312-50V10 · Question #357
An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it. The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?
The correct answer is D. Chosen ciphertext attack. When an attacker possesses ciphertext and is able to decrypt it to obtain the corresponding plaintext, they can feed chosen ciphertexts into the decryption process to gather information and ultimately recover the encryption key.
Question
An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it. The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?
Options
- ABirthday attack
- BPlaintext attack
- CMeet in the middle attack
- DChosen ciphertext attack
How the community answered
(33 responses)- A9% (3)
- B15% (5)
- C3% (1)
- D73% (24)
Why each option
When an attacker possesses ciphertext and is able to decrypt it to obtain the corresponding plaintext, they can feed chosen ciphertexts into the decryption process to gather information and ultimately recover the encryption key.
A birthday attack exploits collision probabilities in hash functions and is not used to recover encryption keys from ciphertext-plaintext pairs.
A known plaintext attack is passive - the attacker already has static ciphertext-plaintext pairs but cannot choose or generate new ones, which is less powerful than the scenario described.
A meet-in-the-middle attack targets double-encryption schemes such as 2DES by attacking each encryption layer independently; it is not the appropriate technique when an attacker has active decryption capability.
A chosen ciphertext attack (CCA) is a cryptanalytic technique where the attacker selects arbitrary ciphertexts, submits them to a decryption oracle, and analyzes the resulting plaintexts to deduce information about the key. The scenario describes exactly this capability - the attacker has sniffed ciphertext and has the ability to decrypt it, giving them access to a decryption oracle they can exploit to work backward toward the secret key.
Concept tested: Chosen ciphertext attack and cryptanalytic techniques
Source: https://csrc.nist.gov/glossary/term/chosen_ciphertext_attack
Topics
Community Discussion
No community discussion yet for this question.