[Cisspstudy] Encryption methods
Andrea Gatta
andrea.gatta at gmail.com
Mon Sep 28 10:05:26 EDT 2009
I believe you are correct about modes and methods and I could actually trace
back your very definition at:
http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation
Point is, since different sources use mode and method not in a consistent
way which one should be trusted for the purpose of the exam ?
Andrea
Andrea
On Mon, Sep 28, 2009 at 12:32 PM, <An.Dang at do.treas.gov> wrote:
> I think block and streams are two modes of symmetric encryption. While
> asymmetric and symmetric are two methods of encryption.
>
> Where can I find additional information on quantitative risk analysis? The
> CBK is vague and Shon's AIO seems to focus more on it but she brought up the
> total risk equation. I am looking for a more concised example like
> calculate ALE of a system that is only used 20% of the year.
>
> My $0.02
>
> -----Original Message-----
> From: cisspstudy-bounces at cccure.org [mailto:cisspstudy-bounces at cccure.org]
> On Behalf Of cisspstudy-request at cccure.org
> Sent: Sunday, September 27, 2009 8:00 PM
> To: cisspstudy at cccure.org
> Subject: cisspstudy Digest, Vol 15, Issue 43
>
> Send cisspstudy mailing list submissions to
> cisspstudy at cccure.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> or, via email, send a message with subject or body 'help' to
> cisspstudy-request at cccure.org
>
> You can reach the person managing the list at
> cisspstudy-owner at cccure.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of cisspstudy digest..."
>
>
> Today's Topics:
>
> 1. Re: Encryption methods (please work with me on this one)
> (Andrea Gatta)
> 2. Re: Encryption methods (please work with me on this one)
> (fzbrick at gmail.com)
> 3. Re: Encryption methods (please work with me on this one)
> (Ashraf Amin)
> 4. Transcender Version (Mike Booth)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sun, 27 Sep 2009 20:10:14 +0100
> From: Andrea Gatta <andrea.gatta at gmail.com>
> To: The CISSP Study Mailing list <cisspstudy at cccure.org>
> Subject: Re: [Cisspstudy] Encryption methods (please work with me on
> this one)
> Message-ID:
> <89ab1b610909271210n1a345343yce868ea57f828311 at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Point is, what if you have a question that goes like:
>
> What are the most important encryption methods:
>
> 1. symmetric, asymmetric
>
> 2. block, stream
>
> It is a BAD question I know but still I am sure I rember I had a question
> like this one somewhere.
>
> Moreover, is this the likely to be the level of trickery the CISSP can
> present ? Unfortunately I don't know and this is the reason why I am
> scratching my head everytime I find inconsistences.
>
> Andrea
>
> On Sun, Sep 27, 2009 at 7:53 PM, <fzbrick at gmail.com> wrote:
>
> > Methods is a flexible term and can be used in many ways when referring to
> > crypto.
> >
> > Sent from my iPhone
> >
> > On Sep 27, 2009, at 2:13 PM, Clement Dupuis <clement.dupuis at cccure.com>
> > wrote:
> >
> > Thanks for your input
> >
> > Clement
> >
> > On Sep 27, 2009 2:12 PM, wrote:
> >
> > On Sep 27, 2009 12:44 PM, "Andrea Gatta" < <andrea.gatta at gmail.com>
> > andrea.gatta at gmail.com> wrote:
> >
> > Clement, list -
> > I do understand the the official guide is clearly not accurate. Words
> > cannot describe how angry I am...Nevertheless - at least for my own peace
> of
> > mind - I would like to throw another one from the guide:
> >
> > " Encryption methods"
> >
> > Shon Harris AIO - Page 679
> >
> > "Methods of encryption"
> >
> > As far as I can say as for as Shon is concerned 'methods' refers to
> > symmetric vs. asymmentric
> >
> > Official ISC2 guide - Page 227
> >
> > "Methods of Cryptography"
> >
> > Here for "methods" the author refers to block vs stream ciphers
> >
> > Thanks,
> > Andrea
> >
> > _______________________________________________
> > cisspstudy mailing list
> > <cisspstudy at cccure.org>cisspstudy at cccure.org
> > <http://cccure.org/mailman/listinfo/cisspstudy_cccure.org>
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
> > _______________________________________________
> > cisspstudy mailing list
> > cisspstudy at cccure.org
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
> >
> > _______________________________________________
> > cisspstudy mailing list
> > cisspstudy at cccure.org
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
> >
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090927/15f13530/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 2
> Date: Sun, 27 Sep 2009 17:46:03 -0400
> From: fzbrick at gmail.com
> To: The CISSP Study Mailing list <cisspstudy at cccure.org>
> Subject: Re: [Cisspstudy] Encryption methods (please work with me on
> this one)
> Message-ID: <26D850A6-6112-4CF1-B8E3-2EDCFD4578E3 at gmail.com>
> Content-Type: text/plain; charset="us-ascii"; Format="flowed";
> DelSp="yes"
>
> Yes, a poor question. However, it is part of the ISC2 game. I had many
> questions that could have gone either way. It wouldn't surprise me if
> some questions are like this one on the exam to mess with you.
> Purposely adding to the stress of the exam. Also, a percetage of the
> questions are for "research purposes".
>
> Sent from my iPhone
>
> On Sep 27, 2009, at 3:10 PM, Andrea Gatta <andrea.gatta at gmail.com>
> wrote:
>
> > Point is, what if you have a question that goes like:
> >
> > What are the most important encryption methods:
> >
> > 1. symmetric, asymmetric
> >
> > 2. block, stream
> >
> > It is a BAD question I know but still I am sure I rember I had a
> > question like this one somewhere.
> >
> > Moreover, is this the likely to be the level of trickery the CISSP
> > can present ? Unfortunately I don't know and this is the reason why
> > I am scratching my head everytime I find inconsistences.
> >
> > Andrea
> >
> > On Sun, Sep 27, 2009 at 7:53 PM, <fzbrick at gmail.com> wrote:
> > Methods is a flexible term and can be used in many ways when
> > referring to crypto.
> >
> > Sent from my iPhone
> >
> > On Sep 27, 2009, at 2:13 PM, Clement Dupuis
> > <clement.dupuis at cccure.com> wrote:
> >
> >> Thanks for your input
> >>
> >> Clement
> >> On Sep 27, 2009 2:12 PM, wrote:
> >>
> >>
> >>> On Sep 27, 2009 12:44 PM, "Andrea Gatta" <andrea.gatta at gmail.com>
> >>> wrote:
> >>>
> >>> Clement, list -
> >>> I do understand the the official guide is clearly not accurate.
> >>> Words cannot describe how angry I am...Nevertheless - at least for
> >>> my own peace of mind - I would like to throw another one from the
> >>> guide:
> >>>
> >>> " Encryption methods"
> >>>
> >>> Shon Harris AIO - Page 679
> >>>
> >>> "Methods of encryption"
> >>>
> >>> As far as I can say as for as Shon is concerned 'methods' refers
> >>> to symmetric vs. asymmentric
> >>>
> >>> Official ISC2 guide - Page 227
> >>>
> >>> "Methods of Cryptography"
> >>>
> >>> Here for "methods" the author refers to block vs stream ciphers
> >>>
> >>> Thanks,
> >>> Andrea
> >>>
> >>> _______________________________________________
> >>> cisspstudy mailing list
> >>> cisspstudy at cccure.org
> >>> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >>>
> >>
> >> _______________________________________________
> >> cisspstudy mailing list
> >> cisspstudy at cccure.org
> >> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
> > _______________________________________________
> > cisspstudy mailing list
> > cisspstudy at cccure.org
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
> >
> > _______________________________________________
> > cisspstudy mailing list
> > cisspstudy at cccure.org
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090927/4a9130e8/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 3
> Date: Sun, 27 Sep 2009 22:09:24 +0000
> From: Ashraf Amin <ashraf_amin01 at hotmail.com>
> To: <cisspstudy at cccure.org>
> Subject: Re: [Cisspstudy] Encryption methods (please work with me on
> this one)
> Message-ID: <BAY133-W9D5E3C68FC1D86335676D95D70 at phx.gbl>
> Content-Type: text/plain; charset="windows-1252"
>
>
>
> Greetings,
>
> Block ciphers & Stream-Based are the two methods of cryptography
>
> Symmetric & Asymmetric are two forms of cryptography
>
> (ISC2) Official Page 236
>
>
>
>
> Best Regards,
> Ashraf Amin
>
>
>
> Date: Sun, 27 Sep 2009 20:10:14 +0100
> From: andrea.gatta at gmail.com
> To: cisspstudy at cccure.org
> Subject: Re: [Cisspstudy] Encryption methods (please work with me on this
> one)
>
> Point is, what if you have a question that goes like:
>
> What are the most important encryption methods:
>
> 1. symmetric, asymmetric
>
> 2. block, stream
>
> It is a BAD question I know but still I am sure I rember I had a question
> like this one somewhere.
>
> Moreover, is this the likely to be the level of trickery the CISSP can
> present ? Unfortunately I don't know and this is the reason why I am
> scratching my head everytime I find inconsistences.
>
> Andrea
>
>
> On Sun, Sep 27, 2009 at 7:53 PM, <fzbrick at gmail.com> wrote:
>
>
>
> Methods is a flexible term and can be used in many ways when referring to
> crypto.
>
> Sent from my iPhone
>
>
>
>
> On Sep 27, 2009, at 2:13 PM, Clement Dupuis <clement.dupuis at cccure.com>
> wrote:
>
>
>
>
>
> Thanks for your input
>
> Clement
>
>
> On Sep 27, 2009 2:12 PM, wrote:
>
>
>
>
>
> On Sep 27, 2009 12:44 PM, "Andrea Gatta" <andrea.gatta at gmail.com> wrote:
>
> Clement, list -
> I do understand the the official guide is clearly not accurate. Words
> cannot describe how angry I am...Nevertheless - at least for my own peace of
> mind - I would like to throw another one from the guide:
>
> " Encryption methods"
>
> Shon Harris AIO - Page 679
>
> "Methods of encryption"
>
> As far as I can say as for as Shon is concerned 'methods' refers to
> symmetric vs. asymmentric
>
> Official ISC2 guide - Page 227
>
> "Methods of Cryptography"
>
> Here for "methods" the author refers to block vs stream ciphers
>
> Thanks,
> Andrea
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>
>
>
>
>
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>
>
> _________________________________________________________________
> Share your photos with Windows Live Photos ? Free.
> http://clk.atdmt.com/UKM/go/134665338/direct/01/
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090927/3bced0f9/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 4
> Date: Sun, 27 Sep 2009 20:00:09 -0400
> From: "Mike Booth" <mikebooth at insightbb.com>
> To: "'The CISSP Study Mailing list'" <cisspstudy at cccure.org>
> Subject: [Cisspstudy] Transcender Version
> Message-ID: <B41D02039D91467196E3F65773FF7416 at TouchPoint1>
> Content-Type: text/plain; charset="us-ascii"
>
> I am using Transcender V 3.7.0 Build 3/3/2006. I did not see an option to
> pull down updates.
>
> Mike
>
> -----Original Message-----
> From: cisspstudy-bounces at cccure.org [mailto:cisspstudy-bounces at cccure.org]
> On Behalf Of Betty Man
> Sent: Saturday, September 26, 2009 11:25 PM
> To: cisspstudy at cccure.org
> Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 15,Issue 39 (Transcender
> Test Quesitons)
>
> Question: What is the version of the exam that you use ? Before you
> tried the Transcender practice exams, did you check to see if there is
> any updates?
>
> Betty
>
>
>
>
>
> ------------------------------
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>
> End of cisspstudy Digest, Vol 15, Issue 43
> ******************************************
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090928/faa3ac92/attachment-0001.html>
More information about the CISSPstudy
mailing list