Review Day

Question 1

what are the 3 uses for crypto tools

Answer 1

authentication, integrity, confidentiality

Question 2

2 ways to hack a database

Answer 2

SQL injection and Access rights

Question 3

What are the 4 phases of a virus

Answer 3

Dormant

Propogation

Triggering

Execution

Question 4

Weak collision avoidance vs strong collision avoidance

Answer 4

weak collision: infeasable for attack to computer another message so that h(1) = h(2)

strong collision = infeasable to find any 2 messages h(x1) == h(x2)

Question 5

what viruses mutate as the propogate

Answer 5

polymorphic

Question 6

what is the way to avoid sqli

Answer 6

sanitize the input

Question 7

what does a password policy use to weed out a common list of passwords not to use

Answer 7

a bloom filter

Question 8

what type of protocol does remote authentication use

Answer 8

challenge response

Question 9

the 4 typical access control techniques

Answer 9

MAC

DAC

RBAC

ABAC

Question 10

what are subject and object tied toggether with

Answer 10

access rights

Question 11

what can be used to prevent a replay attack

Answer 11

nonce

Question 12

is it possible to sort an encrpyted db

Answer 12

no

Question 13

what are 2 examples of a DNS attack

Answer 13

Cache poisioning, DDOS

Question 14

what is used to cryptographically sign DNS records

Answer 14

DNSSEC

Question 15

what is the DNSSEC chain of trust

Answer 15

a verified handshake at every DNS lookup node so nothing will get redirected to a bogus site