terms of performance, key length, and implementation efficiency.
- Describe how the key length affects the security and computational cost of AES. Which key lengths are recommended for general and long-term applications?
- Define asymmetric encryption and explain how it differs fundamentally from symmetric encryption.
- In public-key systems, why can the public key be safely distributed without compromising security?
- Explain the basic mathematical principle that underpins the security of the RSA algorithm.
- Describe the process for generating RSA public and private keys, identifying the roles of p, q, n, e, and d.
- Briefly outline the RSA encryption and decryption operations, referring to the relevant mathematical expressions.
- Why is RSA unsuitable for encrypting large volumes of data directly? What approach is typically used instead?
- Define what is meant by a digital signature and explain its role in ensuring authentication and message integrity.
- Describe the process by which a digital signature is created and verified, identifying the purpose of the message digest.
- Explain how digital signatures differ from encryption in their use of public and private keys.
- What is a cryptographic hash function, and why is it important in digital-signature generation?
- Explain the concept of hybrid encryption and why it is used in modern secure-communications systems.
- Outline the basic steps of the Diffie–Hellman key-exchange protocol and explain how it enables secure key agreement over an insecure channel.
- What role do elliptic-curve variants (such as ECDH and ECDSA) play in modern cryptographic systems, and what advantages do they offer?
- Summarize how digital signatures and key-exchange protocols together provide both authentication and confidentiality in network security.
- Explain why quantum computing poses a threat to both symmetric and asymmetric encryption systems.
- List and briefly describe the five main families of post-quantum cryptographic algorithms, noting the mathematical problem on which each is based.
- Why are lattice-based algorithms such as CRYSTALS-Kyber and CRYSTALS-Dilithium favored in current post-quantum standardization efforts?
- Describe how hybrid encryption is used during the transition to post-quantum systems and explain its security advantages.
- Summarize the purpose of the NIST Post-Quantum Cryptography Standardization Project and outline the steps organizations should take to prepare for migration.
Back to reading