Domain 4 - Communication and Network Security

Question 1

Defense in depth

Answer 1

Have defenses throughout the network. Not just in perimeter.

Question 2

Simplex

Answer 2

one way (radio, broadcast tv).

Way to define network comms like full/half duplex.

Question 3

Baseband

Answer 3

Network has one channel and can only send one signal at a time.

ethernet is baseband

Question 4

Broadband

Answer 4

Networks have multiple channels and can send multiple signals at a time, like cable TV

Question 5

Analog comms

Answer 5

comms are a continuous wave of information.

Question 6

Digital comms

Answer 6

Transfer data in bits, ones and zeros.

Question 7

PAN

Answer 7

Personal Area Network (bluetooth is best example)

Question 8

LAN

Answer 8

Local Area network

Question 9

MAN

Answer 9

Metropolitan area network. Confined to a Zip code or city usually

Question 10

WAN

Answer 10

Wide Area Network

Question 11

GAN

Answer 11

Global Area network

Question 12

Circuit-switched networks

Answer 12

Dedicated circuit or channel is dedicated between two nodes. Circuit is dedicated to data flow.

Not resilient

Question 13

Packet-switched network

Answer 13

Data is broken up and sent individually. Unused bandwidth is available for other stuff.

Question 14

Layered Design

Answer 14

OSI, TCP/IP models are an example. Functions in one layer do not directly affect another.

Question 15

Network Model

Answer 15

description of how a network protocol suite works/operates

Question 16

Network Stack

Answer 16

Suite of protocols programmed in software or hardware

Question 17

Protocol

Answer 17

set of rules that end points in telecommunications use dto communicate.

Question 18

OSI Model

Answer 18

Open System Interconnetion

Question 19

OSI origin org

Answer 19

ISO

Question 20

OSI LAyers

Answer 20

Physical - Bits
Data Link
Network
Transport
Session
Presentation
Application

Question 21

Physical Data unit

Answer 21

bits

Question 22

Data Link data unit

Answer 22

frames

Question 23

Network data unit

Answer 23

packet

Question 24

Transport data unit

Answer 24

segment

Question 25

Session, presentation, and application data unit

Answer 25

data

Question 26

Physical layer

Answer 26

Dumb. Encapsulates cable standards, repeaters, electrical signals.

Question 27

Data Link

Answer 27

Switch, or bridge. ethernet card and MAC address.

Question 28

Data Linc sub layer 1

Answer 28

MAC Media Access Control, interface.

Question 29

Data Link sub layer 2

Answer 29

LLC Logical Link Control. Handles LAN comms, touches layer 3.

Question 30

Network layer

Answer 30

IP addresses and layers. IPV4, IPV6, others. Routers.

Question 31

Transport Layer

Answer 31

TCP, UDP, GRE. handles packet sequencing, flow control, error detection.

Question 32

Session

Answer 32

Duplexes live here. Manages sessions, provides maintenance to connections.

Question 33

Presentation

Answer 33

Presents data to apps and user in comprehensible ways

Question 34

Application

Answer 34

What user interfaces with. apps live here. Complex protocols live here.

Question 35

Please Do not Tell Sales People Anything

Answer 35

Physical, Data Link, Network, Transport, Session, presentation, Application

Question 36

TCP/IP Model creator

Answer 36

Created by DARPA

Question 37

TCP/IP model

Answer 37

suite of protocls using UDP, icmp, among others.

Question 38

TCP/IP Layers

Answer 38

``` Network Access layer (OSI physical and data link) Internet Layer(osi network) Transport Layer (osi transport) Application layer (OSI session, presentation, app) ```

Question 39

Encapsulation

Answer 39

takes info from a higher leayer and adds a header to it. One layer's header is a lower layers' data.

Question 40

EUI-64 MAC Addresses

Answer 40

Extends serial portion of MAC from 24 to 40 bits.

Question 41

IP Header length

Answer 41

20 bytes

Question 42

Key IP HEader fields

Answer 42

``` IP Version Type of service time to live protocol tcp/udp, etc source and dest ips ```

Question 43

IPV6 routing

Answer 43

Simpler routing

Question 44

IPV6 header size

Answer 44

40 bytes

Question 45

IPV6 header contents

Answer 45

``` IP Version source/dest address traffic class flow label payload length ```

Question 46

Stateless Autoconfig ipv6

Answer 46

takes host MAC Address and uses it to config IPV6

Question 47

Statefull autoconfig ipv6

Answer 47

uses DHCP

Question 48

IPV6 sec challenges

Answer 48

Deveices can give themselves IP addresses Many network pros have limited experience.

Question 49

RFC 1918

Answer 49

defines private addresses and NAT

Question 50

Static NAT

Answer 50

one to one

Question 51

Pool Nate (AKA Dynamic NAT)

Answer 51

reserves a number of public IPs in a pool. Addresses can be assigned from pool then returned.

Question 52

PAT

Answer 52

port address translation, NAT overloading. Many to one translation.

Question 53

TCP header fields

Answer 53

``` 20 bytes minimum source/dest port sequence and ack numbers. TCP flags window size ```

Question 54

DNSSEC

Answer 54

Provides security extensions to DNS to authenticate DNS servers.

Question 55

PVC

Answer 55

Permanent virutal circuit | dedicated bandwidth

Question 56

SVC

Answer 56

switched virtual circuit - on demand

Question 57

DLCI

Answer 57

data link connection identifier

Question 58

x.25

Answer 58

strong error connection. packet switched WAN protocol

Question 59

SDLC

Answer 59

layer 2 wan | uses polling to transmit data

Question 60

HDLC

Answer 60

High-level data link control | 3 modes of operation

Question 61

Converged protocol

Answer 61

multilayer protocol | DNP3 distributed netwrk protocol is most used

Question 62

Converged protocol

Answer 62

multilayer protocol | DNP3 distributed netwrk protocol is most used

Question 63

FHSS

Answer 63

Frequency Hopping Spread spectrum method of sending traffic on radio band -designed to maximize throughput while minimizing effects of interference - Hops through frequency channels in random order.

Question 64

DSSS

Answer 64

Direct Sequence Spread Spectrum. Uses entire breatdh of radio spectrum available.

Question 65

OFDM

Answer 65

orthogonal frequency division multiplexing. Newer multiplexing method. Allows concurrent transmissions on multiple independent wireless frequencies.

Question 66

Managed Mode wireless network

Answer 66

clients cannot connect to anyone other than the access point

Question 67

Master Mode wireless network

Answer 67

can only conect with clients who are in managed mode.

Question 68

Ad-hoc mode wireless network

Answer 68

peer to peer comms without central access point

Question 69

monitor mode

Answer 69

read-only for sniffing WLAN traffic.

Question 70

WEP

Answer 70

wired equivalent privacy protocol. WEAK.

Question 71

WEP key lengths

Answer 71

40 and 104

Question 72

802.11i - AKA WPA2

Answer 72

first wireless security standard | provides reasonable security.

Question 73

Bluetooth speeds

Answer 73

3 Mbps. Version 3 is faster

Question 74

bluetooth classes

Answer 74

Class 3- under 10 meters Class 2- 10 meters Class 1- 100 meters

Question 75

bluetooth encryption

Answer 75

weak. real world equivalent of about 38 bit skey length.

Question 76

RFID

Answer 76

radio frequency identification | tech used to create wirelessly readable tags for animals or objects

Question 77

RFID

Answer 77

radio frequency identification | tech used to create wirelessly readable tags for animals or objects

Question 78

RFID type Active

Answer 78

has a battery active tag broadcasts can operate over larger distances toll transponders

Question 79

RFID - type Semi passive

Answer 79

has a batttery | have to get close to reader, relies on readers' power

Question 80

RFID - passive type

Answer 80

no battery | relies on RFID reader's power

Question 81

Routing, Split Horizon

Answer 81

Avoids routing loops. Means a router won't send traffic back out a link it initially arrived on.

Question 82

Hold down timer

Answer 82

avoids flapping

Question 83

BGP RFC#

Answer 83

RFC4271

Question 84

Packet filter firewall

Answer 84

simple and fast. Each filtering decision made on a per packet basis. No way to refer to past packets to make current decision. stateless

Question 85

Statefull firewall

Answer 85

keeps a state table of connections to better analyze traffic. Slower than packet filter

Question 86

Proxy firewall

Answer 86

firewalls that act as intermediary servers.

Question 87

DTE/DCE

Answer 87

Data terminal equipment. Data circuit-terminating equipment Syncronous, DCE provides clock signal

Question 88

PAP

Answer 88

clear text auth protocol

Question 89

CHAP

Answer 89

More secure than PAP. Password is securely created. Server stores plaintext passwords.

Question 90

802.1x

Answer 90

Port based network access control. Includes EAP - extensible auth protocol.

Question 91

LEAP

Answer 91

type of EAP - cisco proprietary. Should not be used

Question 92

EAP TLS

Answer 92

Uses PKI. Dual side authentication. Encrypted

Question 93

EAP- TTLS

Answer 93

tunneled transport security layer. | Drops client side certificate

Question 94

PEAP

Answer 94

Protected EAP

Question 95

SLIP

Answer 95

Serial line internet protocol. layer 2

Question 96

PPP

Answer 96

replaced SLIP

Question 97

PPTP

Answer 97

point to point tunneling protocol. tunnels PPP via IP

Question 98

L2TP

Answer 98

layer 2 tunneling protocol. Combines PPTP and L2F (layer 2 forwarding) No confidentiality

Question 99

VPN

Answer 99

Necessary because IPV4 isn't encrypted by default.

Question 100

ESP

Answer 100

Encapsulating security payload IP Protocol 50

Question 101

AH

Answer 101

Auth Header IP Protocol 51

Question 102

Extranet

Answer 102

Connection between private intranets, such as between business partner intranets.

Question 103

BOOTP

Answer 103

bootstrap protocol.

Question 104

UTP

Answer 104

Unshielded twisted pair

Question 105

STP

Answer 105

shielded twisted pair

Question 106

Cat 1

Answer 106

analog voice

Question 107

Cat 2

Answer 107

ARCNET, up to 4 Mbps

Question 108

Cat 3

Answer 108

10baseT

Question 109

Cat 4

Answer 109

Token Ring - 16 Mbps

Question 110

Cat 5

Answer 110

100 Mbps

Question 111

Cat 5e

Answer 111

1000 Mbps

Question 112

Cat 6

Answer 112

1000 Mbps

Question 113

multimode fiber

Answer 113

uses multiple paths, used for shorter distances

Question 114

singlemode fiber

Answer 114

uses one path, used for long haul high speed network.

Question 115

CSMA

Answer 115

Carrier sense multi access. Addresses collisions in ethernet network. CSMA/CA - collision avoidance CSMA/CD - Collision detection

Question 116

ARCNET

Answer 116

Attached resource computer network

Question 117

ARCNET topology and speed

Answer 117

star. 2.5 Mbps.

Question 118

Token Ring topo and speed

Answer 118

physical star, 16 mbps, Physical star - but stations pass the token in a logical ring.

Question 119

FDDI

Answer 119

Fiber distributed data interface. another ring technology. Up to 100 Mbps in speed. Uses a backup ring.

Question 120

ATM

Answer 120

Asyncronous Transfer Mode WAN tech that uses fixed length cells. Cells are 53 bytes

Question 121

MPLS

Answer 121

Multiprotocol label switching. Forwards WAN traffic via labels

Question 122

Converged protocol

Answer 122

provide services over Ethernet /TCP IP that normally wouldn't use that.

Question 123

DNP3

Answer 123

Distributed network protocol Open standard used primarily in the energy sector for interoperability between various SCADA devices.

Question 124

FCoE

Answer 124

Fiber channel (over ethernet) - means you can use Ethernet switches instead of requiring fiber channel switches.

Question 125

WLAN DoS and Availability

Answer 125

WLANs are susceptible to DOS attacks.

Question 126

Bastion Host

Answer 126

Hardened device, sits directly on internet. Usually provides a single service and has everything else turned off.

Question 127

Dual-homed host

Answer 127

Two network interfaces. One connectes to a trusted network, another to an untrusted network.

Question 128

EAP Acronym

Answer 128

Extensible authentication protocol

Question 129

Wireless Application Protocol (WAP)

Answer 129

provides secure web services to handheld wireless devices. Uses HDML - Handheld Device Markup Language.

Question 130

Content distribution Network

Answer 130

CDN. Geographically diverse caching servers to improve performance for all users. I.e. netflix, amazon, cloudflare, etc.

Question 131

TCP port range

Answer 131

0-65,535

Question 132

TCP Reserved ports

Answer 132

1023 or lower`

Question 133

ephemeral ports TCP

Answer 133

1024 tp 65,535

Question 134

ICMP

Answer 134

Layer 3 protocol. Uses types and codes instead of port numbers.

Question 135

FTP Ports (Control and Data)

Answer 135

Active: Control = client port 1025 to server 21 Data flow = Server 20 to 1026 Passive: Control = client port 1025 to server 21 Data flow = Server 1026 to 1025

Question 136

Frame Relay

Answer 136

packet-switched, layer 2 WAN tech. No error correction

Question 137

DNP3

Answer 137

Distributed Network Protocol. Primarily used in energy sector for SCADA Smart grid applications.

Question 138

802.11 a

Answer 138

First, 2 Mb/s

Question 139

802.11 b

Answer 139

Second, 11 Mb/s

Question 140

802.11 g

Answer 140

Third, backwards compatible with 802.11b. 54 Mb/s

Question 141

802.11 n

Answer 141

First to use both 2.4 and 5 Ghz frequencies. Uses MIMO (multiple input, multiple output) to use more than one antenna.

Question 142

802.11ac

Answer 142

5Ghz only. Speeds up to 1.3 Ghz