CISSP Fix

Cryptography is a technique of encrypting and decrypting messages. When the text is encrypted, it is unreadable by humans. When the text is decrypted, it is readable by the humans. The terms used in cryptography are as follows: Plain text: This text can be read by a user. Cipher text: This text can be converted to a non-readable format. Encryption: It is the process of creating a cipher text from a plain text. Decryption: It is the process of converting a cipher text to a plain text. Cipher: It is an algorithm that is used to encrypt and decrypt text. Key: Keys are the elements that are used in the technology of encrypting and decrypting text. For more information read Cryptographic attack

Cryptographic attacks are methods of evading the security of a cryptographic system by finding weaknesses in such areas as the code, cipher, cryptographic protocol or key management scheme in the cryptographic algorithm. The following are the cryptographic attacks usually performed by an attacker: Known plaintext attack: In a known plaintext attack, an attacker should have both the plaintext and…copy of it with the encrypted data. This is used to find patterns in the cryptographic output that might uncover a vulnerability or reveal a cryptographic key.Chosen ciphertext attack: In this type of attack, an attacker can choose the ciphertext to be decrypted and can then analyze the plaintext output of the event. The early versions of RSA used in SSL were actually vulnerable to this attack.

This centaury stands on the edge of new modern methods of attacks and advancement in the speed of computation, which taken over the best known secure secret-key algorithm such as DES, Digital Encryption Standard conquered the world of cryptography for centuries. A 40 bit version of the DES algorithm can be easily cracked by any modern computer and a 56 bit can be broken by any cheaply available Super Computer or by a simple beo-wulf cluster. That poses a security threat and people have developed, developing various other algorithms like 3DES also known as Triple DES etc, The NIST and NSA plays an important role in deciding the algorithms. They analyze and recommend the algorithm for usage.

Is CISSP certification is easy?

This is pretty controversial topic, some people think that it is easy but most of the people find it real hard. You should have experience of at least 3 years in IT security before you apply for the exam. You are required to come up with an extremely wide area of IT security such as physical security, very few people will have any experience in. And you will be expected to do enough reading and studying to get through CISSP certification exam: 250 questions to be answered in 6 hours. Hard to keep upwith much fun.