Securing TCP/IP

Question 1

Integrity

Answer 1

Process that Guarantees that the data received is the same as originally sent.

Question 2

Nonrepudiation

Answer 2

A person cannot deny he or she took a specific action

Question 3

Authentication

Answer 3

Verify that whoever is trying to access the data is the person you want accessing it.

Question 4

Authorization

Answer 4

What an authenticated person can do with the data.

Question 5

Ciphertext

Answer 5

When you run cleartext through a cipher algorithm using a key.

Question 6

Symmetric Key Algorithm

Answer 6

When you use the same key to encrypt and decrypt the encryption

Question 7

Asymmetric Key Algorithm

Answer 7

When you use different keys for encrypting and decrypting

Question 8

Block Ciphers

Answer 8

Encrypt data in chunks of a certain length at a time

Question 9

DES

Answer 9

Data Encryption Standard

Question 10

DES Definition

Answer 10

used 64 bit block and 56 bit key. Outdated form of block cipher.

Question 11

Stream Sipher

Answer 11

Takes a single bit at a time and encrypts on the fly.

Question 12

RC4

Answer 12

Rivest Cipher 4 - very fast stream cipher that was used mostly in wireless. Stopped being used around 2013 due to weakness.

Question 13

AES

Answer 13

Advanced Encryption Standard

Question 14

AES definition

Answer 14

Used by almost all TCP/IP applications and is a block cipher that uses 128bit block size and 128, 192, or 256 bit key size.

Question 15

Public Key Cryptography

Answer 15

Primary Asymmetric implementation of security, most common in RSA

Question 16

Integrity Hash Function

Answer 16

mathematical function that you ru n on a string of binary digits of any length that results in a value of some fixed length.

Question 17

File Hashing

Answer 17

Hashing the contents of a file

Question 18

MD5

Answer 18

Message Digest Algorithm version 5, creates a 128 bit message digest

Question 19

SHA

Answer 19

Secure Has Algorithm is the primary family of cryptographic hash functions

Question 20

SHA 224

Answer 20

SHA-2 with a 224 bit message digest

Question 21

SHA-256

Answer 21

SHA-2 with a 256 bit message digest

Question 22

SHA-384

Answer 22

SHA-2 with a 384 bit message digest

Question 23

SHA-512

Answer 23

SHA-2 with a 512 bit message digest

Question 24

CRAM-MD5

Answer 24

Challenge-Response Authentication Mechanism Message Digest, which is used in SMTP servers as a tool for authentication.

Question 25

Digital Signature for Nonrepudation

Answer 25

A hash of the public key encrypted by the private key.

Question 26

PKI

Answer 26

Public Key infrastructure

Question 27

ACL

Answer 27

Access Control list; Clearly defined list of permissions that specifies what an authenticated user may perform on a shared resource.

Question 28

MAC

Answer 28

Mandatory Access Control; Every resource is assigned a label that defines its security level.

Question 29

DAC

Answer 29

Discretionary Access Control; based on the idea that a resource has an owner who may at his or her discretion assign access to that resource.

Question 30

RBAC

Answer 30

Role based access Control; Defines a users access to a resource based on the roles the user plays in the network environment.

Question 31

PPP

Answer 31

Point to Point protocol; enables 2 endpoints to connect, authenticate with a user name and password and negotiate the network protocl the two devices will use.

Question 32

PAP

Answer 32

Password Authentication Protocol; simply transmits username and password in cleartext

Question 33

CHAP

Answer 33

Challenge Handshake Authentication Protocol; Relies on hashes based on a shared secret, usually a password that both end of the connection know

Question 34

MS-CHAPv2

Answer 34

The most common auth method for the few of using dial up connections

Question 35

AAA Protocol

Answer 35

Authentication, Authorization and Accounting; designed for the idea of port authentication

Question 36

Authentication from AAA

Answer 36

A computer first needs to provide some form of credential for access to the network.

Question 37

Authorization from AAA

Answer 37

Once Authenticated against a database the computer determines what it can or cannot do on the network.

Question 38

Accounting from AAA

Answer 38

The authenticating server should do some form of auditing such as logging data traffic, session action and so on.

Question 39

Two Standards of AAA

Answer 39

RADIUS and TACACS+

Question 40

RADIUS

Answer 40

Remote Authentication Dial-In Services; was created to support ISPs with hundreds if not thousands of modems in hundreds of computer to connect to a single central database.

Question 41

What 3 devices does radius consist of?

Answer 41

1. Radius Server that has access to database of user names and password
2. NAS (Network Access Servers)
3. and a group of systems that in some way connect to the network

Question 42

IAS

Answer 42

Internet Authentication Service; Microsoft version of Radius that come pre-installed on windows server

Question 43

Ports that Radius uses

Answer 43

UDP ports 1812 and 1813 or 1645 and 1646

Question 44

TACACS+

Answer 44

Terminal Access Controller Access Control System Plus; used in a system with many routers and switches and it stores the ACL for all devices in a single location.

Question 45

Kerberos

Answer 45

An Authentication protocol that has no connection to PPP. Auth protocol for TCP/IP networks with many clients all connected to a single authenticating server. Microsoft adopted it as the authentication protocol for all windows networks using a domain controller.

Question 46

KDC (Kerberos)

Answer 46

Key distribution Center which has two processes

1. Authentication Server
2. Ticket Granting service

Question 47

IPsec

Answer 47

Internet Protocol Security is an authentication and encryption protocol suite that works at the internet/network layer.

Question 48

2 Modes of IPsec

Answer 48

1. Transport Mode

2. Tunnel Mode

Question 49

SCP

Answer 49

Secure Copy Protocol; one of the first protocols used to transfer data securely between 2 hosts.

Question 50

SNMP

Answer 50

Simple Network Management Protocol; can tell you a number of settings on SNMP capable devices, such as CPU usage, network utilization, and detailed firewall hits.

Question 51

MIB

Answer 51

Management Information Base; an agent used to collect network infromation.

Question 52

LDAP

Answer 52

Lightweight Directory Access Protocol; tool that programs use to query and change a database used by the network.