Chapter 12: Telecommunications, Network, and Internet Security Flashcards
OSI Stack
a. Application
b. Presentation
c. Session
d. Transport
e. Network
f. Data link
g. Physical
Transmission Control Protocol (TCP)
Reliable service that sequences incoming packets
User Datagram Protocol (UDP)
Less reliable, does not do error checking, but is faster and easier to use than TCP
Internet Protocol
IP addresses
Address Resolution Protocol (ARP)
Matches IP to MAC addresses; RARP is the reverse process
Internet Control Message Protocol (ICMP)
Management protocol for a network; ping is an ICMP command
File Transfer Protocol (FTP)
Allows for data transfer between databases, etc
Telnet (Remote Login)
Allows for a user to use a Telnet program to access another computer. Fell out of favor due to por security controls, and now Secure Shell or SSH is used instead
Simple Mail Transfer Protocol (SMTP)
Host to host email protocol that allows for jumping across intermediaries during delivery
ISO Security Services
Authentication: enforcing identification
Access control: restricting access based on things other than identity
Data confidentiality: Protecting both the message and the sender, recipient, and path of the message
Data integrity: Protecting data from unauthorized changes
Nonrepudiation: being able to prove that a particular person did a particular thing
Logging and monitoring: observing behavior on a system both in real time or historically
OSI Implementation of Security Services
Encipherment: conversion away from plain text into ciphertext
Digital signature: Only allowing the sender and recipient to read the message via PPK
Access Control: restricting access based on things other than identity
Data integrity: Protecting data from unauthorized changes
Authentication: enforcing identification
Traffic padding: Running traffic in with other traffic to disguise what is important and what is not
Routing control: making sure the message gets where it is going even with network outages
Notarization: Ensuring that files have not been altered
Local Area Network (LAN)
Designed for geographically concise spaces, like an office building or a campus. A MAN could be as large as a city’s wireless network.
Wide Area Network (WAN)
Larger than a building, usually is a bunch of LANs connected together
Internet
A bunch of networks connected together in which each host decides how it will interact with that wider network.
Intranet
a TCP/IP network with restrictions to enforce certain protections; an example would be a company’s internal documents being hosted on an intranet that everyone in the company can access, but no one from the outside.
Extranet
A section of network that faces out to allow for vendor connections, for example.