CRYPTOGRAPHY AND NETWORK SECURITY (PC) - IV Year B.Tech. CSE I -Sem (JNTUH-R18)
Unit I: Security Concepts and Cryptography Concepts:
Compare and contrast active and passive network eavesdropping attacks. Provide real-world examples of each.
Explain the concept of a firewall and its differences from an intrusion detection system (IDS).
Describe a scenario where a one-time pad cipher could be used effectively. Is it practical for widespread use? Explain why.
What are the key considerations when choosing a random number generator for cryptographic purposes? Discuss potential consequences of non-randomness.
Explain the concept of steganography and its ethical implications. How can steganography be used for malicious purposes?
Unit II: Symmetric and Asymmetric Key Ciphers:
Describe the S-boxes and Feistel structure used in the DES algorithm. What are their roles in encryption and decryption?
Compare the block size and key size of AES and Blowfish algorithms. How do these factors affect their security and performance?
Explain how the Diffie-Hellman key exchange protocol overcomes the key distribution problem in public-key cryptography.
Describe the key generation process in the RSA algorithm and explain the importance of choosing large prime numbers.
What are the vulnerabilities of Elgamal encryption compared to RSA? Discuss potential mitigation techniques.
Unit III: Cryptographic Hash Functions and Key Management:
Explain the avalanche effect and birthday paradox in relation to secure hash functions like SHA-512.
Compare and contrast the security strengths of HMAC and CMAC. In which scenarios would you prefer one over the other?
Describe the ticket-granting process in the Kerberos authentication protocol and its role in preventing ticket replay attacks.
Explain the purpose of a certificate revocation list (CRL) in X.509 PKI and the challenges associated with its maintenance.
How can symmetric key distribution be achieved using asymmetric encryption with Diffie-Hellman key exchange? Explain the process.
Unit IV: Transport-level Security and Wireless Network Security:
Explain the handshake process in TLS and how it establishes a secure connection between a client and server.
Describe the different authentication methods supported by SSH (Secure Shell) and their security levels.
What are the key security vulnerabilities of WPA2 in wireless networks? Discuss potential mitigation strategies.
Explain the concept of mobile device management (MDM) and its importance in securing enterprise mobile devices.
Compare and contrast intrusion detection and prevention systems (IDS/IPS) based on their functionalities and deployment strategies.
Unit V: E-Mail Security and IP Security:
Describe the key generation and encryption process in PGP and explain how it protects email messages.
Compare and contrast the digital signature schemes used in PGP and S/MIME. How do they ensure message integrity and non-repudiation?
Explain the concepts of Authentication Header (AH) and Encapsulating Security Payload (ESP) in IPSec and their roles in securing network traffic.
Describe the different phases of the Internet Key Exchange (IKE) protocol and its importance in establishing secure associations for IPSec.
Explain how site-to-site VPNs are established using IPSec and the benefits they offer for secure remote access.
Post a Comment