Deck 3: Public-Key Cryptography and Message Authentication

Because of the mathematical properties of the message authentication code function it is less vulnerable to being broken than encryption.

The private key is known only to its owner.

The __________ approach has two advantages: it provides a digital signature as well as message authentication and it does not require the distribution of keys to communicating parties.

Protection against active attacks (falsification of data and transactions) is known as ___________ .

The two important aspects of encryption are to verify that the contents of the message have not been altered and that the source is authentic.

In the ECB mode of encryption if an attacker reorders the blocks of ciphertext then each block will still decrypt successfully, however, the reordering may alter the meaning of the overall data sequence.

Public key algorithms are based on mathematical functions rather than on simple operations on bit patterns.

The key exchange protocol is vulnerable to a man-in-the-middle attack because it does not authenticate the participants.

The __________ property guarantees that it is impossible to find an alternative message with the same hash value as a given message, thus preventing forgery when an encrypted hash code is used.

Public key algorithms are useful in the exchange of conventional encryption keys.

The security of the Diffie-Hellman key exchange lies in the fact that, while it is relatively easy to calculate exponentials modulo a prime, it is very easy to calculate discrete logarithms.

The main advantage of HMAC over other proposed hash based schemes is that HMAC can be proven secure, provided that the embedded hash function has some reasonable cryptographic strengths.

Private key encryption is used to produce digital signatures which provide an enhanced form of message authentication.

Like the MAC, a __________ accepts a variable size message M as input and produces a fixed size message digest H(M) as output.Unlike the MAC, it does not take a secret key as input.

Message encryption alone provides a secure form of authentication.

The __________ property is the "one-way" property and is important if the authentication technique involves the use of a secret value.

As with symmetric encryption, there are two approaches to attacking a secure hash function: brute-force attack and ___________ .

Cryptographic hash functions generally execute slower in software than conventional encryption algorithms such as DES.

In addition to providing authentication, a message digest also provides data integrity and performs the same function as a frame check sequence.

The key algorithmic ingredients of __________ are the AES encryption algorithm, the CTR mode of operation, and the CMAC authentication algorithm.

__________ is a term used to describe encryption systems that simultaneously protect confidentiality and authenticity (integrity) of communications.

A __________ is when the sender "signs" a message with its private key, which is achieved by a cryptographic algorithm applied to the message or to a small block of data that is a function of the message.

The _________ was developed by NIST and published as a federal information processing standard in 1993.

The __________ algorithm accepts the ciphertext and the matching key and produces the original plaintext.

Bob uses his own private key to encrypt the message.When Alice receives the ciphertext she finds that she can decrypt it with Bob's public key, thus proving that the message must have been encrypted by Bob.No one else has Bob's private key and therefore no one else could have created a ciphertext that could be decrypted with Bob's public key.Therefore the entire encrypted message serves as a _________ .

A _________ is when two sides cooperate to exchange a session key.

The two most widely used public key algorithms are RSA and _________ .

Using an algorithm that is designed to provide only the digital signature function, the _________ makes use of the SHA-1 and cannot be used for encryption or key exchange.