The objective of this chapter is to provide the reader with an understanding of the following:

Domain 4.0: Basics of Cryptography – 15%

4.1 Be able to identify and explain the of the following different kinds of cryptographic algorithms:

• Hashing; Symmetric; Asymmetric

4.2 Understand how cryptography addresses the following security concepts:

• Confidentiality; Integrity (Digital Signatures)
  
  
• Authentication; Non-Repudiation (Digital Signatures)
  
  
• Access Control

4.3 Understand and be able to explain the following concepts of PKI (Public Key Infrastructure):

• Certificates (Certificate Policies; Certificate Practice Statements)
  
  
• Revocation; Trust Models

4.4 Identify and be able to differentiate different cryptographic standards and protocols.

4.5 Understand and be able to explain the following concepts of Key Management and Certificate Lifecycles:

• Centralized vs. Decentralized
  
  
• Storage (Hardware vs. Software; Private Key Protection)
  
  
• Escrow; Expiration
  
  
• Revocation (Status Checking)
  
  
• Suspension (Status Checking)
  
  
• Recovery (M-of-N Control)
  
  
• Renewal; Destruction
  
  
• Key Usage (Multiple Key Pairs: Single, Dual)

Quick navigation to subsections and regular topics in this section

• Getting Ready for Chapter 4 - Questions
• Getting Ready for Chapter 4 - Answers
• 4.0  Basics of Cryptography
• 4.1  Algorithms
• 4.2  Concepts in Using Cryptography
• 4.3  PKI (Public Key Infrastructure)
• Pop Quiz 4.1 (Parts: 1 2 )
• 4.4  Standards and Protocols
• 4.5  Key Management and Certificate Lifecycles
• 4.6  Summary (Parts: 1 2 3 4 5 6 )
• 4.7  Success Questions
• 4.8  Success Answers