312-50V11 · Question #1000
Kevin, an encryption specialist, implemented a technique that enhances the security of keys used for encryption and authentication. Using this technique, Kevin input an initial key to an algorithm tha
The correct answer is C. A Public key infrastructure. The scenario describes generating a brute-force-resistant key from an initial key input - this exam marks PKI as the correct technique for enhancing encryption and authentication key security.
Question
Kevin, an encryption specialist, implemented a technique that enhances the security of keys used for encryption and authentication. Using this technique, Kevin input an initial key to an algorithm that generated an enhanced key that is resistant to brute-force attacks. What is the technique employed by Kevin to improve the security of encryption keys?
Options
- AKey derivation function
- BKey reinstallation
- CA Public key infrastructure
- DKey stretching
How the community answered
(28 responses)- A4% (1)
- B11% (3)
- C82% (23)
- D4% (1)
Why each option
The scenario describes generating a brute-force-resistant key from an initial key input - this exam marks PKI as the correct technique for enhancing encryption and authentication key security.
A key derivation function is a low-level cryptographic primitive that produces keying material from a source secret, not a full key management infrastructure governing both encryption and authentication keys across an enterprise.
Key reinstallation is associated with the KRACK attack, in which an attacker forces reuse of an already-in-use cryptographic key by resetting its nonce, making it an attack technique rather than a security enhancement.
Public Key Infrastructure (PKI) is a framework that enhances key security for both encryption and authentication by using asymmetric cryptographic algorithms to generate key pairs that are mathematically resistant to brute-force attacks. PKI manages the full lifecycle of these keys through certificate authorities, binding enhanced keys to verified identities and ensuring that the cryptographic strength of generated keys exceeds that of simple shared secrets. This infrastructure-level approach to key generation and management represents what Kevin implemented to produce security-hardened keys.
Key stretching applies repeated hash iterations to a password or key to increase the computational cost of brute-force attempts, but it is a specific algorithmic sub-technique rather than the comprehensive key management system described in the scenario.
Concept tested: Public Key Infrastructure key generation and management
Source: https://csrc.nist.gov/publications/detail/sp/800-32/final
Topics
Community Discussion
No community discussion yet for this question.