Networking Systems and Telecommunications

Question 1

3 Different types of Backup Methods

Answer 1

1. Differential ? copy all cumulative changes since last full. (takes more space than incremental)
2. Incremental ? copy data changes since the last full.
3. full

Question 2

3 Types of RAID

Answer 2

1. Failure Resistant Disk System(FRDS)
2. Failure Tolerant System.
3. Disaster Tolerant System.

only FRDS is currently developed.

Question 3

ARP

Answer 3

Address Resolution Protocol ? ARP matches ip address to an ethernet address.

Question 4

Back?door

Answer 4

access through a preprogrammed, unknown access point using DUN or external network connection

Question 5

Buffer Overflow

Answer 5

DoS attack ? receipt of an excessive amount of data.

Question 6

Bus Data Network Topology

Answer 6

All transmissions of the network nodes travel the full length of the cable and are received by all stations. (Ethernet)

Question 7

CHAP Remote Access Protocol

Answer 7

Challenge Handshake Protocol ? authentication using an encrypted key.

Question 8

DSS Wireless Access Protocol

Answer 8

Direct Sequence Spread Spectrum ? Splits contents of message into smaller bits and decoded at receiver end.

Question 9

Dual?homed firewall

Answer 9

2 NICS, one on internal side and one on external side

Question 10

EAP?PEAP Remote Access Protocol

Answer 10

Protected EAP ? like EAP?TLS but easier to administer but less secure due to lack of client?side certificate.

Question 11

EAP?TLS Remote Access Protocol

Answer 11

Extensible Authentication Protocol, Transport Layer Security ? both client and server authenticate over TLS. Digital certificates are used.Can be confident user is authorized.

Question 12

EAP?TTLS Remote Access Protocol

Answer 12

Tunneled TLS

Question 13

Eavesdropping

Answer 13

Interception of network communication either passive or active

Question 14

FHSS Wireless Access Protocol

Answer 14

Frequency Hopping Spread Spectrum ? Provides no error recovery. Splits available signal bandwidth and segments it.

Question 15

ICMP

Answer 15

Internet Control Message Protocol ? used for diagnostics and error correction.

Question 16

Mesh Data Network Topology

Answer 16

Nodes are connected to every other node in the network. Backbone redundant.

Question 17

Name and describe the OSI (Open System Interconnect)Model Layers?

Answer 17

1. Physical ? electrical and mechanical level(x.21, HSSI,MAC address)
2. Data Link ? prep for transfer of data(PPP, SLIP, ARP)
3. Network ? handles data routing(IP,ICMP)
4. Transport ? negotiates the data exchange(TCP,UDP,SPX)
5. Session ? coordinates conversations between apps(NFS,SQL,RPC)
6. Presentation ? o/s that associates types of files to programs(TIFF,JPEG,MPEG)
7. Application ? not the app, but supports the end?user app process(HTTP,FTP,SMTP,TELNET)

Question 18

Name the TCP/IP Model layers?

Answer 18

1. Link(Network Access) ? x.25,ethernet,token ring, frame relay(layers 1 & 2 of OSI)
2. Network(Internet) ? IP, ARP, ICMP, IPsec) (layer 3 of OSI)
3. Transport(host?to?host) ? TCP, UDP (layer 4 of OSI)
4. Application ? HTTP, FTP (layers 5?7 OSI)
   3.

Question 19

PAP Remote Access Protocol

Answer 19

Password Authentication Protocol ? not encrypted but typically easy to implement on any network

Question 20

Piggybacking

Answer 20

Accessing the system with another user’s valid entery, via incorrect logoff or open session.

Question 21

PPP Remote Access Protocol

Answer 21

Point?to?Point ? i.e. Dial?up Networking (DUN)

Question 22

Ring Data Network Topology

Answer 22

network nodes are connected by unidirectional transmission links to form a closed loop.(token and FDDI)

Question 23

Screened Host firewall

Answer 23

Uses a router to filter data before the data reaches the firewall.

Question 24

Screened subnet firewall

Answer 24

Uses an external router to review data and bounce back as necessary before reaching the subnet.

Question 25

Session Hijacking

Answer 25

Taking control of another user’s network connection, via IP spoof.

Question 26

SLIP Remote Access Protocol

Answer 26

Serial Link Internet Protocol ? connecting one network to another over a single physical line or via modems.

Question 27

Smurf Attack

Answer 27

DoS attack ? causes severe congestion with ICMP ping response methods.

Question 28

Spoofing

Answer 28

Convincing a network device to perform an authorized action by masquerading as a trusted user, resource, or file.

Question 29

Star Data Network Topology

Answer 29

Most used today. Nodes are connected to a central LAN device directly.

Question 30

SYN Flood Attack

Answer 30

DoS Attack ? A buffer of the TCP initialization flooded with connection requests.

Question 31

Teardrop Attack

Answer 31

DoS Attack ? An altered offset field in IP packets confusing the system, causing it to crash.

Question 32

Tree Data Network Topology

Answer 32

A version of bus that invorporates the use of branches

Question 33

Trusted Network Interpretation(TNI) Evaluation Classes

Answer 33

D ? minimal protection
C ? discretionary protection
C1 ? discretionary security protection
C2 ? Controlled Access Protection (No off the shelf system goes higher than this)
B ? Mandatory protection
B1 ? Labeled Security Protection
B2 ? structured protection
B3 ? security domains
A1 ? verified protection

Question 34

Unauthorized Access

Answer 34

Users using their user name and password to access data they are not authorized for.

Question 35

WAP Wireless Access Protocol

Answer 35

Wireless Application Protocol ? over the internet

Question 36

WEP

Answer 36

Wired Equivalent Privacy ? uses shared secret between client and access point. Can be decrypted in a short time.

Question 37

WPA

Answer 37

WiFi Protected Access ? uses TKIP

Question 38

WPA2

Answer 38

WEP Protected Access 2 ? Supports IEEE 802.1ix authentication

Question 39

Describe DES/DEA

Answer 39

64?bit block size and 56?bit key. It is a 16 round cryptosystem utlizsing S?boxes

Question 40

Describe the Rijndael block cipher

Answer 40

iterated block cipher with variable block lenght and variabe key length

Question 41

Describe XOR

Answer 41

Performs binary bit addition where T is 1 if A and B are not equal

Question 42

During Discovery scanning what does the classification process produce?

Answer 42

Applications running on the target system

Question 43

During discovery scanning what does the inventory scan produce

Answer 43

A list about the target systems OS and available ports

Question 44

How does link encyrption operate?

Answer 44

each entity has keys in common with its two neighboring entities thus as a node recives the encyrpted message from its predecessor (neighboring node) it decrypts it and then reencrypts it with the shared key for the succesive node.

Question 45

How is a one?time pad usually implemented

Answer 45

as a stream cipher by using XOR

Question 46

How is confusion performed in DES?

Answer 46

S?box

Question 47

How is diffusion performed in DES

Answer 47

P?Boxes

Question 48

In a triple DES encryption notation noted DES?EDE2 what do the letters after DES stand for?

Answer 48

Encrypt
Decrypt
Encrypt
2(keys)

Question 49

Name common Trojans:

Answer 49

Trinoo, Back Orifice, NetBus, SubSeven

Question 50

Port 118

Answer 50

sqlserv

Question 51

Port 119

Answer 51

nntp

Question 52

Port 161

Answer 52

snmp

Question 53

Port 194

Answer 53

irc

Question 54

Port 2049

Answer 54

NFS

Question 55

Port 389,636

Answer 55

LDAP/Secure LDAP

Question 56

Port 5631

Answer 56

PCAnywhere

Question 57

The number of rounds in the Rijndael Cipher is a function of the key size: Given a key size of 128 how many rounds will occur

Answer 57

10

Question 58

The number of rounds in the Rijndael Cipher is a function of the key size: Given a key size of 192 how many rounds will occur

Answer 58

12

Question 59

The number of rounds in the Rijndael Cipher is a function of the key size: Given a key size of 256 how many rounds will occur

Answer 59

14

Question 60

What are four differences in OS implementation of the TCP/IP stack?

Answer 60

Time to Live
Initial Window Size
Don’t Fragment bit
Type of Service

Question 61

What are some liabilities of PDAs

Answer 61

They do not support DAC
They lack audit capabilities
They don’t support a non?object reuse policy
They provide no data integrity protection

Question 62

What are the bit strenghts of AES variations?

Answer 62

128, 192 and 256

Question 63

What are the four modes of DES

Answer 63

Cipher block chaining
Electronic Code Book
Cipher Feedback
Output Feedback

Question 64

What are the three layers of the Rijndael cipher?

Answer 64

The non?linear layer
The liner mixing layer
The key addition layer

Question 65

What are the three main components of a polymorphic virus?

Answer 65

A scrambled virus body, a decryption routine, and a mutation engine

Question 66

What cipher is AES based on?

Answer 66

Rijndael

Question 67

What do header condition signatures look for?

Answer 67

dangerous or illogical combinations in packet headers.

Question 68

What do string signatures look for?

Answer 68

text strings that indicate a possible attack

Question 69

What is a liability of TCP FIN scans?

Answer 69

They work only on Non?Windows machines because Windows Machines send a RST regardless of if the port is open or closed.

Question 70

What is a SYN/ACK scan

Answer 70

A scanner sends a SYN/ACK packet if the port is closed it assumes the SYN/ACK is a mistake and sends a RST if the port is open the SYN/ACK will be dropped

Question 71

What is C2MYAZZ?

Answer 71

A utility that enables server spoofing to implement a session hijacking or MITM attack

Question 72

What is C2MYAZZ?

Answer 72

A utility that enables server spoofing to implement a s ession hijacking or MITM exploit

Question 73

What is clustering with reguards to cryptography?

Answer 73

a situation in which a plaintext message generates identical ciphertext messages by using the same transformation algorithms but with different cryptovariables or keys

Question 74

What is logon abuse?

Answer 74

Privilege escalation

Question 75

What is the best known symmetric key system?

Answer 75

DES

Question 76

What is the fixed block size for AES?

Answer 76

128 bits

Question 77

What is the intent of a discovery scan?

Answer 77

to collect enough information about each network device to identify what type of device it is.

Question 78

What is the intent of an inventory scan?

Answer 78

It provides information about the target system’s OS and its available ports

Question 79

What is the most basic and fastest type of TCP scan?

Answer 79

TCP connect()

Question 80

What is the native mode of DES

Answer 80

Electronic Code Book

Question 81

What is the standard TTL value for HP Jet direct printers?

Answer 81

60

Question 82

What is the standard TTL value for most network devices, UNIX and Mac systems?

Answer 82

255

Question 83

What is the standard TTL value for most Windows systems?

Answer 83

128

Question 84

What is the standard TTL value for Windows 95B/98 systems?

Answer 84

32

Question 85

What type of key does WEP use?

Answer 85

A 40?bit shared secret key, a RC4 psuedorandom number generator PRNG encryption and a 24 bit initialization vector

Question 86

Which modes of DES operates as a stream cipher?

Answer 86

Cipher Feedback and Output Feedback

Question 87

Which operational mode of DES is most likely to allow errors to propogate?

Answer 87

Cipher Feedback

Question 88

802.11a

Answer 88

54 Mbps in the 5GHZ range

Question 89

802.11b

Answer 89

11 Mbps

Question 90

802.11g

Answer 90

54 Mbps in 2.4 GHZ band

Question 91

802.15

Answer 91

PANs

Question 92

At what layer of the OSI model does Frame Relay operate?

Answer 92

Data link

Question 93

Describe an ATM network

Answer 93

High?bandwidth, low delay technology that uses both switching and multiplexing. It uses 53?byte fixed size cells instead of frames

Question 94

How does CHAP prevent against remote client impersonation?

Answer 94

By sending challenge strings at random intervals.

Question 95

How does CHAP protect against replay attacks?

Answer 95

It does not send the password in clear text an it uses an arbitrary challenge string for each authentication attempt

Question 96

How many channels (up/down) comprise a Basic Rate Interface?

Answer 96

Two B & one D

Question 97

How many channels (up/down) comprise a Primary Rate Interface?

Answer 97

1 Single D channel + 23/30 channels for voice and data

Question 98

How many non?overlapping channels are used in DSSS?

Answer 98

Typically 3

Question 99

IPSEC can support multiple ______ but not multiple _________

Answer 99

simultaneous tunnels; multiple protocols

Question 100

Is RADIUS TCP or UDP?

Answer 100

UDP

Question 101

It can be said that TACAS and RADIUS are standards based”…what does that mean?”

Answer 101

That they can interoperate with other systems of the same time.

Question 102

RAID 0

Answer 102

Striping

Question 103

RAID 1

Answer 103

Mirroring

Question 104

RAID 2

Answer 104

Hamming Code Parity (bit?interleaved parity)

Question 105

RAID 3

Answer 105

Byte Level Parity

Question 106

RAID 4

Answer 106

Block Level Parity

Question 107

RAID 5

Answer 107

Interleave Parity

Question 108

To create an IPSEC tunnel that provides authentication, integrity and encryption what protocol would I use?

Answer 108

ESP

Question 109

To create an IPSEC tunnel that provides source authentication and integrity without encryption which protocol would I enable?

Answer 109

AH

Question 110

What are the FCC regulations for FHSS networks?

Answer 110

75 or more frequencies can be used with a maximum dwell time of 400ms

Question 111

What are the five layers of WAP?

Answer 111

application, session, transaction, security and transport

Question 112

What are the private IP address ranges?

Answer 112

10. 0.0.0 ? 10.255.255.255
11. 16.0.0 ? 172.31.255.255
12. 168.0.0 ? 192.168.255.255

Question 113

What are the three classes of WTLS security?

Answer 113

Class 1: anonymous authentication
Class 2: Server Authentication
Class 3: Two?way client and server authentication

Question 114

What are the two different spread spectrum technologies in use in 2.4GHZ LANs

Answer 114

Direct?dequence spread spectrum(DSSS) and frequency hopping spread spectrum (FHSS)

Question 115

What are the two primary types of ISDN interfaces?

Answer 115

Basic Rate Interface and Primary Rate Interface

Question 116

What does TACAS+ provide that TACAS does not provide?

Answer 116

two factor password authentication
the ability for a user to change thier password
the capability for resynchronizing security tokens
better audit trails

Question 117

What does the application layer of WAP consist of?

Answer 117

The wireless application environment (WAE), a microbrowser specification for internet access, wireless markup language, WMLScript

Question 118

What does the Transport layer of the WAP consist of?

Answer 118

Wireless Datagram Protocol

Question 119

What extention to EAP allows for authentication using digital certificates?

Answer 119

EAP?TLS

Question 120

What is 802.1X

Answer 120

Port based authentication for security in wireless networks

Question 121

What is a multiplexer?

Answer 121

It enables several signals to be sent over one physical

Question 122

What is a Switched Multimegabit Data Service network use for?

Answer 122

to extend LAN like performance to a MAN or WAN

Question 123

What is Frame Relay?

Answer 123

A high?performance WAN protocol that was originally developed for ISDN and is considered the successor to X.25/LAPB

Question 124

What is LEAP

Answer 124

it dynamically creates WEP keys making WEP more secure.

Question 125

What is Link Access Procedure Balanced?

Answer 125

For use in X.25 networks defines frame types and is capable of retransmitting, exchanging, and acknowledging frames as well as detecting out of sequence or missing frames

Question 126

What is one advantage of MS?CHAP V2 over regular MS?CHAP/CHAP?

Answer 126

Mutual authentication support

Question 127

What is te most common implementation of RAID

Answer 127

RAID 5

Question 128

What is the difference between remote journaling and electronic journaling?

Answer 128

Electronic vaulting happens at pretimed intervals whereas remote journaling is real time

Question 129

What is the early de facto standard for dial up communications

Answer 129

SLIP

Question 130

What is the main difference between Layer 2 and Layer 3 tunneling protocols

Answer 130

Layer 2 protocols use frames and Layer 3 protocols use headers

Question 131

What is the maximum effective radius of a Switched Multimegabit Data Service network?

Answer 131

30 Miles

Question 132

What is X.25?

Answer 132

The first commercially successful connection oriented packet switching network where packets travel over virtual circuits.

Question 133

What layer does the Point to Point Protocol operate at?

Answer 133

Data Link

Question 134

What RFC defines CHAP/PAP

Answer 134

RFC1334

Question 135

What succeeded SLIP?

Answer 135

PPP

Question 136

What type of authentication does PPP use?

Answer 136

PAP, CHAP and MS?CHAP

Question 137

Why is RADIUS not used for router?to?router authentication?

Answer 137

It does not provide support for two?way authentication