HTTPS / Standards / Cron

Question 1

What can “The man in the middle” (MITM) do?

Answer 1

• Read the request
• Read the response
• Modify the response

Question 2

What can you do /add to a packet to hinder MITM to read and modify your packets?

Answer 2

Add an TLS (Transport Layer Security).

Question 3

What are TLS?

Answer 3

Transport Layer Security.

Can encapsulate alle protocols over TCP (transmission control protocol).

Question 4

What can TLS offer?

Answer 4

Reliability (no alteration to the data).
Authentication (you are who you claim to be).
Privacy (only you and the other end can read the data).

Question 5

What is HTTPS?

Answer 5

HTTPS = HTTP + TLS + TCP

Question 6

How do you make a “handshake” over TLS, making a encrypted key?

Answer 6

1. TCP handshake
2. Agree on cryptographic algorithms
3. Get certificate (and public key)
4. Check sertificate
5. Generate shared key from seed
6. Encrypt seed with public key and send
7. Encrypt future data with shared key

Question 7

Who decides how the Internet works?

Answer 7

Internet Governance Bodies

Question 8

What is ICANN?

Answer 8

Internet Corporation for Assigned Names and Number

• Non-profit US corporation with global stakeholders
• Manages DNS and IP addresses via IANA
• ICANN sets policy, IANA implements

Question 9

What is IANA?

Answer 9

Internet Assigned Numbers Authority

Manages root DNS servers, and Records protocol assignments.
○ Well-known port numbers.
○ Contents types
Manages IP block assignments via RIRs. A timezone database.

Question 10

What is RIRs?

Answer 10

Region Internet Registry

Coordinate assignment of IP blocks via local Internet registries:

• RIPE (Europe, Russia and Middle East)
• APNIC (Asia)
• ARIN (North America)
• LACNIC (South America)
• AFRNIC (Africa)

Question 11

What is IETF?

Answer 11

Internet Engineering Task Force

A open discussion forum. 
Published RFCs (Request For Comments): informative description of protocols and formats –> HTTP = RFC 2016.

Question 12

What is W3/W3C?

Answer 12

World Wide Web Consortium

A open discussion forum. Publishes HTML and WEB-related TR (technical reports). Two implementation before TR must be done, to be changed.

• HTML4

Question 13

What is WHATWG?

Answer 13

Web Hypertext Application Technology Working Group

An open discussion forum (driven by companies). Born out of frustration with W3C rules around HTML future.

• HTML5

Question 14

What is ISO / ITU-T?

Answer 14

International Organization for Standardization / International Telecommunication Union

Coordinates standards for telecommunications and Information Communication Technology such as cybersecurity, machine learning, and video compression, between its Member States, Private Sector Members, and Academia Members.

ISO model = ISO 7498 / X.200

Question 15

What is United Nation (standard)?

Answer 15

IGF: Internet Governance Forum

Established in 2006 to counter US influence over ICANN
A place where countries discuss why censorship is bad, and how to censor the Internet.

Question 16

What does the CRON command/program do?

Answer 16

Run a program every X.

It is a Deamon that runs commands (jobs) according to a schedule. The schedule is read from contrab.