Security Filtering and Encryption Standards

Question 1

Which 4 ACL conditions are recommended to configure inbound from the internet to your private network?

Answer 1

1) Deny any addresses from your internal networks
2) Deny local host addresses (127.0.0.0/8)
3) Deny reserved private addresses
4) Deny multicast addresses

Question 2

If you’re not running TCP/IP what security filtering could you apply if you don’t have an IP address?

Answer 2

MAC Filtering

Question 3

Successful firewall management involves what?

Answer 3

Being aware of and ONLY allowing the ports to keep things running safe.

Question 4

What are hashing functions used for?

Answer 4

To ensure that the data is not changed or altered (integrity)

Question 5

Exporting software allowing an encryption key length of more that 48-bits is subject to review by the Export Administration Regulations. TRUE or FALSE?

Answer 5

FALSE. It’s greater than 64-bits

Question 6

What is symmetrical encryption and what is its downside?

Answer 6

Symmetrical encryption is when both the send and receiver have the same key. The downside is its harder to maintain the security

Question 7

Which encryption standard was made in 1977 and used a 56-bit key?

Answer 7

Data Encryption Standard

Question 8

Which encryption standard allows for 168-bit key length but really only provides 112bits due to man in the middle attacks?

Answer 8

3DES

Question 9

What is the official encryption standard in the US since 2002 and what is its maximum key length?

Answer 9

Advanced Encryption Standard. 256-bit

Question 10

What encryption uses a public key to encrypt data sent from a source host but uses a private key to decrypt it? What algorithm does it use?

Answer 10

Public Key Encryption. Diffie-Hellman algorithm

Question 11

Apart from Diffie-Hellman, name the other common encryption method for KEY EXCHANGE

Answer 11

Rivest,Shamir and Adleman (RSA)

Question 12

List the 4 steps of PGP encryption

Answer 12

1) Encrypt document with session key
2) Session key encrypted with public key of recipient
3) session key decrypted with recipient private key
4) document decrypted with session key

Question 13

What is an Out of Band management?

Answer 13

Is any method of accessing a server that doesn’t use the production network

Question 14

which protocl designed by Citrix Systems to provide communication between servers and clients of different operating systems?

Answer 14

Independent Computing Architecture.

Question 15

What is an encryption key?

Answer 15

A random string of characters that is used in conjunction with the encryption algorithm to encrypt and decrypt the data sent/received.