Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

eJPT > HTTPS > Flashcards

HTTPS Flashcards

1
Q

HTTPS (HTTP Secure or HTTP over SSL/TLS)

A

method to run HTTP over SSL/TLS - a cryptographic protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does HTTPS provide?

A

confidentiality, integrity protection, authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does HTTPS prevent?

A
  • attacker cannot sniff application layer comms
  • attacker on path cannot alter app layer data
  • client can tell real identity of server and vice-versa
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Can a network adjacent user sniff HTTPS traffic?

A

yes, but they will not know the HTTP request headers/body/target domain or the HTTP response headers/body

but might recognize:

  • target ip address
  • target port
  • dns or similar protocols may disclose which domain user tries to resolve
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Does HTTPS protect against web app flaws?

A

no. all attacks on web apps happen regardless of SSL/TLS

the extra encryption layer just protects exchanged data between client/server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How to connect to HTTPS in linux terminal?

A

openssl s_client -connect host:443

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How to connect to HTTP in linux terminal

A

nc -v www.ferrari.com 80

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

eJPT (13 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions