Domain 4 - Communication and Network Security

Question 1

OSI Layer 7

Answer 1

Application Layer

Question 2

OSI Layer 6

Answer 2

Presentation Layer

Question 3

OSI Layer 5

Answer 3

Session Layer

Question 4

OSI Layer 4

Answer 4

Transport Layer

Question 5

OSI Layer 3

Answer 5

Network Layer

Question 6

OSI Layer 2

Answer 6

Data Link Layer

Question 7

OSI Layer 1

Answer 7

Physical Layer

Question 8

HTTP, FTP, LPD, SMTP, Telnet, TFTP, EDI, POP3, IMAP, SNMP, NNTP, S-RPC, and SET. Which OSI Layer are these protocols found?

Answer 8

Application - Layer 7

Question 9

Encryption protocols and format types, such as ASCII, EBCDICM, TIFF, JPEG, MPEG, and MIDI. Which OSI Layer are these protocols found?

Answer 9

Presentation - Layer 6

Question 10

NFS, SQL, and RPC. Which OSI Layer are these protocols found?

Answer 10

Session - Layer 5

Question 11

SPX, SSL, TLS, TCP, and UDP. Which OSI Layer are these protocols found?

Answer 11

Transport - Layer 4

Question 12

ICMP, RIP, OSPF, BGP, IGMP, IP, IPSec, IPX, NAT, and SKIP. Which OSI Layer are these protocols found?

Answer 12

Network - Layer 3

Question 13

SLIP, PPP, ARP, RARP, L2F, L2TP, PPTP, FDDI, ISDN. Which OSI Layer are these protocols found?

Answer 13

Data Link - Layer 2

Question 14

EIA/TIA-232, EIA/TIA-449, X.21, HSSI, SONET, V.24, and V.35. Which OSI Layer are these protocols found?

Answer 14

Physical - Layer 1

Question 15

Which layer of the OSI Model is ARP and RARP found?

Answer 15

Data Link - Layer 2

Question 16

Which layer of the OSI Model is ICMP and NAT found?

Answer 16

Network Layer - Layer 3

Question 17

Which layer of the OSI Model is RPC found?

Answer 17

Session Layer - Layer 5

Question 18

Which layer of the OSI Model is HTTP and TFTP found?

Answer 18

Application Layer - Layer 7

Question 19

Which layer of the OSI Model is Encryption protocols and JPEG found?

Answer 19

Presentation Layer - Layer 6

Question 20

Which layer of the OSI Model is SSL and TLS found?

Answer 20

Transport Layer - Layer 4

Question 21

What are the four TCP/IP layers?

Answer 21

Application, Transport, Internet and Link

Question 22

Application model in TCP/IP is equivalent to what layers in OSI?

Answer 22

Application, Presentation and Session (layers 7-5)

Question 23

Transport layer in TCP/IP is equivalent to what layers in OSI?

Answer 23

Transport - Layer 4

Question 24

Internet layer in TCP/IP is equivalent to what layers in OSI?

Answer 24

Network - Layer 3

Question 25

Link layer in TCP/IP is equivalent to what layers in OSI?

Answer 25

Data Link and Physical - Layers 2 and 1

Question 26

An open network architecture guide for network product vendors. This standard, or guide, provides a common foundation for the development of new protocols, networking services, and even hardware devices.

Answer 26

The OSI Model

Question 27

Data name at Application, Presentation and Session layers

Answer 27

Data stream (or just data)

Question 28

Data name at Transport layer

Answer 28

Segment

Question 29

Data name at Network layer

Answer 29

Packet

Question 30

Data name at Data Link layer

Answer 30

Frame

Question 31

Data name at Physical layer

Answer 31

Bits

Question 32

What are the OSI model data names in order (top to bottom)?

Answer 32

Data, Segment, Packet, Frame, Bits

Question 33

Which TCP/IP layer would the protocols FTP and Telnet be found?

Answer 33

Application layer

Question 34

Which TCP/IP layer would the protocols TCP and UDP be found?

Answer 34

Transport Layer

Question 35

Which TCP/IP layer would the protocols ICMP and IP be found?

Answer 35

Internet Layer

Question 36

Which TCP/IP layer would the protocol Ethernet be found?

Answer 36

Link layer

Question 37

Transport layer protocol of TCP/IP that is a full duplex connection-oriented protocol?

Answer 37

TCP

Question 38

Transport layer protocol of TCP/IP that is a simplex connectionless protocol?

Answer 38

UDP

Question 39

This can be used to manage traffic, improve performance, and enforce security. Examples include intranet, extranet, and DMZ.

Answer 39

Network segmentation

Question 40

A form of network data storage solution (i.e.,

SAN (storage area network) or NAS (network-attached storage)) that allows for high-speed file transfers.

Answer 40

Fibre Channel

Question 41

This is used to encapsulate Fibre Channel communications over Ethernet networks.

Answer 41

FCoE (Fibre Channel over Ethernet)

Question 42

A networking storage standard based on IP.

Answer 42

iSCSI (Internet Small Computer System Interface)

Question 43

The IEEE standard for wireless network communications.

Answer 43

802.11

Question 44

The process of investigating the presence, strength, and reach of wireless access points deployed in an environment. This task usually involves walking around with a portable wireless device, taking note of the wireless signal strength, and mapping this on a plot or schematic of the building.

Answer 44

Site survey

Question 45

An early alternative to WEP. This technique was an improvement but was itself not fully secure. It is based on the LEAP and TKIP cryptosystem and employs a secret passphrase.

Answer 45

Wi-Fi Protected Access (WPA)

Question 46

a new encryption scheme known as the Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP), which is based on the AES encryption scheme.

Answer 46

WPA2

Question 47

is defined by the IEEE 802.11 standard. It was designed to provide the same level of security and encryption on wireless networks as is found on wired or cabled networks. It provides protection from packet sniffing and eavesdropping against wireless transmissions. A secondary benefit is that it can be configured to prevent unauthorized access to the wireless network. It uses a predefined shared secret key.

Answer 47

Wired Equivalent Privacy (WEP)

Question 48

An authentication framework that allows for new

authentication technologies to be compatible with existing wireless or point-to-point connection technologies.

Answer 48

EAP (Extensible Authentication Protocol)

Question 49

encapsulates EAP methods within a TLS tunnel that provides authentication and potentially encryption.

Answer 49

PEAP (Protected Extensible Authentication Protocol)

Question 50

a Cisco proprietary alternative to TKIP for WPA. This was developed to address defi ciencies in TKIP before the 802.11i/WPA2 system was ratified as a standard.

Answer 50

LEAP (Lightweight Extensible Authentication Protocol)

Question 51

A list of authorized wireless client interface

MAC addresses that is used by a wireless access point to block access to all non-authorized devices.

Answer 51

MAC filtering

Question 52

This was designed as the replacement for WEP without requiring replacement of legacy wireless hardware. It was implemented into 802.11 wireless networking under the name WPA (Wi-Fi Protected Access).

Answer 52

TKIP (Temporal Key Integrity Protocol)

Question 53

This was created to replace WEP and TKIP/WPA. It uses AES (Advanced Encryption Standard) with a 128-bit key.

Answer 53

CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol)

Question 54

An authentication technique that redirects

a newly connected wireless web client to a portal access control page.

Answer 54

captive portal

Question 55

What the are the standard network topologies

Answer 55

Ring, bus, star and mesh

Question 56

Name the four basic types of firewalls

Answer 56

static packet filtering, application-level gateway, circuit-level gateway, and stateful inspection

Question 57

Examples of protocol services used to connect LAN and WAN communication technologies

Answer 57

Frame Relay, SMDS, X.25, ATM, HSSI, SDLC, HDLC, and ISDN.

Question 58

The addition of a header, and possibly a footer, to the data received by each layer from the layer above before it’s handed off to the layer below.

Answer 58

Encapsulation

Question 59

What is the range of well-known or the service ports?

Answer 59

0-1023 (first 1,024)

Question 60

Name the steps of the TCP handshake process.

Answer 60

Client sends a SYN (synchronize) flagged packet to the server. The server responds with a SYN/ACK (synchronize and acknowledge) flagged packet
back to the client. The client responds with an ACK (acknowledge) flagged packet back to the server.

Question 61

Name the two methods to disconnect a TCP session

Answer 61

FIN (finish) flagged packets and RST (reset) flagged packets

Question 62

Is used to to resolve IP addresses (32-bit binary number for logical addressing) into Media Access Control (MAC) addresses.

Answer 62

Address Resolution Protocol (ARP)

Question 63

Is used to resolve MAC addresses into IP addresses.

Answer 63

Reverse Address Resolution Protocol (RARP)

Question 64

TCP port 23

Answer 64

Telnet

Question 65

TCP Ports 20 and 21

Answer 65

File Transfer Protocol (FTP)

Question 66

UDP Port 69

Answer 66

Trivial File Transfer Protocol (TFTP)

Question 67

TCP Port 25

Answer 67

Simple Mail Transfer Protocol (SMTP)

Question 68

TCP Port 110

Answer 68

Post Office Protocol (POP3)

Question 69

TCP Port 143

Answer 69

Internet Message Access Protocol (IMAP)

Question 70

This is a terminal emulation network application that supports remote connectivity for executing commands and running applications but does not support transfer of files.

Answer 70

Telnet

Question 71

This is a network application that supports an exchange of files that requires anonymous or specific authentication.

Answer 71

File Transfer Protocol (FTP)

Question 72

This is a network application that supports an exchange of files that does not require authentication.

Answer 72

Trivial File Transfer Protocol (TFTP)

Question 73

This is a protocol used to transmit email messages from a client to an email server and from one email server to another.

Answer 73

Simple Mail Transfer Protocol (SMTP)

Question 74

This is a protocol used to pull email messages from an inbox on an email server down to an email client.

Answer 74

Post Office Protocol (POP3)

Question 75

This is a protocol used to pull email messages from an inbox on an email server down to an email client. It is more secure than POP3 and offers the ability to pull headers down from the email server as well as to delete messages directly off the email server without having to download to the local client first.

Answer 75

Internet Message Access Protocol (IMAP)

Question 76

UDP Ports 67 and 68

Answer 76

Dynamic Host Configuration Protocol (DHCP)

Question 77

This uses port 67 for server point-to-point response and port 68 for client request broadcasts. It is used to
assign TCP/IP confi guration settings to systems upon bootup. It enables centralized control of network addressing.

Answer 77

Dynamic Host Configuration Protocol (DHCP)

Question 78

TCP Port 80

Answer 78

Hypertext Transport Protocol (HTTP)

Question 79

This is the protocol used to transmit web page elements from a web server to web browsers.

Answer 79

Hypertext Transport Protocol (HTTP)

Question 80

TCP Port 443 (for HTTP Encryption)

Answer 80

Secure Sockets Layer (SSL)

Question 81

This is a VPN-like security protocol that operates at the Transport layer. SSL was originally designed to support
secured web communications (HTTPS) but is capable of securing any Application layer protocol communications.

Answer 81

Secure Sockets Layer (SSL)

Question 82

This is a network service that is used to spool print jobs and to send print jobs to printers.

Answer 82

Line Print Daemon (LPD)

Question 83

This is a network service used to support file sharing between dissimilar systems.

Answer 83

Network File System (NFS)

Question 84

This is a network service used to collect network health and status information by polling monitoring devices from a central monitoring station.

Answer 84

Simple Network Management Protocol (SNMP)

Question 85

The act of capturing packets from the network in hopes

of extracting useful information from the packet contents.

Answer 85

Packet sniffing

Question 86

The merging of specialty or proprietary protocols with standard protocols, such as those from the TCP/IP suite.

Answer 86

Converged protocols

Question 87

What is the primary benefit of converged protocols?

Answer 87

the ability to use existing TCP/IP supporting network infrastructure to host special or proprietary services without the need for unique deployments of alternate networking hardware.

Question 88

This can be used to support Fiber Channel over
the existing network infrastructure. It typically requires 10 Gbps Ethernet in order to support the Fibre Channel protocol.

Answer 88

Fibre Channel over Ethernet (FCoE)

Question 89

A high-throughput high-performance network technology that directs data across a network based on short path labels rather than longer network addresses.

Answer 89

MPLS (Multiprotocol Label Switching)

Question 90

a networking storage standard based on IP. This technology can be used to enable location-independent file storage, transmission, and retrieval over LAN, WAN, or public Internet connections. It is often viewed as a low-cost alternative to Fibre Channel.

Answer 90

Internet Small Computer System Interface (iSCSI)

Question 91

a tunneling mechanism used to transport

voice and/or data over a TCP/IP network.

Answer 91

Voice over IP (VoIP)

Question 92

a unique approach to network operation, design, and management. The concept is based on the theory that the complexities of a traditional network with on-device configuration (i.e., routers and switches) often force an organization to stick with a single device vendor, such as Cisco, and limit the flexibility of the network to respond to changing physical and business conditions.

Answer 92

Software-Defined Networking (SDN)

Question 93

a collection of resource services deployed in numerous data centers across the Internet in order to provide low latency, high performance, and high availability of the hosted content.

Answer 93

content distribution network (CDN)

Question 94

the transmission of data across electromagnetic signals.

Answer 94

Data emanation

Question 95

the IEEE standard for wireless network communications.

Answer 95

802.11

Question 96

Mode that allows any two wireless networking devices, including two wireless network interface cards (NICs), to communicate without a centralized control authority.

Answer 96

Ad hoc mode

Question 97

Wireless mode that requires an access point and wireless NICs on systems can’t interact directly. The restrictions of the wireless access point for wireless network access are enforced.

Answer 97

infrastructure mode

Question 98

A standard port-based network access control that ensures clients cannot communicate with a resource until proper authentication has taken place. Effectively, it is a hand-off system that allows the wireless network to leverage the existing network infrastructure’s authentication services.

Answer 98

802.1x/EAP

Question 99

This is not a specific mechanism of authentication; rather it is an authentication framework.

Answer 99

EAP (Extensible Authentication Protocol)

Question 100

encapsulates EAP methods within a

TLS tunnel that provides authentication and potentially encryption.

Answer 100

PEAP (Protected Extensible Authentication Protocol)

Question 101

a Cisco proprietary alternative to TKIP for WPA. This was developed to address deficiencies in TKIP before the 802.11i/WPA2 system was ratified as a standard.

Answer 101

LEAP (Lightweight Extensible Authentication Protocol)

Question 102

A concept of controlling access to a network environment through strict adherence to and implementation of security policy.

Answer 102

Network Access Control (NAC)

Question 103

A type of firewall that filters traffic by examining data from a message header. Usually, the rules are concerned with source, destination, and port addresses.

Answer 103

Static Packet-Filtering Firewalls

Question 104

A type of firewall that are used to establish communication sessions between trusted partners. They operate at the Session layer (layer 5) of the OSI model. They permit or deny forwarding decisions based solely on the endpoint designations of the communication circuit (in other words, the source and destination addresses and service port numbers).

Answer 104

Circuit-Level Gateway Firewalls

Question 105

A type of firewall that evaluate the state or the context of network traffic. By examining source and destination addresses, application usage, source of origin, and relationship between current packets and the previous packets of the same session, they are able to grant a broader range of access for authorized users and activities and actively watch for and block unauthorized users and activities. They are known as third-generation firewalls, and they operate at the Network and Transport layers (layers 3 and 4) of the OSI model.

Answer 105

Stateful Inspection Firewalls

Question 106

Also called a proxy firewall. This type of firewall filters traffic based on the Internet service (in other words, the application) used to transmit or receive the data.
Each type of application must have its own unique proxy server. Thus, these firewalls comprises numerous individual proxy servers. This type of firewall negatively
affects network performance because each packet must be examined and processed as it passes through the firewall. They are known as second-generation
firewalls, and they operate at the Application layer (layer 7) of the OSI model.

Answer 106

Application-Level Gateway Firewalls

Question 107

This occurs when two systems transmit data at the same time onto a connection medium that supports only a single transmission path.

Answer 107

Collision

Question 108

This occurs when a single system transmits data to all possible recipients.

Answer 108

Broadcast

Question 109

a group of networked systems that could cause a collision if any two (or more) of the systems in that group transmitted simultaneously.

Answer 109

collision domain

Question 110

a group of networked systems in which all other members receive a broadcast signal when one of the members of the group transmits it.

Answer 110

broadcast domain

Question 111

These are used to strengthen the communication signal over a cable segment as well as connect network segments that use the same protocol.

Answer 111

Repeaters, Concentrators, and Amplifiers

Question 112

Are used to connect multiple systems and connect network segments that use the same protocol. They repeat inbound traffic over all outbound ports. This ensures that the traffic will reach its intended host. It is a multiport repeater. They operate at OSI layer 1.

Answer 112

Hubs

Question 113

a communications device that covers or modulates between an analog carrier signal and digital information in order to support computer communications of public switched telephone network (PSTN) lines.

Answer 113

Modems

Question 114

is used to connect two networks together—even networks of different topologies, cabling types, and speeds—in order to connect network segments that use the same protocol. It forwards traffic from one network to another.

Answer 114

Bridges

Question 115

connects networks that are using different network protocols.

Answer 115

gateway

Question 116

What are the two main types of coaxial cable?

Answer 116

thinnet and thicknet

Question 117

Also known as 10Base2, this commonly used to connect systems to backbone trunks of thicknet cabling. It can span distances of 185 meters and provide throughput up to 10 Mbps.

Answer 117

Thinnet

Question 118

Also known as 10Base5, this can span 500 meters and provide throughput up to 10 Mbps (megabits per second).

Answer 118

Thicknet

Question 119

The physical layout and organization of computers and networking devices

Answer 119

Network topology

Question 120

What are four basic topologies of the physical layout of a network

Answer 120

ring, bus, star, and mesh

Question 121

Wireless communication occurs over multiples frequencies at the same time.

Answer 121

spread spectrum

Question 122

An early implementation of the spread spectrum concept. However, instead of sending data in a parallel fashion, it transmits data in a series while constantly changing the frequency in use.

Answer 122

Frequency Hopping Spread Spectrum (FHSS)

Question 123

This employs all the available frequencies simultaneously in parallel. This provides a higher rate of data throughput

Answer 123

Direct Sequence Spread Spectrum (DSSS)

Question 124

What is the protocol used when portable devices use a cell phone carrier’s network to establish communication links with the Internet.

Answer 124

Wireless Application Protocol (WAP)

Question 125

Provides security connectivity services similar to those of SSL or TLS for cell phones.

Answer 125

Wireless Transport Layer Security (WTLS)

Question 126

a system for connecting a number of computer systems to form a local area network, with protocols to control the passing of information and to avoid simultaneous transmission by two or more systems.

Answer 126

Ethernet

Question 127

Employs a token-passing mechanism to control which systems can transmit data over the network medium. The token travels in a logical loop among all members
of the LAN.

Answer 127

Toke Ring

Question 128

A high-speed token-passing technology that employs two rings with traffic flowing in opposite directions. It is often used as a backbone for large enterprise networks.

Answer 128

Fiber Distributed Data Interface

Question 129

communications occur with a continuous signal that varies in frequency, amplitude, phase, voltage, and so on. The variances in the continuous signal produce a
wave shape (as opposed to the square shape of a digital signal). The actual communication occurs by variances in the constant signal.

Answer 129

Analog

Question 130

communications occur through the use of a discontinuous electrical signal and a state change or on-off pulses.

Answer 130

Digital

Question 131

This technology can support only a single communication channel. It uses a direct current applied to the cable. A current that is at a higher level represents the binary signal of 1, and a current that is at a lower level represents the binary signal of 0. Ethernet is an example of this technology.

Answer 131

Baseband

Question 132

This technology can support multiple simultaneous signals. It uses frequency modulation to support numerous channels, each supporting a distinct communication session. It is suitable for high throughput rates, especially when several channels are multiplexed. It is a form of analog signal. Cable television and cable modems, ISDN, DSL, T1, and T3 are examples of this technology.

Answer 132

Broadband

Question 133

This is the LAN media access technology that
performs communications using the following steps:
1. The host listens to the LAN media to determine whether it is in use.
2. If the LAN media is not being used, the host transmits its communication.
3. The host waits for an acknowledgment.
4. If no acknowledgment is received after a time-out period, the host starts over at step 1.
It does not directly address collisions.

Answer 133

Carrier-Sense Multiple Access (CSMA)

Question 134

This is the LAN media access technology that performs communications using the following steps:
1. The host has two connections to the LAN media: inbound and outbound. The host
listens on the inbound connection to determine whether the LAN media is in use.
2. If the LAN media is not being used, the host requests permission to transmit.
3. If permission is not granted after a time-out period, the host starts over at step 1.
4. If permission is granted, the host transmits its communication over the outbound connection.
5. The host waits for an acknowledgment.
6. If no acknowledgment is received after a time-out period, the host starts over at step 1.

AppleTalk and 802.11 wireless networking are examples of networks that employ this technology.

Answer 134

Carrier-Sense Multiple Access with Collision Avoidance (CSMA/CA)

Question 135

This is the LAN media access technology that performs communications using the following steps:
1. The host listens to the LAN media to determine whether it is in use.
2. If the LAN media is not being used, the host transmits its communication.
3. While transmitting, the host listens for collisions (in other words, two or more hosts
transmitting simultaneously).
4. If a collision is detected, the host transmits a jam signal.
5. If a jam signal is received, all hosts stop transmitting. Each host waits a random period
of time and then starts over at step 1.

Ethernet networks employ this technology.

Answer 135

Carrier-Sense Multiple Access with Collision Detection (CSMA/CD)

Question 136

the encapsulation of a protocol-deliverable message

within a second protocol. The second protocol often performs encryption to protect the message contents.

Answer 136

Tunneling

Question 137

This technology is based on encrypted tunneling. They can offer authentication and data protection as a point-to-point solution. Common examples are PPTP, SSL, L2TP, and IPSec. They can be site to site or client to site.

Answer 137

VPNs

Question 138

This protects the addressing scheme of a private network, allows the use of the private IP addresses, and enables multiple internal clients to obtain Internet
access through a few public IP addresses. It is supported by many security border devices, such as firewalls, routers, gateways, and proxies.

Answer 138

NAT

Question 139

This type of line is always on and is reserved for a specific customer. Examples include T1, T3, E1, E3, and cable modems.

Answer 139

dedicated lines

Question 140

This type of line requires a connection to be established before data transmission can occur. It can be used to connect with any remote system that uses the same type of nondedicated line. Standard modems, DSL, and ISDN are examples.

Answer 140

nondedicated lines

Question 141

This is a full-duplex encapsulation protocol used for transmitting TCP/IP packets over various non-LAN connections, such as modems, ISDN, VPNs, Frame Relay, and so on. It is widely supported and is the transport protocol of choice for dial-up Internet connections. Its authentication is protected through the use of various protocols, such as CHAP and PAP. It is a replacement for SLIP and can support any LAN protocol, not just TCP/IP.

Answer 141

Point-to-Point Protocol (PPP)

Question 142

Protocols that provide security services for application-specific communication channels

Answer 142

secure communication protocols

Question 143

This is an encryption tool used to protect sessionless datagram protocols. It was designed to integrate with IPSec; it functions at layer 3. It is able to encrypt any subprotocol of the TCP/IP suite. It was replaced
by Internet Key Exchange (IKE) in 1998.

Answer 143

Simple Key Management for Internet Protocol (SKIP)

Question 144

This is an authentication service and is simply a

means to prevent unauthorized execution of code on remote systems.

Answer 144

Secure Remote Procedure Call (S-RPC)

Question 145

This is an encryption protocol developed by Netscape to protect the communications between a web server and a web browser. It can be used to secure web, email, FTP, or even Telnet traffic. It is a session-oriented protocol that provides confidentiality and integrity. It is deployed using a 40-bit key or a 128-bit key. It is
superseded by Transport Layer Security (TLS).

Answer 145

Secure Sockets Layer (SSL)

Question 146

This functions in the same general manner as SSL, but it uses stronger authentication and encryption protocols.

Answer 146

Transport Layer Security (TLS)

Question 147

What two protocols both have the following features:
■ Support secure client-server communications across an insecure network while preventing
tampering, spoofing, and eavesdropping.
■ Support one-way authentication.
■ Support two-way authentication using digital certificates.
■ Often implemented as the initial payload of a TCP package, allowing it to encapsulate
all higher-layer protocol payloads.
■ Can be implemented at lower layers, such as layer 3 (the Network layer) to operate as a
VPN. This implementation is known as OpenVPN.

Answer 147

SSL and TLS

Question 148

This is a security protocol for the transmission of
transactions over the Internet. SET is based on Rivest, Shamir, and Adelman (RSA) encryption and Data Encryption Standard (DES). It has the support of major credit card companies, such as Visa and MasterCard. However, it has not been widely accepted by the Internet in general; instead, SSL/TLS encrypted sessions are the preferred mechanism for secure e-commerce.

Answer 148

Secure Electronic Transaction (SET)

Question 149

This is one of the authentication protocols used over PPP links. It encrypts usernames and passwords. It performs authentication using a challenge-response dialogue that cannot be replayed. It also periodically reauthenticates the remote system throughout an established communication session to verify a persistent identity of the remote client. This activity is transparent to the user.

Answer 149

Challenge Handshake Authentication Protocol (CHAP)

Question 150

This is a standardized authentication protocol for PPP. It transmits usernames and passwords in the clear. It offers no form of encryption; it simply provides a means to transport the logon credentials from the client to the
authentication server.

Answer 150

Password Authentication Protocol (PAP)

Question 151

This is a framework for authentication instead
of an actual protocol. It allows customized authentication security solutions, such as supporting smart cards, tokens, and biometrics.

Answer 151

Extensible Authentication Protocol (EAP)

Question 152

This encapsulates EAP in a TLS tunnel. It is preferred over EAP because EAP assumes that the channel is already protected but this imposes its own security. It is used for securing communications over 802.11 wireless connections. It can be employed by Wi-Fi Protected Access (WPA) and
WPA-2 connections.

Answer 152

Protected Extensible Authentication Protocol (PEAP)

Question 153

This was Cisco’s initial response to insecure WEP.
It supported frequent reauthentication and changing of WEP keys (whereas WEP used single authentication and a static key). However, it is crackable using a variety of tools and techniques, including the exploit tool Asleap.

Answer 153

Lightweight Extensible Authentication Protocol (LEAP)

Question 154

a technology that encapsulates audio into IP packets to support telephone calls over TCP/IP network connections.

Answer 154

VOIP

Question 155

a means by which g an unknown, untrusted, or at least unauthorized person gains the trust of someone inside your organization.

Answer 155

Social engineering

Question 156

an email security standard that offers authentication and confidentiality to email through public key encryption and digital signatures. Authentication is provided through X.509 digital certificates. Privacy is provided through the use of Public Key Cryptography Standard (PKCS) encryption. Two types of messages can be formed using this: signed messages and secured enveloped messages. A signed message provides integrity, sender authentication, and nonrepudiation. An enveloped message provides integrity, sender authentication, and confidentiality.

Answer 156

Secure Multipurpose Internet Mail Extensions (S/MIME)

Question 157

This can provide authentication, confidentiality, integrity, and nonrepudiation for email messages. It employs Message Digest 2 (MD2) and MD5 algorithms; Rivest, Shamir, and Adelman (RSA) public key; and Data Encryption Standard (DES) to provide authentication and encryption services.

Answer 157

MIME Object Security Services (MOSS)

Question 158

an email encryption mechanism that provides authentication, integrity, confidentiality, and nonrepudiation. It uses RSA, DES, and X.509.

Answer 158

Privacy Enhanced Mail (PEM)

Question 159

a means to assert that valid mail is sent by an organization through verification of domain name identity.

Answer 159

DomainKeys Identified Mail (DKIM)

Question 160

a public-private key system that uses a variety of encryption algorithms to encrypt files and email messages. The first version used RSA, the second version, International Data Encryption Algorithm (IDEA), but later versions offered a spectrum of algorithm options. It is not a standard but rather an independently developed product that has wide Internet grassroots support.

Answer 160

Pretty Good Privacy (PGP)

Question 161

an older technology developed to support TCP/IP
communications over asynchronous serial connections, such as serial cables or modem dial-up. It is rarely used but is still supported on many systems. It can support only IP, requires static IP addresses, offers no error detection or correction, and does not support compression.

Answer 161

Serial Line Internet Protocol (SLIP)

Question 162

This is used to centralize the authentication of remote dial-up connections. A network that employs this technology is configured so the remote access server passes dial-up user logon credentials to this for authentication. This process is similar to the process used by domain clients sending logon credentials to a domain controller for authentication.

Answer 162

Remote Authentication Dial-In User Service (RADIUS)

Question 163

This is an alternative to RADIUS. It is available in three versions: original , extended and plus. The original integrates the authentication and authorization processes. The extended version keeps the authentication, authorization, and accounting processes separate. The plus version improves it by adding two-factor authentication. Plus is the most current and relevant version of this product line.

Answer 163

Terminal Access Controller Access-Control System (TACACS+)

Question 164

a communication tunnel that provides point-to-point

transmission of both authentication and data traffic over an intermediary untrusted network.

Answer 164

virtual private network (VPN)

Question 165

the network communications process that protects the contents of protocol packets by encapsulating them in packets of another protocol.

Answer 165

Tunneling

Question 166

What are the four common VPN protocols?

Answer 166

PPTP, L2F, L2TP, and IPSec

Question 167

an encapsulation protocol developed from the
dial-up Point-to-Point Protocol. It operates at the Data Link layer (layer 2) of the OSI model and is used on IP networks. It creates a point-to-point tunnel between two systems and encapsulates PPP packets.

Answer 167

Point-to-Point Tunneling Protocol (PPTP)

Question 168

This was derived by combining elements from both PPTP and L2F. It creates a point-to-point tunnel between communication endpoints. It lacks a built-in encryption scheme, but it typically relies on IPSec as its security mechanism.

Answer 168

Layer 2 Tunneling Protocol (L2TP)

Question 169

This is the most commonly used VPN protocol now.

Answer 169

IP Security (IPSec)

Question 170

This is both a standalone VPN protocol and the security mechanism for L2TP, and it can be used only for IP
traffic. It works only on IP networks and provides for secured authentication as well as encrypted data transmission.

Answer 170

IP Security (IPSec)

Question 171

What are the two main components of IPSec

Answer 171

Authentication Header (AH) and Encapsulating Security Payload (ESP)

Question 172

What component of IPSec provides authentication, integrity, and nonrepudiation.

Answer 172

Authentication Header (AH)

Question 173

What component of IPSec provides encryption to protect the confidentiality of transmitted data, but it can also perform limited authentication. It operates at the
Network layer (layer 3) and can be used in transport mode or tunnel mode. In transport mode, the IP packet data is encrypted but the header of the packet is not. In tunnel mode, the entire IP packet is encrypted and a new header is added to the packet to govern transmission through the tunnel.

Answer 173

Encapsulating Security Payload (ESP)

Question 174

In this IPSec mode, the IP packet data is encrypted but the header of the packet is not.

Answer 174

transport mode

Question 175

In this IPSec mode, the entire IP packet is encrypted and a new header is added to the packet to govern transmission through the tunnel.

Answer 175

tunnel mode

Question 176

These are used to logically segment a network without altering its physical topology. They are created by switches

Answer 176

virtual LAN (VLAN)

Question 177

This technology is used to host one or more operating systems within the memory of a single host computer. This mechanism allows virtually any OS to operate on any hardware. Such an OS is also known as a guest operating system.

Answer 177

Virtualization

Question 178

This is a unique approach to network operation, design,
and management. It aims at separating
the infrastructure layer (i.e., hardware and hardware-based settings) from the control layer
Network Address Translation 525
(i.e., network services of data transmission management). Furthermore, this also removes
the traditional networking concepts of IP addressing, subnets, routing, and the like from
needing to be programmed into or be deciphered by hosted applications.

Answer 178

Software-defined networking (SDN)

Question 179

The goals of hiding the identity of internal clients, masking the design of your private network,
and keeping public IP address leasing costs to a minimum are all simple to achieve
through the use of this technology.

Answer 179

network address translation (NAT)

Question 180

a mechanism for converting the internal IP addresses found in packet headers into public IP addresses for transmission over the Internet.

Answer 180

network address translation (NAT).

Question 181

What are the 3 private IP addresses

Answer 181

10. 0.0.0–10.255.255.255 (a full Class A range)
11. 16.0.0–172.31.255.255 (16 Class B ranges)
12. 168.0.0–192.168.255.255 (256 Class C ranges)

Question 182

This occurs when the message or communication
is broken up into small segments (usually fixed-length packets, depending on the protocols and technologies employed) and sent across the intermediary networks to the destination.

Answer 182

Packet switching

Question 183

This is a logical pathway or circuit created over a packet-switched network between two specific endpoints.

Answer 183

virtual circuit

Question 184

What are the two types of virtual circuits

Answer 184

Permanent virtual circuits (PVCs) and Switched virtual circuits (SVCs)

Question 185

A border connection device that provides provides all the interfacing needed between the network carrier
service and a company’s LAN.

Answer 185

channel service unit/data service unit (CSU/DSU)

Question 186

This is an older packet-switching technology that was widely used in Europe. It uses permanent virtual circuits to establish specific point-to-point connections between two systems or networks. It is the predecessor to Frame Relay and operates in much the same fashion.

Answer 186

X.25

Question 187

This is a packet-switching technology that also uses PVCs . However, unlike X.25, it supports multiple PVCs over a single WAN carrier service connection. It is a layer 2 connection mechanism that uses packet-switching technology to establish virtual circuits between communication endpoints.

Answer 187

Frame Relay

Question 188

This is a cell-switching WAN communication technology, as opposed to a packet-switching technology like Frame Relay. It fragments communications into fi xed-length 53-byte cells. The use of fi xed-length cells allows it to be very efficient and offer high throughputs. It can use either PVCs or SVCs

Answer 188

Asynchronous transfer mode (ATM)

Question 189

This is a resource consumption attack that has the primary goal of preventing legitimate activity on a victimized system. It renders the target unable to respond to legitimate traffic.

Answer 189

denial-of-service attack