13

Question 1

The lack of entropy in the process of generating cryptographic keys improves the security of cryptographic algorithms.

Answer 1

False

Question 2

A suite of security extensions for an Internet service that translates domain names into IP addresses is known as:

Answer 2

** DNSSec **

DNSSEC is a suite of extensions that improve Domain Name System (DNS) security by verifying that DNS results have not been tampered with

Question 3

Which of the following answers refers to a non-proprietary cryptographic network protocol for secure data communication, remote command-line login, remote command execution, and other secure network services?

Answer 3

SSH

Question 4

Multipurpose Internet Mail Extensions (MIME) specification extends the email message format beyond simple text, enabling the transfer of graphics, audio, and video files over the Internet mail system. Secure MIME (S/MIME) is an enhanced version of the MIME protocol that enables email security features by providing encryption, authentication, message integrity, and other related services.

Answer 4

True

Question 5

Which protocol enables secure, real-time delivery of audio and video over an IP network?

Answer 5

** SRTP **

SRTP (Secure Real-time Transport Protocol). SRTP is an extension of the Real-time Transport Protocol (RTP) that adds security features for real-time communication, including encryption and authentication, to protect the confidentiality and integrity of audio and video streams.

Question 6

LDAPS is an example of:

Answer 6

Secure directory access protocol

Question 7

Which of the following protocols allow(s) for secure file transfer? (Select all that apply)

Answer 7

• FTPS
  -> FTPS (File Transfer Protocol Secure) is an extension of the popular File Transfer Protocol that supports Transport Layer Security (TLS) and the new defunct Secure Sockets Layer (SSL).
• SFTP
  -> SFTP stands for SSH File Transfer Protocol or Secure File Transfer Protocol.

Question 8

Secure File Transfer Protocol (SFTP) is an extension to the FTP protocol that adds support for the Transport Layer Security (TLS) and the Secure Sockets Layer (SSL) cryptographic protocols

Answer 8

False

Question 9

A network protocol for secure file transfer over Secure Shell (SSH) is called:

Answer 9

• SFTP
  -> SFTP stands for SSH File Transfer Protocol or Secure File Transfer Protocol.

Question 10

FTPS is an extension to the Secure Shell (SSH) protocol and runs by default on port number 22

Answer 10

False

-> FTPS (File Transfer Protocol Secure) is an extension of the popular File Transfer Protocol that supports Transport Layer Security (TLS) and the new defunct Secure Sockets Layer (SSL).

Question 11

Which version(s) of the SNMP protocol offer(s) authentication based on community strings sent in an unencrypted form?

Answer 11

• SNMPv1
• SNMPv2

Question 12

Of the three existing versions of the Simple Network Management Protocol (SNMP), versions 1 and 2 (SNMPv1 and SNMPv2) offer authentication based on community strings sent in an unencrypted form (in cleartext). SNMPv3 provides packet encryption, authentication, and hashing mechanisms that allow for checking whether data has changed in transit (i.e. validation of data integrity).

Answer 12

True

Question 13

What is the name of a network protocol that secures web traffic via SSL/TLS encryption?

Answer 13

** HTTPS **

HTTPS uses an encryption protocol to encrypt communications. The protocol is called Transport Layer Security (TLS), although formerly it was known as Secure Sockets Layer (SSL).

Question 14

Which of the protocols listed below enables remote access to another computer on the network via web browser?

Answer 14

** HTTPS **

HTTPS uses an encryption protocol to encrypt communications. The protocol is called Transport Layer Security (TLS), although formerly it was known as Secure Sockets Layer (SSL).

Question 15

Which part of the IPsec protocol suite provides authentication and integrity?

Answer 15

** AH **

The Authentication Header (AH) protocol provides data origin authentication, data integrity, and replay protection. However, AH does not provide data confidentiality, which means that all of your data is sent in the clear.

Question 16

Which part of IPsec provides authentication, integrity, and confidentiality?

Answer 16

** ESP **

Encapsulating Security Payload (ESP) is a member of the Internet Protocol Security (IPsec) set of protocols that encrypt and authenticate the packets of data between computers using a Virtual Private Network (VPN)

Question 17

Which of the IPsec modes provides entire packet encryption?

Answer 17

Tunnel

Question 18

An IPsec mode providing encryption only for the payload (the data part of the packet) is known as:

Answer 18

Transport mode

Question 19

POP3 is used for:

Answer 19

Email retrieval

Question 20

Which of the following answers refer to IMAP? (Select 2 answers)

Answer 20

• Offers improved functionality in comparison to POP3
• Serves the same function as POP3

Question 21

Which of the answers listed below refers to a deprecated TLS-based method for securing SMTP?

Answer 21

** SMTPS **

Question 22

Which of the following answers refer(s) to POP3S encrypted communication? (Select all that apply)

Answer 22

• Secure Sockets Layer (SSL)
• TCP port 995 ( Missed)
• Transport Layer Security (TLS)

Question 23

What are the characteristic features of the secure version of IMAP? (Select all that apply)

Answer 23

• Secure Sockets Layer (SSL)
• TCP port 993
• Transport Layer Security (TLS)

Question 24

Which of the following is a secure implementation of a protocol used for synchronizing clocks over a computer network?

Answer 24

NTPsec

Question 25

A network protocol providing an alternative solution to the manual allocation of IP addresses is called:

Answer 25

DHCP