Communications and Network Security (CNS) Flashcards

1
Q

Access point

A

the connection between a wireless and wired network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Access server

A

Provides dial-in and dial-out connections to the network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Ad hoc Mode

A

Directly connect two+ clients, no access point Infrastructure Mode – connects endpoints to a central network, not directly to each other, need access point and wireless clients for IM mode wireless

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Address Resolution Protocol

A

Used to match an IP address to a hardware MAC address. ARP sends out broadcast to a network node to reply with its hardware address. It stores the address in a dynamic table for the duration of the session, so ARP requests are only sent the first time

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Addressing

A

IP uses the destination IP to transmit packets thru networks until delivered

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

ADSL

A

Asymmetric. More downstream bandwidth up to 18,000 feet over single copper cable pair

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Analog signal

A

Infinite wave form, continuous signal, varied by amplification

Asynchronous communications, broadband connections, and half‐duplex links can be digital or analog.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Application

A

Layer 4 network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Application OSI

A

Provides an interface for which applications and end users can utilize networked resources.
Examples: FTP, Telnet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Application level firewall

A

Second generation: AKA proxy server While transferring data stream to another network, it masks the data origin. operating at Application layer of OSI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Application Proxy firewall

A

Layer 7: actually 3 through 7, which look at content and can involve authentication and encryption, can be more flexible and secure but also tend to be far slower.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

ARCnet

A

Uses token passing in a star technology on coax

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Asymmetric multiproccessing

A

AMP: used in applications that are dedicated, such as embedded systems, when individual processors can be dedicated to specific tasks at design time

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Asynchronous

A

Sends bits of data sequentially. Same speed on both sides. Modems and dial-up remote access systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Asynchronous Transfer Mode

A

ATM: very high bandwidth. It uses 53-byte fixed size cells instead of frames like Ethernet. It can allocate bandwidth up on demand making it a solution for Busty applications. Requires fiber optics

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Attenuation

A

A decrease in amplitude as a signal propagates along a transmission medium

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Access port

A

logical or physical identifier that a computer uses to distinguish different terminal input/output data streams

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Active attack

A

attack on the authentication protocol where the attacker transmits data to the claimant or verifier. Examples of active attacks include a man-in-the-middle, impersonation, and session hijacking.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Active wiretapping

A

illegal attaching of an unauthorized device for the purpose of obtaining access to data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Bluejacking

A

When attackers send unsolicited messages via Bluetooth

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Bluesnarfing

A

Targets the data or information on Bluetooth-enabled devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Bootstrap Protocol

A

When wireless workstation is on-lined it sends out a BootP request with its MAC address to get an IP address and the file from which it should boot. Replaced by DHCP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Bridge

A

a layer 2 device that used to connect two network segments and regulate traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Bridges

A

Forwards data to all other network segments if it’s not on the local segment. Operates at level 2 (thus no IP-addressing)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Broadband Technologies

A

ISDN, cable modems, DSL, and T1/T3 lines that can support multiple simultaneous signals. They are analog and not broadcast technologies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Broadcast

A

Source packet is copied and sent to all nodes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Broadcast Domain

A

Set of systems that can receive a broadcast from each other

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

Brouter

A

a device that provides the functions of both a bridge and a router

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

BUS

A

All transmissions have to travel the full length of the cable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

Callback

A

User initiates a connection, supplies identifying code, and then the system will call back a predetermined telephone number. Also less useful for travelling users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Caller ID

A

Checks incoming telephone number against an approval list and then uses Callback. Less useful for travelling users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

CAN

A

Campus area network: multiple building connected to fast backbone on a campus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Carrier Sense Multiple Access

A

CSMA: for Ethernet. Workstations send out packet. If it doesn’t get an acknowledgement, it resends

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Challenge Handshake Authenticate Protocol

A

CHAP: non-replayable challenge/response dialog

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

CHAP

A

Challenge-Handshake Authentication Protocol, used by PPP servers to authenticate remote clients. Encrypts username and PW and performs periodic re authentication while connected using techniques to prevent replay attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

CIR

A

Committed Information Rate: minimum bandwidth guarantee provided by service provider to customers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

Circuit Level Proxy

A

Layer 5: looks at header of packet only, protects wide range of protocols and services than app-level proxy, but as detailed a level of control. Basically once the circuit is allowed all info is tunneled between the parties. Although firewalls are difficult to configure correctly, they are a critical component of network security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Circuit switched network

A

There must be a dedicated physical circuit path exist during transmission. The right choice for networks that have to communicate constantly. Typically for a telephone company network Voice oriented. Sensitive to loss of connection

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Client SSL Certificates

A

Used to identify clients to servers via SSL (client authentication)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

Coaxial

A

Many workstations, length. 1000Base-T – 100 M
Twisted pair to long. Cat 5 better than cat3 for interference Fiber optics immune to EMI, can be broken and high cost/expertise Topology failures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Coaxial cable

A

a cable consisting of a core, inner conductor that is surrounding by an insulator, an outer cylindrical conductor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Codec

A

used to code/decode a digital data stream

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

Collision Domain

A

Set of systems that could cause a collision if they transmitted at the same time, more number of systems in domain increases likelihood of network congestion due to more collisions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

Concentrator

A

layer 1 network device that is used to connect network segments together, but provides no traffic control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

Converged Network

A

Carries multiple types of traffic like voice, video, and data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

Converged Protocols

A

The merging of specialty or proprietary protocols with standard protocols, such as those from the TCP/ IP suite. The primary benefit of converged protocols is the ability to use existing TCP/ IP supporting network infrastructure to host special or proprietary services without the need for unique deployments of alternate networking hardware.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

CSMA with Collision Avoidance workstations

A

z- are attached by 2 coax cables. In one direction only. Wireless 802.11

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

CSMA with Collision Detection

A

Only one host can send at the time, using jamming signals for the rest

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

Data Link Layer 2


A

z-C
This layer deals with addressing physical hardware. FRAMES
Translates data into bits and formats them into data frames with destination header and source address. Error detection via checksums.
Example: bridge

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

Data service unit (DSU)

A

z-also Channel Service Unit (CSU)
Digital interface device, used to terminate the physical interface on a DTE device. They connect to the closest telephone company switch in a central office (CO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

Data Streams

A

Occur at Application, Presentation, and Session layers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

Demon Dialer

A

a technique by which a computer is used to repeatedly dial a number (usually to a crowded modem pool) in an attempt to gain access immediately after another user had hung up

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

DHCP

A

z-Dynamic Host Configuration Protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

Digital signal

A

Saw tooth form, pulses, on-off only, digital signals are a means of transmission that involves the use of a discontinuous electrical signal and a state change or on‐off pulses. Asynchronous communications, broadband connections, and half‐duplex links can be digital or analog.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

Digital signature

A

an asymmetric cryptography mechanism that provides authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

Direct Sequence Spread Spectrum

A

DSSS: employs all the available frequencies simultaneously in parallel. This provides a higher rate of data throughput than FHSS. DSSS also uses a special encoding mechanism known as chipping code to allow a receiver to reconstruct data even if parts of the signal were distorted because of interference.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

DKIM

A

Domain Keys Identified Mail, domain validation tool

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

DNS Poisoning

A

When an attacker changes the domain name to IP address mappings of a system to redirect traffic to alternative systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

DNS Spoofing

A

When an attacker sends false replies to a requesting system, beating valid replies from the real DNS server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
60
Q

Dual homed host firewall

A

Consists of a host with 2 NIC’s. One connected to trusted, one to un-trusted. Can thus be used as translator between 2 network types like Ethernet/token ring. Internal routing capabilities must not be enabled to make it impossible to circumvent inspection of data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
61
Q

Dynamic Packet Filtering firewall

A

Fourth generation: Enables modification of the firewall rule. It provides limited support for UDP by remembering UDP packages across the network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
62
Q

Eavesdropping

A

a passive network attack involving monitoring of traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
63
Q

E-mail spoofing

A

forgery of the sender’s email address in an email header

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
64
Q

Emanations

A

potentially compromising leakage of electrical or acoustical signals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
65
Q

Encapsulating Security Payload

A

z-Encrypts IP packets and ensured integrity.
ESP Header – contains information showing which security association to use and the packet sequence number. Like the AH, the ESP sequences every packet to thwart replay attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
66
Q

Ethernet IEEE 802.3

A

Using CSMA with an BUS-topology

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
67
Q

Ethernet twisted pair

A

More resistant than coaxial Token Ring because a token is passed by every station, a NIC that’s is set to wrong speed or error can take all network down

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
68
Q

Extensible Authentication Protocol

A

EAP: an authentication framework. Allows for new authentication technologies to be compatible with existing wireless or point-to-point connection technologies, extensible was used for PPP connections

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
69
Q

Faraday Cage/ Shield

A

A shield against leakage of electromagnetic signals.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
70
Q

Fiber Channel Over Ethernet

A

FCoE: allows existing high-speed networks to be used to carry storage traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
71
Q

Fiber Distributed Data Interface

A

Form of token ring that has second ring that activates on error
Leased lines use multiple lines and/or multiple vendors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
72
Q

Fiber optics

A

bundles of long strands of pure glass that efficiently transmit light pulses over long distances. Interception without detection is difficult.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
73
Q

Fibre Channel over Ethernet

A

z-FCoE: a form of network data-storage solution (SAN or NAS) that allows for high-speed file transfers at upward of 16 GBps. It was designed to be operated over fiber-optic cables; support for copper cables was added later to offer less-expensive options. (FCoE) can be used to support it over the existing network infrastructure. FCoE is used to encapsulate Fibre Channel communications over Ethernet networks. Fibre Channel operates as a Network layer or OSI layer 3 protocol, replacing IP as the payload of a standard Ethernet network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
74
Q

File Transfer Protocol

A

For file transfers. Cannot execute remote files as programs. Authentication. Port 20 and 21

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
75
Q

Firewalls

A

a group of systems that enforces an access control policy between two networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
76
Q

Fraggle

A

a denial of service attack initiated by sending spoofed UDP echo request to IP broadcast addresses

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
77
Q

Fragmentation

A

z- DEAN plz note, there is an entry called “IP fragmentation,” but this appears to be a different definition / concept

IP will subdivide a packet if its size is greater than the maximum allowed on a local network
Message routing, error detection and control of node data are managed. IP, IPSEC, ICMP, BGP, OSPF, RIP, BOOTP, DHCP, ZIP, DDP, X.25, NAT and IGMP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
78
Q

Frame Relay

A

High performance WAN protocol designed for use across ISDN interfaces. Is fast but has no error correction, supports multiple PVCs, unlike X.25, packet switched technology that provides CIR, requires DTE/DCE at each connection point

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
79
Q

Frame Relay WAN

A

Over a public switched network. High Fault tolerance by relaying fault segments to working.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
80
Q

Frequency Hopping Spread Spectrum

A

FHSS: The entire range of available frequencies is employed, but only one frequency at a time is used.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
81
Q

Gateway

A

a secure connection to another network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
82
Q

HDSL

A

High Rate T1 speed over two copper cable pairs up to 12,000 feet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
83
Q

High-level Data Link Control

A

HDLC: extension to SDLC also for mainframes. Uses data encapsulation on synchronous serial links using frame characters and checksums. Also data link layer High Speed Serial Interface (HSSI) - Defines electrical and physical interfaces to use for DTE/DCE communications. Physical layer of OSI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
84
Q

Hijacking

A

interception and take over of a communication session by an attacker

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
85
Q

Host-to-Host

A

Layer 3 (Transport)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
86
Q

Hub

A

layer 1 network device that is used to connect network segments together, but provides no traffic control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
87
Q

HUBS

A

Connect multiple LAN devices into a concentrator. Is actually a multi-port repeater (physical)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
88
Q

Hypervisor-based Network

A

May be software defined, but it could also use traditional network devices running as virtual machines

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
89
Q

Injection

A

an attack technique that exploits systems that do not perform input validation by embedding partial SQL queries inside input

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
90
Q

Integrated Services Digital Network

A

ISDN: combination of digital telephony and data transports. Overtaken by xDSL, not all useable due to “D Channel” used for call management not data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
91
Q

Interception

A

unauthorized access of information (e.g. tapping, sniffing, unsecured wireless communications, emanations)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
92
Q

Internet

A

Layer 2 (corresponds to OSI network layer) Defines the IP datagram and handles routing of data across networks
Protocols: IP, ARP, RARP, ICMP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
93
Q

Internet control message protocol

A

Sends messages between network nodes regarding the health of the network. Also informs about rerouting in case of errors. Utility PING uses ICMP messages to check physical connectivity of the network machines

IPX, Appletalk, and NetBEUI are non-IP protocols

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
94
Q

Internet intranet and extranet

A

Internet is global, intranet local for use within companies and extranet can be used e.g. by your customers and clients but is not public.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
95
Q

Internet Protocol

A

z-All hosts have an IP address. Each data packet has an IP address of sender and recipient. Routing in network is based upon these addresses. Datagram service is considered unreliable because there’s no guarantee that the packet will be delivered, not even that its delivered only once and no guarantee that its delivered in the same sequence that its sent
32 bits long, IPv6 is 128 bits long

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
96
Q

Internet Small Computer Interface

A

iSCI: Converged protocol that allows location-independent file services over traditional network technologies. Cost less than Fiber. Standard for linking data storage sites

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
97
Q

Internet Small Computer System Interface

A

iSCSI: a networking storage standard based on IP. This technology can be used to enable location-independent file storage, transmission, and retrieval over LAN, WAN, or public Internet connections.
It is often viewed as a low-cost alternative to Fibre Channel.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
98
Q

IP address spoofing

A

forging of an IP address

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
99
Q

IP fragmentation

A

an attack that breaks up malicious code into fragments, in an attempt to elude detection

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
100
Q

IPSEC

A

z-Operates at Network Layer of OSI
Enables multiple and simultaneous tunnels
Encrypt and authenticate
Build into IPv6
Network-to-network use
Creates a private, encrypted network via a public network
Encryption for confidentiality and integrity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
101
Q

IPSEC compatible

A

Encryption via Tunnel mode (entire data package encrypted) or Transport mode (only datagram encrypted)
Only works with IP at Network layer of OSI NON IP-sec compatible

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
102
Q

ISDN

A

PRI (Primary Rate Interface) bandwidth of 1.544 Mbps, faster than BRI’s 144 Kbps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
103
Q

Kernel Proxy Firewall

A

Fifth generation: Application level Firewall Runs in windows NT, modular, kernel based, multiplayer session evaluation. Uses dynamic TCP/IP stacks to inspect network packages and enforce security policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
104
Q

L2F, Layer 2 Forwarding

A

z-Cisco developed its own VPN protocol called which is a mutual authentication tunneling mechanism.
L2F does not offer encryption. L2F was not widely deployed and was soon replaced by L2TP. Both operate at layer 2. Both can encapsulate any LAN protocol.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
105
Q

L2TP, Layer 2 tunneling protocol

A

z-Also in data-link layer of OSI
Single point-to-point connection per session
Dial-up network use
Port 115
Uses IPsec

106
Q

LAN extenders


A

Remote access, multi layer switch that connects LANs over a WAN

107
Q

Land Attack

A

Involves sending a spoofed TCP SYN packet (connection initiation) with the target host’s IP address and an open port as both source and destination.
The reason a LAND attack works is because it causes the machine to reply to itself continuously.

108
Q

LDAP

A

Lightweight Directory Access Protocol, client/server based directory query protocol loosely based upon X.500, commonly manages user information, for accessing directory services and manage certificates Ex. Active Directory, cn=ben+ou=sales
Zero or more, comma separated, no semi-colon, + to join

109
Q

LEAP

A

Lightweight Extensible Authentication Protocol, Cisco proprietary protocol to handle problems with TKIP, security issues don’t use. Provides reauthentication but was designed for WEP

110
Q

Link Access Procedure-Balanced

A

(LAPB) created for use with X25, defines frame types and is capable of retransmitting, exchanging and acknowledging frames as detecting out of sequence or missing frames

111
Q

Local Area Network

A

LAN: Limited geographically to e.g. a building. Devices are sharing resources like printers, email and files. Connected through copper wire or fiber optics.

112
Q

Logical Link Control Sub layer

A

Flow control and error notification

113
Q

Machine Access Control

A

MAC: hardware address of machine, can tell manufacturer,

114
Q

MAN

A

z-Metropolitan network extends over cities DEAN, is the word “area” missing here?

115
Q

Media Access Control layer

A

z-Physical addressing. Concerns frames, logical topologies and MAC-addresses
Protocols: L2F, PPTP, L2TP, PPP, SLIP, ARP, RARP, SLARP,
IARP, SNAP, BAP, CHAP, LCP, LZS, MLP, Frame Relay, Annex
A, Annex D, HDLC, BPDU, LAPD, ISL, MAC,
Ethernet, Token Ring, FDDI

116
Q

MESH

A

All nodes interconnected

117
Q

Message switching networks

A

Involves the transmission of messages from node-to-node. Messages are stored on the network until a forwarding path is available.

118
Q

Microwave

A

high frequency, highly directional radio signals. Attackers target interception attempts at transmission and relay stations.

119
Q

Modems

A

a device that converts between digital and analog representation of data

120
Q

Modification

A

a type of attack involving attempted insertion, deletion or altering of data

121
Q

MOSS

A

MIME Object Security Services, provides authentication, confidentiality, integrity, and nonrepudiation

122
Q

Multicast

A

Source packet is copied and sent to multiple destinations

123
Q

Multilayer Protocols

A

Allow encryption at various layers, support a range of protocols at higher levels. Bad – conceal covert channels, filters can be bypassed, sometimes logical boundaries can be bypassed

124
Q

Multiplexers

A

a device that sequentially switches multiple analog inputs to the output

125
Q

Multiprotocol Label Switching

A

MPLS: high performance networking, uses path labels instead of network addresses, wide area networking protocol, label switching, finds final destination and then labels route for others to follow

126
Q

Network access

A

Layer 1 (Data link, Physical)
Routines for accessing physical networks and the electrical connection

127
Q

Network File System

A

Protocol that supports file sharing between two different file systems

128
Q

Network Layer 3

A

z-C, AU, I
Path selection and logical/network addressing.
Technology: Virtual circuits (ATM), routers. Packets
Example: router

129
Q

Network layers TCP/IP Model

A

z-Developed by Department of Defense in the 1970s to support the construction of the internet
HINT: AHIN

130
Q

OAuth

A

Ability to access resources from another service

131
Q

Open mail relay servers

A

a mail server that improperly allows inbound SMTP connections for domains it does not serve

132
Q

Open Shortest Path First

A

z-Routing protocol short path

133
Q

OpenID

A

Paired with OAuth is a RESTful, JSON-based authentication protocol can provide identity verification and basic profile information, phishing attack possible by sending fake data

134
Q

OpenLDAP

A

Default, stores user PW in the clear

135
Q

Orthogonal Frequency-Division Multiplexing

A

OFDM: employs a digital multicarrier modulation scheme that allows for a more tightly compacted transmission. The modulated signals are perpendicular and thus do not cause interference with each other.

136
Q

Overlapping fragment attack

A

a denial of service attack that exploits packet filter firewalls that only inspect the initial fragment of a fragmented packet

137
Q

Packet filtering

A

a basic level of network access control that is based upon information contained in the IP packet header

138
Q

Packet filtering firewall

A

First generation (static) AKA screening router Examines source/destination address, protocol and ports of the incoming package. Based on ACL’s access can be denied or accepted. Is considered a firewall and operates at Network or Transport layer of OSI

139
Q

Packet filtering routers

A

Sits between trusted and un-trusted network, sometimes used as boundary router. Uses ACL’s. Protects against standard generic external attacks. Has no user authentication, has minimal auditing.

140
Q

Packet switched networks

A

PSN or PSDN: Nodes share bandwidth with each other by sending small data units called packets. Packets will be send to the other network and reassembled. Data oriented. Sensitive to loss of data. More cost effective than circuit switching because it creates virtual circuits only when they are needed.

141
Q

Packet-filtering firewalls

A

 layer 3/4 : use rules based on a packet’s source, destination, port or other basic information to determine whether or not to allow it into the network.

142
Q

Password Authenticate Protocol

A

PAP: Provides identification and authentication of the user using static replayable passwords. No encryption of user-id or password during communication

143
Q

Password Authentication Protocol

A

PAP: sends PW unencrypted

144
Q

Patch panels

A

provides a physical cross connect point for devices

145
Q

PBX

A

A Private Branch Exchange is a telephone exchange for a specific office or business

146
Q

PEAP

A

Provides encryption for EAP methods and can provide authentication, does not implement CCMP, encapsulates EAS in a TLS tunnel

147
Q

PEM

A

Provides authentication, confidentiality, integrity, and nonrepudiation

148
Q

Permanent virtual circuits

A

PVC: like a dedicated leased line; the logical circuit always exists and is waiting for the customer to send data. Like a walkie-talkie

149
Q

Phishing

A

a social engineering attack that uses spoofed email or websites to persuade people to divulge information

150
Q

Physical Layer 1

A

z- C
Physical signaling. Coverts bits into voltages or light impulses. Electrical, Hardware and software drivers are on this level. It sends and receives bits.
Repeaters, hubs, cables, USB, DSL, ISDN, ATM
Physical topologies: BUS, MESH, STAR, TREE, RING

151
Q

Physical tampering

A

unauthorized access of network devices

152
Q

Point to Point Protocol

A

PPP: improvement on slip, adds login, password and error (by CHAP and PAP) and error correction. Data link.

153
Q

Point-to-Point Protocol

A

PPP: Most common, used for dial up connections, replaced SLIP

154
Q

Polling

A

Host can only transmit when he polls a secondary to see if its free

155
Q

Port Based Authentication

A

802.1x, can be used with EAP

156
Q

PPTP, Point to Point tunneling protocol

A

z-Works at data link layer of OSI
Only one single point-to-point connection per session
Point To Point protocol (PPP) for authentication and tunneling
Dial-up network use
Does not support EAP
Sends initial packets in plaintext

157
Q

Presentation Layer 6

A

z-C, AU, Encryption
Translations like EBCDIC/ANSI; compression/decompression and encryption/decryption. Uses a common format to represent data, Standards like JPEG, TIFF, MID, HTML; Technology: Gateway.

Messages

158
Q

Proxies

A

mediates communication between un-trusted hosts on behalf of the hosts that it protects

159
Q

Proxy

A

Form of gateway that provide clients with a filtering, caching, or other service that protects their information from remote systems

160
Q

PVCs

A

z-Private Virtual Circuits

161
Q

RDP

A

z-Provides terminal sessions w/out

162
Q

Repeaters

A

layer 1 network device that is used to connect network segments together, but provides no traffic control (a concentrator).

163
Q

Restricted Address

A

Incoming calls are only allowed from specific addresses on an approval list. This authenticates the node, not the user!

164
Q

Reverse address resolution protocol

A

When a hardware address is known but the IP address has to be found. (like an diskless machine)
Switches, bridges, hardware addressing

165
Q

RING

A

Workstations are connected to form a closed loop

166
Q

Rogue access points

A

unauthorized wireless network access device

167
Q

Routers

A

a layer 3 device that used to connect two or more network segments and regulate traffic

168
Q

RST flag

A

Used to reset or disconnect a session, resumed by restarting the connection via a new three-way handshake

169
Q

S/MIME Certificates

A

Used for signed and encrypted emails, can form sign, and use as part of a SSO solution

170
Q

Satellite

A

a specialized wireless receiver/transmitter placed in orbit that facilitates long distance communication

171
Q

Screened-Host firewall system

A

Has both a packet-filter router and a bastion host. Provides both network layer (package filtering) as application layer (proxy) server.

172
Q

Screenscraper

A

Copy actual screen, subset of remote control

173
Q

SDN

A

 z-Unique approach to network operation, design, and management. Aims at separating the infrastructure layer (i.e., hardware and hardware-based settings) from the control layer (i.e., network services of data transmission management). Furthermore, this also removes the traditional networking concepts of IP addressing, subnets, routing, and so on from needing to be programmed into or be deciphered by hosted applications. Offers a new network design that is directly programmable from a central location, is flexible, is vendor neutral, and is open-standards based.

174
Q

SDSL

A

Symmetric up to 10,000 feet over single copper cable pair

175
Q

Secure Electronic Transaction

A

Authentication for credit card transactions. Overtaken by SSL
Also uses message authentication code for integrity checking.

176
Q

Secure Shell

A

Authentication, compression, confidentiality and integrity.
Uses RSA certificates for authentication and triple DES for encryption

177
Q

Secure Socket Layer

A

Encryption technology to provide secure transactions like credit card numbers exchange. Two layered: record protocol and handshake protocol. Same as SSH it uses symmetric encryption for private connections and asymmetric or public key cryptography for peer authentication.

178
Q

Security Perimeter

A

 z-The first line of protection between trusted and untrusted networks. Generally includes a firewall and router that help filter traffic. May also include proxies, IDSs, and IPSs.
Zero Day – application white list

179
Q

Sequence Attacks

A

An attack involving the hijacking of a TCP session by predicting a sequence number.

180
Q

Session Layer 5

A

z- – None
Inter-host communication, logical persistent connection between peer hosts, a conversation, simplex, half duplex, full duplex. Protocols as NSF, SQL, RADIUS, and RPC. Protocols: PAP, PPTP, RPC Technology: Gateway
Examples: DNS, NFS

181
Q

Shielding

A

Enclosure of electronic communication devices to prevent leakage of electromagnetic signals.

182
Q

SHTTP

A

Encrypting HTTP documents. Also overtaken by SSL

183
Q

Simple Key Management for Internet Protocols

A

Provides high availability in encrypted sessions to protect against crashes. Exchanges keys on a session by session basis.

184
Q

Simple Mail Transfer protocol

A

Email queuing. Port 25

185
Q

Simple Networking Management Protocol

A

Collection of network information by polling the devices from a management station. Sends out alerts –called traps- to an database called Management Information Bases (MIBs)

186
Q

Site Survey

A

Identify areas where wireless network may be accessible

187
Q

Smurf

A

A Denial of Service attack initiated by sending spoofed ICMP echo request to IP broadcast addresses

188
Q

Screened-subnet firewalls

A

Has also defined a De-Militarized Zone (DMZ) : a small network between trusted an untrusted

189
Q

Sequence attacks

A

an attack involving the hijacking of a TCP session by predicting a sequence number

190
Q

Sniffing

A

eavesdropping on network communications by a third party

191
Q

Socks firewall

A

Every workstation gets some Socks software to reduce overhead

192
Q

Software designed networking

A

SDN: defined and configured as code or software, quickly change the network based on organizational requirements

193
Q

SONET

A

Protocol for sending multiple optical streams over fiber

194
Q

Source routing exploitation

A

a vulnerability in IP that allows an attacker to dictate the path of a communication and thereby access an internal network

195
Q

Spam

A

unsolicited commercial email

196
Q

Speeds

A

T-1 – 1.544 Mbps, T-3 – 44,736 Mbps (45)
ATM – 155 Mbps, ISDN – 64 or 128 Mbps
CAT 3 UTP; 10 Mbps, CAT 5;100 Mbps CAT 5e/6 – 1,000 Mb

197
Q

SPIT attacks

A

Spam over Internet Telephony and targets VoIP systems

198
Q

SSID

A

Normally disabled for secure networks

199
Q

Stand-alone Mode

A

Isolated system

200
Q

STAR

A

Nodes are connected to a central LAN device

201
Q

Stateful inspection firewall

A

Third generation: (also known as Dynamic) All packages are inspected at the Networking layer so it’s faster. By examining the state and context of the data packages it helps to track connectionless protocols like UDP and RPC. Analyzed at all OSI Layers.

202
Q

Stateful packet filtering firewalls

A

Layer 7 : have access to information such as; conversation, look at state table and context of packets; from which to make their decisions.

203
Q

Static Packet Firewall

A

z- Layer 3

204
Q

SUBNET

A

Logical division of a network

205
Q

Supernet

A

Made up of two or more networks

206
Q

Switched Multimegabit DATA Service

A

SMDS: high speed communication over public switches networks for exchanging
‘bursts of data’ between enterprises

207
Q

Switched Virtual Circuit

A

SVC: more like a shortwave or ham radio. You must tune the transmitter and receiver to a new frequency every time you want to communicate with someone.

208
Q

Switches

A

a layer 2 device that used to connect two or more network segments and regulate traffic

209
Q

Symmetric Multiprocessors

A

SMP: hardware and software architecture where two or more identical processors are connected to a single, shared main memory, have full access to all I/O devices, and are controlled by a single operating system instance that treats all processors equally, reserving none for special purposes.

210
Q

SYN flooding

A

a denial of service attack that floods the target system with connection requests that are not finalized

211
Q

Synchronous

A

Very high speed governed by electronic clock timing signals

212
Q

Synchronous Data Link Control

A

SDLC: created by IBM for mainframes to connect to their remote offices. Uses a polling media access method. Works with dedicated leased lines permanent up.Data link layer of OSI model

213
Q

tapping

A

eavesdropping on network communications by a third party

214
Q

Tar pits

A

mitigation of spamming and other attacks by delaying incoming connections as long as possible

215
Q

TCP Three-way Handshake

A

SYN, SYN-/ACK, ACK
Protocols: TCP, UDP, SSL, SSH-2, SPX, NetBIOS, ATP

216
Q

Teardrop

A

a denial of service attack that exploits systems that are not able to handle malicious, overlapping and oversized IP fragments

217
Q

Telnet

A

Terminal emulation enables user to access resources on another machine. Port 23

218
Q

TEMPEST

A

a codename that refers to the study and mitigation of information disclosure via electromagnetic emanations from electronic equipment

219
Q

Thicknet

A

10Base5, coax up to 500 meters

220
Q

Thinnet

A

10base2 with coax cables up to 185 meters

221
Q

Tiers

A

z-Design separates distinct protected zones and can be protected by a single firewall that has multiple interfaces

222
Q

TKIP

A

Temporal Key Integrity Protocol, uses RC4

223
Q

Token passing

A

Used in token rings, Hosts can only transit when they receive a clear to send token. DATA NETWORK TYPES

224
Q

Token Ring IEEE 802.5

A

IBM created. All end stations are connected to a MAU Multi Access Unit. CAU: Controlled Access Units – for filtering allowed MAC (Extended Unique Identifier) addresses.

225
Q

Transmission control protocol

A

z-Reliable, sequences and works with acknowledgements. Provides a manageable data flow to avoid congestions overloading and data loss. (Like having a telephone conversation with someone). Connection Oriented. User UDP, Datagram protocol – unreliable, scaled down version of TCP, no error correction, no sequencing. Less overhead. (Like sending a letter to someone). Connectionless.

226
Q

Transport Layer 4

A

z- C, AU, I
End-to-end data transfer services and reliability. Technology:
Gateways. Segmentation, sequencing, and error checking at this layer. Datagrams
Examples: TCP which uses IP in network layer, UDP, SSH

227
Q

Transport Layer Security

A

z-TLS: encrypt and protect transactions to prevent sniffing while data is in transit along with VPN and IPsec
most effective control against session hijacking
ephemeral session key is used to encrypt the actual content of communications between a web server and client
TLS - MOST CURRENT not SSL!!!

228
Q

TREE

A

Bus type with multiple branches

229
Q

Trivial File Transfer Protocol

A

Stripped down, can only send/receive but not browse directories. No authentication thus insecure. Port 69

230
Q

Twisted pair

A

a simple, inexpensive cabling technology consisting of two conductors that are wound together to decrease interference

231
Q

Types of Wireless Networks

A

z-Uses the 802.11x specification to create a wireless LAN

232
Q

Unicast

A

Packet is sent from single source to single destination

233
Q

User Datagram Protocol

A

UDP: lightweight service for connectionless data transfer without error detection and correction

234
Q

UTP

A

10BaseT=10MBps
100baseT=Fast Ethernet =100MBps
1000BaseT=Gigabit Ethernet=1GBps
Ethernet networks were originally designed to work with more sporadic traffic than token ring networks

235
Q

Valid Subnet Masks

A

255,254,252,248,240,224,192,128

236
Q

VDSL

A

Very High speed 13-52MBps down, 1,5-2,3 Mbps upstream over a single copper pair over 1,00 to 4500 feet

237
Q

Virtual Private Networks VPN

A

Created by dynamically building a secure communications link between two nodes, using a secret encapsulation method via network address translation (NAT) where internal IP addresses are translated to external IP addresses. Cannot double NAT with the same IP range, same IP address cannot appear inside and outside of a NAT router.

238
Q

Voice over IP

A

Voice over Internet Protocol (VoIP) - a protocol for the efficient transmission of voice over the Internet

239
Q

VPN Devices

A

Hardware or software to create secure tunnels

240
Q

WAF

A

z-Web Application Firewall

241
Q

WAN switches

A

Multi-port networking devices that are used in carrier networks. Connect private data over public data by using digital signals. Data link layer.

242
Q

War dialing

A

reconnaissance technique, involving automated, brute force identification of potentially vulnerable modems

243
Q

War driving

A

searching for wireless networks in a moving car

244
Q

Wi-Fi

A

wireless local area network technology specified in the 802.11 sub group A, B, G, or N

245
Q

WI-MAX

A

“Worldwide Interoperability of Microwave Access” (IEEE 802.16) is a specification for wireless Metropolitan Area Networks that provides an alternative to the use of cable and DSL for last mile delivery

246
Q

Wide Area network

A

WAN: Connects LANS over a large geographical area

247
Q

Wired Extension Mode

A

Uses WAP to link wireless clients to a wired network

248
Q

Wireless speeds

A

Wi-Fi 6E (802.11ax), Max Linkrate = 600 to 9608 Mbit/s, Adopted = 2020, Frequency = 6 GHz
Wi-Fi 6 (802.11ax), Max Linkrate = 600 to 9608 Mbit/s, Adopted = 2019, Frequency = 2.4/5 GHz
Wi-Fi 5 (802.11ac), Max Linkrate = 433 to 6933 Mbit/s, Adopted = 2014, Frequency = 5 GHz
Wi-Fi 4 (802.11n), Max Linkrate = 72 to 600 Mbit/s, Adopted = 2008, Frequency = 2.4/5 GHz
(Wi-Fi 3)* 802.11g, Max Linkrate = 6 to 54 Mbit/s, Adopted = 2003, Frequency = 2.4 GHz
(Wi-Fi 2)* 802.11a, Max Linkrate = 6 to 54 Mbit/s, Adopted = 1999, Frequency = 5 GHz
(Wi-Fi 1)* 802.11b, Max Linkrate = 1 to 11 Mbit/s, Adopted = 1999, Frequency = 2.4 GHz
(Wi-Fi 0)* 802.11, Max Linkrate = 1 to 2 Mbit/s, Adopted = 1997, Frequency = 2.4 GHz

249
Q

WPA

A

Uses TKIP for data encryption

250
Q

WPA2

A

Based on 802.11i, uses AES, key management, reply attack protection, and data integrity, most secure, CCMP included, WPA2 ENTERPRISE Mode - uses RADIUS account lockout if a password-cracker is used

251
Q

X25

A

Defines point-to-point communication between Data terminal Equipment (DTE) and Data Circuit Terminating Equipment (DCE)

252
Q

xDSL

A

Digital subscriber Line uses telephone to transport high bandwidth data to remote subscribers

253
Q

zero trust

A

organizations should not automatically trust anything inside or outside its perimeters and instead must authenticate and verify all subjects, objects, and actions before granting access

254
Q

OSI Layer 1

A

Physical - Responsible for transmission of bits. Implemented primarily through hardware. Encompasses signaling method, electrical and mechanical interfaces

Devices = access point, concentrator/patch panel, hub, multiplexers, modem, repeater

Protocol = EIA-TIA 534

Security Protocol =

Attacks = Physical

255
Q

OSI Layer 2

A

Data Link = responsible for error-free, reliable, transmission of data. Flow control, error detection and correction, retransmission. Uses MAC addresses.

Devices = bridge, switch

Protocol = X.25, Frame Relay, Asynchronous Transfer Mode (ATM), DOCSIS, Multi Protocol Label Switching (MPLS), Generic MPLS

Security Protocol =

Attacks = Physical

256
Q

OSI Layer 3

A

Network = Transport of information. Abstraction of routing information. Not needed on direct links.

Devices = router

Protocol =
Routing->Authenticated(BGP, OSPF)
Routing->Unauthenticated(Routing Information Protocol, RIP, routing table compromise)

Network->Internet Protocol (IP)->IPv4
Network->Internet Protocol (IP)->IPv6
Network->Not answers->IPX (Novell), DRP (DECnet), DDP, (AppleTalk), CLNP (ISO)

Testing->Internet Control Message Protocol (ICMP)

Multicast->Internet Group Message Protocol (IGMP)

Tunneling -> Point to Point Tunneling Protocol (PPTP)
Tunneling-> Layer 2 Tunneling Protocol (L2TP)

Security Protocol = IPSec

Attacks =

Integrity =
port scanning (scanning tool, FIN NULL XMAS scanning, source routing exploitation, syn scanning)
session hijacking (tcp sequence number attacks, sequence attacks)
IP address spoofing,
ping scanning,
traceroute exploitation

Confidentiality =
source routing exploitation,
eavesdropping

Availability =
ICMP redirect attacks,
denial of service/distributed denial of service (syn flooding, smurf, fraggle),
ping of death,
IP fragmentation attacks (overlapping fragment attack, teardrop)

257
Q

OSI Layer 4

A

Transport = Connection, Connectionless, 3-way handshake, Exchange of data between end systems, error free, in sequence, no losses, no duplicates, quality of service

Devices =

Protocol =
Transmission Control Protocol (TCP)
User Datagram Protocol (UDP)
SPX -> old, not answer for exam

Security Protocol =

Attacks =

Integrity =
port scanning (scanning tool, FIN NULL XMAS scanning, source routing exploitation, syn scanning)
session hijacking (tcp sequence number attacks, sequence attacks)
IP address spoofing,
ping scanning,
traceroute exploitation

Confidentiality =
source routing exploitation,
eavesdropping

Availability =
ICMP redirect attacks,
denial of service/distributed denial of service (syn flooding, smurf, fraggle),
ping of death,
IP fragmentation attacks (overlapping fragment attack, teardrop)

258
Q

OSI Layer 5

A

Session = control of dialogues between applications, dialogue discipline, recovery, sockets/winsock

Devices =

Protocol =

Remote Procedure Call (RPC),
Real-time Transport Control Protocol (RTCP),
SOCKS (Internet socket)

Security Protocol =

Attacks = application buffer overflows

259
Q

OSI Layer 6

A

Presentation = Data conversion. Character Code Translation. Compression. Encryption and Decryption.

Devices =

Protocol =
CODEC (Compression/Decompression)
Compression formats (Video [jpeg, h.261], Audio [mpeg, g.711]),
Abstract Syntax Notation One (ASN.1)

Security Protocol =

Attacks = application buffer overflows

260
Q

OSI Layer 7

A

Application =

Asynchronous messaging (e-mail and news, Simple mail transfer protocol, Post office protocol, Internet message access protocol, Network news transfer protocol)

Instant messaging (Open protocols, applications and services, proprietary application and services)

Data exchange (world wide web, file transfer protocol, trivial file transfer protocol, hypertext transfer protocol, passive and active content [activex, java, javascript])

Administrative services (Simple network management protocol v3, RMON by Cisco)

Remote access services (RADIUS Remote Authentication Dial In User Service, Telnet Terminal emulation protocol, Remote login [rlogin], remote shell [rsh], remote copy [rcp])

Devices =
Protocol =
Security Protocol =

Attacks = application buffer overflows

261
Q

when an adversary drains a client node’s battery by sending a constant series of management messages to the subscriber station/mobile subscriber (SS/MS)

A

Water torture attack

262
Q

ports

A

FTP: 20/21
SSH: 22
Telnet: 23
SMTP: 25
DNS: 53
HTTP: 80
POP3: 110
NTP: 123
Windows File Sharing: 135, 137-139, 445
HTTPS: 443
LPR/LPD: 515
Microsoft SQL Server: 1433/1434
Oracle: 1521
H.323: 1720
PPTP: 1723
RDP: 3389
HP JetDirect printing: 9100