Ch.15

Question 1

Security violation categories (5):

Answer 1

Breach of confidentiality

Breach of integrity

Theft of service

Denial of service

Question 2

Security violation methods(4):

Answer 2

Masquerading

Replay attack

Man in the middle.

Session hijacking

Question 3

Security must be enforced at four levels:

Answer 3

Physical

Human

Operating system

Network

Question 4

Program threats(6):

Answer 4

Trojan horse

Trap door

Logic bomb

Stack and buffer overflow

Viruses

Virus dropper

Question 5

Virus categories

Answer 5

File/ parasitic

Boot/memory

Macro

Source code

Polymorphic( to avoid having a virus signature)

Encrypted

Stealth
Tunneling

Multipartite

Armored

Question 6

Network threats are harder to detect because:

Answer 6

• weaker protection systems
• no shared secret
• no physical limits
• can’t determine the location of connecting system

Question 7

Worms attack strategy:

Answer 7

• exploited UNIX networking features
• exploited trust relationships
• used a grappling hook program

Question 8

What does cryptography enable

Answer 8

Confirmation of source

Receipts only by certain destination

Trust relationships between sender and receiver

Question 9

Cryptography can be done ate various layers of ISO reference model. What are those layers:

Answer 9

Transport layer: SSL
Network layer: IPSec, IKE protocol, basis of VPNS