Chapter 7 - Virtual Private Networks

Question 1

When sending data over the Internet, what 4 things can VPNs provide?

Answer 1

1. Confidentiality (Privacy) - Preventing someone from reading the data.
2. Authentication - Verifying that the sender is legitimate
3. Data integrity - Verifying that the packet was not changed as the packet went over the Internet
4. Anti-replay - Preventing a man in the middle from copying and later replaying the packets sent by a legitimate user.

Question 2

What are 3 types of VPNs?

Answer 2

1. Intranet - A site-to-site VPN that connects all computers at two sites of the same organization
2. Extranet - A site-to-site VPN that connects all computers at two sites of different but partnering organizations
3. Remote Access - Connects individual Internet users to the enterprise network

Question 3

What are 3 types of VPN Encryption Algorithms?

Answer 3

1. Data Encryption Standard (DES), key length 56, older and less secure than the options here.
2. Triple DES (3DES) 56 x 3 bit key length, applies 3 different 56-bit DES keys in succession, improving the encryption strength versus DES.
3. Advanced Encryption Standard (AES), 128 and 256 key length, considered the current best practice, with strong encryption and less computation than 3 DES.

Question 4

What does GRE stand for?

Answer 4

Generic routing encapsulation