Internet Protocol Networking and Securing the Networks Flashcards
(ARP)
Address Resolution Protocol “ Purpose: Maps IP addresses to physical MAC addresses.
Mechanism: Broadcasts a frame requesting the MAC address corresponding to an IP address, which is stored in the ARP table.
(DHCP)
Dynamic Host Configuration Protocol : Purpose: Automatically assigns IP addresses and related information (subnet mask, default gateway, DNS server) to hosts.
Mechanism: Uses UDP to assign dynamic IP addresses; assigns APIPA (169.254.x.y) if DHCP fails.
(ICMP)
Internet Control Message Protocol: Sends error messages and operational information.
(SNMP)
Simple Network Management Protocol: Collects and organizes information about managed devices on IP networks.
(DNS)
Domain Name System : translates human-friendly domain names to IP addresses
(NAT)
Network Address Translation (NAT)
Maps private IP addresses to public IP addresses to conserve public IP space.
Types:
Static Mapping: Fixed mapping between private and public IP addresses.
Dynamic Mapping: First-come, first-served basis from a pool of public IPs.
Port Address Translation (PAT): Maps multiple private IPs to a single public IP.
(HTTP)
Hypertext Transfer Protocol
Transmits hypermedia documents over the internet.
(SMTP)
Simple Mail Transfer Protocol
Internet standard for email transmission.
(POP)
Post Office Protocol
Internet protocol for retrieving emails from a mail server
(IMAP)
Internet Message Access Protocol
Internet protocol for accessing emails on a mail server.
(S/MIME)
Secure/Multipurpose Internet Mail Extensions
Provides cryptographic security for electronic messaging.
Encryption at Different Layers
Link Encryption: Encrypts data at the physical and data link layers; headers and routing data are also encrypted.
End-to-End Encryption (E2EE): Encrypts data at the session layer or higher; headers and routing information remain unencrypted.
Examples:
TLS: Encrypts at the session layer.
PPTP: Encrypts at the data link layer.
Link Encryption: Occurs at the data link and physical layers.
(TLS)
Transport Layer Security
Provides confidentiality and data integrity for network communications.
(VPN)
Virtual Private Network
Creates a secure, private connection through an untrusted network.
SIEM
Security Information and Event
Management System (SIEM)
log collection
log analysis
reporting
dashboards