Domain 4: Communication and Network Security

Question 1

Communications between computers over networks are made possible by ________

Answer 1

Protocols

Question 2

Protocols

Answer 2

Set of rules and restrictions that define how datat is transmitted iver a network medium

Question 3

OSI Layers

Answer 3

Physical, Data Link, Network, Transport, Session, Presentation, Application

Question 4

Encapsulation

Answer 4

Addition of a header to the data received by each layer from the layer above before it’s handed off the the layer below

Question 5

What does the Physical Layer do?

Answer 5

Accepts frame from Data Link layer and converts into bits for transmission

Question 6

What does the Data Link Layer do?

Answer 6

protocols convert the packet into the proper format for transmission (i.e. Ethernet), adds MAC address

Question 7

ARP and RARP

Answer 7

Address Resolution Protocol and Reverse ARP - resolve IP to MAC addresses and vice versa

Question 8

2 Data Link sublayers

Answer 8

Logical Link Control and MAC

Question 9

What does the Network Layer do?

Answer 9

adds routing and addressing information to the datagram or segment to create a packet (ICMP)

Question 10

What does the Transport Layer do?

Answer 10

managing the integrity of a connection, receives data stream/PDU

Question 11

What does the Session layer do?

Answer 11

establishes, maintains, and terminates communication sessions

Question 12

What does the Presentation layer do?

Answer 12

transforms data received from the Application layer into a format that any OSI model system can understand, interface btwn network and apps (encrypts and compresses)

Question 13

What does the Application layer do?

Answer 13

interfacing user applications with the protocol stack

Question 14

TCP/IP Model to OSI Model

Answer 14

Application, Presentation, Session = Application
Transport = Transport
Network = Internet
Data Link, Physical = Link

Question 15

Difference btwn TCP and UDP

Answer 15

TCP is full duplex connection-oriented, UDP is simplex connectionless

Question 16

Which ports are registered software ports?

Answer 16

1024-49151

Question 17

Which ports are known as random, dynamic, or ephemeral ports?

Answer 17

49152-65535

Question 18

Describe the three-way handshake.

Answer 18

Clients sends SYN, server responds with a SYN/ACK, Client responds with an ACK

Question 19

IGMP is used to support what?

Answer 19

Multicasting

Question 20

IP header protocol field value for ICMP

Answer 20

1 (0x01)

Question 21

ICMP type field values (0, 3, 5, 8, 9, 10, 11)

Answer 21

0- echo reply
3- destination unreachable
5- redirect
8- echo request 
9- router advertisement
10- router solicitation
11- time exceeded

Question 22

Telnet Port

Answer 22

TCP Port 23

Question 23

FTP Port

Answer 23

TCP Ports 20 and 21

Question 24

TFTP Port

Answer 24

UDP Port 69

Question 25

SMTP Port

Answer 25

TCP Port 25

Question 26

HTTP Port

Answer 26

TCP Port 80

Question 27

IMAP Port

Answer 27

TCP Port 143

Question 28

DHCP Port

Answer 28

UDP Ports 67 and 68

Question 29

HTTP Port

Answer 29

TCP Port 80

Question 30

SSL/ HTTPS Port

Answer 30

TCP Port 443

Question 31

LPD Port

Answer 31

TCP Port 515

Question 32

X Window Port

Answer 32

TCP Ports 6000-6063

Question 33

BootP/DHCP Port

Answer 33

UDP Ports 67 and 68

Question 34

NFS Port

Answer 34

TCP Port 2049

Question 35

SNMP Port

Answer 35

UDP Port 161 and 162

Question 36

Data Emanation

Answer 36

transmission of data across electromagnetic signals

Question 37

802.11 Wireless Network Amendments, Speed and Frequency

Answer 37

802. 11 - 2 Mbps, 1.4 GHz 802. 11a -54 Mbps, 5 GHz 802. 11b - 11 Mbps, 2.4 GHz 802. 11g - 54 Mbps, 2.4 GHz 802. 11n - 200 Mbps, 2.4 or 5 GHz 802. 11ac - 1 Gbps, 5 GHz

Question 38

Infrastructure Mode

Answer 38

wireless access point is required

Question 39

Ad Hoc Mode

Answer 39

no centralized control authority

Question 40

Stand Alone Mode

Answer 40

wireless access point connects wireless clients but no wired resources

Question 41

Wired Extension Mode

Answer 41

wireless access point acts as a connection point to link wireless to wired

Question 42

Enterprise Extended Mode

Answer 42

multiple wireless access points are used to connect a large physical area

Question 43

Two Weaknesses of WEP

Answer 43

Static Common Key and Poor implementation of IV

Question 44

WPA Weakness

Answer 44

single static passphrase

Question 45

PEAP

Answer 45

Provides encryption for EAP

Question 46

Captive Portal

Answer 46

Log in at hotel, cafe, etc.

Question 47

Static Packet Filtering Firewalls

Answer 47

examines data from message header

Question 48

Application Level Gateway Firewalls

Answer 48

filters based on the internet service used

Question 49

Stateful Inspection Firewalls

Answer 49

evaluate the context of the network traffic

Question 50

SKIP

Answer 50

Simple Key Management for Internet Protocol, protects session less datagram protocols

Question 51

Software IP Encryption

Answer 51

Security protocol that provides authentication, integrity, and confidentiality using an encapsulation protocol

Question 52

Secure Remote Procedure Call

Answer 52

Authentication service to prevent unauthorized execution of code on remote systems

Question 53

Secure Sockets Layer and TLS

Answer 53

Protect comms between a web server and a web browser

Question 54

Secure Electronics Transaction

Answer 54

Security protocol for transactions over the internet

Question 55

CHAP

Answer 55

Challenge Handshake Authentication Protocol - encrypts credentials

Question 56

Password Authentication Protocol

Answer 56

Transmits credentials in the clear

Question 57

Extensible Authentication Protocol

Answer 57

Framework, not protocol, PEAP encapsulates EAP in a TLS tunnel

Question 58

Phreaker

Answer 58

Malicious attackers who abuse phone systems

Question 59

Black, Red, Blue and White Boxes (in terms of secure voice comms)

Answer 59

Trick phones. Black manipulates line voltage, Red mimics the sound of coins, Blue simulates tones to connect with trunk, and White controls the phone system

Question 60

S/MIME

Answer 60

Secure Multipurpose Internet Mail Extensions - email security standard that offers authentication and confidentiality

Question 61

MIME Object Security Services

Answer 61

Authentication, confidentiality, integrity, and nonrepudiation

Question 62

Privacy Enhanced Mail

Answer 62

Email encryption, C, I, Authentication and Nonrepudiation

Question 63

Pretty Good Privacy

Answer 63

Public-Private key system that encrypts files and email messages

Question 64

RADIUS

Answer 64

Centralized remote auth service for dial up connections, server sends logon creds to RADIUS server for authentication

Question 65

TACACS+

Answer 65

Centralized remote auth service, two factor authentication

Question 66

VPN

Answer 66

comms tunnel that provides point to point transmission of authentication and data traffic

Question 67

Tunneling

Answer 67

network communication process that protects the contents of protocol packets by encapsulating them in packets of another protocol

Question 68

4 Common VPN Protocols

Answer 68

PPTP, L2F, L2TP, and IPSec

Question 69

RADIUS and TACACS

Answer 69

Remote Auth Services

Question 70

S/MIME, MOSS, PEM, PGP

Answer 70

Email Security Solutions

Question 71

CHAP, PAP, EAP

Answer 71

Authentication Protocols

Question 72

SKIP, swIPe, S-RPC, SSL, TLS, SET

Answer 72

Secure Communication Protocols

Question 73

PPTP

Answer 73

Point to Point Tunneling Protocol- encapsulation protocol operating at Layer 2 for use on IP networks

Question 74

Most commonly used VPN Protocol

Answer 74

IPSec

Question 75

Two Primary Components of IPsec

Answer 75

AH and ESP

Question 76

VLAN

Answer 76

logically segment a network without altering its physical topology

Question 77

NAT

Answer 77

Network Address Translation - convert the internal IP addresses found in packet headers into public IP addresses for transmission over the Internet

Question 78

Class A IP Addresses

Answer 78

10.0.0.0-10.255.255.255

Question 79

Class B Ranges IP Addresses

Answer 79

172.16.0.0-172.31.255.255

Question 80

Class C Ranges IP Addresses

Answer 80

192.168.0.0-192.168.255.255

Question 81

Committed Information Rate

Answer 81

guaranteed minimum bandwidth a service provider grants to its customers

Question 82

Security Boundary

Answer 82

line of intersection between any two ares, subnets, or environment that have different security requirements or needs

Question 83

DNS Poisoning

Answer 83

attackers alters the domain-name to IP address mappings in a DNS system to direct traffic to a rogue system

Question 84

DNS Spoofing

Answer 84

attackers sends false replies to a requesting system

Question 85

Vernam Chiper

Answer 85

One time pad, only mathematically unbreakable form of cryptography