5. The Internet and Its Uses

Question 1

URL

Answer 1

text-based address for a web page, can contain the protocol, domain name and web page/file name

Question 2

Purpose of web browser

Answer 2

• displays web pages
• …by rendering HTML

Question 3

Functions of web browser

Answer 3

• storing bookmarks/favourites
• recording user history
• allowing use of multiple tabs
• providing navigation tools
• providing an address bar
• managing protocols
• send URL to DNS
• send a request to the IP address/web server
• runs active script/JavaScript/client-side script
• allows files to be downloaded from website/internet

Question 4

Protocol

Answer 4

• a set of rules
• …that governs communication between devices on a network

Question 5

Preventing accidental loss of data

Answer 5

• create a back-up
• …so that if the data is accidentally deleted it can be restored/there is another copy
• add verification
• …this will add a stage to check the user actually wants to delete the data

Question 6

Checking if a website uses SSL

Answer 6

• check the web address starts with HTTPS
• check for a locked padlock sign
• check the digital certificate for the website

Question 7

Cookies

Answer 7

• small text files
• …stored by the browser
• …sent between the web server and browser when the user visits the website

Question 8

Functions of cookies

Answer 8

• save personal details
• store login information
• track user preferences
• save online shopping cart items

Question 9

Session vs persistent cookies

Answer 9

• session cookies are stored in RAM
• …whereas persistent cookies are stored on the hard drive
• when the browser is closed a session cookie is lost
• …whereas a persistent cookie is not lost
• …until deleted by the user/they expire

Question 10

Digital currency

Answer 10

a currency that exists only in electronic form

Question 11

Blockchain in digital currency

Answer 11

• acts as a ledger
• …by tracking each transaction
• keeps a series of time-stamped records
• …that cannot be altered

Question 12

Brute force attack

Answer 12

• trial and error to guess a password
• combinations are repeatedly entered…
• …until correct password is found
• can be carried out manually or automatically by software

Question 13

Aims of brute force attacks

Answer 13

• steal/view/access data
• delete data
• change data
• lock account/encrypt account
• damage reputation of a business

Question 14

Security solutions against a brute-force attack

Answer 14

• two-factor authentication
• biometrics
• firewall/proxy server
• strong/complex password
• setting a limit for login attempts
• drop-down boxes
• request for partial entry of password

Question 15

Types of malware

Answer 15

• spyware
• adware
• ransomware
• Trojan horse
• virus
• worm

Question 16

DDoS attack

Answer 16

• malware downloaded onto several computers
• …turning it into a bot/zombie
• …creating a network of bots/zombies
• third party/hacker initiating the attack
• bots send requests to a web server at the same time
• the web server fails due to the requests
• legitimate requests cannot reach the web server

Question 17

Aims of DDoS attacks

Answer 17

• revenge
• entertainment value
• to harm the company’s reputation
• to demand a ransom to stop it
• to test a system’s resilience

Question 18

Security solutions against DDoS attacks

Answer 18

• firewall
• proxy server
• users scanning their computers with anti-malware

Question 19

How a proxy server protects against a DDoS attack

Answer 19

• acts as a firewall
• monitors/filters/examines incoming and outgoing traffic
• rules/criteria for traffic can be set//blacklist/whitelist set
• blocks any traffic that does not meet criteria…
• …and can send a warning message to the user
• stops the website failing in a DoS attack
• a DoS attack would hit the proxy server and not the web server

Question 20

Security solutions against pharming

Answer 20

• checking the spelling and tone of the email/website
• checking the URL attached to a link
• scanning a download with anti-malware
• only downloading data/software from trusted sources
• never providing personal details online
• install a firewall to check if the website is valid

Question 21

Access levels

Answer 21

• providing users with different permission for the data
• limiting access to reading/viewing the data
• limiting access to editing/deleting/changing data
• normally linked to a username

Question 22

Authentication

Answer 22

• web browser sends request to web server
• …to view the digital certificate
• web server sends the digital certificate to the web browser
• web browser checks the certificate for authenticity
• if certificate is authentic a secure connection is created
• any data sent is encrypted
• if certificate is not authentic the connection is rejected
• uses a protocol such as SSL/TLS

Question 23

SSL

Answer 23

• security protocol
• encrypts any data that is sent
• uses/sends digital certificates
• …which are sent to/requested by the browser
• …that contains the gallery’s public key
• …that can be used to authenticate the gallery
• once the certificate is authenticated, the transaction will begin