InterviewStack.io LogoInterviewStack.io

Cryptography and Encryption Fundamentals Questions

Comprehensive understanding of modern cryptography and encryption principles used to build secure systems. Candidates should be able to explain the differences between symmetric and asymmetric encryption, appropriate use cases for each, and common algorithms by full name such as Advanced Encryption Standard and Data Encryption Standard for symmetric ciphers and Rivest Shamir Adleman and elliptic curve based algorithms such as Elliptic Curve Digital Signature Algorithm and Elliptic Curve Diffie Hellman for public key operations. Describe hybrid encryption patterns in which asymmetric cryptography is used to protect a symmetric session key, and discuss block cipher modes of operation including cipher block chaining and authenticated encryption modes such as Galois Counter Mode, as well as the role of initialization vectors and nonces. Cover hash functions and integrity checks with properties such as collision resistance and preimage resistance, message authentication codes, authenticated encryption, and digital signatures for authentication and nonrepudiation. Include high level Public Key Infrastructure concepts including certificates and certificate authorities and how certificates are used to establish trust, together with foundational Transport Layer Security and Secure Sockets Layer principles without requiring deep certificate lifecycle management knowledge. Emphasize key management and operational concerns including secure key generation, secure storage, rotation and compromise handling, randomness and entropy sources, recommended key lengths and algorithm lifecycle considerations, and performance and scalability trade offs. Be prepared to discuss common implementation pitfalls and failures such as weak key sizes, poor random number generation, improper key reuse, and lack of authenticated encryption, plus threat models and practical applications including encrypting data at rest and in transit, secure channels, and signing and verification. Avoid deep mathematical proofs unless specifically requested, but be ready to reason about practical trade offs, algorithm selection, and secure implementation patterns.

HardTechnical
52 practiced
Provide a detailed analysis comparing RSA and elliptic curve cryptography (ECC) for large-scale TLS termination where millions of handshakes occur daily. Address CPU and memory cost per handshake, signature verification versus generation costs, key and certificate sizes, hardware acceleration impact, caching strategies, and long-term maintainability.
EasyTechnical
72 practiced
Explain key derivation functions (KDFs) such as PBKDF2 and HKDF. Describe appropriate use cases for each (password stretching vs deriving multiple keys), the roles of salt and iteration/memory cost, and how to safely derive multiple cryptographic keys from a single secret.
HardTechnical
58 practiced
Describe timing and other side-channel attacks relevant to cryptographic operations (for example on HMAC verification or ECDSA signing). Outline a layered mitigation strategy including constant-time implementations, blinding techniques, hardware mitigations, compiler/runtime considerations, and testing approaches to reduce leakage.
EasyTechnical
109 practiced
Describe the core properties of cryptographic hash functions: preimage resistance, second-preimage resistance, and collision resistance. Give brief examples of why each property matters in systems such as password storage, digital signatures, and content-addressing.
HardTechnical
71 practiced
Your organization still relies on SHA-1 in legacy components including certificate signatures and internal git repositories. Create a phased migration plan to stronger hashes (SHA-256 or better) that minimizes downtime, covers certificate replacement and repository migration, addresses interoperability with older clients, and verifies successful migration.

Unlock Full Question Bank

Get access to hundreds of Cryptography and Encryption Fundamentals interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.