FINAL - EVERYTHING

Question 1

what is multimedia?

Answer 1

two or more continuous media

Question 2

what are the three broad categories of audio/video services?

Answer 2

streaming stored audio/video, streaming live audio/video, interactive audio/video

Question 3

how does a client stream stored audio/video service?

Answer 3

downloads through the internet

Question 4

how are audio/video services stored?

Answer 4

files are compressed and stored on server

Question 5

what is digitization?

Answer 5

conversion of data into a stream of numbers

Question 6

what is compression?

Answer 6

a coding process that will reduce the overall number of bits needed to represent information

Question 7

what is sampling?

Answer 7

measuring analog signal at regular time intervals

Question 8

what is it called when you sample amplitude (voltage)?

Answer 8

quantization

Question 9

what is the nyquist theorum?

Answer 9

the idea that we need to sample the signal 2f times per second given the highest signal frequency ‘f’

Question 10

what is pulse code modulation?

Answer 10

converting analog audio to compressed binary from sampling, quantization and encoding

Question 11

what 3 questions do you need to decide when digitizing audio data?

Answer 11

sampling rate? how finely is the data quantized and is it uniform? file format?

Question 12

what is the difference between predictive encoding and perceptual encoding?

Answer 12

predictive: difference in samples are encoded instead of the actual sampled values (typically used for speech)
perceptual: tries to mimic how people perceive sound (mp3)

Question 13

what is the difference between predictive encoding and perceptual encoding?

Answer 13

predictive: difference in samples are encoded instead of the actual sampled values (typically used for speech)
perceptual: tries to mimic how people perceive sound (mp3)

Question 14

what is the value of DC value in jpeg compression?

Answer 14

the average pixel value multiplied by a constant

Question 15

what are AC values in jpeg compression?

Answer 15

changes in the pixel values - no change means AC = 0

Question 16

why is jpeg called lossy compression? and what phase is responsible for this?

Answer 16

because some data is irreversibly lost, happens during quantization phase

Question 17

what do you call a time ordered sequence of frames?

Answer 17

a video

Question 18

what is spatial compression?

Answer 18

using JPEG or something close to compress each frame of a video

Question 19

what is temporal compression?

Answer 19

removal of redundant frames

Question 20

MPEG divides frames into what 3 categories?

Answer 20

i-frames, p-frames and b-frames

Question 21

what is an i-frame?

Answer 21

independent frame not related to the previous frame or following frame, meant to represent an interval

Question 22

what is the point of iframes?

Answer 22

they can stop cross origin domain policy, you can also load lots of different resources in an i-frame

Question 23

what is a p-frame?

Answer 23

predicted frame - related to the previous i-frame or p-frame

Question 24

what is a b-frame?

Answer 24

bidirectional frame - relates to previous or following frame

Question 25

does the first approach for streaming stored audio/video involve streaming? whynot?

Answer 25

no because the entire file must be downloaded before the client sees any of it

Question 26

what is the problem with the 2nd approach (web server + metafile)

Answer 26

both the browser and media player use HTTP services which run over TCP, this is totally fine for retrieving the metafile but TCP is not designed for audio/video file retrieval

Question 27

why is TCP bad for audio/video files?

Answer 27

it re transmits lost or damaged segments which fucks up your stream

Question 28

what protocol does a media server use and why?

Answer 28

UDP so lost and damaged segments are not retransmit

Question 29

what is RTSP?

Answer 29

an out-of-band control protocol that can control the playing of audio/server

Question 30

what is RTSP similar to?

Answer 30

second connection in FTP

Question 31

what does RTSP not do?

Answer 31

define compression schemes, define encapsulation for transmission, restrict transportation method (udp tcp), restrict how media player buffers

Question 32

what does RTSP do?

Answer 32

allows media player to control transmission, play pause fast forward rewind, messages use a different port number than media stream

Question 33

what is an out of band protocol?

Answer 33

sends control data from a different connection then main data

Question 34

what are the similarities between streaming stored audio/video and streaming live audio/video?

Answer 34

both sensitive to delay, both do not accept retransmission

Question 35

what are the differences between streaming live and stored?

Answer 35

stored communication is unicast and on demand, live is multicast and live

Question 36

what is the “jitter” phenomenon?

Answer 36

when packets of audio/video are transmitted and have different network delays –> you start playing packet 1 and it finished before packet 2 arrives

Question 37

what is the purpose of a timestamp in real-time audio/video?

Answer 37

to solve the jitter problem by showing how a packet delay is relative to the previous packet

Question 38

why do you need a playback buffer in real time interactive audio/video?

Answer 38

to store the data until they are played back based on the what the timestamps dictate

Question 39

what else is needed other than a timestamp for real time traffic?

Answer 39

packet numbering for ordering purposes

Question 40

real time traffic needs the support of what due to the fact that it used multimedia?

Answer 40

multi casting

Question 41

what is “mixing”?

Answer 41

combining data from multiple streams into one

Question 42

why is TCP bad for real time interactive traffic?

Answer 42

because it re transmits lost or damaged packets

Question 43

is UDP suitable for real time interactive traffic?

Answer 43

not really because it lacks the ability to timestamp and order packets or mix them

Question 44

what is RTP for?

Answer 44

real time traffic

Question 45

what does RTP provide?

Answer 45

timestamping, sequencing, and mixing

Question 46

what does RTP need to be used with?

Answer 46

UDP

Question 47

how does encapsulation of packets work with RTP?

Answer 47

first encapsulated by RTP packet and then these packets are encapsulated in a UDP segment

Question 48

what network layer does RTP operate in?

Answer 48

can be transport layer OR application layer

Question 49

how is RTP used in the transport layer?

Answer 49

RTP libraries are used with languages in that layer to make RTP into a sublayer of the transport layer

Question 50

how is RTP used in the application layer?

Answer 50

RTP packets are sent into a UDP socket interface

Question 51

what is included in a RTP packet header to be encapsulated by a UDP segment?

Answer 51

data encoding, sequence number, timestamp

Question 52

what does it mean if the P. and X. header fields are set in an RTP packet?

Answer 52

P - there is padding

X - extra extension header

Question 53

what is the point of the CC and M field in RTP packets?

Answer 53

CC - how many contributors (mixing)

M - end of data

Question 54

how many bits is the PT header field in RTP and what is it for?

Answer 54

8 bits - defines payload type

Question 55

for the following RTP header fields, how many bits and how is it set?

• sequence number
• timestamp
• ssrc
• csrc

Answer 55

sequence number - 16 bits, first is random then incremented by 1 each time
timestamp - 32 bits, first is random then sum of past timestamps plus clock time for first bye produced
ssrc - 32 bits, defines identity of source (random # chosen by source)
csrc - 32 bits, defines # of sources (max 15)

Question 56

what is RTCP

Answer 56

control protocol for RTP

Question 57

when is RTCP used

Answer 57

when networking applications multicast to multiple receivers from one or more senders

Question 58

how are RTP and RTCP packets distinguished from each other?

Answer 58

distinct port numbers

Question 59

what do RTCP packets include?

Answer 59

sender and receiver ports

Question 60

what are in RTCP sender report packets and what are they used for?

Answer 60

timestamp, allows receiver to synchronize RTP messages –> think audio and video synchronization

Question 61

what are RTCP receiver reception packets for and what do they do?

Answer 61

passive participants, informs sender and other receivers of service quality

Question 62

what are in RTCP source description packets?

Answer 62

email address, name of sender and application that generates RTP stream

Question 63

what is the point of RTCP bye message?

Answer 63

shut down stream

Question 64

what does an RTCP application specific message allow?

Answer 64

new message type definitions –> for when packet wants to use new applications

Question 65

what is the restriction on RTP port numbers?

Answer 65

they must be an even number

Question 66

where must the UDP port be that corresponds to an RTP packet?

Answer 66

immediately after the RTP port

Question 67

what are the flow characteristics?

Answer 67

reliability, delay, jitter and bandwidth

Question 68

what is the consequence of low reliability?

Answer 68

losing a packet or ack

Question 69

what is responsible for lost packets in multimedia network apps?

Answer 69

network loss (congestion), end to end delay loss (packets arrive too late)

Question 70

for multimedia application what range of delay makes a packet effectively useless?

Answer 70

100ms to 5 seconds

Question 71

what causes jitter?

Answer 71

differing delay time between successive packets

Question 72

what determines if jitter is high or low?

Answer 72

the difference between delays –> larger difference means higher jitter

Question 73

what is packet marking need ed for?

Answer 73

for routers to distinguish between different classes; and treat packets accordingly

Question 74

what are the tradeoffs when you change the size of the chunks in a group (n) for FEC simple scheme?

Answer 74

increase: less bandwidth waste, higher probability that 2 or more chunks are lost, longer playout delay
decrease: more lost packets can be recovered, more bandwidth waster

Question 75

what is the disadvantage of interleaving for packet loss?

Answer 75

increases latency (need to sort out all the chunks in each packet)

Question 76

what are the 3 different types of queuing?

Answer 76

FIFO, priority, weighted fair

Question 77

In FIFO scheduling what happens if the arrival rate at the queue is higher than the processing rate?

Answer 77

the queue will fill up and new packets discarded

Question 78

what is the condition of starvation for Priority scheduling?

Answer 78

when low priority queues never have the chance to be processed

Question 79

how does the system process packet in weighted average scheduling?

Answer 79

round robin fashion with higher priority queues getting more processing relative to their priority weight

Question 80

what is traffic shaping?

Answer 80

mechanism to control the amount and the rate of the traffic sent to the network

Question 81

on what scheduling queue is the leaky bucket approach implemented on?

Answer 81

FIFO

Question 82

in a token bucket approach if n = 100 and the host is idle for 100 tickets how many tokens are collected?

Answer 82

10000

Question 83

what is the problem with the leaky bucket approach to traffic shaping

Answer 83

it limits the output rate to the average of bursty traffic

Question 84

what is the difference between an access link and a trunk link?

Answer 84

access links are assigned to one specific vlan whereas trunk links carry multiple vlans

Question 85

what are some reasons for grouping devices into vlans?

Answer 85

service need, protocol, physical proximity

Question 86

each switch port can be assinged to _______ vlan(s), each switch port can be assigned to _____ vlan(s)

Answer 86

multiple, only one

Question 87

where are dynamically assigned Vlan ports stored?

Answer 87

in virtual membership policy servers

Question 88

what is the area between switches called?

Answer 88

switch fabric

Question 89

what is the area between switches called?

Answer 89

switch fabric

Question 90

what is frame tagging in Vlans?

Answer 90

when the switch appended a Vlan ID to each frame

Question 91

which switch appends the Vlan ID? which switch removes it?

Answer 91

first switch in the path, last switch in the path

Question 92

what happens is a tag is not removed from a frame before it is sent to non-vlan-capable devices?

Answer 92

the device won’t be able to understand the frame

Question 93

what is cisco’s proprietary protocol called for tag formatting?

Answer 93

inter switch link (ISL) protocol

Question 94

what are the benefits of using switches to create Vlans over using routers to create distinct networks?

Answer 94

easier to administer, less expensive, higher performance (less latency)

Question 95

what are the disadvantages of using switches to create Vlans over using routers to create distinct networks?

Answer 95

Vlan may be tied to a specific vendor

Question 96

what are routes needed for despite advances in switch technology?

Answer 96

filter WAN traffic, route traffic between distinct networks, route packets between Vlans

Question 97

what is trunking?

Answer 97

when you connect two switches together

Question 98

when is trunking useful?

Answer 98

when trying to configure Vlans that span multiple switches

Question 99

what is the vendor for inter switch link?

Answer 99

cisco

Question 100

what trunking protocol is IEEEE standard?

Answer 100

802.1Q

Question 101

what do switches use to dynamically configure trunk ports?

Answer 101

dynamical trunking protocol

Question 102

what is VTP?

Answer 102

virtual trunking protocol

Question 103

what is the purpose of VTP?

Answer 103

to maintain Vlan configuration consistency throughout the network

Question 104

how does VTP execute its purpose?

Answer 104

by synchronizing VTP configurations among switches in VTP domain

Question 105

what are the 3 VTP modes?

Answer 105

server, client, transparent

Question 106

what does a server mode VTP switch allow you to do ?

Answer 106

change the configuration information and broadcast it to other VTP devices

Question 107

what does a client mode vtp switch allow you to do?

Answer 107

receive changes from a VTP server and pass to other VTP switches but you cannot modify the VLAN configuration

Question 108

what does a transparent mode VTP switch allow you to do?

Answer 108

you don’t receive configuration information from other switches, you simply pass it back to other switches, you can alos modify VLAN config but only apply the changes to local switch (not sent)

Question 109

why does transparent mode exist?

Answer 109

to prevent issues when moving a switch between environment due to the fact that it may have a higher revision number then existing switches in new network

Question 110

what is the default mode for switches?

Answer 110

server

Question 111

what command allows you to change the mode of switches?

Answer 111

vtp mode command

Question 112

what command allows you to view the current mode of switch?

Answer 112

show vtp status command

Question 113

what are the STP (spanning tree protocol) requirements?

Answer 113

one root bridge / network
one root port / non root bridge
one designated port / segment

Question 114

why are spanning trees necessary?

Answer 114

to solve the problems that arise when networks implement redundant paths between devices using multiple switches

Question 115

what are the problems associated with redundant paths between segments?

Answer 115

broadcast storms, multiple frame transmission, MAC address database instabilitiy

Question 116

what does the STA (spanning tree algorithm) do?

Answer 116

automatically discovers the network topology and creates single optimum path through network

Question 117

what are the different types of bridges in STP

Answer 117

root bridge, designated bridge, backup bridge

Question 118

what does a backup bridge do?

Answer 118

it listens to network traffic and build a bridge database but does not forward packets. it can also take over for root bridge if it fails

Question 119

what special packets do bridges send?

Answer 119

bridge protocol data units

Question 120

what are the 5 states a port can being in during a STA configuration process?

Answer 120

disabled, blocking, listening, learning, forwarding

Question 121

what is the command for disabling a spanning tree on a selected VLAN?

Answer 121

no spanning-tree vlan “number”

Question 122

what is the command for forcing a switch to be the root of spanning tree

Answer 122

spanning-tree vlan “number” root primary

Question 123

what is the command to show spanning tree configuration formation?

Answer 123

show spanning-tree

Question 124

a computer that can act as both a server and/or client is called a?

Answer 124

peer

Question 125

a p2p system with no dedicated server is known as?

Answer 125

a pure p2p system

Question 126

what makes peer to peer networks more reliable then other networks?

Answer 126

no central point of failure

Question 127

what does having a ton of peers do for resource management?

Answer 127

workload can be spread out and the peers themselves provide a ton of resources and power

Question 128

how is system utilization maximized in p2p systems?

Answer 128

computer that are connected but idle can still provide their resources

Question 129

how is a p2p network scalable?

Answer 129

peers can be freely added to the network

Question 130

what assumptions are ring systems generally built on?

Answer 130

that machines are all on a nearby network and owned by a single organization

Question 131

what is the best known hierarchical system on the internet?

Answer 131

domain name service

Question 132

what is the NTP protocol and what is its topology?

Answer 132

protocol for synchronizing clocks of computer systems over networks - hierarchical

Question 133

what is the most “pure” decentralized system used in practice?

Answer 133

gnutella

Question 134

list the criteria for evaluating topologies:

Answer 134

manageability, information coherence, extensibility , fault tolerance, resistant to legal/public intervention, security, scalability

Question 135

what is the common architecture for web applications?

Answer 135

centralized + ring

Question 136

what is the best architecture for p2p networks?

Answer 136

centralized + decentralized

Question 137

explain the napster model

Answer 137

members (client) downloads software package and installs locally, napster central computer maintains directories of music files of members who are currently logged in to the system, when a user requersts a file the central computer connects them with a members computer that has that file in their directory, the target file is downloaded directly between member computers bypassing central computer

Question 138

why was napster shut down?

Answer 138

because it maintained a central directory of users

Question 139

what will a gnutella network structure have at its core after a significant amount of time has passed?

Answer 139

a high speed computer

Question 140

what is a freeloader in p2p networks?

Answer 140

someone who only downloads and doesn’t share any files (ME!)

Question 141

what is a torrent?

Answer 141

a collaborative file sharing process?

Question 142

what do you call the set of all peers that take part in a torrent?

Answer 142

a swarm

Question 143

what is a seed?

Answer 143

a peer in a swarm that has the complete content file

Question 144

what is a leech?

Answer 144

a peer that has a part of the file and wants to download the rest

Question 145

what is a tracker?

Answer 145

a central node that tracks the operation of the swarm

Question 146

what are the contents of a torrent file?

Answer 146

file name, # of chunks (size), checksum, IP address of tracker and peers and such

Question 147

what are a peers neighbors?

Answer 147

other peers whose addresses the new peer receives when it accesses the tracker

Question 148

what does bit torrent protocol and policies around fairness try and prevent?

Answer 148

overloading a peer with requests from other peers

Question 149

what peers are in the unchoked group?

Answer 149

the peers that the current peer has concurrently connected to and is continuously downloading/uploading too

Question 150

what peers are in the chocked group?

Answer 150

the peers that he current peer is not currently connected to but may connect to in the future

Question 151

how does bittorrent allow new peers to join which do not have a piece to share? what is this action called?

Answer 151

every 30 seconds the system randomly promotes a peer out of the choked group and into the unchocked group regardless of its uploading rate - optimistic unchoking

Question 152

what is the rarest-first strategy in piece sharing between peers?

Answer 152

peers try to first download the pieces with fewest repeated copies among the neighbors so that they are circulated faster

Question 153

what layer are p2p protocols constructed in?

Answer 153

the application layer

Question 154

what do p2p networks always support?

Answer 154

some type of message-routing capability

Question 155

what is the collection of peer connections in a p2p network called?

Answer 155

a p2p overlay

Question 156

a network that is built on top of another network is called what?

Answer 156

an overlay network

Question 157

what is the most common technique for structuring p2p overaly networks?

Answer 157

distributed hash tables

Question 158

most DHT implementations have what address space size?

Answer 158

2^160

Question 159

What is a cryptographic hash function that DHT uses and why does it use these types of hash functions?

Answer 159

SHA-1 because they are collision resistant

Question 160

which method of storing objects do DHT typically use and why is it superior?

Answer 160

indirect method, efficiency

Question 161

is it guaranteed that an object can be found if it exists in an unstructured overlay?

Answer 161

no

Question 162

how are nodes organized in unstructured overlay networks?

Answer 162

in random graphs

Question 163

what is the impact of increasing the degree of a peer in a graph

Answer 163

the peer will require more storage, but the diameter of the overlay will be reduced (more connection = more density = less spread out = smaller diameter)

Question 164

how is endless message circulation prevented when flooding is used?

Answer 164

message identifiers and TLL values

Question 165

what is the iterative deepening or expanding ring?

Answer 165

when the TTL starts small for a flooding search and is increased by a small amount if the search stops until the query returns successfully or the entire network has been queried

Question 166

what is the benefit of random walk when compared with flooding?

Answer 166

greatly reduces the message overhead

Question 167

structured overlay lay networks have routing mechanisms that are?

Answer 167

deterministic and guarantee the ability to locate objects in the overaly

Question 168

what are the challenges associated with having an adaptive (peers can join and leave) structured overlay network?

Answer 168

distributing responsibility to nodes that are joining, redistributing responsibility of nodes that are leaving

Question 169

what is the format of the key based routing that structured overlays use?

Answer 169

object id’s are mapped to peer address and object request are routed to nearest peer in peer address space

Question 170

what are P2P systems using key based routing called?

Answer 170

distributed object location and routing systems

Question 171

what are three DOLR DHT protocols?

Answer 171

pastry, kademlia, chords

Question 172

in pastry keys are store in the node whose ID is closest in terms of what?

Answer 172

number (numerical)

Question 173

what is the common “m” value for pastry?

Answer 173

128

Question 174

a new node in pastry ring needs what?

Answer 174

to know at least on node that should be close to it

Question 175

if a node is not responding to probe messages what is assumed?

Answer 175

that is has failed or departed

Question 176

given a node X what nodes will test it for liveliness?

Answer 176

the nodes in X’s leaf set

Question 177

what is the key difference between pastry and kademlia?

Answer 177

in pastry nodes are routed based on how numerically close nodes are to each other whereas kademlia routes nodes based on the physical distance (bitwise exclusive or) between nodes

Question 178

what information does kademlia keep for each node?

Answer 178

id and routing table - no leaf set

Question 179

what is the point of k-buckets in kademlia?

Answer 179

allows nodes to use alternative nodes when a node leaves or the network fails

Question 180

what is a row in a kademlia routing table referred to as?

Answer 180

a k-bucket

Question 181

what does the network security model 1 require us to do?

Answer 181

1. design algorithm for security transformation
2. generate secret key information (session keys)
3. develop methods to distribute secret inro
4. specify a protocol

Question 182

what does the network security model 2 require us to do?

Answer 182

select gatekeeper function to identify users, implement security controls for users

Question 183

if a protocol is not flawed then its implementations are also not flawed?

Answer 183

false

Question 184

what is cryptography about?

Answer 184

controlling access to information

Question 185

key generation, encryption and decryption are examples of what?

Answer 185

access control algorithms, computations

Question 186

what is a cipher?

Answer 186

something that is used to encrypt plaintext

Question 187

what is the result of encryption?

Answer 187

ciphertext

Question 188

how can you recover plaintext from cipher text?

Answer 188

decrypt

Question 189

what is used to configure a cryptosystem (cipher)

Answer 189

a key

Question 190

what is the difference between a symmetric key cryptosystem and a public key cryptosystem?

Answer 190

symmetric - uses the same key to encrypt and decrypt

public - uses a public key to encrypt and a private key to decrypt

Question 191

computational complexity grows with what?

Answer 191

input size

Question 192

what complexity is considered infeasible?

Answer 192

super polynomial time

Question 193

what is polynomial time?

Answer 193

O(n)

Question 194

what is in super polynomial time?

Answer 194

O(2^n), O(2^squrt(n))

Question 195

what is kreckhoff’s principle?

Answer 195

that crypto algorithms are not secret

Question 196

why do we assume that crypto algorithms are not secret?

Answer 196

experience –> they are weak when exposed, the never remain secret, better to find weakness before hand

Question 197

what is the general idea for IFF (identify friend or foe)?

Answer 197

a challenge (random number) is sent to unknown entity, if the entity can encrypt the challenge using the expected key then it was a friend if not then its a foe

Question 198

what is the main concern of authentication on a standalone computer?

Answer 198

an attack on the authentication software

Question 199

on a network what can attackers do?

Answer 199

passively observers message, replay messages, perform active attacks

Question 200

what are active attacks?

Answer 200

inserting, deleting or changing messages

Question 201

what is a replay attack?

Answer 201

when an attacker uses information that it read passively from an exchange between entities to pose as one of the entities

Question 202

what is a nonce?

Answer 202

a number used once

Question 203

why is a nonce used in the context of challenge response?

Answer 203

for “freshness”

Question 204

what is a man in the middle attack?

Answer 204

when “trudy” knows the thing you are trying to encrypt and what it looks like when it is encrypted she can figure out the key used for encryption and its game over

Question 205

is one way authentication with a symmetric key secure?

Answer 205

yes

Question 206

is mutual authentication (challenger response) secure?

Answer 206

no - “alice” could be “trudy”

Question 207

are 2 one way authentications a secure method of mutual authentication?

Answer 207

no - man in the middle attack

Question 208

is symmetric key mutual authentication secure?

Answer 208

yes apparently

Question 209

can you use the same key pair for encryption and signing for pubic keys?

Answer 209

no

Question 210

what is perfect forward secrecy?

Answer 210

prevents trudy from decrypting recorded ciphertext at a later time, even if Trudy get Kab or other secrets

Question 211

what is used to ensure perfect forward secrecy with public key authentication?

Answer 211

sessions key

Question 212

what is a session key?

Answer 212

a key that is used and then forgotten

Question 213

what is diffie hellman?

Answer 213

a key exchange algorithm to establish a shared symmetric key

Question 214

what does the diffie hellman algorithm rely on?

Answer 214

the difficulty in solving the discrete logarithm problem

Question 215

explain the deffie hellman process

Answer 215

alice and bob chose secret values and agree on values for the prime and generator, they take each other’s values and calculate g^(value)mod(p) and send the result to each other, they then use their own secret value that same formula where g = value received from other party to get a shared secret value to be used as a symmetric key

Question 216

how does a man in the middle diffie helman attack work?

Answer 216

trudy switches out the secret values passed between alice and bob with her own

Question 217

how do you prevent MIM attack with diffie hellman?

Answer 217

encrypt DH exchange with symmetric key or public key and then sign DH values with private key

Question 218

what do timestamps allow in security protocols?

Answer 218

a reduction in the number of messages (a nonce both sides know in advance)

Question 219

what must you allow for when issuing timestamps?

Answer 219

clock skew

Question 220

is sign and encrypt with nonce secure?

Answer 220

yes

Question 221

is encrypt and sign with nonce secure?

Answer 221

yes

Question 222

is sign and encrypt with timestamp secure

Answer 222

yes

Question 223

is encrypt and sign with timestamp secure

Answer 223

NO! - but trudy must ask within clock skew

Question 224

for mutual authentication with public key is encrypt and sign with timestamp secure?

Answer 224

yes

Question 225

where is the socket layer situated?

Answer 225

between the application and transport layers

Question 226

what protocol is used for most secure transaction over the internet?

Answer 226

SSL

Question 227

describe the simplified SSL protocol

Answer 227

alice asks bob to talk securely and sends him a list of ciphers she has plus a nonce, bob responds with his certificate and selects one of alices ciphers and sends it along with his nonce, alice sends “S” that she generated along with a hash that has been encrypted with “k”, this hash keeps a record of all previous message along with a literal string CLNT, bob responds with a similar hash, boom auth complete

Question 228

how many ssl keys are there? and what are they for

Answer 228

6

• 2 for encryption
• 2 for integrity
• 1 IV (?)

Question 229

why is there one key for sending and one for receiving in SSL for each key type?

Answer 229

it helps to prevent certain types of replay attacks

Question 230

how is mutual authentication possible in simplified ssl protocol?

Answer 230

the server (bob) can send a certificate request to the client (alice) in message 2

Question 231

is an SSL connection the same an SSL session?

Answer 231

no, once an SSL session is established you don’t need to go through the entire protocol again to establish a new connection

Question 232

what must both sides know in order to establish a new connection given an existing SSL session?

Answer 232

the session ID

Question 233

are there any public key operations when establishing a new connection given an existing SSL session?

Answer 233

no

Question 234

where isIPSec located?

Answer 234

at the network layer

Question 235

what are the problems with IPSec

Answer 235

complex as fuck, over engineered, flawed, not very interoperable

Question 236

what are the two parts in IPSec?

Answer 236

Internet key exchange and ESP/AH (encapsulating security payload, authentication header)

Question 237

how many version of IKE phase 1 are there?

Answer 237

8 fucking bullshit phases

Question 238

how many key options are there in IKE

Answer 238

4

Question 239

what are the two different IKE modes?

Answer 239

main mode and aggressive mode

Question 240

what is the difference between the IKE digital signature main mode and aggressive mode?

Answer 240

in aggressive mode there is not attempt to disguise the identities of alice or bob

Question 241

T/F: alice and bobs identities in main mode are protected from all attackers

Answer 241

F : only protected from passive attackers, active attackers can still find out

Question 242

what is the problem with symmetric key in main mode?

Answer 242

alices ID must be IP address

Question 243

what happens in symmetric key aggressive mode?

Answer 243

not trying to hide identities means IP address doesn’t need to be Alice’s ID –> solves issue

Question 244

what is the problem with public key encryption for IPSec ( in both modes)

Answer 244

trudy can compute valid keys and proofs

Question 245

what is unique about the public key encryption aggressive mode

Answer 245

it hides Id’s

Question 246

what is plausible deniability in the context of IPSec public encryption mode?

Answer 246

alice and bob can deny that any conversation took place since trudy can “create” conversations