T5: The internet and its uses

Question 2

What is the Internet?

Answer 2

A global infrastructure of interconnected networks

Question 3

What is the World Wide Web?

Answer 3

a collection of websites and web pages accessed using the internet

Question 4

What is a URL and what does it stand for?

what does it contain

Answer 4

Uniform Resource Locator
Each web page has its own unique text-based address

contains protocol, domain name, web page/file name

Question 5

What is the purple part of this URL called?

Answer 5

Protocol

Question 6

What is the red part of this URL called?

Answer 6

Host

Question 7

What is the blue part of this URL called?

Answer 7

Domain Name

Question 8

What is the green part of this URL called?

Answer 8

Web page / file name

Question 9

What is a protocol?

Answer 9

A set of rules for communication between devices. It allows equipment from different suppliers to work together

Question 10

What does HTTP stand for?

Answer 10

HyperText Transfer Protocol

Question 11

What is HTTP?

Answer 11

The standard transmission protocol of the Web

Question 12

What is the problem with HTTP?

Answer 12

Any data you enter into the site is sent in plaintext and is susceptible to hacking

Question 13

What does HTTPS stand for?

Answer 13

HyperText Transfer Protocol Secure

Question 14

What is HTTPS?

Answer 14

A secure protocol that encrypts any data sent between the website and your browser so that it can’t be understood if intercepted.

Question 15

What are the functions of a browser?

4 of the usual ones

Answer 15

RENDERS HTML AND DISPLAYS WEB PAGES
Storing bookmarks and favourites
Recording user history
Storing cookies
Providing navigation tools
Allowing use of multiple tabs
Providing an address bar

Question 16

What does HTML stand for and what is it?

Answer 16

Hypertext Markup Language

The standard markup language for creating/displaying web pages

Question 17

What is an IP address?

Answer 17

A public address that is unique to each device. Every networked computer and websites hosted in a webserver has an IP address

Question 18

What does a Domain Name Server (DNS) do?

Answer 18

It converts a URL address into an IP address

This means that a browser on a client machine can make a request to the correct web server hosting that web page

a web server

Question 19

What happens if the DNS server doesn’t have an entry for the domain name?

Answer 19

It passes the request to another more authoritative DNS server to see if that one has an entry. An error is sent back if no match is found.

Question 20

What are cookies?

Answer 20

small files or code stored on a user’s computer

Question 21

What do cookies do?

Answer 21

They are used to track data about the users and autofill forms or give suggestions accordingly

Question 22

What are session cookies?

2 points with 1 example

Answer 22

They are created and replaced each time a user visits a website. Stored in the RAM.

a virtual shopping basket

Question 23

What are persistent cookies?

with 1 example

Answer 23

They are created and saved on the first visit (on hard disk) and retained on the hard drive of the computer until they expire

user’s login details

Question 24

What advantages come from using cookies for a retailer on an online shopping site?

Answer 24

The retailer can send personalised email advertisements to customers

The retailer can analyse quantity and value of sales/advertising

The retailer can implement one-click purchasing

Question 25

What are the advantages for the user when visiting an online shopping site that uses cookies?

Answer 25

They will not need to remember login details

They can use one-click purchasing

Websites will remember their personal customisations

Question 26

What is digital currency?

+ examples

Answer 26

Any money-like asset that only exists in digital form. It is exchanged digitally with no physical banknotes or coins in circulation

paypal, cryptocurrency

Question 27

What is a blockchain?

Answer 27

A digital ledger –> a time-stamped series of transaction records that cannot be altered, tracking the movement of a digital currency

Question 28

How does blockchain work?

Answer 28

• Each new transaction is added onto a chain of transaction blocks
• Each block will carry the user’s ID number and a reference to the previous block. This is known as a hash total and is calculated with a hashing algorithm
• A change of data in one block will create a ripple effect of incorrect hash totals
• The blockchain will be stored on multiple different servers, and if one chain doesn’t match all others, it will be rejected

Question 29

what is the process of locating web pages?

Answer 29

1. user opens browser and types in a URL and the browser asks DNS server (1) for the IP address of the website
2. if DNS server cant find the URL in its database or cache, it sends a request to DNS server (2)
3. DNS server (2) finds the URL and maps it to an IP address, which is sent back to DNS server (1), which saves it in its cache/databse
4. IP address is sent back tothe user’s computer
5. computer sets up a communication with the website server and the required pages are downloaded, HTML files are sent to the computer to be interpreted and displayed

Question 30

what is a website server

Answer 30

a computer that stores the website’s software and a website’s component files (for example, HTML documents, images, CSS stylesheets, and JavaScript files)

Question 31

how are digital currencies used?

Answer 31

by relying on a central banking system, online banks or smartphone apps (paypal, apple pay etc.)

bank X and bank Y are different online banks

Question 32

what is the differnece between www and internet

4 each

Answer 32

Question 33

what is the order of URL setup

Answer 33

Question 35

What is hacking?

Answer 35

Automated or manual attempts to gain unauthorised access to programs or data

Question 36

How to protect against hacking?

Answer 36

Firewall to block access by unauthorised devices

Question 37

What is a brute force attack?

Answer 37

Automated or manual attempts to gain unauthorised access to secure areas by trying all possible password/key combinations

Question 38

How to protect against brute force attacks?

Answer 38

Strong passwords
Limited attempts allowed

Question 39

What is data interception?

Answer 39

a form of stealing data by tapping into a wired or wireless communication link to compromise privacy or to obtain confidential information
- carried out using wardriving (per wifi) or packet sniffing (per network data packet) where data that was intercepted is sent back to the hacker

Question 40

How to protect against data interception?

Answer 40

Encryption (wired equivalency privacy WEP encription protocol)
- doesn’t stop hacker from getting it but cannot comprehens without decryption key
Firewall
don’t use public wifi

Question 41

What is spyware?

Answer 41

Software that hides on your computer and records your activities to send back to a third-party for analysis

Question 42

How to protect against spyware?

Answer 42

Anti-malware
Anti-spyware software for detection

Question 43

What is phishing?

Answer 43

Phishing emails redirect a user to a fake website where they trick the reader into divulging confidential information such as passwords that can be used fraudulently

Question 44

How to protect against phishing?

Answer 44

• fake email identification: odd addressing, grammar/spelling mistakes
• anti-phishing toolbar
• look for s in https OR green padlock symbol
• changing password regularly
• up to date browser and firewall

Question 45

What is pharming?

Answer 45

Sends the user to a fake website that looks like the real thing. The user types in a legitimate address and is redirected to a fake website

DNS cache poisoning: IP address and URL are not correctly matched up and you get redirected to a fake website

Question 46

How to protect against pharming?

Answer 46

Checking the URL
Making sure the site says HTTPS, not HTTP
Spelling of website

Question 47

What is malware?

Answer 47

Malicious software written to cause inconvenience or damage to programs or data

Question 48

What is a virus?

Answer 48

A program that is installed on a computer without the user’s knowledge or permission with the intent of doing harm.

It includes instructions to replicate automatically on a computer with intention of deleting/corrupting files

Question 49

What is a worm?

Answer 49

a type of stand-alone malware that can self-replicate with the intention to spread to other computers and corrupt whole networks
unlike viruses, they don’t need an active host program to be opened to do damage

Question 50

What does anti-virus software do?

Answer 50

Software that runs on a computer checking all files for known viruses
It must be updated regularly

Question 51

What is a Trojan horse?

Answer 51

A program that masquerades as having one legitimate purpose, but it actually has another

Question 52

How does a Trojan horse work?

Answer 52

requires users to take action and security systems are often useless since users can overrule them and initiate the running of the malware

A link is spread by email/downloaded from ilegitimate software

The user is invited to click on a link for an everyday purpose

This link then executes a program which gives the controller unauthorised access to the computer

Question 53

What is ransomware?

Answer 53

A form of malware that encrypts a victim’s files.

Question 54

How does ransomware work?

Answer 54

A ransom is demanded from the attacker in return for instructions on how to decrypt the files

Question 55

What is adware?

Answer 55

A malware that displays onscreen advertisements. It is not always dangerous, but could redirect the browser to an unsafe site

Question 56

What does DDoS stand for?

Answer 56

Distributed Denial of Service

Question 57

What is a DDoS attack?

Answer 57

A malicious attempt to disrupt the normal traffic of a targeted server with a flood of Internet requests

Question 58

How does a DDoS attack work?

Answer 58

Multiple interconnected devices in different locations establish a botnet (bots could be on different computers that planted themselves and can be controlled by the attacker)

The attacker is then able to direct the attack by sending remote instructions to the bots to send requests to the target’s IP address

The server becomes overwhelmed, and genuine requests cannot be handled

The server fails or times out

Question 59

How can you protect against DDoS attacks?

signs of users becoming victims of a DDoS attack

Answer 59

A firewall can filter through requests to separate the genuine and fradulent requests
up to date malware checking
apply email filters
- slow network performacne
- inability to access websites
- large amounts of spam email

Question 60

what is social engineering

Answer 60

occurs when a cybercriminal creates a social situation that can lead to victims dropping their guard

Question 61

5 examples of social engineering

Answer 61

• instant messaging (links embedded)
• scareware (scaring user that they have been infected)
• emails/phishing scams (seems genuine but links embedded)
• baiting (malware infected memory stick)
• phone calls (scam callers making user give them their information)

Question 62

what is exploited in social engineering attacks

Answer 62

fear
curiosity
empathy and trust

Question 63

cycle of cybercriminals targeting victims

Answer 63

Question 64

what are access levels

Answer 64

a hirachy of level of access to certain data, requiring different passwords for another layer

Question 65

types of anti-malware

Answer 65

anti virus
anti-spyware

Question 66

how does anti-spyware work and what does it do

Answer 66

• detects and removes spyware programs isntalled illegaly on a user’s computer system
• software has a set of rules and looks at file structures to identify

Question 67

general ability of anti-virus/anti-spyware/personal firewall

Answer 67

• detect and remove spyware already on the device
• prevent users from downloading spyware
• encrypt files to make the more secure
• blocks access to a user’s webcam/mic

Question 68

what is authentication

Answer 68

ability of a user to prove who they are through something you know, something you have or something unique to you

Question 69

ways authentication can be done

Answer 69

1. passwords and user names
2. biometrics

Question 70

types of biometrics

Answer 70

• fingerprint scans
• retina scans
• face recognition
• voice recognition

Question 71

how does biometric work

possible disadvantages

Answer 71

pattern on finger or retina or face is scanned and compared to the one stored in the database
can be expensive and if someone is injured, this doesn’t work but it’s hard to replicate and cannot be misplaced

Question 72

passwords and user names

how can they be protected?

Answer 72

Passwords are used to restrict access to data or systems.
They can be protected with:
- anti-spyware software
- changing passwords regularly
- hard passwords

Question 73

what is two-step verification

Answer 73

requires two methods of authentication to verify who a user is

Question 74

automatic software updates

Answer 74

software on computers and mobile phones/ tablets is kept up-to-date because they may contain patches that update the software security

Question 75

what to check for in cyber fraud

Answer 75

spelling and tone of communication
- spelling and gramamr in emails/websites
- a too rushed tone is could be a phishing email
URL links
- spelling in emails or links

Question 76

what to check for in an email

Answer 76

• after the @ should be company name
• bad spelling/grammar
• rushing
• mispelling of domain name in the link

Question 77

firewalls

Answer 77

can be either software or hardware. It sits between the user’s computer and an external network (for example, the internet) and filters information in and out of the computer

Question 78

what can and cannot firewalls do

Answer 78

• examine the traffic between user and public network
• checks and logs incoming/outgoing data
• firewall can be disabled
• misconduct by users cannot be controlled
• vulnerable to attacks from internal network

Question 79

what are proxy servers

Answer 79

they act as an intermediate between the user and a web server

Question 80

features of proxy servers

Answer 80

• allows internet traffic to be filtered
• keeps IP addesses secret (security)
• prevents direct access to a web server by sitting between the user and the web server
• proxy servers can act as firewalls
• cache can help speed up access to info from a website if it was visited before

Question 81

what can privacy settings do

Answer 81

can limit the access on websites and a user’s personal profile
- ‘do not track’ stops website from collecting data from user
- payment methods saved
- alterting when browser encounters a dangerous website
- web browser privacy options
- sharing location for apps off

Question 82

what is secure sockets layer (SSL)

Answer 82

a type of protocol that allos data to be sent and received securely over the internet

Question 83

what can SSL do

how do you know it’s being used

Answer 83

it encrypts data when user is on a website and only the computer and web server is able to decrypt the transmission

small padlock (httpS)

Question 84

anti-virus

Answer 84

• checks for virus attacks
• heuristic checking is when sodtware is checked for tupes of behaviour that may indicate a virus
• possibly infected files/programs are quarantined and the virus is deleted or users can choose not to)
• entire system is checked for viruses once a week