密码编码学与网络安全答案优质资料.doc
《密码编码学与网络安全答案优质资料.doc》由会员分享,可在线阅读,更多相关《密码编码学与网络安全答案优质资料.doc(195页珍藏版)》请在淘文阁 - 分享文档赚钱的网站上搜索。
1、密码编码学与网络安全答案优质资料(可以直接使用,可编辑 优质资料,欢迎下载)Chapter 1:Introduction5Chapter 2:Classical Encryption Techniques7Chapter 3:Block Ciphers and the Date Encryption Standard13Chapter 4:Finite Fields21Chapter 5:Advanced Encryption Standard28Chapter 6:More on Symmetric Ciphers33Chapter 7:Confidentiality Using Symme
2、tric Encryption38Chapter 8:Introduction to Number Theory42Chapter 9:Public-Key Cryptography and RSA46Chapter 10:Key Management; Other Public-Key Cryptosystems55Chapter 11:Message Authentication and Hash Functions59Chapter 12:Hash and MAC Algorithms62Chapter 13:Digital Signatures and Authentication P
3、rotocols66Chapter 14:Authentication Applications71Chapter 15:Electronic Mail Security73Chapter 16:IP Security76Chapter 17:Web Security80Chapter 18:Intruders83Chapter 19:Malicious Software87Chapter 20:Firewalls89Answers to Questions1.1The OSI Security Architecture is a framework that provides a syste
4、matic way of defining the requirements for security and characterizing the approaches to satisfying those requirements. The document defines security attacks, mechanisms, and services, and the relationships among these categories.1.2Passive attacks have to do with eavesdropping on, or monitoring, tr
5、ansmissions. Electronic mail, file transfers, and client/server exchanges are examples of transmissions that can be monitored. Active attacks include the modification of transmitted data and attempts to gain unauthorized access to computer systems.1.3Passive attacks: release of message contents and
6、traffic analysis. Active attacks: masquerade, replay, modification of messages, and denial of service.1.4Authentication: The assurance that the communicating entity is the one that it claims to be. Access control: The prevention of unauthorized use of a resource (i.e., this service controls who can
7、have access to a resource, under what conditions access can occur, and what those accessing the resource are allowed to do). Data confidentiality: The protection of data from unauthorized disclosure. Data integrity: The assurance that data received are exactly as sent by an authorized entity (i.e.,
8、contain no modification, insertion, deletion, or replay). Nonrepudiation: Provides protection against denial by one of the entities involved in a communication of having participated in all or part of the communication. Availability service: The property of a system or a system resource being access
9、ible and usable upon demand by an authorized system entity, according to performance specifications for the system (i.e., a system is available if it provides services according to the system design whenever users request them). 1.5See Table 1.3.Answers toProblems1.1Release of message contentsTraffi
10、c analysisMasqueradeReplayModification of messagesDenial of servicePeer entity authenticationYData origin authenticationYAccess controlYConfidentialityYTraffic flow confidentialityYData integrityYYNon-repudiationYAvailabilityY1.2Release of message contentsTraffic analysisMasqueradeReplayModification
11、 of messagesDenial of serviceEnciphermentYDigital signatureYYYAccess controlYYYYYData integrityYYAuthentication exchangeYYYYTraffic paddingYRouting controlYYYNotarizationYYYChapter 2Classical Encryption TechniquesrAnswers to Questions2.1Plaintext, encryption algorithm, secret key, ciphertext, decryp
12、tion algorithm.2.2Permutation and substitution.2.3One key for symmetric ciphers, two keys for asymmetric ciphers.2.4A stream cipher is one that encrypts a digital data stream one bit or one byte at a time. A block cipher is one in which a block of plaintext is treated as a whole and used to produce
13、a ciphertext block of equal length.2.5Cryptanalysis and brute force.2.6Ciphertext only. One possible attack under these circumstances is the brute-force approach of trying all possible keys. If the key space is very large, this becomes impractical. Thus, the opponent must rely on an analysis of the
14、ciphertext itself, generally applying various statistical tests to it. Known plaintext. The analyst may be able to capture one or more plaintext messages as well as their encryptions. With this knowledge, the analyst may be able to deduce the key on the basis of the way in which the known plaintext
15、is transformed. Chosen plaintext. If the analyst is able to choose the messages to encrypt, the analyst may deliberately pick patterns that can be expected to reveal the structure of the key.2.7An encryption scheme is unconditionally secure if the ciphertext generated by the scheme does not contain
16、enough information to determine uniquely the corresponding plaintext, no matter how much ciphertext is available. An encryption scheme is said to be computationally secure if: (1) the cost of breaking the cipher exceeds the value of the encrypted information, and (2) the time required to break the c
17、ipher exceeds the useful lifetime of the information.2.8The Caesar cipher involves replacing each letter of the alphabet with the letter standing k places further down the alphabet, for k in the range 1 through 25.2.9A monoalphabetic substitution cipher maps a plaintext alphabet to a ciphertext alph
18、abet, so that each letter of the plaintext alphabet maps to a single unique letter of the ciphertext alphabet.2.10The Playfair algorithm is based on the use of a 5 5 matrix of letters constructed using a keyword. Plaintext is encrypted two letters at a time using this matrix.2.11A polyalphabetic sub
19、stitution cipher uses a separate monoalphabetic substitution cipher for each successive letter of plaintext, depending on a key.2.121. There is the practical problem of making large quantities of random keys. Any heavily used system might require millions of random characters on a regular basis. Sup
20、plying truly random characters in this volume is a significant task.2. Even more daunting is the problem of key distribution and protection. For every message to be sent, a key of equal length is needed by both sender and receiver. Thus, a mammoth key distribution problem exists.2.13A transposition
21、cipher involves a permutation of the plaintext letters.2.14Steganography involves concealing the existence of a message.Answers to Problems2.1a.No. A change in the value of b shifts the relationship between plaintext letters and ciphertext letters to the left or right uniformly, so that if the mappi
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- 密码 编码 网络安全 答案 优质 资料
限制150内