Business data networks and security

Question 1

Who funded the ARPANET?

Answer 1

Defense Advanced Research Projects Agency (DARPA)

Question 2

What year for ARPA created?

Answer 2

1958

Question 3

What organization spawned the Network Working Group?

Answer 3

members of ARPANET

Question 4

What does the Network Working Group do?

Answer 4

Create standards to be used for networking

Question 5

What does a Network WOrking Group “Request for Comments” (RFC) do

Answer 5

The RFC is the recommendation for a standard. All standard in networking are RFC, but not all RFC are standards

Question 6

What does the standards body IETF acronym stand for?

Answer 6

Internet Engineering Task Force

Question 7

When was the standards body IETF founded?

Answer 7

late 1960s

Question 8

was the IETF faster at producing standards than OSI?

Answer 8

Yes

Question 9

What is a network standard?

Answer 9

rules of operation that specify how two pieces of hardware/software work together to exchange messages

Question 10

What are the important standards agencies?

Answer 10

Internet Engeneering Task Force (IETF)
International Organization of Standardization (ISO)
International Telecommunications Union- Telecommunications Standards Sector (ITU-T)

Question 11

What standards agency creates internet standards

Answer 11

IETF

Question 12

What other agencies work together to create network standards

Answer 12

ISO and ITU-T

Question 13

What is a standards architecture?

Answer 13

Similar to software architecture, it is how the standards are designed to make sense and function

Question 14

What is a standards architecture layer?

Answer 14

a sub-set of the standards architecture that describes a feature of how the standards architecture operates

Question 15

What are the OSI Architecture layers in order from 1-7

Answer 15

Physical
data link
network
Transport
session
presentation
Application

Question 16

What are the TCP/IP (IETF) layers from 1-4

Answer 16

Subnet Access Protocol
Internet
Transport
Application

Question 17

What are the Hybrid TCP/IP-OSI layers 1-5

Answer 17

Physical
Data link
Internet
Transport
Application

Question 18

What is the TCP/IP architecture Subnet Access Protocol (SNAP)

Answer 18

Basically says “Use OSI standards here”

Question 19

Does a standards agency dominate in the application layer?

Answer 19

No

Question 20

with regards to the TCP/IP-OSI architecture, what is the function of layer 5

Answer 20

Application layer governs how two applications work with eachother

Question 21

with regards to the TCP/IP-OSI architecture, what is the function of layer 4

Answer 21

Transport Layer standards govern aspects of end-to-end communication between two end hosts

Question 22

with regards to the TCP/IP-OSI architecture, what is the function of layer 3

Answer 22

Internet link layer governs the transmission of packets across the internet

Question 23

with regards to the TCP/IP-OSI architecture, what is the function of layer 2

Answer 23

The data Link layer govern the transmission of frames across a single switched network

Question 24

with regards to the TCP/IP-OSI architecture, what is the function of layer 1

Answer 24

Physical layer govern transmission between adjacent devices connected by a medium

Question 25

what is carried inside of a frame

Answer 25

packets

Question 26

How is the three-step opening performed?

Answer 26

1: Host A sends a TCP SYN to Host B
2: Host B sends a TCP SYN/ACK to Host A
3: Host A sends aback a pure TCP ACK segment to Host B

Question 27

What are the three TCP control Segments?

Answer 27

SYN
ACK
FIN

Question 28

in TCP protocol what are the three general parts of a message

Answer 28

Header
data fields
frame trailer

Question 29

What is a threat environment?

Answer 29

The types of attacks that are commonly used

Question 30

What is malware?

Answer 30

malicious software that is typically infiltrated into a network

Question 31

Describe what the spear phishing attack is?

Answer 31

The attacker personalizes an e-mail message for a particular recipient so that information is exfiltrated or malware is infiltrated

Question 32

What are the three types of malware

Answer 32

Viruses
Worms
Trojan Horses

Question 33

What is a virus malware?

Answer 33

A piece of malware (typically a script) that leverages vulnerabilities in software which already exists within the network.

Question 34

What is a worm malware?

Answer 34

Worms are full programs that can be propagated between computers.

Question 35

What is a Trojan Horse?

Answer 35

A malware which disguises itself as a legitimate, and must be placed in a network by another piece of malware, or attacker

Question 36

What is a malware payload?

Answer 36

A piece of code that performs the malicious activity

Question 37

With regards to a cyber attack, what is an APT?

Answer 37

Advanced Persistant Threat

Question 38

With regard to the OSI model, at what layers do wireless LANs operate?

Answer 38

physical and data link layers

Question 39

What is the distinction between WI-FI and 802.11?

Answer 39

Wi-Fi steams from the Wi-Fi Alliance, which is an industry consortium of 802.11 compliant product vendors.

Question 40

with regards to Wi-Fi, what is a service band?

Answer 40

A range of frequencies used for a specific purpose. This is comprised of multiple channels

Question 41

With regards to Wi-Fi, what is a channel?

Answer 41

A subset of Service band frequencies.

Question 42

With regards to Wi-Fi, what is the range of frequencies used in the 2.4GHz service band?

Answer 42

2.4GHz -> 2.4835GHz

Question 43

With regards to Wi-Fi, what is the frequency range of the 5GHz service band?

Answer 43

5GHz -> 5.725GHz

Question 44

With regards to the 802.11 standard, what is roaming?

Answer 44

The hand-off between multiple access points, while a user is moving between them

Question 45

What OSI layer are switched and wireless networks governed?

Answer 45

Layer 1 and Layer 2

Question 46

With regards to a router, what is an interface?

Answer 46

The physical connector for a wired connector

Question 47

With regards to a switch, what is a port?

Answer 47

The physical connector for a wired connection

Question 48

Explain the network adage “Switch where you can; route where you must”

Answer 48

This is used to describe the idea that for the same amount of network traffic, a router is much more expensive than a switch

Question 49

With regards to the Internet, what is a network?

Answer 49

collection of routers and data links owned by a recognized organization

Question 50

With regards to Ethernet, what is a network

Answer 50

A collection of hosts and clients connected to a single datalink and router

Question 51

With regards to TCP/IP networking, what are the parts of the hierarchical Addressing?

Answer 51

network, subnet, host

Question 52

With regards to TCP/IP networking, what is the network part of the hierarchical IPv4 address?

Answer 52

The network part is the first 8 to 24 bits of a network address. This identifies the host’s recognized network on the internet

Question 53

With regards to TCP/IP networking, what is the subnet part of the hierarchical IPv4 address?

Answer 53

The 8 bits after the network address. This is used to subdivide an organization’s networks into smaller units

Question 54

With regards to TCP/IP networking, what is the host part of the hierarchical IPv4 address?

Answer 54

The remaining bits that are not a part of the network or the subnet in the address. This is used to identify the specific host in the subnet

Question 55

Just looking at a IPv4 address, can you determine the network, subnet, host?

Answer 55

No

Question 56

What does a border router do?

Answer 56

Routes between different networks

Question 57

What does an internal router do?

Answer 57

connect different subnets

Question 58

with regards to TCP/IP, how do masks work?

Answer 58

A mask is applied as a binary and with the address to determine the network or subnet.

Question 59

with regards to TCP/IP, what is routing?

Answer 59

The process of getting a packet closer to its destination host.

Question 60

With regards to TCP/IP, what is a Routing Table

Answer 60

A table of routes, that a router uses to determine the best route to send a packet.

Question 61

With regards to IPv4, how many bits are in the version field?

Answer 61

4

Question 62

With regards to IPv4, how many bits are in the internet header length?

Answer 62

4

Question 63

With regards to IPv4, how many bits are in the differentiated Service Control Point?

Answer 63

6

Question 64

With regards to IPv4, how many bits are in the ECN?

Answer 64

2

Question 65

With regards to IPv4, how many bits are in the Total Length?

Answer 65

16

Question 66

With regards to IPv4, how many bits are in the Identification?

Answer 66

16

Question 67

With regards to IPv4, how many bits are in the flags?

Answer 67

3

Question 68

With regards to IPv4, how many bits are in the Fragment Offset?

Answer 68

13

Question 69

With regards to IPv4, how many bits are in the time to live?

Answer 69

8

Question 70

With regards to IPv4, how many bits are in the Protocol

Answer 70

8

Question 71

With regards to IPv4, how many bits are in the Header Checksum

Answer 71

16

Question 72

With regards to IPv4, how many bits are in the Source IP Address

Answer 72

32

Question 73

With regards to IPv4, how many bits are in the destination IPv4 Address?

Answer 73

32

Question 74

With regards to IPv4, what is the ECN?

Answer 74

Explicit Congestion Notification, used to notify the receiver of congestion

Question 75

With regards to IPv4, what fields govern transmission quality?

Answer 75

Differentiated Services Control Point

Explicit Congestion Notification (ECN)

Question 76

With regards to the IPv4 header Protocol Field, what is the value for TCP?

Answer 76

6

Question 77

With regards to the IPv4 header Protocol Field, what is the value for UDP?

Answer 77

17

Question 78

With regards to the IPv4 header Protocol Field, what is the value for ICMP?

Answer 78

1

Question 79

With regards to TCP/IP, what role does the ICMP protocol provide?

Answer 79

This is used for the internet layer supervisory messages

Question 80

While IPv4 is very common today, what is the largest issue presented to its use?

Answer 80

The Internet Assigned Numbers Authority ran out of unique address.

Question 81

With regards to TCP/IP wahat is the Canonical Text Notation?

Answer 81

RFC 5952, it is used to create a human readable notation for an IP address

Question 82

With regards to TCP/IP, what is the notation used for IPv6?

Answer 82

Hexadecimal notation

Question 83

With regards to IPv$, what is the notation used

Answer 83

dotted decimal notation

Question 84

with regards to IPv4 what are the two addresses that hosts cannot have?

Answer 84

all 1’s

all 0’s

Question 85

with regards to IPv6, what are the three parts of an address?

Answer 85

routing prefix
subnet ID
interface ID

Question 86

with regards to IPv6, what is the IPv4 equivalent to the routing prefix?

Answer 86

network part of the address

Question 87

with regards to IPv6, what is the IPv4 equivalent to the subnet ID?

Answer 87

the subnet part of the address

Question 88

with regards to IPv6, what is the IPv4 equivalent to the interface ID?

Answer 88

The host part of the address

Question 89

With regards to 802.11, what is war driving?

Answer 89

When an attacker uses the wireless signal of the access points to collect information from a victim. In unsecured networks, this could even lead to man in the middle attacks

Question 90

with regards to 802.11, do public hot-spots protect your transmission

Answer 90

No

Question 91

What does the 802.11i standard provide?

Answer 91

This standard provides encrypted wireless communication between an access point and a host

Question 92

With regards to cybersecurity, what does the CIA acronym stand for?

Answer 92

Confidentiality
Integrity
Authentication

Question 93

With regards to 802.11, why does turning off the periodic broadcast of the access point SSID not provide protection

Answer 93

If there is communication to that access point and a host, each packet header contains an unencrypted SSID for the network.

Question 94

With regards to 802.11, why does whitelisting the EUI-48 addresses not provide additional security?

Answer 94

During communication between the access point and the host, the EUI-48 is unencrypted in each packet header

Question 95

With regards to 802.11i, what layer is protected?

Answer 95

The 802.11 standard is focused on protecting the data-link layer

Question 96

What are some data-link security standards that existed prior to 802.11i?

Answer 96

Advanced Encryption Standard (AES)
Wired Equivalent Privacy (WEP)
Wireless Protected Access (WPA)

Question 97

With regards to 802.11, Why is WEP no longer used?

Answer 97

It is easily compromised, due to design level issues.

Question 98

With regards to 802.11 data-link security, which is superior 802.11i or WPA?

Answer 98

802.11i

Question 99

With regards to cyber-security, what is end-to-end encryption?

Answer 99

Encryption that spans from client to target server

Question 100

With regards to 802.11i, what is the initial authentication?

Answer 100

The wireless client is the supplicant, which must prove its identity before the access point will allow the client to connect.

Question 101

With regards to 802.11i, what are the two methods for initial authentication?

Answer 101

Pre-Shared Key (for use in home networks)

802.1X (for use in enterprises)

Question 102

With regards to 802.11i, how does the pre-shard key (PSK) for initial authentication work?

Answer 102

The wireless host sends a request to the access point

The access point sends an unencrypted challenge message to the host

The host uses the PSK to encrypt the challenge message and sends it to the access point

The access point can decrypt the challenge message and allow access or not

Question 103

With regards to 802.11i, what is the pairwise session key?

Answer 103

This is the key used for subsequent communication to the access point.

Question 104

With regards to 802.11i, what are some threats?

Answer 104

The PSK is too publicly known.

An ex-employee can still have the PSK when they leave

Question 105

With regards to 802.11i, what is the minimum password length for a strong Pre-Shared Key(PSK)?

Answer 105

20 characters

Question 106

with regards to 802.11i, how is the 802.1X initial authentication performed?

Answer 106

The wireless host contacts the Access point

The access point notifies the 802.1X server

The 802.1X server sends requirements for authentication to the access point

The access point sends the requirements to the wireless host

The wireless hosts sends credentials to access point

The access point sends the credentials to the 802.11X server to perform credentials check

The 802.11X server sends an authorization message to the wireless access point

The wireless access point authorizes the connection to the wireless client, and passes the authorization message

Question 107

With regards to 802.11i, what are two types of attacks that can occur?

Answer 107

Rogue access point

evil twin attack

Question 108

With regards to 802.11i, what is the evil twin attack

Answer 108

a man-in-the-middle attack in which the evil twin intercepts traffic passing between a wireless hosts and a legit access point

Question 109

with regards to 802.11, what defeats an evil twin attack?

Answer 109

A VPN will defeat an evil twin attack

Question 110

With regards to networking, what is the Simple Network Management Protocol (SNMP) used for?

Answer 110

Management of access points

Question 111

with regards to networks, what are 4 categories of Quality of Service (QoS)?

Answer 111

Speed
Errors
Availability
Latency

Question 112

with regards to 802.3, what are the OSI standard layers impacted?

Answer 112

Datalink

Physical

Question 113

With regards to 802.3, what is a workgroup switch?

Answer 113

A switch to connect individual hosts to the network

Question 114

With regards to 802.3, what is a core switch?

Answer 114

A switch to connect to other switches

Question 115

With regards to 802.3, what is an access link?

Answer 115

A physical connection between host and switch

Question 116

With regards to 802.3, what is a Trunk link?

Answer 116

A physical connection between switches