Outcomes addressed in this activity:
Unit Outcomes:
- Compare cipher principles.
- Illustrate basic encryption methods.
Course Outcome:
Analyze symmetric and asymmetric cryptosystem fundamentals.
Purpose
In this assignment, you will examine the role that cryptography plays in achieving the first goal of information security: confidentiality.
Assignment Instructions
Using Credible Sources, Justify Your Answers to Questions
Answer the following 12 questions by selecting the one best answer for each. Cite your course texts, or other credible source, and provide a 50- to 100-word explanation of why you chose your answer for each question.
- Which of the following are considered confidentiality services?
- Encryption technologies
- Digital signatures
- RAID arrays
- Which service provided by a cryptosystem is most important for the military?
- Integrity
- Nonrepudiation
- Confidentiality
- What is the purpose of authentication in a cryptosystem?
- Verifying the user’s or system’s identity
- Ensuring that data has not been changed by an unauthorized user
- Ensuring that the data’s sender cannot deny having sent the data
- Which service provided by a cryptosystem turns information into unintelligible data?
- Authorization
- Integrity
- Confidentiality
- What is another term for cryptography strength?
- Work factor
- Public key
- Private key
- You have created a cryptographic key on your organization’s domain controller. What should you do next?
- Determine the length of the key.
- Determine the security framework.
- Determine the key management infrastructure.
- Which cipher is based on the clues of the physical factors, rather than the hardware or a software cryptosystem?
- A DES cipher
- A concealment cipher
- A transposition cipher
- Which cipher type replaces the original text in a message with a different text?
- Block cipher
- Stream cipher
- Substitution cipher
- Which statement is not true of cryptanalysis?
- It is used to test the strength of an algorithm.
- It is a tool used to develop a secure cryptosystem.
- It is used to forge coded signals that will be accepted as authentic.
- It is a process of attempting reverse engineering of a cryptosystem.
- Who is primarily responsible for the organization’s security program and risk management?
- Business and functional manager
- System owner
- Information security manager
- Who is primarily responsible for proper implementation of security requirements in their IT system?
- IT security practitioner
- System owner
- Information security manager
- Which of the following is an active agent?
- Vulnerability
- Threat
- Risk
Assignment Requirements
Answers contain enough information to adequately answer the questions and contain no spelling, grammar, or APA errors. For more information on APA style formatting, refer to the resources in the Academic Tools area of this course.
