Protection for Data in Transit

Question 1

What is PAP?

Answer 1

Password Authentication Protocol

Question 2

What does PAP do?

Answer 2

Authenticates users based on their login credentials which is important

Question 3

What is a Weakness of PAP?

Answer 3

The data being sent is in plain text format and not encrypted.

Question 4

Who Designed IPSec?

Answer 4

IETF (Internet Engineering Task Force)

Question 5

What does IPSec Do?

Answer 5

Provide encryption and decryption through certificates, tunnelling techniques and keys. In some services, it may utilise the Kerberos protocol.

Question 6

What does IPSec Uses for Authentication in the Overheads of packets when sending data?

Answer 6

ESP (Encapsulating Security Payload) and AH (Authentication Header)

Question 7

What does TLS/SSL do

Answer 7

Both these technologies are often used when accessing online services such as websites that use HTTPS to provide security and encryption when transmitting data to web servers.

Question 8

What is SSH

Answer 8

Secure shell is used to provide a secure remote connection to networks, over a normally unsecure connection.

Question 9

What is Digest Authentication?

Answer 9

An authentication method which widely used and so is compatible with many methods, such as HTTP.

Question 10

What is Symmetric Encryption?

Answer 10

A symmetric key algorithm involves the use of a single key to encrypt and decrypt.

Question 11

What are the disadvantages of symmetric encryption?

Answer 11

One of the disadvantages of this method is that both parties will have to share the same key.

Question 12

What is Asymmetric Encryption?

Answer 12

Asymmetric on the other hand, has two separate keys for encrypting and decrypting. This is known as PK (Public Key) cryptography, as one party will have their unique key to encrypt data and the public can verify its authenticity and decrypt.

Question 13

How are keys exchanged to allow for decryption?

Answer 13

Most files and documents are sent over the internet, so keys would need to be exchanged over a secure connection. There are protocols such as FTPS and HTTPS that go through SSL (Secure Socket Layer) that establishes a handshake and connection. RSA and EIGamal are asymmetric encryption algorithms.

Question 14

What is Hashing?

Answer 14

A function used to transform data into a unique string of characters. One distinctive feature that separates hashing from encryption, is that the hashed value cannot be converted back (decrypted) to its original value. Common hashing algorithms include MD5 and SHA.

Question 15

What does Data Integrity ensure when hashing?

Answer 15

That there are no interferences by ensuring the data is authentic and unique