APCSP IOC-2.B Cybersecurity and Encryption

To speed up device performance.

To protect devices and information from unauthorized access.

To encrypt data during transmission.

To ensure regular software updates are installed.

password123

The user's own street name (mapleStreet)

A random string like X7$gP@!zQw (potentially hard for the user to remember)

An unusual phrase known only to the user like 3PurpleElephantsFly@Midnight!

Knowledge (know), Possession (have), Inherence (are)

Location (where), Time (when), Action (do)

Public Key (encrypt), Private Key (decrypt), Symmetric Key (both)

Hardware (physical), Software (program), Network (connection)

It uses only one factor (knowledge - the password).

It successfully uses two factors: knowledge (password) and possession (phone).

It uses two factors: knowledge (password) and inherence (fingerprint).

It is not MFA because it only involves two steps.

It makes the password itself harder to guess.

It encrypts the password during transmission.

It adds at least one additional layer of security that must be compromised.

It automatically updates the user's password regularly.

Encryption encodes data to prevent unauthorized access; decryption decodes it.

Encryption uses public keys; decryption uses private keys.

Encryption protects data at rest; decryption protects data in transit.

Encryption requires MFA; decryption does not.

One shared key used by both Alice and Bob.

Two keys: Alice's public key and Bob's private key.

Two keys: Alice's private key and Bob's public key.

Four keys: A public/private pair for Alice and a public/private pair for Bob.

Alice's private key

Alice's public key

Bob's private key

Bob's public key

Alice's private key

Alice's public key

Bob's private key

Bob's public key

To generate strong passwords for users.

To issue digital certificates validating the ownership of encryption keys.

To perform malware scans on network traffic.

To directly encrypt and decrypt user data.