Chapter 4: Communications & Network Security

Question 1

What is TKIP ?

Answer 1

Temporal Key Integrity Protocol. Wifi security protocol, now considered insecure. PEAP or EAP-TLS are better options.

Question 2

What is 802.11ac ?

Answer 2

AKA Wi-Fi 5: a wireless local area network (WLAN) standard introduced in 2013. It operates in 5 GHz & offers higher throughput than 802.11n.

Question 3

What is the RST flag in TCP?

Answer 3

Reset or disconnect a session.

Question 4

List the standard TCP flags.

Answer 4

SYN, ACK, FIN, RST, URG, PSH.

Less common: WND, CHK, SEQ, CWR

Question 5

List the common wifi standards from slowest to fastest.

Answer 5

802.11a and 802.11g are capable of 54Mbps.
802.11n can do 600Mbps.
802.11ac can reach 3.4Gbps.

Question 6

What is associated with layer 3 of the OSI model?

Answer 6

IP addresses.

Question 7

What is CHAP ?

Answer 7

Challenge-Handshake Authentication Protocol. Encrypts username and password, and periodically re-authenticates.

Question 8

What is LEAP ?

Answer 8

Authentication Protocol for WEP.

Question 9

What is PAP and what’s wrong with it?

Answer 9

Authentication Protocol, but it doesn’t encrypt passwords.

Question 10

What protocol should be enabled and required to secure VoIP?

Answer 10

SIPS, the secure version of the session initialization protocol.

Question 11

What term describes a routing protocol that maintains a list of destination networks w/metrics including distance in hops?

Answer 11

A distance-vector protocol.

Question 12

Which is a real thing: link-state protocol, destination metric protocol, link-distance protocol?

Answer 12

Link-state protocol (for routing).

Question 13

What is FCoE ?

Answer 13

Fiber channel over internet.

Question 14

What is SDWAN ?

Answer 14

Software-defined wide area network (SD-WAN) is a networking technology that uses software to manage and optimize wide area networks (WANs).

Question 15

What is Zigbee ?

Answer 15

standards-based wireless mesh network used widely in building automation, lighting, smart city, medical and asset tracking.

Question 16

What is MOSS ?

Answer 16

MOSS is a Protocol that uses the MIME multipart/signed and multipart/encrypted framework to apply digital signature and Encryption services to MIME objects.

Question 17

What is PEM ?

Answer 17

Privacy-Enhanced Mail (PEM) is a file format and internet security standard for storing and sending cryptographic keys, certificates, and other data to secure emails.

Question 18

What is DKIM ?

Answer 18

DomainKeys Identified Mail (DKIM) is a standard email authentication method that adds a digital signature to outgoing messages to verify their authenticity.

Question 19

What is “WPA2 in PSK mode?”

Answer 19

WPA2-PSK works by using a pre-shared key, or password, to authenticate devices and the network access point. It encrypts data and requires a unique password for access, which helps prevent unauthorized people from joining the network and stealing sensitive information.

Question 20

What is “WPA3 in SAE mode?”

Answer 20

WPA3 Simultaneous Authentication of Equals (SAE) is an authentication method that improves encryption and authentication for WPA3-Personal.

Question 21

What is “WPA2 in Enterprise mode?”

Answer 21

A security protocol developed by the Wi-Fi Alliance that uses 802.1x authentication to provide enterprise-grade security for corporate and government networks.

Question 22

What is MPLS ?

Answer 22

Multiprotocol Label Switching, a converged protocol for routing.

Question 23

What are 3 concerns with multilayer protocols ?

Answer 23

Can bypass filte, conceal covert channels, and extend past logical network boundaries.

Question 24

What features can IPsec provide?

Answer 24

Encryption, access control, Non-repudiation, and message authentication using public key. NOT authorization, protocol convergence, content distribution.

Question 25

What are 3 security functions that can be provided by 4g wireless?

Answer 25

Encryption, device-based authentication, and SIM-based authentication.

Question 26

List 10 Layer 7 protocols.

Answer 26

Application Layer:
SOAP, TCAP, Universal Plug and Play, DHCP, DNS, BOOTP, HTTP, HTTPS, NFS, POP3
SMTP, SNMP, FTP,NTP, IRC, Telnet, SSH, IMAP

Question 27

List 3 Layer 6 protocols.

Answer 27

Presentation Layer:
TLS, SSL, AFP (Apple File Protocol), X.25 PAD

Question 28

List 5 Layer 5 protocols.

Answer 28

Session Layer:
ADSP, ASP, H.245, NetBIOS, NetBEUI, NCP, PAP, RPC, RTCP, SDP, SMB, SMPP, SOCKS, ZIP (AppleTalk)

Question 29

List 5 Layer 4 protocols.

Answer 29

Transport Layer:
AEP (AppleTalk), AH, DCCP, ESP, FCP, iSCSI, NBF, SPX,
NBP {for AppleTalk}, TCP, UDP

Question 30

List 5 Layer 3 protocols.

Answer 30

Network Layer:
IPX, NAT, AppleTalk DDP, HSRP, VRRP, IP, ICMP, ARP, RIP, OSPF, IPSEC

Question 31

List 10 Layer 2 protocols.

Answer 31

DataLink Layer:
ARCNet, ATM, CHAP, Ethernet, FDDI, Frame Relay, WiFi, WiMax, LocalTalk, MAC, PPP, PPTP, PAP, SLIP, StarLAN, Spanning Tree, Token Ring, VLAN

Question 32

What is the IEEE standard for port-based network access control (PNAC) authentication mechanism for devices that want to connect to a wired or wireless local area network?

Answer 32

802.1x

Question 33

What is the IEEE standard for Ethernet?

Answer 33

802.3

Question 34

What was the original IEEE standard for Bluetooth?

Answer 34

802.15.1

Question 35

List 4 common VPN protocols.

Answer 35

PPTP, L2F, L2TP, IPsec

Question 36

Answer 36

A - Transport Layer

Question 37

What is the max speed for each of:
Cat5e
Fiber
Cat6
Coax ?

Answer 37

Cat5e - 1 gigabit
Fiber - 10 gigabit
Cat6 - 10 gigabit
Coax - 1 gigabit

Question 38

What is an MTU mismatch?

Answer 38

A maximum transmission unit (MTU) mismatch occurs when a sender tries to transmit a packet that is too large for the receiver to handle.

Question 39

Answer 39

C - AES

Question 40

Answer 40

C - CAM table flooding. Port security is focused on hardware (MAC) addresses.

Question 41

What does the Application Plane of an SDN do?

Answer 41

The application plane of an SDN is where applications run that use APIs to communicate about needed resources.

Question 42

List advantages of 5g over 4g for security.

Answer 42

New mutual authentication capabilities, enhanced subscriber identity protection, and additional security mechanisms.

Question 43

MAC Address belongs to which OSI layer?

Answer 43

6. Data Link