InterviewStack.io LogoInterviewStack.io

Asymmetric Encryption and Key Exchange Questions

Public key cryptography fundamentals, including how public key systems differ from symmetric key systems and when to use each. Core algorithms and primitives such as Rivest Shamir Adleman and elliptic curve cryptography, and the mathematical hardness assumptions that underpin them including integer factorization and the discrete logarithm problem. Key exchange protocols and constructions such as Diffie Hellman and elliptic curve Diffie Hellman, and how they establish shared secrets for subsequent symmetric encryption. Practical considerations including key generation and secure random number generation, key sizes and security levels, padding and message encoding schemes, certificate and public key infrastructure fundamentals, parameter validation, secure key storage and rotation, common implementation pitfalls, and side channel and implementation attacks. Performance and deployment trade offs, and why modern systems often use hybrid approaches combining asymmetric key exchange with symmetric data encryption.

HardTechnical
81 practiced
Given a hardware module performing ECC scalar multiplication, analyze practical SPA and DPA attack vectors on scalar multiplication. Propose a set of hardware and software defenses including scalar blinding, randomized projective coordinates, window blinding, and threshold implementations, and discuss performance/security trade-offs.
MediumTechnical
71 practiced
Explain the concept of a Key Encapsulation Mechanism (KEM) and how it differs from classic Diffie-Hellman key exchange. Provide examples of where KEMs are used in modern protocols, and discuss benefits such as simplified APIs and easier integration with hybrid encryption patterns.
HardTechnical
69 practiced
A deployed server uses RSA-CRT for signing and an attacker demonstrates a timing-based information leak. Explain how CRT optimization can create timing/fault-based leakage that reveals p or q, and propose practical mitigations such as RSA blinding, constant-time modular exponentiation, and CRT recombination checks. Provide pseudocode-level changes you would apply.
MediumTechnical
89 practiced
List and explain major side-channel countermeasures for asymmetric cryptography: constant-time algorithms, exponent/blinding, scalar blinding, masking, randomized projective coordinates, and hardware protections. For each mitigation describe the attack types it defends against and the main performance or complexity trade-offs.
MediumTechnical
90 practiced
You observe multiple ECDSA signatures produced by a device and find that two signatures reuse the same nonce 'k'. Explain algebraically how nonce reuse leads to private-key recovery in ECDSA. Provide the formulas showing recovery and recommend immediate mitigation strategies for signing implementations.

Unlock Full Question Bank

Get access to hundreds of Asymmetric Encryption and Key Exchange interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.