Good day,<br><br>No need to get worried yet.<br><br>There hasn't been any major changes to the exam. <br><br>Take care<br><br>Clement<br>]<br clear="all"><br>
<br><br><div class="gmail_quote">On Wed, Feb 10, 2010 at 13:00, Shibin Thomas <span dir="ltr"><<a href="mailto:shibinthomas@gmail.com">shibinthomas@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div dir="ltr"><div>Hi All,</div>
<div> </div>
<div> Is there any change the topics because of new release of books.</div>
<div> </div>
<div>Regards</div>
<div> </div>
<div> </div>
<div>Shibin<br><br></div>
<div class="gmail_quote">On Thu, Jan 21, 2010 at 9:00 PM, <span dir="ltr"><<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a>></span> wrote:<br>
<blockquote style="border-left: 1px solid rgb(204, 204, 204); margin: 0px 0px 0px 0.8ex; padding-left: 1ex;" class="gmail_quote">Send cisspstudy mailing list submissions to<br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<br>To subscribe or unsubscribe via the World Wide Web, visit<br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>or, via email, send a message with subject or body 'help' to<br>
<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br><br>You can reach the person managing the list at<br> <a href="mailto:cisspstudy-owner@cccure.org" target="_blank">cisspstudy-owner@cccure.org</a><br>
<br>When replying, please edit your Subject line so it is more specific<br>than "Re: Contents of cisspstudy digest..."<br><br><br>Today's Topics:<br><br> 1. Re: cisspstudy Digest, Vol 19, Issue 18 (Holland, Brandon)<br>
<br><br>----------------------------------------------------------------------<br><br>Message: 1<br>Date: Wed, 20 Jan 2010 14:06:11 -0600<br>From: "Holland, Brandon" <<a href="mailto:hollandb@frmaint.com" target="_blank">hollandb@frmaint.com</a>><br>
To: "The CISSP Study Mailing list" <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 18<br>Message-ID:<br> <<a href="mailto:58B3233454132D468C5F0D655003DA6410F891EA@MAIL.frmaint.com" target="_blank">58B3233454132D468C5F0D655003DA6410F891EA@MAIL.frmaint.com</a>><br>
Content-Type: text/plain; charset="us-ascii"<br><br>That's what stinks about a lot of these questions... because you can<br>understand everything there is to know about the keys and types of keys<br>and still can miss it because you didn't know how the question author<br>
wanted you to interpret the question... but this is great is at least<br>whether or not u get this question wrong, it will help to concrete the<br>underlying concepts in your head (the actual important thing, much<br>better than getting a question right on a test)<br>
<br>Saying all this, I think this is a little over-blown... over<br>analyzed... I think the author put "fully" not for you to ensure you<br>count the same key each time it's used, but to make sure you really know<br>
asymmetric and don't use the symmetric key formula on it instead... you<br>only need 20 keys in total to fully communicate to every person, no<br>matter how many times those keys are used. Also, it says how many keys<br>
are 'required' not how many times they are 'used'<br><br><br><br>-----Original Message-----<br>From: <a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a><br>[mailto:<a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a>] On Behalf Of gerritsjs<br>
Sent: Wednesday, January 20, 2010 12:07 PM<br>To: 'The CISSP Study Mailing list'<br>Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 18<br><br>Tom;<br><br> Let us put it in perspective. Let us assume that you have made two<br>
keys<br>to your house (i.e one public key and one private key).... that is two.<br>You<br>plan to take a vacation for nine/ten days. You have asked 9 friends of<br>yours<br>to watch the house, while you are away. You have given your public key<br>
to a<br>trusted entity (i.e., your aunt/uncle) and told her that you have<br>identified<br>9 friends to watch your house while you are away and that she is to<br>provide<br>your friends with the public key to your house.<br>
<br>To use the asymmetric logic, the trusted entity must not duplicate the<br>key<br>and that the "trusted" person who is responsible for watching the house<br>returns the key to the trusted entity upon completion of his/her watch,<br>
so<br>that the next "trusted" person can obtain the key and watch the house<br>for<br>you. Using this logic, I agree that the number of keys is still 2.<br><br>When reading the question, it appears that each of your 9 friends has<br>
the<br>key to your house (even though they are duplicates), while you are away.<br>And that, let us say, your condo is in New York and that your friends<br>are<br>scattered throughout the United States, and you entrusted them with your<br>
condo of $2 Million in New York. That is, your friends are in Chicago,<br>Washington D.C., Ann Arbor, Dallas, Miami, etc. The trusted entity is<br>in<br>Los Angeles. Question: Is the asymmetric logic still applicable?<br>
<br>jonus<br><br><br>-----Original Message-----<br>From: <a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a><br>[mailto:<a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a>]<br>
On Behalf Of <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>Sent: Wednesday, January 20, 2010 6:20 AM<br>To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 18<br>
<br><br><br>Janus,<br><br>Thank you for adding your explanation of the question. I can see the<br>logic<br>and your formula makes it easy to understand, but should the public keys<br>be<br>counted as separate for each participant? Aren't they really just the<br>
same<br>public key used by the 10 participants? The fact that Asymmetric<br>encryption is described as more scalable than symmetric also points to<br>this. If the were a symmetric case, the keys needed would be 45 .<br>
There<br>is a also an example in the ISC2 guide which supports the approach which<br>leads to the answer of 20.<br><br>Tom Witwicki, CIPP<br>Director, Information Security<br>Hannaford Bros. Co.<br>207-885-2073<br><br>Join me on Linkedin!<br>
<a href="http://www.linkedin.com/in/tomwitwicki" target="_blank">http://www.linkedin.com/in/tomwitwicki</a><br><br><br><br><br><br><br><br><br> cisspstudy-reques<br><br> <a href="mailto:t@cccure.org" target="_blank">t@cccure.org</a><br>
<br> Sent by:<br>To<br> cisspstudy-bounce <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> <a href="mailto:s@cccure.org" target="_blank">s@cccure.org</a><br>
cc<br><br><br><br>
Subject<br> 01/19/2010 05:53 cisspstudy Digest, Vol 19, Issue<br>18<br> PM<br><br><br><br><br><br> Please respond to<br><br> cisspstudy@cccure<br><br> .org<br>
<br><br><br><br><br><br><br><br><br>Send cisspstudy mailing list submissions to<br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br>To subscribe or unsubscribe via the World Wide Web, visit<br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>or, via email, send a message with subject or body 'help' to<br>
<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br><br>You can reach the person managing the list at<br> <a href="mailto:cisspstudy-owner@cccure.org" target="_blank">cisspstudy-owner@cccure.org</a><br>
<br>When replying, please edit your Subject line so it is more specific<br>than "Re: Contents of cisspstudy digest..."<br><br><br>Today's Topics:<br><br> 1. Re: cisspstudy Digest, Vol 19, Issue 16 (gerritsjs)<br>
2. Re: cisspstudy Digest, Vol 19, Issue 16 (Saurabh Bhargava)<br><br><br>----------------------------------------------------------------------<br><br>Message: 1<br>Date: Tue, 19 Jan 2010 14:02:56 -0800<br>From: "gerritsjs" <<a href="mailto:gerritsjs@gmail.com" target="_blank">gerritsjs@gmail.com</a>><br>
To: "'The CISSP Study Mailing list'" <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>>,<br>"'Nimal<br> Gunarathna'" <<a href="mailto:ng949@yahoo.com" target="_blank">ng949@yahoo.com</a>><br>
Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 16<br>Message-ID: <<a href="mailto:4b562c14.0c07560a.29a4.ffffa51a@mx.google.com" target="_blank">4b562c14.0c07560a.29a4.ffffa51a@mx.google.com</a>><br>Content-Type: text/plain; charset="us-ascii"<br>
<br>Nimal, Tom;<br><br> The question is "fully" communicated. Within a community of 10 users,<br>each user will have one private key. So we have 10 private keys.<br>Public<br>keys are as follows:<br> For each user, there are 10 public keys. 10 users imply 100 public<br>
keys.<br> This makes a total of 110 keys.<br><br>Think of a Mesh Technology.<br><br>Jonus<br><br>-----Original Message-----<br>From: <a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a><br>
[mailto:<a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a>]<br>
On Behalf Of <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>Sent: Tuesday, January 19, 2010 1:23 PM<br>To: Nimal Gunarathna<br>Cc: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 16<br><br><br><br>Hi Nimal,<br> I followed the same logic as you on this question. In order to<br>get<br>to the 110 answer each public key would have to be counted each time<br>
it's<br>used which doesn't make sense. I've come across other examples from<br>this<br>book that are very questionable, which leads me to believe that the<br>questions and answers have not been thouroughly vetted. Thank you for<br>
the<br>reply.<br><br> Tom Witwicki, CIPP<br>Director, Information Security<br>Hannaford Bros. Co.<br>207-885-2073<br><br>Join me on Linkedin!<br><a href="http://www.linkedin.com/in/tomwitwicki" target="_blank">http://www.linkedin.com/in/tomwitwicki</a><br>
<br><br><br><br><br><br><br> Nimal Gunarathna<br> <<a href="mailto:ng949@yahoo.com" target="_blank">ng949@yahoo.com</a>><br><br>To<br> 01/19/2010 04:07 <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
PM<br>cc<br> <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br><br>Subject<br> Re: cisspstudy Digest, Vol 19,<br>
Issue 16<br><br><br><br><br><br><br><br><br><br><br><br> Hi Tom,<br><br><br> This question puzzles me..<br><br> In an asymmetric system how many keys are required for 10 users to<br>
fully<br>
<br> communicate?<br><br><br> Every user has a one private and a one public key. I can send my same<br><br> public<br><br> key to all others. For 10 people, 20 keys are needed.. I am not sure<br>how<br><br> 110 come from?<br>
<br> Is this a private com session or just a different comm session with<br>each<br><br> pair?<br><br><br> Thanks,<br><br><br> Nimal Gunarathna<br><br><br><br><br> --- On Tue, 1/19/10, <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br>
<br> <<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a>> wrote:<br><br><br> From: <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a> <<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a>><br>
<br> Subject: cisspstudy Digest, Vol 19, Issue 16<br><br> To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> Date: Tuesday, January 19, 2010, 11:00 AM<br><br><br> Send cisspstudy mailing list submissions to<br>
<br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br><br> To subscribe or unsubscribe via the World Wide Web, visit<br><br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br> or, via email, send a message with subject or body 'help' to<br><br> <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br><br><br> You can reach the person managing the list at<br>
<br> <a href="mailto:cisspstudy-owner@cccure.org" target="_blank">cisspstudy-owner@cccure.org</a><br><br><br> When replying, please edit your Subject line so it is more specific<br><br> than "Re: Contents of cisspstudy digest..."<br>
<br><br><br> Today's Topics:<br><br><br> 1. cisspstudy - Cryptography questions (<a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a>)<br><br> 2. Re: New to CISSP Cert (Mark Price)<br>
<br> 3. Re: New to CISSP Cert (jack wang)<br>
<br> 4. Re: New to CISSP Cert (Jeronimo Zucco)<br><br><br><br> ----------------------------------------------------------------------<br><br><br> Message: 1<br><br> Date: Mon, 18 Jan 2010 14:48:26 -0500<br><br> From: <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>
<br> To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> Subject: [Cisspstudy] cisspstudy - Cryptography questions<br><br> Message-ID:<br><br> <<br><br><br><a href="mailto:OF8F407D94.BBDB76DE-ON852576AF.006B4314-852576AF.006CCD97@hannaford.com" target="_blank">OF8F407D94.BBDB76DE-ON852576AF.006B4314-852576AF.006CCD97@hannaford.com</a>><br>
<br><br> Content-Type: text/plain; charset=US-ASCII<br><br><br><br><br> Hello all,<br><br> I'd like your thoughts on these questions from Michael Gregg's<br><br> CISSP<br><br> Practice questions:<br><br><br>
In an asymmetric system how many keys are required for 10 users to<br>fully<br><br> communicate?<br><br><br> A. 10<br><br> B. 20<br><br> C. 45<br><br> D 110<br><br><br> The answer states D. 110 - "Each user would have his private, phus<br>
his<br><br> public key, plus each of the nine other public keys"<br><br> Shouldn't the answer be B. 20 because the public keys is only couned<br><br> once<br><br> for each private/public pair? This also seems consistent with the<br>
<br> formula<br><br> for symmetric keys: N(N-1)/2 where N is the number of users needing to<br><br> communicate. In this case the secret key is only counted once even if<br><br> it's<br><br> shared between users.<br>
<br><br><br> Here's another question that has me puzzled:<br><br><br> Which cryptographic system can be used for integrity, authenticity and<br><br> non-repudiation?<br><br><br> A. Asymmetric encryption<br><br> B. Symmetric encryption<br>
<br> C. Hashing<br><br> D. None of the above<br><br><br> The answers states A. Asymmetric. Shouldn't the answer be D. None of<br>the<br><br> above because Hashing is needed for integrity?<br><br><br> Your thoughts will be much appreciated.<br>
<br><br><br> Tom Witwicki, CIPP<br><br> Director, Information Security<br><br> Hannaford Bros. Co.<br><br> 207-885-2073<br><br><br> Join me on Linkedin!<br><br> <a href="http://www.linkedin.com/in/tomwitwicki" target="_blank">http://www.linkedin.com/in/tomwitwicki</a><br>
<br><br><br><br><br><br><br><br> ------------------------------<br><br><br> Message: 2<br><br> Date: Mon, 18 Jan 2010 21:47:45 +0000<br><br> From: "Mark Price" <<a href="mailto:prinext@gmail.com" target="_blank">prinext@gmail.com</a>><br>
<br> To: "The CISSP Study Mailing list" <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br><br> Subject: Re: [Cisspstudy] New to CISSP Cert<br><br> Message-ID:<br><br> <<br>
<br><br>
1180962559-1263851266-cardhu_decombobulator_blackberry.rim.net-147941822<br>-<br><br> @bda153.bisx.prod.on.blackberry><br><br><br> Content-Type: text/plain<br><br><br> I have heard each edition is an update of the previous plus more of<br>
the<br><br> latest technology and or standards.<br><br> I have the 4th and the DVD set, they plus <a href="http://cccure.org/" target="_blank">cccure.org</a> worked for me.<br><br> V/r,<br><br><br> Mark Price<br><br> PRINEXT<br>
<br> c:240-743-7654<br><br> <a href="mailto:mprice@prinext.com" target="_blank">mprice@prinext.com</a><br><br> <a href="http://www.prinext.com/" target="_blank">www.prinext.com</a><br><br><br> -----Original Message-----<br>
<br> From: Cert Prep <<a href="mailto:bugtraq.mailbox@gmail.com" target="_blank">bugtraq.mailbox@gmail.com</a>><br>
<br> Date: Mon, 18 Jan 2010 13:22:40<br><br> To: The CISSP Study Mailing list<<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br><br> Subject: Re: [Cisspstudy] New to CISSP Cert<br>
<br><br> Thanks Jeronimo. I will listen to it.<br>
<br><br> I have Shon Harris Second Edition which I bought many years back. I<br><br> have heard that 5th edition is about to come. Is it ok to prepare from<br><br> second edition until 5th edition is out? Does anybody know the<br>
<br> differences between 2nd and 4th? I am sure there will be many but are<br><br> those drastic to the extent that I will have to revise the stuff,<br><br> which I have already gone through using second edition, from 5th<br>
<br> edition once it is published?<br><br><br> Any help would be appreciated.<br><br><br> Thanks.<br><br> Adam<br><br><br> On Mon, Jan 18, 2010 at 12:51 PM, Jeronimo Zucco <<a href="mailto:jczucco@gmail.com" target="_blank">jczucco@gmail.com</a>><br>
<br> wrote:<br><br> > 2010/1/18 Cert Prep <<a href="mailto:bugtraq.mailbox@gmail.com" target="_blank">bugtraq.mailbox@gmail.com</a>>:<br><br> >> Hi Folks,<br><br> >><br><br> >> I am planning to prepare for CISSP Cert and would like to know<br>
which<br><br> >> book or material is best for the preparations.<br><br> ><br><br> ><br><br> > <a href="http://www.cccure.org/flash/intro/player.html" target="_blank">http://www.cccure.org/flash/intro/player.html</a><br>
<br> ><br><br> ><br><br> ><br><br> > --<br><br> > Jeronimo Zucco<br><br> > <a href="http://jczucco.blogspot.com/" target="_blank">http://jczucco.blogspot.com</a><br><br> ><br><br> > _______________________________________________<br>
<br> > cisspstudy mailing list<br><br> > <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> > <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br> ><br><br><br> _______________________________________________<br><br> cisspstudy mailing list<br><br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br> ------------------------------<br><br><br> Message: 3<br><br> Date: Tue, 19 Jan 2010 20:05:00 +0800<br><br> From: jack wang <<a href="mailto:windjie@gmail.com" target="_blank">windjie@gmail.com</a>><br><br>
To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
<br> Subject: Re: [Cisspstudy] New to CISSP Cert<br><br> Message-ID:<br><br> <<a href="mailto:3c43566f1001190405t2bfd204as4a953dd160a5b92b@mail.gmail.com" target="_blank">3c43566f1001190405t2bfd204as4a953dd160a5b92b@mail.gmail.com</a>><br>
<br> Content-Type: text/plain; charset="iso-8859-1"<br><br><br> Shon Harris Second Edition,plus <a href="http://www.cccure.org/" target="_blank">www.cccure.org</a>,they are enough<br><br> -------------- next part --------------<br>
<br> An HTML attachment was scrubbed...<br><br> URL: <<br><br><br><a href="http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100119/0" target="_blank">http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100119/0</a><br>
d<br><br> 0b7b8f/attachment-0001.html><br><br><br> ------------------------------<br><br><br> Message: 4<br><br> Date: Tue, 19 Jan 2010 10:34:19 -0200<br><br> From: Jeronimo Zucco <<a href="mailto:jczucco@gmail.com" target="_blank">jczucco@gmail.com</a>><br>
<br> To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br><br> Subject: Re: [Cisspstudy] New to CISSP Cert<br><br> Message-ID:<br><br> <<a href="mailto:2d6b298c1001190434i6f1eb72ct1157b63b80fe9301@mail.gmail.com" target="_blank">2d6b298c1001190434i6f1eb72ct1157b63b80fe9301@mail.gmail.com</a>><br>
<br> Content-Type: text/plain; charset=ISO-8859-1<br><br><br> All-in_one edition 5:<br><br><br><br><a href="http://www.amazon.com/CISSP-All-One-Guide-Fifth/dp/0071602178/ref=sr_1_2" target="_blank">http://www.amazon.com/CISSP-All-One-Guide-Fifth/dp/0071602178/ref=sr_1_2</a><br>
?<br><br> ie=UTF8&s=books&qid=1263898897&sr=8-2<br><br><br> I always recommend the last edition, because of updates and<br><br> corretions. Or you can read all erratas for your edition.<br><br><br> 2010/1/19 jack wang <<a href="mailto:windjie@gmail.com" target="_blank">windjie@gmail.com</a>>:<br>
<br> > ?Shon Harris Second Edition,plus <a href="http://www.cccure.org/" target="_blank">www.cccure.org</a>,they are enough<br><br> ><br><br><br><br> --<br><br> Jeronimo Zucco<br><br> <a href="http://jczucco.blogspot.com/" target="_blank">http://jczucco.blogspot.com</a><br>
<br><br><br><br> ------------------------------<br><br><br> _______________________________________________<br><br> cisspstudy mailing list<br><br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br><br> End of cisspstudy Digest, Vol 19, Issue 16<br><br> ******************************************<br><br><br><br><br><br><br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br><br><br><br><br>------------------------------<br><br>Message: 2<br>Date: Wed, 20 Jan 2010 04:23:33 +0530 (IST)<br>
From: Saurabh Bhargava <<a href="mailto:catchbhargava@yahoo.com" target="_blank">catchbhargava@yahoo.com</a>><br>To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 16<br>
Message-ID: <<a href="mailto:804072.93709.qm@web94803.mail.in2.yahoo.com" target="_blank">804072.93709.qm@web94803.mail.in2.yahoo.com</a>><br>Content-Type: text/plain; charset="utf-8"<br><br>Jonus, here is the catch.<br>
<br>
you say " For each user, there are 10 public keys. 10 users imply 100<br>public keys" - but ALL these public keys are the same for all 10 users,<br>they aren't different so 10 users still will imply 10 Public keys , even<br>
though author says "fully" communicate/Mesh technology.<br><br>Tom, I would select the answers you've chosen for both the questions.<br><br>Cheers, SB<br><br><br><br>________________________________<br>From: gerritsjs <<a href="mailto:gerritsjs@gmail.com" target="_blank">gerritsjs@gmail.com</a>><br>
To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>>; Nimal<br>Gunarathna<br><<a href="mailto:ng949@yahoo.com" target="_blank">ng949@yahoo.com</a>><br>
Sent: Tue, 19 January, 2010 22:02:56<br>
Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 16<br><br>Nimal, Tom;<br><br> The question is "fully" communicated. Within a community of 10 users,<br>each user will have one private key. So we have 10 private keys.<br>
Public<br>keys are as follows:<br> For each user, there are 10 public keys. 10 users imply 100 public<br>keys.<br> This makes a total of 110 keys.<br><br>Think of a Mesh Technology.<br><br>Jonus<br><br>-----Original Message-----<br>
From: <a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a><br>[mailto:<a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a>]<br>On Behalf Of <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>
Sent: Tuesday, January 19, 2010 1:23 PM<br>To: Nimal Gunarathna<br>Cc: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>Subject: Re: [Cisspstudy] cisspstudy Digest, Vol 19, Issue 16<br>
<br><br><br>Hi Nimal,<br>
I followed the same logic as you on this question. In order to<br>get<br>to the 110 answer each public key would have to be counted each time<br>it's<br>used which doesn't make sense. I've come across other examples from<br>
this<br>book that are very questionable, which leads me to believe that the<br>questions and answers have not been thouroughly vetted. Thank you for<br>the<br>reply.<br><br>Tom Witwicki, CIPP<br>Director, Information Security<br>
Hannaford Bros. Co.<br>207-885-2073<br><br>Join me on Linkedin!<br><a href="http://www.linkedin.com/in/tomwitwicki" target="_blank">http://www.linkedin.com/in/tomwitwicki</a><br><br><br><br><br><br><br><br> Nimal Gunarathna<br>
<<a href="mailto:ng949@yahoo.com" target="_blank">ng949@yahoo.com</a>><br><br>To<br> 01/19/2010 04:07 <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
PM<br>cc<br> <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>
<br>Subject<br> Re: cisspstudy Digest, Vol 19,<br> Issue 16<br><br><br><br><br><br><br><br><br><br><br><br>Hi Tom,<br><br>This question puzzles me..<br>
In an asymmetric system how many keys are required for 10 users to fully<br>communicate?<br><br>Every user has a one private and a one public key. I can send my same<br>public<br>key to all others. For 10 people, 20 keys are needed.. I am not sure how<br>
110 come from?<br>Is this a private com session or just a different comm session with each<br>pair?<br><br>Thanks,<br><br>Nimal Gunarathna<br><br><br><br>--- On Tue, 1/19/10, <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br>
<<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a>> wrote:<br><br> From: <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a> <<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a>><br>
Subject: cisspstudy Digest, Vol 19, Issue 16<br><br> To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br> Date: Tuesday, January 19, 2010, 11:00 AM<br><br> Send cisspstudy mailing list submissions to<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><br> To subscribe or unsubscribe via the World Wide Web, visit<br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br> or, via email, send a message with subject or body 'help' to<br><br> <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br><br> You can reach the person managing the list at<br>
<a href="mailto:cisspstudy-owner@cccure.org" target="_blank">cisspstudy-owner@cccure.org</a><br><br> When replying, please edit your Subject line so it is more specific<br> than "Re: Contents of cisspstudy digest..."<br>
<br>
<br> Today's Topics:<br><br> 1. cisspstudy - Cryptography questions (<a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a>)<br><br> 2. Re: New to CISSP Cert (Mark Price)<br><br> 3. Re: New to CISSP Cert (jack wang)<br>
4. Re: New to CISSP Cert (Jeronimo Zucco)<br><br><br><br> ----------------------------------------------------------------------<br><br><br> Message: 1<br><br> Date: Mon, 18 Jan 2010 14:48:26 -0500<br> From: <a href="mailto:twitwicki@hannaford.com" target="_blank">twitwicki@hannaford.com</a><br>
To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br> Subject: [Cisspstudy] cisspstudy - Cryptography questions<br><br> Message-ID:<br> <<br><br><a href="mailto:OF8F407D94.BBDB76DE-ON852576AF.006B4314-852576AF.006CCD97@hannaford.com" target="_blank">OF8F407D94.BBDB76DE-ON852576AF.006B4314-852576AF.006CCD97@hannaford.com</a>><br>
<br><br> Content-Type: text/plain; charset=US-ASCII<br><br><br><br><br> Hello all,<br><br> I'd like your thoughts on these questions from Michael Gregg's<br><br> CISSP<br> Practice questions:<br><br> In an asymmetric system how many keys are required for 10 users to<br>
fully<br><br> communicate?<br><br><br> A. 10<br> B. 20<br> C. 45<br> D 110<br><br> The answer states D. 110 - "Each user would have his private, phus<br>his<br> public key, plus each of the nine other public keys"<br>
<br> Shouldn't the answer be B. 20 because the public keys is only couned<br> once<br><br> for each private/public pair? This also seems consistent with the<br><br> formula<br> for symmetric keys: N(N-1)/2 where N is the number of users needing to<br>
<br> communicate. In this case the secret key is only counted once even if<br><br> it's<br><br> shared between users.<br><br><br> Here's another question that has me puzzled:<br><br><br> Which cryptographic system can be used for integrity, authenticity and<br>
<br> non-repudiation?<br><br><br> A. Asymmetric encryption<br><br> B. Symmetric encryption<br><br> C. Hashing<br><br> D. None of the above<br><br><br> The answers states A. Asymmetric. Shouldn't the answer be D. None of<br>
the<br><br> above because Hashing is needed for integrity?<br><br><br> Your thoughts will be much appreciated.<br><br><br> Tom Witwicki, CIPP<br><br> Director, Information Security<br><br> Hannaford Bros. Co.<br> 207-885-2073<br>
<br><br> Join me on Linkedin!<br><br> <a href="http://www.linkedin.com/in/tomwitwicki" target="_blank">http://www.linkedin.com/in/tomwitwicki</a><br><br><br><br><br><br><br><br><br> ------------------------------<br><br>
<br>
Message: 2<br><br> Date: Mon, 18 Jan 2010 21:47:45 +0000<br> From: "Mark Price" <<a href="mailto:prinext@gmail.com" target="_blank">prinext@gmail.com</a>><br><br> To: "The CISSP Study Mailing list" <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
<br> Subject: Re: [Cisspstudy] New to CISSP Cert<br> Message-ID:<br> <<br><br>1180962559-1263851266-cardhu_decombobulator_blackberry.rim.net-147941822<br>-<br><br> @bda153.bisx.prod.on.blackberry><br><br><br> Content-Type: text/plain<br>
<br><br> I have heard each edition is an update of the previous plus more of<br>the<br> latest technology and or standards.<br> I have the 4th and the DVD set, they plus <a href="http://cccure.org/" target="_blank">cccure.org</a> worked for me.<br>
V/r,<br><br><br> Mark Price<br><br> PRINEXT<br> c:240-743-7654<br><br> <a href="mailto:mprice@prinext.com" target="_blank">mprice@prinext.com</a><br><br> <a href="http://www.prinext.com/" target="_blank">www.prinext.com</a><br>
<br> -----Original Message-----<br>
<br> From: Cert Prep <<a href="mailto:bugtraq.mailbox@gmail.com" target="_blank">bugtraq.mailbox@gmail.com</a>><br> Date: Mon, 18 Jan 2010 13:22:40<br> To: The CISSP Study Mailing list<<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
Subject: Re: [Cisspstudy] New to CISSP Cert<br><br> Thanks Jeronimo. I will listen to it.<br><br> I have Shon Harris Second Edition which I bought many years back. I<br> have heard that 5th edition is about to come. Is it ok to prepare from<br>
<br> second edition until 5th edition is out? Does anybody know the<br><br> differences between 2nd and 4th? I am sure there will be many but are<br> those drastic to the extent that I will have to revise the stuff,<br> which I have already gone through using second edition, from 5th<br>
<br> edition once it is published?<br><br> Any help would be appreciated.<br><br><br> Thanks.<br> Adam<br><br><br> On Mon, Jan 18, 2010 at 12:51 PM, Jeronimo Zucco <<a href="mailto:jczucco@gmail.com" target="_blank">jczucco@gmail.com</a>><br>
<br> wrote:<br><br> > 2010/1/18 Cert Prep <<a href="mailto:bugtraq.mailbox@gmail.com" target="_blank">bugtraq.mailbox@gmail.com</a>>:<br><br> >> Hi Folks,<br><br> >><br><br> >> I am planning to prepare for CISSP Cert and would like to know<br>
which<br> >> book or material is best for the preparations.<br> ><br> ><br> > <a href="http://www.cccure.org/flash/intro/player.html" target="_blank">http://www.cccure.org/flash/intro/player.html</a><br> ><br>
><br> ><br> > --<br><br> > Jeronimo Zucco<br><br> > <a href="http://jczucco.blogspot.com/" target="_blank">http://jczucco.blogspot.com</a><br> ><br> > _______________________________________________<br>
> cisspstudy mailing list<br> > <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br> > <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br> ><br><br> _______________________________________________<br> cisspstudy mailing list<br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br> ------------------------------<br><br><br> Message: 3<br><br> Date: Tue, 19 Jan 2010 20:05:00 +0800<br> From: jack wang <<a href="mailto:windjie@gmail.com" target="_blank">windjie@gmail.com</a>><br> To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
<br> Subject: Re: [Cisspstudy] New to CISSP Cert<br> Message-ID:<br> <<a href="mailto:3c43566f1001190405t2bfd204as4a953dd160a5b92b@mail.gmail.com" target="_blank">3c43566f1001190405t2bfd204as4a953dd160a5b92b@mail.gmail.com</a>><br>
Content-Type: text/plain; charset="iso-8859-1"<br><br><br> Shon Harris Second Edition,plus <a href="http://www.cccure.org/" target="_blank">www.cccure.org</a>,they are enough<br><br> -------------- next part --------------<br>
An HTML attachment was scrubbed...<br><br> URL: <<br><br><br><a href="http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100119/0" target="_blank">http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100119/0</a><br>
d<br><br> 0b7b8f/attachment-0001.html><br><br><br> ------------------------------<br><br><br> Message: 4<br><br> Date: Tue, 19 Jan 2010 10:34:19 -0200<br> From: Jeronimo Zucco <<a href="mailto:jczucco@gmail.com" target="_blank">jczucco@gmail.com</a>><br>
<br> To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br><br> Subject: Re: [Cisspstudy] New to CISSP Cert<br> Message-ID:<br> <<a href="mailto:2d6b298c1001190434i6f1eb72ct1157b63b80fe9301@mail.gmail.com" target="_blank">2d6b298c1001190434i6f1eb72ct1157b63b80fe9301@mail.gmail.com</a>><br>
Content-Type: text/plain; charset=ISO-8859-1<br><br><br> All-in_one edition 5:<br><br><br><a href="http://www.amazon.com/CISSP-All-One-Guide-Fifth/dp/0071602178/ref=sr_1_2" target="_blank">http://www.amazon.com/CISSP-All-One-Guide-Fifth/dp/0071602178/ref=sr_1_2</a><br>
?<br><br> ie=UTF8&s=books&qid=1263898897&sr=8-2<br><br> I always recommend the last edition, because of updates and<br> corretions. Or you can read all erratas for your edition.<br><br> 2010/1/19 jack wang <<a href="mailto:windjie@gmail.com" target="_blank">windjie@gmail.com</a>>:<br>
<br> > ?Shon Harris Second Edition,plus <a href="http://www.cccure.org/" target="_blank">www.cccure.org</a>,they are enough<br> ><br><br><br> --<br><br> Jeronimo Zucco<br><br> <a href="http://jczucco.blogspot.com/" target="_blank">http://jczucco.blogspot.com</a><br>
<br><br><br> ------------------------------<br><br><br> _______________________________________________<br> cisspstudy mailing list<br> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br><br> End of cisspstudy Digest, Vol 19, Issue 16<br><br> ******************************************<br><br><br><br><br><br><br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br><br><br>_______________________________________________<br>cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br>
<br><br>-------------- next part --------------<br>An HTML attachment was scrubbed...<br>URL: <<br><a href="http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100120/6b681" target="_blank">http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20100120/6<br>
b681</a><br>638/attachment.html<br>><br><br>------------------------------<br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br><br><br>End of cisspstudy Digest, Vol 19, Issue 18<br>******************************************<br>
<br><br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br><br>------------------------------<br><br>_______________________________________________<br>cisspstudy mailing list<br><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br><br>End of cisspstudy Digest, Vol 19, Issue 23<br>******************************************<br></blockquote></div><br></div>
<br>_______________________________________________<br>
CISSPstudy mailing list<br>
<a href="mailto:CISSPstudy@cccure.org">CISSPstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br></blockquote></div><br>