MCQS WITH KEY ANSWERS

1. A hash function guarantees integrity of a message.
It guarantees that message has not be

A) Replaced
B) Over view
C) Changed
D) Violated
2. Digest created by a hash function is normally called a.

A) Message digest code (MDC)
B) Modify authentication connection
C) Message authentication control
D) Message authentication cipher
3. Message authentication is a service beyond.

A) Message Confidentiality
B) Message Integrity
C) Message Splashing
D) Message Sending
4. Symmetric encrption alone is suitable for data encryption.

A) True
B) False
5. In Authentication without encryption ------- is not provided.

A) Authentication
B) Confidentiality
C) Integrity
D) None of the mentioned
6. Following are the examples of Message authentication Code.

A) HMAC
B) CMAC
C) SHA-1
D) Both A and B
7. SHA-l has a message digest of.

A) 160 bits
B) 512 bits
C) 628 bits
D) 820 bits
8. Hash function which takes an input (or 'message') and returns a fixed-size alphanumeric
string.The string is called the .
A) Message digest
B) Hash Value
C) Checksum
D) All of the mentioned
9. Message confidentiality is using.

A) Cipher Text
B) Cipher
C) Symmetric-Key
D) Asymmetric-Key
10. MAC is generated as a function of .

A) Key
B) Message
C) secret code shared by communicating parties
D) None of these
11. MAC is generated as a function of .

A) Key
B) Message
C) Both A and B
D) None of these
12. On generation of MAC,the reciver receives.

A) Message
B) MAC
C) Both A and B
D) Ciphertext
13. MAC stands for.

A) Message authentication code
B) Message arbitrary connection
C) Message authentication control
D) Message authentication cipher
14. Message _______ means that the receiver is ensured that the message is coming from the
intended sender, not an intruder.
A) Confidentiality
B) Integrity
C) Authentication
15. Symmetric encryption with only sender and receiver sharing the key can achieve
authentication.
A) TRUE
B) FALSE
16. ________________supports in achieving authentication.

A) Error detection code
B) Sequence Number
C) Time Stamp
17. According to DAVI 89 , the situations in which message authentication without

confidentiality Is preferred are.
A) Broadcast of messages
B) Heavy load system where decrypting is not affordable
C) Both A and B
D) None of the mentioned.
18. Hash function produces a fixed-length output accepting variable length data.
A) TRUE
B) FALSE
19. SHA-512 algorithm takes as input a message with a maximum length of less than.
A) 2 ^ 128
B) 2 ^ 192
C) 2 ^112
D) 2 ^ 64
20. SHA-512 algorithm has _________rounds in its function.
A) 10
B) 16
C) 82
D) 80
21. Confidentiality can only be provided if we perform message encryption before the MAC
generation.
A) True
B) False
22. The digital signature provides authentication to the

A) Sender
B) Message
C) Sender & Message
23. The hash function ___________

A) Is collision free?
B) Has manageable collision
C) Has high unmanageable level of collision
24. An alternative to message authentication code is.

A) HMAC
B) CMAC
C) One-way-Hash function
25. Name the hash function that is important not only in message authentication but in digital
signatures.
A) Secure hash function
B) DES
C) AES
D) All the mentioned
26. SHA-256,SHA-384 and SHA-512 are collectively called as
A) SHA-1
B) SHA-2
C) SHA-3
D) SHA-4
27. In HMAC iPad represents_______.

A) 00110110
B) 01011100
C) 11110011
28. In HMAC OPad represents_______.

A) 00110110
B) 01011100
C) 11110011
29. Extensions were added in which version of Kerberos?

A. 1
B. 2
C. 3
D. 4
30. The subject unique identifier of the X.509 certificates was added in which version?
A. 1
B. 2
C. 3
D. 4
31. Which of the following is not an element/field of the X.509 certificates?

A. Issuer Name
B. Serial Modifier
C. Issuer unique Identifier
D. Signature
32. Suppose that A has obtained a certificate from certification authority X1 and B has obtained
certificate authority from CA X2. A can use a chain of certificates to obtain B’s public key. In
notation of X.509, this chain is represented in the correct order as –
A. X2 X1 X1 B
B. X1 X1 X2 A
C. X1 X2 X2 B
D. X1 X2 X2 A
33. Certificates generated by X that are the certificates of other CAs are Reverse Certificates.
A. True
B. False
34. It is desirable to revoke a certificate before it expires because

A. the user is no longer certified by this CA
B. the CA’s certificate is assumed to be compromised
C. the user’s private key is assumed to be compromised
D. all of the mentioned
35. CRL stands for

A. Cipher Reusable List
B. Certificate Revocation Language
C. Certificate Revocation List
D. Certificate Resolution Language
36. Which of the following is not a part of an Extension?

A. Extension Identifier
B. Extension value
C. Criticality Indicator
D. All of the mentioned constitute the Extension
37. The criticality indicator indicates whether an extension can be safely ignored.
A. True
B. False
38. “Conveys any desired X.500 directory attribute values for the subject of this certificate.”
Which Extension among the following does this refer to?
A. Subject alternative name

B. Issuer Alternative name
C. Subject directory attributes
D. None of the mentioned
39. Public key encryption/decryption is not preferred because

A. it is slow
B. it is hardware/software intensive
C. it has a high computational load
D. all of the mentioned
40. Which one of the following is not a public key distribution means?
A. Public-Key Certificates
B. Hashing Certificates
C. Publicly available directories
D. Public-Key authority
41. Which of the following public key distribution systems is most secure?
A. Public-Key Certificates
B. Public announcements
C. Publicly available directories
D. Public-Key authority
42. Which systems use a timestamp?

i) Public-Key Certificates
ii) Public announcements
iii) Publicly available directories
iv) Public-Key authority
i) and ii)
iii) and iv)
i) and iv)
iv) only
43. For each _______ the Kerberos Key Distribution Centre (KDC) maintains a database of the
realm’s principal and the principal’s associated “secret keys”.
A. key
B. realm
C. document
D. none of the mentioned
44. Point out the correct statement.

A. MongoDB Enterprise provides support for Kerberos authentication of
MongoDB clients to mongod and mongos
B. Kerberos is an industry standard authentication protocol for large
client/server systems
C. Kerberos allows MongoDB and applications to take advantage of existing
authentication infrastructure and processes
D. All of the mentioned
45. For a client-server authentication, the client requests from the KDC a ________ for access to
a specific asset.
A. ticket
B. local
C. token
D. user
46. To authenticate using Kerberos, you must add the Kerberos user principals to MongoDB to
the _________ database.
A. $internal
B. $external
C. $extern
D. None of the mentioned
47. To specify a different value for <service>, use ________ during the start-up of mongod.
A. servicepwd
B. serviceName
C. servicelogin
D. none of the mentioned
48. Linux systems can store Kerberos authentication keys for a service principal in ______ files.
A. Client
B. Server
C. key tab
D. All of the mentioned
49. A _________ is a trusted third party that assigns a symmetric key to two parties.
A. KDC
B. CA
C. KDD
D. None of the options
50. A________ creates a secret key only between a member and the centre.
A. CA
B. KDC
C. KDD
51. The secret key between members need to be created as a _______ key when two members
contact KDC.
A. Public
B. Session
C. Complimentary
52. ____________ is a popular session key creator protocol that requires an authentication
server and a ticket granting server.
A. KDC
B. Kerberos
C. CA
53. A___________ is a federal or state organization that binds a publick key to an entity and
issues a certificate.
A. KDC
B. Kerberos
C. CA
54. A___________ is a hierarchical system that answers queries about key certification.
A. KDC
B. Kerberos
C. CA
55. The secret key between members needs to be created as a ______ key when two members
contact KDC.
A. public
B. session
C. complimentary
D. none of the options
56. In ______ there is a single path from the fully trusted authority to any certificate.
A. X509
B. PGP
C. KDC
D. none of the options
57. The denotation of certificate issuing, between Certificate issuing authority and applicant,
A. CA<<A>>
B. CA>>A
C. CA<A>
D. A<<CA>>
58. A Kerberos environment consists of

A. a Kerberos server
B. a number of clients, all registered with server
C. application servers, sharing keys with server
D. All
59. The property of hash function is said to be deterministic, if for a given input returns as
output -----------
A) Same hash value
B) Different hash value
C) Unique hash value
D) Not mentioned
60. The property of hash function is said to be UNIFORM, if all the input bits influence the
output hash.
A) True
B) False
61. If a single bit of the input string is flipped then each bit of the hash value is flipped with a
probability roughly equal to ----
A) 0.2
B) 0.5
C) 1.0
D) 0.75
62. HASH function converts a plaintext of arbitrary size to a fixed size output.
A) True
B) False
63. HASH function makes use of a key

A) True
B) False
64. Hash functions are also called as ---------------
A) message digest
B) compression function
C) encryption fucntion
D) none of the mentioned
65. HASH function converts a plaintext of arbitrary size to a fixed size output called as
A) Digest
B) Hash value
C) Hash
D) all of the mentioned
66. Authentication is protection against active attacks

A) True
B) False
67. when a document is genuine and comes from an alleged source its said to be
A) Authentication
B) Integrity
C) Confidentiality
68. Authentication of message is possible through

A) Ciphertext
B) Message Authentication Code
C) Hash Code
69. Which of the following accepts variable size message and generates an authenticator
without the use of the key
A) Ciphertext
B) Message Authentication Code
C) Hash Code
70. The property for any hash code 'h', and its computational infeasibility to find x such that
H(x)=h
A) One Way Hash Function
B) Weak collision Resistant
C) Strong Collision Resistant
71. The property for any hash code 'h', and its computational infeasibility to find x such that y=x
with H(y)=H(x)
72. The property for any hash code 'h', and its computational infeasibility to find a pair (x, y)
such that H(y)=H(x)
73. SHA1 and SHA-512 have output of

A) 128 bit and 512 bits
B) 128 bit and 256 bits
C) 256 bit and 512 bits
74. SHA-512 processes input of size of __________bits with _________rounds and ___________
Buffers.
A) 1024 bits, 80 , 6
B) 512 bits, 80, 8
C) 1024 bits, 80, 8
D) 512 bits, 79, 6
75. Cryptographic hash functions execute faster in software than block ciphers.
A) Statement is correct
B) Statement is incorrect
C) Depends on the hash function
D) Depends on the processor
76. What is the value of ipad in the HMAC structure?

A) 00111110
B) 00110010
C) 10110110
D) 01110110
77. What is the value of opad in the HMAC structure?

A) 00111110
B) 00110010
C) 10110110
D) 01011100
78. What is the full-form of CMAC?

A) Code-based MAC
B) Cipher-based MAC
C) Construct-based MAC
D) Collective-based MAC
79. Which cryptographic algorithm is used in CMAC?

A) Triple DES and AES
B) DES
C) RC-4
D) AES
80. In CMAC, which scenario is a different key K2 is used instead of K1?

A) If the tag is larger than the key length
B) If the tag is shorter than the key length
C) In the last step of the algorithm
D) If the plaintext/message is not an integer multiple of the cipher clock length
81. K2 is derived by left shifting L by 2 bits. What is L defined as?

A) E(K , 0b)
B) E(K , 10*b)
C) E(K , 1b)
D) E(K , 10*1b)
82. Another name for Message authentication codes is

A) cryptographic codebreak
B) cryptographic codesum
C) cryptographic checksum
D) cryptographic checkbreak
83. For a 150-bit message and a 10-bit MAC, how many values are the MAC value dependent
on?
A) 2140
B) 2150
C) 215
D) 210
84. Confidentiality can only be provided if we perform message encryption before the MAC
generation.
A) True
B) False
85. MACs are also called

A) testword
B) checkword
C) testbits
86. For a 100 bit key and a 32 bit tag, how many possible keys can be produced in the 3rd
round?
A) 24
B) 232
C) 216
D) 264
87. MAC is a
A) one-to-one mapping
B) many-to-one mapping
C) onto mapping
88. For an n-bit tag and a k-bit key, the level of effort required for brute force attack on a MAC
algorithm is
A) 2k
B) 2n
C) min(2k,2n)
D) 2k/2n
89. A________function creates a message digest out of a message.

A) encryption
B) decryption
C) hash
90. A _______ message digest is used as an MDC.
A) keyless
B) keyed
C) either (a) or (b)
D) neither (a) nor (b)
91. A ________ signature is included in the document; a _______ signature is a separate entity.
A) conventional; digital
B) digital; digital
92. Digital signature provides ________.

A) authentication
B) nonrepudiation
C) both (a) and (b)
93. Digital signature cannot provide ________ for the message.

A) integrity
B) confidentiality
C) nonrepudiation
D) authentication
94. The _______ criterion states that it must be extremely difficult or impossible to create the
message if the message digest is given.
A) one-wayness
B) weak-collision-resistance
C) strong-collision-resistance
95. The ________ criterion ensures that a message cannot easily be forged.
A) one-wayness
96. The _______criterion ensures that we cannot find two messages that hash to the same
digest.
A) one-wayness
97. What is the number of round computation steps in the SHA-256 algorithm?
A) 80
B) 76
C) 64
D) 70
98. In SHA-512, the message is divided into blocks of size ___ bits for the hash computation.
A) 1024
B) 512
C) 256
D) 1248
99. ________enables the feature of securing remote logon,client/server,e-mail,file transfer and

web access.
A) IPSec
B) SSL
C) PGP
D) none of the above
100. Applications of IPsec
A) Secure branch office connectivity over the Internet
B) Secure remote access over the Internet
C) Enhancing electronic commerce security
D) All the above
101. When IPsec is implemented in a Firewall,it provides strong security that can be
applied to all crossing the perimeter of
A) Firewall
B) Etherenet Switch
C) Gateway
D) HUB
102. The principal feature of IPsec that enables it to support varied applications is
A) It can encrypt and/or authenticate all traffic at the application level
B) It can encrypt and/or authenticate all traffic at the IP level
C) Both A and B
D) Security at physical layer
103. IPsec protocol operate in networking devices such as

A) router
B) firewall
C) Devices that connect each LAN to the outside world
D) All of the above
104. In an IP security scenario,the data leaving the network device with IPSec will have
A) IP Header ,IPsec header ,Secure IP Payload
B) Only IP Header
C) Both A and B
D) None of the above
105. IPsec can be transparent to end users which means no need to train users on
security mechanisms
A) TRUE
B) FALSE
106. IPsec in a firewall is resistant to bypass

A) if all traffic use IP and the firewall as only means of entrance
B) Irrespective of any entry,it would resist bypass
C) Only from know source
107. IPsec can play a vital role in the routing architecture which can assure
A) A router advertisement
B) A neighbor advertisement
C) Unforged routing update
108. IPsec is below the __________ and so is transparent to applications.

A) Network layer
B) Application layer
C) Transport layer
D) Physical layer
109. __________ document of the IPsec document covers the general concepts, security
requirements, definitions,and mechanisms defining IPsec technology.
A) Architecture
B) Authentication Header
C) Encapsulating Security Payload
D) Internet Key Exchange
110. Encapsulating Security Payload of the IPsec document provide

A) encryption
B) combined encryption/authentication
C) authentication
D) encryption and combined encryption/authentication
111. IPsec provides security services at the IP layer by enabling a system to select
A) required security protocols
B) determine the algorithm(s) to use for the service(s),
C) put in place any cryptographic keys required to provide the requested services
112. IPsec provides Limited traffic flow confidentiality also as a service.

A) TRUE
B) FALSE
113. __________ and ______________ are the two protocols used in IPsec to provide
security.
A) Authentication Header and Internet Key Exchange
B) Authentication Header and Encapsulating Security Payload
C) Encapsulating Security Payload and Internet Key Exchange
D) RSA and Elliptic Curve
114. IPSec defines two protocols: _______ and ________.

A) AH; SSL
B) PGP; ESP
C) AH; ESP
115. Both AH and ESP protocols of IPsec operate in

A) Only tunnel mode
B) Only transport mode
C) Both tunnel and transport modes
116. ESP in transport mode encrypts

A) IP payload
B) IP header and IP payload
C) IP Header
D) IP payload and not IP header
117. AH in transport mode authenticates the IP payload and selected portions of the IP
header.
A) TRUE
B) FALSE
118. ESP in transport mode does

A) Encryption
B) Authentication
C) Partial encryption and complete Authentication
D) Complete Encryption and optional authentication
119. ___________ mode is used when one or both ends of a security association (SA) are
a security gateway
A) Transport mode
B) Tunnel mode
C) Both A and B
120. With tunnel mode, of hosts on networks behind firewalls cannot engage in secure
communications without implementing IPsec
A) TRUE
B) FALSE
121. ESP consists of an encapsulating header and trailer used to provide

A) Decryption
B) Encryption/authentication.
C) Confidentiality
D) Digital Signature
122. ____________is a collection of documents describing the key management schemes
for use with IPsec.
A) Internet Key Exchange
B) Encapsulating Security payload
C) Authentication Header
D) both Internet Key Exchange and Encapsulating Security payload
123. IPsec provides following security services at the IP layer.

A) Access control
B) Connectionless integrity
C) Data origin authentication
124. Typically which mode of IPSEC is used for end-to-end communication between two
hosts.
A) Transport Mode
B) Tunnel Mode
C) Both A and B
125. Which mode extends protection to the payload of an IP packet

A) Transport Mode
B) Tunnel Mode
C) Both A and B
126. Which mode provides protection to the entire IP packet

A) Transport Mode
B) Tunnel Mode
C) Both A and B
127. ______ provides authentication at the IP level.

A) AH
B) ESP
C) PGP
D) SSL
128. ______ provides either authentication or encryption, or both, for packets at the IP
level.
A) AH
B) ESP
C) PGP
D) SSL
129. Authentication header Authenticates IP payload and selected portions of IP header

and IPv6 extension headers at____________mode.
A) Transport Mode SA
B) Tunnel Mode SA
C) Both A and B
130. Encapsulating Security Payload with authentication Encrypts entire inner IP packet
and Authenticates inner IP packet.
A) Transport Mode SA
B) Tunnel Mode SA
C) Both A and B
131. In the ______ mode, IPSec protects information delivered from the transport layer
to the network layer.
A) transport
B) tunnel
132. IPSec in the ______ mode does not protect the IP header.
A) transport
B) tunnel
133. Pretty good privacy (PGP) security system uses

A) Public key cryptosystem
B) Private key cryptosystem
C) Public & Private key cryptosystem
134. Public key cryptosystem is used for the encryption of
A) Messages
B) Session key
C) Session key & Messages
135. PGP offers _____ block ciphers for message encryption.

A) Triple-DES
B) CAST
C) IDEA
136. What is the key size allowed in PGP?

A) 1024-1056
B) 1024-4056
C) 1024-4096
D) 1024-2048
137. One security protocol for the e-mail system is _________.

A) IPSec
B) SSL
C) PGP
138. ________ provides privacy, integrity, and authentication in e-mail.

A) IPSec
B) SSL
C) PGP
139. In _______, the cryptographic algorithms and secrets are sent with the message.
A) IPSec
B) SSL
C) TLS
D) PGP
140. ______ was invented by Phil Zimmerman.

A) IPSec
B) SSL
C) PGP
141. In PGP, to exchange e-mail messages, a user needs a ring of _______ keys.
A) secret
B) public
C) either Secret or Public
D) both Secret and Public
142. Pretty good privacy program is used for

A) Electronic mails
B) File encryption
C) Electronic mails & File encryption
143. PGP system uses

A) Private key system
B) Public key system
C) Private & Public key system
144. What is the PGP stand for?

A) Permuted Gap Permission
B) Permuted Great Privacy
C) Pretty Good Permission
145. PGP makes use of which cryptographic algorithm?
A) DES
B) AES
C) RSA
D) Rabin
146. Pretty good privacy (PGP) security system uses

A) Public key cryptosystem
B) Private key cryptosystem
C) Public & Private key cryptosystem
147. In PGP,there is _________from the fully or partially trusted authorities to any

subject
A) Multiple paths
B) Two paths
C) Single path
D) ALLthe mentioned
148. When sending digital signatures, PGP uses an efficient algorithm that generates
_________
A) CipherText
B) PlainText
C) MAC
D) HASH
149. PGP Provides authentication through the use of _________

A) Digital Signature
B) Encryption Algorithm
C) Zip Algorithm
D) Radix-64 Encoding Scheme
150. PGP Provides Confidentiality through the use of _________

B) Symmetric Block Encryption
C) Zip Algorithm
151. PGP Provides Compression through the use of _________

C) Zip Algorithm
152. PGP Provides E-mail Compatability through the use of _________

C) Zip Algorithm
153. In PGP, message is encrypted using

A) CAST-128
B) DES
C) AES
D) MD5
154. PGP uses a variant of Diffie-Hellman that does provide encryption/decryption,

known as
A) BlowFish
B) Diffie-Hellman
C) ElGamal
155. The use of Radix-64 in PGP Expand the Message By

A) 50%
B) 33%
C) 30%
D) 15%
156. PGP makes use of how many types of keys

A) 2
B) 3
C) 4
D) 1
157. PGP message has got how many components?

A) 1
B) 2
C) 3
D) NONE
158. Following are the Components of PGP message
A) Message,Signature and Session Key
B) Message
C) Signature
D) All the Mentioned Choices.
159. Signature Component of PGP Includes

A) Timestamp,Message Digest and Leading Two Octets of message Digest
B) Message Digest
C) Timestamp
D) Ciphertext
160. PGP makes use of following algorithms as a package for Public key encryption
A) RSA, DSS adn Diffie-Hellman
B) Diffie-Hellman
C) RSA
D) DSS
161. PGP makes use of following algorithms as a package for Symmetric key encryption
A) CAST-128
B) IDEA
C) CAST-128, IDEA and 3DES
162. PGP makes use of following algorithm for generating HASH CODE
A) SHA-512
B) SHA-256
C) SHA-2
D) SHA-1
163. PGP makes use of following types of keys

A) session key , secret key , public and private key
B) session key, public key , private key and passphrase based key
C) public key and private key
D) one time session key
164. IDEA uses______keys

A) 56 bit
B) 128 bit
C) 254 bit
D) 512 bit
165. 3DES uses_____keys.

A) 56 bit
B) 128 bit
C) 168 bit
D) 512 bit
166. MIME transfer encoding's objective is to provide

A) reliable delivery across the largest range of environments.
B) enables fragmentation of a large message into a number of parts
C) enables the construction of a message
167. S/MIME is very similar to PGP. Both offer the ability to

A) sign
B) encrypt
C) Both sign and encrypt
168. S/MIME provides the following functions i) Enveloped data ii) Signed data iii) Clear-
signed data iv) Signed and enveloped data
A) i) ,ii) and iii)
B) i) ,ii) iii) and iv)
C) None
D) Only i)
169. MIME transfer encoding's objective is to provide

A) reliable delivery across the largest range of environments.
B) enables fragmentation of a large message into a number of parts
C) enables the construction of a message
170. S/MIME is very similar to PGP. Both offer the ability to

A) sign
B) encrypt
C) Both Sign and Encrypt
171. S/MIME provides ----------- functions

A) Enveloped data
B) Clear-signed data
C) Signed data
172. MIME is intended to resolve some SMTP problems viz

A) Deletion, addition, or reordering of carriage return and linefeed
B) Truncating or wrapping lines longer than 76 characters
C) Only Deletion
D) Only Addition
173. S/MIME is not similar to

A) TRUE
B) FALSE
174. The header field Content-Description in MIME describes -----------------

A) The text description when the object is not readable
B) The transformation
C) The identity of MIME entities
D) Both Transformation and identity of MIME
175. Full Form of S/MIME

A) Secured/ Multipurpose Internet Mail Extension
B) Security/Multiple Intranet Mail Extended
C) Secured/ Multipurpose Intranet Mail Extension
176. S/MIME is used for______ PGP is used for________

A) Commercial, Personnel
B) Personnel, Commercial
C) Commercial, Commercial
D) Personnel, Personnel
177. In RFC5322 context, Messages as having an ______ and ______

A) Data and Image
B) Data and Data
C) Envelope and Contents
D) Information and Contents
178. According to RFC2046 specification , MIME has got_____types of contents and

______Subtypes.
A) 3 , 5
B) 5, 5
C) 7, 15
D) 1,1
179. In MIME, Digest comes under which Content type

A) Type
B) Video
C) Audio
D) Multipart
180. In MIME, jpeg and gif comes under which Content type
A) Image
B) Video
C) Audio
D) Multipart
C A B B B D A D D D
C C A C A D C A A D
B C A C A B A B C B
B C A D C D A C D B
A C B D A B B C A B
B B C C B C A D A A
B A B B D A A D D A
B C C C D B D B A D
A C A B D A B C C A
A C B A B C A A A D
A B D A A A D C A D
D A B C C D A D B B
B A D A A B A B A B
A A C B D C C C D C
B C C C C C A D A B
C D A C B C C A A A
C D B B C A C B A C
D B B A A A C C D A

MCQS WITH KEY ANSWERS

Uploaded by

Copyright:

Available Formats

MCQS WITH KEY ANSWERS

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

MCQS WITH KEY ANSWERS

Uploaded by

Copyright:

Available Formats

1. A hash function guarantees integrity of a message.

It guarantees that message has not be

2. Digest created by a hash function is normally called a.

3. Message authentication is a service beyond.

4. Symmetric encrption alone is suitable for data encryption.

5. In Authentication without encryption ------- is not provided.

6. Following are the examples of Message authentication Code.

7. SHA-l has a message digest of.

9. Message confidentiality is using.

10. MAC is generated as a function of .

11. MAC is generated as a function of .

12. On generation of MAC,the reciver receives.

13. MAC stands for.

16. ________________supports in achieving authentication.

17. According to DAVI 89 , the situations in which message authentication without

22. The digital signature provides authentication to the

23. The hash function ___________

24. An alternative to message authentication code is.

27. In HMAC iPad represents_______.

28. In HMAC OPad represents_______.

29. Extensions were added in which version of Kerberos?

31. Which of the following is not an element/field of the X.509 certificates?

34. It is desirable to revoke a certificate before it expires because

35. CRL stands for

36. Which of the following is not a part of an Extension?

Which Extension among the following does this refer to?

A. Subject alternative name

39. Public key encryption/decryption is not preferred because

42. Which systems use a timestamp?

44. Point out the correct statement.

58. A Kerberos environment consists of

63. HASH function makes use of a key

66. Authentication is protection against active attacks

68. Authentication of message is possible through

73. SHA1 and SHA-512 have output of

76. What is the value of ipad in the HMAC structure?

77. What is the value of opad in the HMAC structure?

78. What is the full-form of CMAC?

79. Which cryptographic algorithm is used in CMAC?

80. In CMAC, which scenario is a different key K2 is used instead of K1?

81. K2 is derived by left shifting L by 2 bits. What is L defined as?

82. Another name for Message authentication codes is

85. MACs are also called

89. A________function creates a message digest out of a message.

92. Digital signature provides ________.

93. Digital signature cannot provide ________ for the message.

99. ________enables the feature of securing remote logon,client/server,e-mail,file transfer and

103. IPsec protocol operate in networking devices such as

106. IPsec in a firewall is resistant to bypass

108. IPsec is below the __________ and so is transparent to applications.

110. Encapsulating Security Payload of the IPsec document provide

112. IPsec provides Limited traffic flow confidentiality also as a service.

114. IPSec defines two protocols: _______ and ________.

115. Both AH and ESP protocols of IPsec operate in

116. ESP in transport mode encrypts

118. ESP in transport mode does

121. ESP consists of an encapsulating header and trailer used to provide

123. IPsec provides following security services at the IP layer.

125. Which mode extends protection to the payload of an IP packet

114. IPSec defines two protocols: _ and __.

176. S/MIME is used for PGP is used for__

177. In RFC5322 context, Messages as having an and