IPSec

Question 1

What are the two methods used in IPSec?

Answer 1

Authentication Header and Encapsulating Security Payload

Question 2

What two services are provided by IPSec?

Answer 2

Transport and Tunnel mode

Question 3

How do AHs achieve authentication (sender side) ?

Answer 3

1. Apply hash to plaintext to create message digest
2. Append message digest to plaintext

Question 4

How do AHs achieve authentication (receiver side) ?

Answer 4

1. Apply hash to plaintext
2. Compare between message digest and hashed plaintext

Question 5

What is the IP header format for AH in IPv4 for transport mode?

Answer 5

Original IP Header, AH, TCP, Data

Question 6

What do the security parameters index do?

Answer 6

Allows sender and receiver to know what protocols are used

Question 7

What does the sequence number in an ESP header prevent?

Answer 7

Replay attacks

Question 8

What 4 fields can be encrypted in the ESP header?

Answer 8

Payload, padding, pad length, next header

Question 9

What policy choices exist in IPSec?

Answer 9

Discard packet, protect packet with AH and ESP security protocols, let packet bypass IPSec processing

Question 10

A security association is defined by 3 parameters, what are they?

Answer 10

Security Parameters Index, IP destination address, Security Protocol Identifier: AH or ESP

Question 11

What defines IPSec transport mode?

Answer 11

It only encrypts the data being sent without setting up a secure connection. This can be inferred from not having a new IP header.

Question 12

What defines IPSec tunnel mode

Answer 12

Tunnel mode sets up a secure connection and also encrypts the data being sent. This can be inferred from having a new IP header.