Unit 3

1. Explain the primary purpose of DSA in cryptography.

A:
Purpose of DSA in Cryptography:
The Digital Signature Algorithm (DSA) is used to verify the authenticity and integrity
of digital messages. It ensures that a message is genuinely from the sender and has not
been changed during transmission. DSA works with a private-public key pair. The
sender signs the message using a private key, and the receiver verifies it using the
public key. A hash function converts the message into a fixed-size digest before
encryption. The receiver decrypts the signature and checks if the hash matches. If they
match, the message is verified as original and secure.
2. Explain the role of parameter selection in different variants of DSA and how it
impacts the overall security of the digital signature.
A:
Role of Parameter Selection in DSA and Its Impact on Security:
In DSA, selecting the right parameters is important for security and efficiency. There
are three key parameters: prime modulus (p), prime divisor (q), and generator (g). A
larger p increases security by making attacks harder. The q value is a factor of (p-1)
and helps in key generation. The g value ensures the keys are randomly distributed
and secure. Variants like ECDSA use elliptic curves, offering stronger security with
smaller keys. Proper parameter selection prevents attacks and ensures digital
signatures remain safe and reliable.
3. Discuss the advantages and potential drawbacks of using the GOST Digital
Signature Algorithm in cryptographic applications.
A:
Advantages of GOST Digital Signature Algorithm:
 GOST DSA provides strong security based on the GOST R 34.10-2012
standard.
 It is efficient and works well in systems with limited processing power.
 It integrates easily with existing cryptographic frameworks.
Drawbacks of GOST Digital Signature Algorithm:
 It has limited global adoption, causing compatibility issues with RSA or
ECDSA.
 Since it follows Russian standards, trust and transparency concerns may arise.
  Implementation can be complex and may require specialized knowledge.
 While GOST DSA is secure and efficient, its limited adoption and
interoperability issues must be considered.
4. What is a Discrete Logarithm Signature Scheme?
A:
Discrete Logarithm Signature Scheme (DLSS):
DLSS is a cryptographic method used to create and verify digital signatures. It ensures
that a message is authentic and unchanged. The system relies on solving discrete
logarithms, which is a difficult mathematical problem, making it highly secure. The
signer uses a private key to generate the signature, while the receiver uses a public key
to verify it. The process includes hashing the message and performing mathematical
operations for security. If verification succeeds, the signature is confirmed as genuine.
Variants like DSA and ECDSA use similar principles but with improved security.
5. Describe the process of generating and verifying a digital signature using the
ESIGN (Efficient and Secure Industrial signature) algorithm.
A:
ESIGN Digital Signature Process:
 The ESIGN algorithm is used to create and verify digital signatures securely
and efficiently.
 The signer creates a hash (a fixed-size summary) of the message.
 This hash is encrypted using the signer’s private key, forming the digital
signature.
 The signed message and signature are sent to the recipient.
 The recipient decrypts the signature using the signer’s public key, getting the
original hash.
 The recipient hashes the received message independently.
 If both hashes match, the signature is valid, confirming the message’s
authenticity and integrity.
 ESIGN is fast and secure, making it ideal for industrial applications.
 Unit 4
1. Explain the concept of All-or-Nothing Disclosure of Secrets (ANDOS) and its
main purpose in cryptographic protocols.
A:
All-or-Nothing Disclosure of Secrets (ANDOS):
ANDOS is a cryptographic method where a person can share one secret without
revealing others. It involves two parties: a vendor with multiple secrets and a buyer
choosing one. The buyer learns only the selected secret, not the others. Techniques
like zero-knowledge proofs ensure security. The vendor cannot tell which secret the
buyer picked. ANDOS is used in digital rights management and privacy-focused
applications. It ensures controlled disclosure of information.
2. What is meant by a 'fair coin flip' in the context of cryptographic protocols?
A:
Fair Coin Flip in Cryptographic Protocols:
A fair coin flip ensures two parties generate a random outcome (0 or 1) fairly. Neither
party can control or predict the result. It is important for secure elections, key
generation, and multi-party computations. Cryptographic methods like commitment
schemes prevent cheating. Both parties commit to a random choice, then reveal it. If
cheating occurs, it is detected, and the process fails. It ensures fairness and trust in
cryptographic applications.
3. What is Secure Multiparty Computation (SMPC) and its primary goal in
cryptographic protocols?
A:
Secure Multiparty Computation (SMPC) and its Goal:
SMPC allows multiple parties to compute a result without sharing their private data. It
ensures privacy and security in collaborative computing. It is used in secure voting,
private data analysis, and machine learning. Advanced methods like secret sharing and
homomorphic encryption are used. Each party contributes without revealing their data.
The goal is to enable secure data processing while maintaining privacy.
4. Discuss the potential challenges and limitations of performing computations on
encrypted data
A:
Challenges of Performing Computations on Encrypted Data:
Performing computations on encrypted data is called homomorphic encryption. It has
challenges like high computational cost, making it slow. Complex encryption methods
require more resources. Limited operations like addition or multiplication restrict
functionality. Fully homomorphic encryption is still developing and requires high
storage and processing power. Implementing it in real systems is costly and difficult.
Despite challenges, it enhances privacy and security.
5. Explain the basic process of verifying an Undeniable Digital Signature.
A:
Verifying an Undeniable Digital Signature:
An undeniable signature requires the signer’s participation for verification. The
verifier sends a request to check the signature. The signer responds using their private
key to confirm validity. The verifier then checks using the signer’s public key. Unlike
normal signatures, this cannot be verified without the signer’s consent. This prevents
unauthorized validation and forgery. It ensures message integrity and authenticity.
6. What is Multiple-Key Public-Key Cryptography?
A:
Multiple-Key Public-Key Cryptography:
This method uses multiple public-private key pairs for better security. Instead of one
key pair, different keys serve different purposes like encryption, signing, and key
exchange. It increases security and flexibility by spreading risk. If one key is
compromised, others remain safe. It is used in distributed systems for better access
control and security. Supports threshold cryptography, where multiple keys are needed
for an action.
7. What is a Zero-Knowledge Proof of Knowledge and what is its primary use in
cryptography?
A:
Zero-Knowledge Proof of Knowledge and Its Use:
Without revealing the actual data. It ensures privacy and security in authentication.
Used in password verification, blockchain, and secure voting. The verifier is
convinced the prover knows the secret without learning it. It prevents identity theft
and ensures secure transactions. ZKP is important for privacy-focused cryptography.
 Unit 5
1. Describe the primary components and working of the Kerberos authentication
protocol in securing network communications.
A:
Kerberos Authentication Protocol:
 Kerberos is a security system that helps verify users in a network.
 It has three parts: the Key Distribution Center (KDC), Client, and Server.
 The KDC has two parts: Authentication Server (AS) and Ticket Granting
Server (TGS).
 A user first gets a Ticket Granting Ticket (TGT) from AS after authentication.
 The TGT is then used to get a service ticket from TGS, which is needed to
access a server.
 This system ensures security using encryption and timestamps to prevent
hacking.
2. Describe the process of encrypting and decrypting email messages using PEM,
including the role of public and private keys.
A:
Encrypting and Decrypting Emails using PEM:
 Privacy-Enhanced Mail (PEM) secures emails using public-key cryptography.
 The sender encrypts the email using the recipient’s public key.
 The recipient decrypts it using their private key.
 This ensures that only the intended recipient can read the email.
 Digital signatures can also be used to verify the sender’s identity and prevent
tampering.
3. Explain the key features and functionalities of Message Security Protocol
(MSP) and its role in securing message communication.
A:
Message Security Protocol (MSP):
 MSP secures message communication by providing:
 Encryption (protects message content)
 Digital signatures (authenticates sender)
  Message Authentication Codes (MACs) (ensures integrity)
 It prevents hacking, data leaks, and impersonation.
 It is used in emails, financial services, and secure government communications.
4. Explain the key features and functionalities of Pretty Good Privacy (PGP) and
its significance in email security.
A:
Pretty Good Privacy (PGP) for Email Security:
 PGP protects email privacy using encryption and digital signatures.
 It uses a mix of symmetric and asymmetric encryption for security.
 Digital signatures confirm the sender’s identity and prevent message
tampering.
 It helps keep emails safe from hackers and unauthorized access.
5. Explain the main purpose of the Public-Key Cryptography Standards (PKCS)
and their significance in cryptographic protocols.
A:
Public-Key Cryptography Standards (PKCS):
 PKCS is a set of rules for secure cryptographic systems.
 It defines how to generate keys, encrypt data, and manage digital certificates.
 It ensures that different cryptographic systems work together.
 It is used in secure transactions and internet communications.
6. Describe how UEPS ensures secure transactions, particularly in environments
with poor telecommunications infrastructure.
A:
Universal Electronic Payment System (UEPS):
 UEPS enables secure transactions without the need for an internet connection.
 It uses smartcards to transfer money from banks to customers and merchants.
 Transactions are later verified through a secure system.
 Useful in areas with poor network connectivity and ensures fraud protection.