nerdexam
EC-Council

312-50V10 · Question #357

An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it. The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?

The correct answer is D. Chosen ciphertext attack. When an attacker possesses ciphertext and is able to decrypt it to obtain the corresponding plaintext, they can feed chosen ciphertexts into the decryption process to gather information and ultimately recover the encryption key.

Cryptography

Question

An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it. The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?

Options

  • ABirthday attack
  • BPlaintext attack
  • CMeet in the middle attack
  • DChosen ciphertext attack

How the community answered

(33 responses)
  • A
    9% (3)
  • B
    15% (5)
  • C
    3% (1)
  • D
    73% (24)

Why each option

When an attacker possesses ciphertext and is able to decrypt it to obtain the corresponding plaintext, they can feed chosen ciphertexts into the decryption process to gather information and ultimately recover the encryption key.

ABirthday attack

A birthday attack exploits collision probabilities in hash functions and is not used to recover encryption keys from ciphertext-plaintext pairs.

BPlaintext attack

A known plaintext attack is passive - the attacker already has static ciphertext-plaintext pairs but cannot choose or generate new ones, which is less powerful than the scenario described.

CMeet in the middle attack

A meet-in-the-middle attack targets double-encryption schemes such as 2DES by attacking each encryption layer independently; it is not the appropriate technique when an attacker has active decryption capability.

DChosen ciphertext attackCorrect

A chosen ciphertext attack (CCA) is a cryptanalytic technique where the attacker selects arbitrary ciphertexts, submits them to a decryption oracle, and analyzes the resulting plaintexts to deduce information about the key. The scenario describes exactly this capability - the attacker has sniffed ciphertext and has the ability to decrypt it, giving them access to a decryption oracle they can exploit to work backward toward the secret key.

Concept tested: Chosen ciphertext attack and cryptanalytic techniques

Source: https://csrc.nist.gov/glossary/term/chosen_ciphertext_attack

Topics

#chosen ciphertext attack#cryptanalysis#key recovery#ciphertext

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice