SSCP Cert Prep: 5 Cryptography

Prepare for the Systems Security Certified Practitioner certification (SSCP). Review the objectives from the Cryptography domain of the SSCP exam.

Introduction

• Protecting data with cryptography

1. Encryption

• Understanding encryption
• Symmetric and asymmetric cryptography
• Goals of cryptography
• Codes and ciphers
• Choosing encryption algorithms
• The perfect encryption algorithm
• The cryptographic lifecycle

2. Symmetric Cryptography

• Data encryption standard
• 3DES
• AES, Blowfish, and Twofish
• RC4
• Steganography

3. Asymmetric Cryptography

• Rivest-Shamir-Adleman (RSA)
• PGP and GnuPG
• Elliptic curve and quantum cryptography

4. Key Management

• Cryptographic key security
• Key exchange
• Diffie-Hellman
• Key escrow
• Key stretching

5. Public Key Infrastructure

• Trust models
• PKI and digital certificates
• Hash functions
• Digital signatures
• Create a digital certificate
• Revoke a digital certificate
• Certificate stapling
• Certificate authorities
• Certificate subjects
• Certificate types
• Certificate formats

6. Transport Encryption

• TLS and SSL
• IPsec
• Securing common protocols
• DKIM
• Tor and perfect forward secrecy
• Blockchain

7. Cryptanalytic Attacks

• Brute-force attacks
• Knowledge-based attacks
• Limitations of encryption algorithms

Conclusion

• Continuing your studies