Explore BrainMass

Confideniality, Message Integrity and SSL

1. What is the difference between message confidentiality and message integrity? Can you have confidentiality without integrity? Can you have integrity without confidentiality? Please be specific and justify your answer.

2. What is the purpose of the random nonces in the SSL handshake?

3. Why must an application gateway work in conjunction with a router filter to be effective?

Solution Preview

1. Confidentiality of a message is ensured when an attacker cannot determine the original plaintext message after intercepting the ciphertext encrypted message. The confidentiality of a message is achieved if the attacker cannot determine the original message based on the ciphertext. The primary means of achieving the confidentiality of messages is through encryption in which the messages are created in a form that is readable only by the sender and any other individuals who have access to the message (Greenstein & Vasarhelyi, 2002). In encryption, the plaintext message is encrypted into ciphertext. An attacker cannot decrypt the message, even if the attacker obtains it during transmission, without the secret key required to decrypt the message ...

Solution Summary

The solution set includes solutions to three questions. The first question clearly differentiates message confidentiality and integrity. The second solution explains the purpose of random nonces in SSL handshake. The third solution explains why an application gateway must work in conjunction with a router filter to be effective.