Chapter 22 (Internet Security Protocols and Standards) Flashcards
MIME vs S/MIME
MIME is an email format, S/MIME is a security enhancement. provides ability to sign and/or encrypt email messages
what is DKIM
a spec for cryptographicly signing email messages permitting a signing domain to claim responsibility for a message
widely adopted by email providers
tls session vs tls connection
session = association between client and server, defines cryptographic security parameters
connection = a transport(in OSI) model that provides a suitable type of service, every conn associated w/ one session
when is the handshake part of TLS done
before any application data are transmitted
what does handshake protocol allow the server and client to do
authenticate each other, negotiate encryption, negotiate cryptographic keys to be used
what is heartbeat protocol and what is it used for
a periodic signal generated by hardware or software to indicate normal operation or sync other parts of program
2 purposes of heartbeats
assures sender that recipient is still alive
generates activity across connction during idle periods
where are 2 spots ssl/tls attacks aimed at
the handshake protocol
application data protocol
what is https
combination of http and ssl to implement secure communication between web browser and web server
what is IPSEC
various application security mechanisms
3 main concepts of IPSEC
Authentication = are who you say you are
Confidentiality = prevent eavsedropping
Key managment = secure exchange of keys
what is a security accociation
a one way relationship between sender and reciever that affords security for traffic flow
in a security association, what is transport mode
used for end to end communication for 2 hosts, like https
in a security association, what is tunnel mode
provides protection to the entire IP packet, like a VPN kinda
