Ch8 Secure Applications and Protocols

Question 1

HTTPS uses ___ for encryption

Answer 1

Transport Layer Security (TLS)

Question 2

___ was originally developed to encrypt websites, but is now used by many applications and protocols

Answer 2

Transport Layer Security (TLS)

Question 3

Secure Sockets Layer (SSL) was developed by Netscape in the ‘90’s, but was later usurped by ___

Answer 3

Transport Layer Security (TLS)

Question 4

TLS uses ___ for authentication

Answer 4

RSA

Question 5

the OSI seven-layer model contains the following layers:

Answer 5

Physical; Data Link; Network; Transport; Session: Presentation; Application

Question 6

the TCP network model contains the following 4 layers:

Answer 6

Network Interface; Internet; Transport; Application

Question 7

the IPv4 address ranges dedicated to private networks include:

Answer 7

10. 0.0.0 - 10.255.255.255
11. 16.0.0 - 73.31.255.255
12. 168.0.0 - 192.168.255.255

Question 8

a link local IPv6 address will always begin with ___

Answer 8

FE80

Question 9

___ is a connection-oriented protocol which uses a 3-way handshake and can transport a large number of packets of data

Answer 9

TCP (Transmission Control Protocol)

Question 10

___ is a transport protocol that can send a large number of packets quickly because there is no confirmation of reciept

Answer 10

UDP (User Datagram Protocol)

Question 11

___ is a transport protocol that sends one packet at a time, usually for maintenance purposes

Answer 11

ICMP (Internet Control Message protocol)

Question 12

TCP Ports 20 - 21

Answer 12

FTP/FTPS

Question 13

TCP Port 22

Answer 13

FTP/SFTP/SSH (secure remote shell)/SCP (secure copy)

Question 14

TCP Port 23

Answer 14

Telnet remote shell

Question 15

TCP Port 25

Answer 15

SMTP (mail send)

Question 16

TCP Port 49

Answer 16

TACACS Plus - secure authentication/authorization

Question 17

TCP Port 53

Answer 17

DNS - Domain Name System

Question 18

TCP Port 80

Answer 18

HTTP (unsecured)

Question 19

TCP Port 110

Answer 19

POP - mail receive

Question 20

TCP Ports 137-139

Answer 20

Netbios (Microsoft file transfer)

Question 21

TCP Port 143

Answer 21

IMAP - Internet Message Access Protocol - mail receive

Question 22

TCP Port 389

Answer 22

LDAP - lightweight directory access protocol

Question 23

TCP Port 443

Answer 23

HTTPS

Question 24

TCP Port 445

Answer 24

SMN - Server Message Block - file transfer

Question 25

TCP Port 3389

Answer 25

RDP - remote desktop

Question 26

UDP Port 67-68

Answer 26

DHCP - dynamic IP

Question 27

UDP Port 69

Answer 27

TFTP - Trivial FTP

Question 28

UDP Port 161-162

Answer 28

SNMP - network control

Question 29

TCP Port 465

Answer 29

SMTP with SSL encryption

Question 30

TCP Port 587

Answer 30

SMTP with TLS encryption

Question 31

TCP Port 993

Answer 31

IMPA with TLS encryption

Question 32

TCP Port 995

Answer 32

POP with TLS encryption

Question 33

switching from DNS to DNSSEC will require ___

Answer 33

upgrading the physical server

Question 34

for protection, servers should generally be placed within the ___ of the network

Answer 34

DMZ

Question 35

to relieve the burden of encryption/decryption, individual servers can be equipped with an ___, or it can be handled by a dedicated box

Answer 35

SSL Accelerator

Question 36

a ___ can not only make a network run more efficiently, but also protect against DDoS attacks

Answer 36

Load Balancer

Question 37

a Load Balancer on a network will often also have a ___ to protect against Distributed Denial of Service attacks

Answer 37

DDoS Mitigator

Question 38

the ___ model for code development is generally considered too linear and rigid for today’s business environment, and is being replaced by the ___ model

Answer 38

waterfall; agile

Question 39

in an agile work environment, short meetings called __ are used to expedite production objectives called ___

Answer 39

scrums; sprints

Question 40

___ analyze the text of code looking for syntax and other common errors

Answer 40

static analyzers

Question 41

in ___ code is run, and is analyzed for memory leaks and database query problems

Answer 41

dynamic analysis

Question 42

in testing Code, ___ is where a real-world environment is created in a sandbox and stress applied to the syste

Answer 42

staging

Question 43

in testing Code, ___ is where the code is reviewed to confirm that it still meets the original the original specs and criteria

Answer 43

Model Verification