Authentication Flashcards

1
Q

What is 802.1x?

A

Standard for port based network access control - data link layer authentication technology used to connect devices on a LAN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is LDAP?

A

Protocol for accessing and modifying directory services data. Application layer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What layer of the OSI model is 802.1x?

A

Data Link

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What layer of the OSI model is LDAP?

A

Application

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is Kerberos?

A

Ticket based authentication protocol in windows used to identify clients to a server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is RAS?

A

Remote Access Services - enables dial up and vpn connections to occur from remote clients

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is CHAP?

A

Challenge Handshake Protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is RADIUS?

A

Remote Authentication Dial In User Service - used to make connections between computers and provides authentication, authorization, and accounting. Encrypts the password, uses UDP for speed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is TACACS + ?

A

Cisco Proprietary version of RADIUS - provides authentication and authorization. More secure than RADIUS due to TCP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which is more secure RADIUS or TACACS+ ?

A

TACACS+ due to the use of TCP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the two primary VPN protocols?

A

L2TP and PTP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is PAP?

A

Password Authentication Protocol - used to provide authentication but is not secure due to its transmission of unencrypted credentials

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Why is PAP not secure?

A

Because it transmits credentials unencrypted

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is RDP?

A

Remote Desktop Protocol - port 3389 - Microsoft proprietary protocol that allows remote access to another computer via GUI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is VNC?

A

Virtual Network Computing - cross platform version of RDP for non windows. Port 5900

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is EAP?

A

Extensible Authentication Protocol - framework of protocols that allows numerous methods of authentication including passwords, digital certificates and PKI

17
Q

What is LEAP?

A

Cisco proprietary version of EAP

18
Q

What is SSO?

A

Single Sign On - default user profile for each user is created and linked with all of the software/resources needed for that user to access when signing on - using one password for everything

19
Q

What is the risk of SSO?

A

Since it uses only one password for everything, if that password is compromised, it can cause a major security breach.

20
Q

What is the Context Aware authentication model?

A

Process to check user or system attributes prior to allowing it to connect

Restricting authentication due to factors such as time of day or location

21
Q

What is FIDM?

A

Federated Identity Management - single identity is created for a user and shared with all of the organizations in a federation

22
Q

What is SAML?

A

Security Assertion Markup Language - Attestation model built on XML used to share federated identity management info between systems

23
Q

What is TOTP?

A

Time based one time password - password that is computed from a shared secret and current time

24
Q

What is HOTP?

A

HMAC-based one-time password is a one-time password algorithm based on HMAC

25
Q

What is HMAC?

A

Hash Based Message Authentication Code - cryptographic authentication technique that uses a hash function and a secret key.

26
Q

What is FAR?

A

False Acceptance Rate - rate of false positives

27
Q

What is FRR?

A

False Rejection Rate - rate of false negatives

28
Q

What is CER?

A

Crossover Error Rate - type of metric used for evaluation of a biometric security system’s accuracy?

29
Q

What are three attributes of HOTP?

A

Valid for one session, Based on cryptographic hash function/secret key, not vulnerable to replay attacks

30
Q

What are three attributes of TOTP?

A

Valid for one session, not vulnerable to replay attacks, based on secret key and current time

31
Q

A type of hierarchical database structure used in Windows Server environments that enables centralized management of users, devices and resources on a network is known as:

A

Active Directory