Domain 3 of 8 · Chapter 7 of 10

Cryptanalytic Attacks

Unlock the complete study guide + 1,040 practice questions across 16 full exams.

Bundled into the existing Certified Information Systems Security Professional premium course — no separate purchase.

Included in this chapter:

  • How cryptanalytic attacks are classified
  • Analytic attacks: brute force, frequency, birthday, meet-in-the-middle
  • Implementation attacks: side-channel and fault injection
  • Protocol, credential, and ransomware attacks
  • Exam-pattern recognition

Cryptanalytic attack families and their defense

AttackWhat the attacker has / doesWhat it targetsPrimary defense
Brute forceTries every keyKey spaceAdequate key length; rate limiting
Ciphertext-onlyOnly encrypted outputCipher weaknessStrong standardized cipher
Known-plaintextSome plaintext-ciphertext pairsCipher weaknessCipher resistant to known plaintext
Chosen-plaintext / chosen-ciphertextEncrypts or decrypts chosen inputsCipher / oracleCCA-secure scheme; authenticated encryption
Frequency analysisLetter/pattern statisticsSubstitution ciphersModern block/stream ciphers
Birthday / collisionFinds two inputs with same hashHash output lengthLong-output collision-resistant hash
Side-channel (timing/power/EM/cache)Measures physical leakageImplementationConstant-time code; masking/blinding
Fault injectionInduces computation errorsImplementationError detection; tamper response
MITMRelays and alters trafficKey exchange / channelMutual auth; certificate validation
Pass-the-hash / Kerberos exploitationReuses captured hash or ticketCredential reuseCredential hygiene; ticket protection; monitoring
ReplayResends captured messagesProtocol freshnessNonces, timestamps, sequence numbers
RansomwareEncrypts victim data, demands ransomAvailabilityTested offline/immutable backups; segmentation

Cheat sheet

  • Classify a cryptanalytic attack by attacker access, not by the algorithm
  • The analytic attacks form a ladder of increasing attacker access
  • Known-plaintext means captured pairs; chosen-plaintext means the attacker controls the input
  • Brute force sets the floor, defeated by adequate key length
  • Frequency analysis breaks classical substitution ciphers
  • A birthday attack finds a hash collision in about 2^(n/2) work
  • Meet-in-the-middle is why double encryption barely helps
  • Side-channel attacks read physical leakage, not the ciphertext
  • Fault-injection attacks force errors so the faulty output reveals the key
  • Put keys an attacker can physically reach in a FIPS 140-validated module
  • A man-in-the-middle attacker relays and alters traffic between two parties
  • Replay attacks resend captured messages; freshness defeats them
  • Pass-the-hash authenticates with a stolen hash, never cracking the password
  • A golden ticket forges TGTs from the KRBTGT secret
  • Kerberoasting cracks service-account passwords offline from service tickets
  • Ransomware uses strong cryptography against you, so recoverability is the defense
  • A system's strength is the cheapest known attack, not its key length
  • SPA reads one trace by eye; DPA correlates many traces statistically

Unlock with Premium — includes all practice exams and the complete study guide.

References

  1. NIST SP 800-107 Rev. 1: Recommendation for Applications Using Approved Hash Algorithms Whitepaper
  2. NIST Glossary: Collision Resistance
  3. NIST Glossary: Side-Channel Attack
  4. NIST Cryptographic Module Validation Program (CMVP / FIPS 140)
  5. NIST Glossary: Man-in-the-Middle Attack
  6. NIST Glossary: Replay Attack
  7. Microsoft: Implementing Least-Privilege Administrative Models (pass-the-hash)
  8. Microsoft Defender for Identity: Security Alerts (Kerberos golden ticket, Kerberoasting)