Which of the following processes of PKI (Public Key Infrastructure) ensures that a trust
relationship exists and that a certificate is still valid for specific operations?

Steven the hacker realizes that the network administrator of XYZ is using syskey to protect
organization resources in the Windows 2000 Server. Syskey independently encrypts the hashes
so that physical access to the server, tapes, or ERDs is only first step to cracking the passwords.
Steven must break through the encryption used by syskey before he can attempt to brute force
dictionary attacks on the hashes. Steven runs a program called “SysCracker” targeting the
Windows 2000 Server machine in attempting to crack the hash used by Syskey. He needs to
configure the encryption level before he can launch attach.

How many bits does Syskey use for encryption?

What is the correct PCAP filter to capture all TCP traffic going to or from host 192.168.0.125 on
port 25?

In the context of using PKI, when Sven wishes to send a secret message to Bob, he looks up
Bob’s public key in a directory, uses it to encrypt the message before sending it off. Bob then uses
his private key to decrypt the message and reads it. No one listening on can decrypt the message.
Anyone can send an encrypted message to Bob but only Bob can read it. Thus, although many
people may know Bob’s public key and use it to verify Bob’s signature, they cannot discover Bob’s
private key and use it to forge digital signatures.
What does this principle refer to?

When creating a security program, which approach would be used if senior management is
supporting and enforcing the security policy?

What is SYSKEY # of bits used for encryption?

Which element of Public Key Infrastructure (PKI) verifies the applicant?

Which of the following is NOT true of cryptography?

Which Open Web Application Security Project (OWASP) implements a web application full of
known vulnerabilities?

Which of the following best describes session key creation in SSL?