ESAT Forouzan - Chapter 31: Virtual Private Network

Question 1

IPSec requires a logical connection between two hosts using a signaling protocol called _____.
a. AH
b. SA
c. PGP
d. TLS

Answer 1

b. SA

Question 2

The handshake protocol and data exchange protocol are part of _____.
a. CA
b. KDC
c. TLS
d. SSH

Answer 2

c. TLS

Question 3

_____ is a collection of protocols that provide security at the IP layer level.
a. TLS
b. SSH
c. PGP
d. IPSec

Answer 3

d. IPSec

Question 4

_____ is an IP layer security protocol that only provides integrity and authentication.
a. AH
b. PGP
c. ESP
d. IPSec

Answer 4

a. AH

Question 5

_____ is an IP layer security protocol that provides privacy as well as integrity and authentication.
a. AH
b. PGP
c. ESP
d. IPSec

Answer 5

c. ESP

Question 6

An IP datagram carries an authentication header if the _____ field of the IP header has a value of 51.
a. Next-header
b. Protocol
c. Security parameter index
d. Sequence number

Answer 6

b. Protocol

Question 7

A _____ can forward or block packets based on the information in the network layer and the transport layer headers.
a. Proxy firewall
b. Packet-filter firewall
c. Message digest
d. Private key

Answer 7

b. Packet-filter firewall

Question 8

The _____ field in the authentication header and the ESP header defines the security method used in creating the authentication data.
a. Padding
b. Sequence number
c. Authentication data
d. SPI

Answer 8

d. SPI

Question 9

_____ is a transport layer security protocol.
a. TLS
b. PGP
c. IPSec
d. AH

Answer 9

a. TLS

Question 10

A method to provide for the security transport of email is called _____.
a. TLS
b. SA
c. PGP
d. IPSec

Answer 10

c. PGP

Question 11

A _____ can forward or block messages based on the information in the message itself.
a. Proxy firewall
b. Packet filter firewall
c. Message digest
d. Private key

Answer 11

a. Proxy firewall

Question 12

A _____ network is totally isolated from the global Internet.
a. Private
b. Hybrid
c. Virtual private
d. Any of the above

Answer 12

a. Private

Question 13

A _____ network can use a leased line for intraorganization communication and the Internet for interorganization communication.
a. Private
b. Hybrid
c. Virtual private
d. Any of the above

Answer 13

b. Hybrid

Question 14

A VPN uses _____ to guarantee privacy.
a. IPSec
b. Tunneling
c. Both a and b
d. None of the above

Answer 14

c. Both a and b

Question 15

In a VPN, _____ encrypted.
a. The inner datagram is
b. The outer datagram is
c. Both inner and outer diagram are
d. Neither the inner nor the outer datagram is

Answer 15

c. Both inner and outer diagram are

Question 16

Tunneling is a technique in which the IP diagram is first _____ and then _____.
a. Encapsulated in another datagram; encrypted
b. Encrypted; encapsulated in another datagram
c. Authenticated; encrypted
d. Encrypted;authenticated

Answer 16

b. Encrypted; encapsulated in another datagram

Question 17

An _____ is a private network with no external access that uses the TCP/IO suite.
a. Internet
b. internet
c. Intranet
d. Extranet

Answer 17

c. Intranet

Question 18

An _____ is a private network with limited external access that uses the TCP/IP suite.
a. Internet
b. internet
c. Intranet
d. Extranet

Answer 18

d. Extranet