ICTDBS506- HASHES, SALTS, PEPPERS Quiz

A complex mathematical function that transforms data into a fixed length output string.

A tool for encrypting data that can be easily decrypted.

A method for storing passwords in plain text.

A database of common passwords and their hashes.

Because you cannot go backwards from a hash to work out the original string.

Because it scrambles data temporarily.

Because the hash can easily be converted back to the original string using a key.

Because it uses a complex key to encrypt data.

To append to the end of passwords for added security.

To encrypt the password in the database.

To make it easier to guess the password.

To thwart rainbow table attacks by adding randomness.

A type of hashing algorithm.

A tool for encrypting passwords.

A colorful table used in cryptography.

A database containing common passwords and their hashes.

By using a strong encryption algorithm.

By asking the user for their password.

By comparing the hash to a database of known hashes.

By using a key to decrypt the hash.

To make brute force attacks more computationally expensive.

To replace the use of salts.

To encrypt the hash further with a key.

To store it along with the hash for added security.

To reduce the security of the stored passwords.

Because it is a requirement of all hashing algorithms.

So the website knows what salt to use when verifying a login.

To make it easier for attackers to guess the password.

Salts reduce the computational expense of such attacks.

Attackers may take into account the salt in their guesses.

Attackers can ignore the salt and still guess the password.

Salts make it easier to guess the password.

It makes no difference as hashing is quick.

It decreases the security of their password.

It requires the user to input the pepper manually.

It significantly increases the time it takes to log in.

Hashing is reversible while encryption is not.

Encryption uses salts, while hashing does not.

Encryption scrambles data temporarily, while hashing is considered one-way.

Hashing can be decrypted with a key, while encryption cannot.