Chapter 11 Terms

Question 1

SSH

Answer 1

A connection utility that provides authentication and encryption while logging on to a host, executing commands on that host, and copying files to or from that host. Uses Port 22.

Question 2

Honeypot

Answer 2

A decoy system isolated for legitimate systems and designed to be vulnerable to security exploits for the purpose of learning more about hacking techniques or nabbing a hacker in the act.

Question 3

IPS

Answer 3

A dedicated device or software running on a host that automatically reacts to any unauthorized attempt to access an organization’s secured resources on a network or host. It is often combined with IDS.

Question 4

IDS

Answer 4

A dedicated device or software running on a host that monitors, flags, and logs any unauthorized attempt to access an organization’s secured resources on a network or host.

Question 5

ACL

Answer 5

A list of statements used by a router to permit or deny the forwarding of traffic on a network based on one or more criteria.

Question 6

Kerberos

Answer 6

A network authentication protocol which works on the basis of “tickets” to allow nodes communicating over a non-secure network to prove their identity to one another. Its designers aimed primarily at a client–server model, and it provides mutual authentication—both the user and the server verify each other’s identity. Uses Port 88.

Question 7

AES

Answer 7

A private key encryption algorithm that weaves keys of 128, 160, 192, or 256 bits through data multiple times.

Question 8

DoS attack

Answer 8

A security attack in which a system becomes unable to function because it has been inundated with requests for services and can’t respond to any of them.

Question 9

HTTP

Answer 9

A set of rules for transferring files (text, graphic images, sound, video, and other multimedia files) on the World Wide Web. Uses Port 80.

Question 10

Asymmetric encryption

Answer 10

A type of encryption (such as public key encryption) that uses a different key for encoding data than is used for decoding the ciphertext.

Question 11

brute force attack

Answer 11

An attempt to discover an encryption key or password by trying numerous possible character combinations.

Question 12

CHAP

Answer 12

An authentication protocol that operates over PPP and requires the authenticator to take the first step by offering the other computer a challenge.

Question 13

CA

Answer 13

An organization that issues and maintains digital certificates as part of the Public-key Infrastructure.

Question 14

IPSec

Answer 14

Defines encryption, authentication, and key management for TCP/IP transmissions. It is an enhancement for IPv4 and is native to IPv6.

Question 15

ESP

Answer 15

In IPSec, this is a type of encryption that provides authentication of the IP packet’s data payload through the public key technique. It also encrypts the entire IP packet for added security.

Question 16

802.11i

Answer 16

The IEEE standard for wireless network encryption and authentication that uses the EAP authentication method, strong encryption, and dynamically assigned keys. This specifies AES encryption and weaves a key into each packet. Uses 802.1x and TKIP

Question 17

3DES

Answer 17

The modern implementation of the data encryption standard which weaves a 56-bit key through data three times, each time using a different key.

Question 18

DMZ

Answer 18

The perimeter of a protected internal network where users, both authorized and unauthorized, from external networks can attempt to access it.

Question 19

HTTPS

Answer 19

The URL prefix that indicates that a Web page requires its data to be exchanged between client and server using SSL encryption. It uses TCP Port 443.

Question 20

Encryption

Answer 20

The use of an algorithm to scramble data into a format that can be read only by reversing the algorithm to keep the information private.

Question 21

EAP

Answer 21

This protocol specifies the dynamic distribution of encryption keys and a preauthorization process in which a client and server exchange data via an intermediate node. It can be used with multiple authentication and encryption schemes.

Question 22

Zero-day exploit

Answer 22

This takes advantage of a software vulnerability that hasn’t yet become public and is known only to the hacker who discovered it, so the harm is inflicted before the software developer has the opportunity to provide a solution for it.