Cryptographic Solutions

0.0(0)
Studied by 0 people
call kaiCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/35

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 8:11 PM on 6/12/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai

No analytics yet

Send a link to your students to track their progress

36 Terms

1
New cards

Cipher

Algorithm that performs the encryption to decryption

2
New cards

Key

Piece of information that determines the output of the cipher (The longer the key the better)

3
New cards

Symmetric Encryption (Private Key)

(1 Key)

both the sender and receiver must know the same shared secret using a private key

Faster than Asymetric

4
New cards

Private Key Risk

-Non-repudiation

-Distribution

5
New cards

Asymmetric Algorithms (Public Key)

(2 Keys)

One encryption the other for decryption

EX: Diffie-Hellman, RSA, ECC

Easier to distribute

6
New cards

Stream Cipher

Encrypts one character or bit of a message.

7
New cards

Block Cipher

Encrypt blocks of a message. (64,128 or 256 bit blocks instead of one at a time)

8
New cards

Data Encryption Standard (DES)

Symmetric algorithm which breaks the input into 64-bit blocks.

The cipher text it creates has a key strength of only 56-bits

9
New cards

Triplet DES (3DES)

Uses 3 seperate symmetric keys to (Encrypt - decrypt - encrypted) plaintext into cipherext.

Increasing the strength of DES

112-bit key

10
New cards

International Data Encryption Algorithm (IDEA)

Symmetric block cipher

Uses 64-bit blocks to encrypt plaintext to ciphertext

11
New cards

Advanced Encryption Standard (AES)

Symmetric block cipher

(128,192 or 256 bit blocks) and a matching encryption key size to encrypt plaintext to ciphertext

Standard for symmetric keys today

12
New cards

Digital Signature

A hash digest of a message encrypted with the senders private key to let the recipient know the document was created and sent by the person claiming to have sent it

13
New cards

Hashing

One-way cryptographic function that takes an input and produces a unique message digest as its output (digital fingerprint)

14
New cards

Hashing Algorithmsn

  • MD5 - Popular

  • SHA - More Secure

  • RIPEMD

  • HMAC

15
New cards

Pass the Hash Attack

Attacks can authenticate to a server by using a hash of a user’s password

16
New cards

Birthday Attack

When an attacker is able to send send 2 different messages through a hash algorithm and it results in the same hash digest/ collision

17
New cards

Key Stretching

Helps mitigate a weaker key by increasing the time needed to cracks it

18
New cards

Salting

Adding random data into a hash to help protect against password cracking

19
New cards

Public Key Intrastructure (PKI)

A Framework for managing digital certificates and keys that facilitate secure data transfer, authentication and encrypted communication over networks.

20
New cards

Certificate Authority (CA)

Issues digital certificates and keep the level of trust between all of the certificate authorities

21
New cards

Key Escrow

Cryptographic key are stored in a secure, third party location.

22
New cards

Digital Certifiicate

Digitally signed electronic document that binds a public key with a users identity

23
New cards

Wildcard Certficate

Allows all of the subdomains to use the same public key certificate and have it displayed as valid

24
New cards

Single-Sided Certificate

Only requires the sever to be validated.

25
New cards

Dual-Sided Certificate

Requires both the server and user to be validated

26
New cards

Self-Signed Certificate

Digital certificate that is signed by the same entity whose identity it certifies (No external verification of users identity/ 3rd party)

27
New cards

Third Party Certificates

Digital Certificate issued and signed by a trusted certificate authority (CA)

28
New cards

Root of Trust

Each certificate is validated using the concept of a root of trust/chain of trust

29
New cards

root of trust providers

Verisgin , Amazon, Google , CloudFlare

30
New cards

Registration Authority

Users requests identifying information from the user and forwards that certificate request up the (CA) to create the digital certificate.

(Verisign, Digisign)

31
New cards

Certificate Signing request (CSR)

A block of encoded text that contains information about the entity requesting the certificate. (Domain name, Org name, locality, country)

32
New cards

Certificate Revocation List (CRL)

An online list of digital certificates that the (CA) has revoked

33
New cards

OSCP

Determines the revocation status of any digital certificates using a serial number (faster than CRL, due to lack of encryption )

34
New cards

OCSP Stapling

Allows the certificate holder to get the OCSP record from the server at regular intervals

35
New cards

Public Key Pinning

Allows an HTTPS website to resist impersonations attacks from users who are trying to present fake certificates

36
New cards

Key recovery agent

Specialized type of software that allows the restoration of a lost or corrupted key to be perfromed