Domain 4 - Communication and Network Security Flashcards

1
Q

Defense in depth

A

Have defenses throughout the network. Not just in perimeter.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Simplex

A

one way (radio, broadcast tv).

Way to define network comms like full/half duplex.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Baseband

A

Network has one channel and can only send one signal at a time.

ethernet is baseband

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Broadband

A

Networks have multiple channels and can send multiple signals at a time, like cable TV

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Analog comms

A

comms are a continuous wave of information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Digital comms

A

Transfer data in bits, ones and zeros.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

PAN

A

Personal Area Network (bluetooth is best example)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

LAN

A

Local Area network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

MAN

A

Metropolitan area network. Confined to a Zip code or city usually

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

WAN

A

Wide Area Network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

GAN

A

Global Area network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Circuit-switched networks

A

Dedicated circuit or channel is dedicated between two nodes. Circuit is dedicated to data flow.

Not resilient

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Packet-switched network

A

Data is broken up and sent individually. Unused bandwidth is available for other stuff.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Layered Design

A

OSI, TCP/IP models are an example. Functions in one layer do not directly affect another.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Network Model

A

description of how a network protocol suite works/operates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Network Stack

A

Suite of protocols programmed in software or hardware

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Protocol

A

set of rules that end points in telecommunications use dto communicate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

OSI Model

A

Open System Interconnetion

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

OSI origin org

A

ISO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

OSI LAyers

A
Physical - Bits
Data Link
Network
Transport
Session
Presentation
Application
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Physical Data unit

A

bits

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Data Link data unit

A

frames

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Network data unit

A

packet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Transport data unit

A

segment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Session, presentation, and application data unit

A

data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Physical layer

A

Dumb. Encapsulates cable standards, repeaters, electrical signals.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Data Link

A

Switch, or bridge. ethernet card and MAC address.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

Data Linc sub layer 1

A

MAC Media Access Control, interface.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Data Link sub layer 2

A

LLC Logical Link Control. Handles LAN comms, touches layer 3.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

Network layer

A

IP addresses and layers. IPV4, IPV6, others. Routers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Transport Layer

A

TCP, UDP, GRE. handles packet sequencing, flow control, error detection.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

Session

A

Duplexes live here. Manages sessions, provides maintenance to connections.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Presentation

A

Presents data to apps and user in comprehensible ways

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Application

A

What user interfaces with. apps live here. Complex protocols live here.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Please Do not Tell Sales People Anything

A

Physical, Data Link, Network, Transport, Session, presentation, Application

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

TCP/IP Model creator

A

Created by DARPA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

TCP/IP model

A

suite of protocls using UDP, icmp, among others.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

TCP/IP Layers

A
Network Access layer (OSI physical and data link)
Internet Layer(osi network)
Transport Layer (osi transport)
Application layer (OSI session, presentation, app)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Encapsulation

A

takes info from a higher leayer and adds a header to it. One layer’s header is a lower layers’ data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

EUI-64 MAC Addresses

A

Extends serial portion of MAC from 24 to 40 bits.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

IP Header length

A

20 bytes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Key IP HEader fields

A
IP Version
Type of service
time to live
protocol tcp/udp, etc
source and dest ips
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

IPV6 routing

A

Simpler routing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

IPV6 header size

A

40 bytes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

IPV6 header contents

A
IP Version
source/dest address
traffic class
flow label
payload length
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

Stateless Autoconfig ipv6

A

takes host MAC Address and uses it to config IPV6

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

Statefull autoconfig ipv6

A

uses DHCP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

IPV6 sec challenges

A

Deveices can give themselves IP addresses

Many network pros have limited experience.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

RFC 1918

A

defines private addresses and NAT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

Static NAT

A

one to one

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

Pool Nate (AKA Dynamic NAT)

A

reserves a number of public IPs in a pool. Addresses can be assigned from pool then returned.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

PAT

A

port address translation, NAT overloading. Many to one translation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

TCP header fields

A
20 bytes minimum
source/dest port
sequence and ack numbers. 
TCP flags
window size
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

DNSSEC

A

Provides security extensions to DNS to authenticate DNS servers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

PVC

A

Permanent virutal circuit

dedicated bandwidth

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

SVC

A

switched virtual circuit - on demand

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

DLCI

A

data link connection identifier

58
Q

x.25

A

strong error connection. packet switched WAN protocol

59
Q

SDLC

A

layer 2 wan

uses polling to transmit data

60
Q

HDLC

A

High-level data link control

3 modes of operation

61
Q

Converged protocol

A

multilayer protocol

DNP3 distributed netwrk protocol is most used

62
Q

Converged protocol

A

multilayer protocol

DNP3 distributed netwrk protocol is most used

63
Q

FHSS

A

Frequency Hopping Spread spectrum
method of sending traffic on radio band
-designed to maximize throughput while minimizing effects of interference
- Hops through frequency channels in random order.

64
Q

DSSS

A

Direct Sequence Spread Spectrum. Uses entire breatdh of radio spectrum available.

65
Q

OFDM

A

orthogonal frequency division multiplexing. Newer multiplexing method. Allows concurrent transmissions on multiple independent wireless frequencies.

66
Q

Managed Mode wireless network

A

clients cannot connect to anyone other than the access point

67
Q

Master Mode wireless network

A

can only conect with clients who are in managed mode.

68
Q

Ad-hoc mode wireless network

A

peer to peer comms without central access point

69
Q

monitor mode

A

read-only for sniffing WLAN traffic.

70
Q

WEP

A

wired equivalent privacy protocol. WEAK.

71
Q

WEP key lengths

A

40 and 104

72
Q

802.11i - AKA WPA2

A

first wireless security standard

provides reasonable security.

73
Q

Bluetooth speeds

A

3 Mbps. Version 3 is faster

74
Q

bluetooth classes

A

Class 3- under 10 meters
Class 2- 10 meters
Class 1- 100 meters

75
Q

bluetooth encryption

A

weak. real world equivalent of about 38 bit skey length.

76
Q

RFID

A

radio frequency identification

tech used to create wirelessly readable tags for animals or objects

77
Q

RFID

A

radio frequency identification

tech used to create wirelessly readable tags for animals or objects

78
Q

RFID type Active

A

has a battery
active tag broadcasts
can operate over larger distances
toll transponders

79
Q

RFID - type Semi passive

A

has a batttery

have to get close to reader, relies on readers’ power

80
Q

RFID - passive type

A

no battery

relies on RFID reader’s power

81
Q

Routing, Split Horizon

A

Avoids routing loops. Means a router won’t send traffic back out a link it initially arrived on.

82
Q

Hold down timer

A

avoids flapping

83
Q

BGP RFC#

A

RFC4271

84
Q

Packet filter firewall

A

simple and fast. Each filtering decision made on a per packet basis. No way to refer to past packets to make current decision.

stateless

85
Q

Statefull firewall

A

keeps a state table of connections to better analyze traffic. Slower than packet filter

86
Q

Proxy firewall

A

firewalls that act as intermediary servers.

87
Q

DTE/DCE

A

Data terminal equipment. Data circuit-terminating equipment

Syncronous, DCE provides clock signal

88
Q

PAP

A

clear text auth protocol

89
Q

CHAP

A

More secure than PAP.

Password is securely created.

Server stores plaintext passwords.

90
Q

802.1x

A

Port based network access control.

Includes EAP - extensible auth protocol.

91
Q

LEAP

A

type of EAP - cisco proprietary. Should not be used

92
Q

EAP TLS

A

Uses PKI. Dual side authentication. Encrypted

93
Q

EAP- TTLS

A

tunneled transport security layer.

Drops client side certificate

94
Q

PEAP

A

Protected EAP

95
Q

SLIP

A

Serial line internet protocol.

layer 2

96
Q

PPP

A

replaced SLIP

97
Q

PPTP

A

point to point tunneling protocol. tunnels PPP via IP

98
Q

L2TP

A

layer 2 tunneling protocol.

Combines PPTP and L2F (layer 2 forwarding)

No confidentiality

99
Q

VPN

A

Necessary because IPV4 isn’t encrypted by default.

100
Q

ESP

A

Encapsulating security payload

IP Protocol 50

101
Q

AH

A

Auth Header

IP Protocol 51

102
Q

Extranet

A

Connection between private intranets, such as between business partner intranets.

103
Q

BOOTP

A

bootstrap protocol.

104
Q

UTP

A

Unshielded twisted pair

105
Q

STP

A

shielded twisted pair

106
Q

Cat 1

A

analog voice

107
Q

Cat 2

A

ARCNET, up to 4 Mbps

108
Q

Cat 3

A

10baseT

109
Q

Cat 4

A

Token Ring - 16 Mbps

110
Q

Cat 5

A

100 Mbps

111
Q

Cat 5e

A

1000 Mbps

112
Q

Cat 6

A

1000 Mbps

113
Q

multimode fiber

A

uses multiple paths, used for shorter distances

114
Q

singlemode fiber

A

uses one path, used for long haul high speed network.

115
Q

CSMA

A

Carrier sense multi access. Addresses collisions in ethernet network.

CSMA/CA - collision avoidance

CSMA/CD - Collision detection

116
Q

ARCNET

A

Attached resource computer network

117
Q

ARCNET topology and speed

A

star. 2.5 Mbps.

118
Q

Token Ring topo and speed

A

physical star, 16 mbps,

Physical star - but stations pass the token in a logical ring.

119
Q

FDDI

A

Fiber distributed data interface.

another ring technology. Up to 100 Mbps in speed. Uses a backup ring.

120
Q

ATM

A

Asyncronous Transfer Mode

WAN tech that uses fixed length cells. Cells are 53 bytes

121
Q

MPLS

A

Multiprotocol label switching.

Forwards WAN traffic via labels

122
Q

Converged protocol

A

provide services over Ethernet /TCP IP that normally wouldn’t use that.

123
Q

DNP3

A

Distributed network protocol

Open standard used primarily in the energy sector for interoperability between various SCADA devices.

124
Q

FCoE

A

Fiber channel (over ethernet) - means you can use Ethernet switches instead of requiring fiber channel switches.

125
Q

WLAN DoS and Availability

A

WLANs are susceptible to DOS attacks.

126
Q

Bastion Host

A

Hardened device, sits directly on internet. Usually provides a single service and has everything else turned off.

127
Q

Dual-homed host

A

Two network interfaces. One connectes to a trusted network, another to an untrusted network.

128
Q

EAP Acronym

A

Extensible authentication protocol

129
Q

Wireless Application Protocol (WAP)

A

provides secure web services to handheld wireless devices. Uses HDML - Handheld Device Markup Language.

130
Q

Content distribution Network

A

CDN.

Geographically diverse caching servers to improve performance for all users. I.e. netflix, amazon, cloudflare, etc.

131
Q

TCP port range

A

0-65,535

132
Q

TCP Reserved ports

A

1023 or lower`

133
Q

ephemeral ports TCP

A

1024 tp 65,535

134
Q

ICMP

A

Layer 3 protocol. Uses types and codes instead of port numbers.

135
Q

FTP Ports (Control and Data)

A

Active:

Control = client port 1025 to server 21
Data flow = Server 20 to 1026

Passive:

Control = client port 1025 to server 21
Data flow = Server 1026 to 1025

136
Q

Frame Relay

A

packet-switched, layer 2 WAN tech. No error correction

137
Q

DNP3

A

Distributed Network Protocol. Primarily used in energy sector for SCADA Smart grid applications.

138
Q

802.11 a

A

First, 2 Mb/s

139
Q

802.11 b

A

Second, 11 Mb/s

140
Q

802.11 g

A

Third, backwards compatible with 802.11b. 54 Mb/s

141
Q

802.11 n

A

First to use both 2.4 and 5 Ghz frequencies. Uses MIMO (multiple input, multiple output) to use more than one antenna.

142
Q

802.11ac

A

5Ghz only. Speeds up to 1.3 Ghz