Section 10 - The Internet

Question 1

What is a URL

Answer 1

• Unifrom Resource Locator
• specifies the location of a resource on the internet, inlcuding name and file type
• hhtp = method
• www = host
• /webpage = location

Question 2

what is an ip address

Answer 2

• stands for internet protocol
• unique address assigned to a network device
• indicates where a packet of data is to be sent to or sent from

Question 3

what is packet switching

Answer 3

a method of communicating packets of data across a network

Question 4

what is a data packet

Answer 4

• data that is to be transmitted across a network is broken down into more managabke chunks called packets
• each packet contains a header, trailer and payload (the data)

Question 5

what is in a packet header

Answer 5

• senders IP address
• recipients IP address
• protocol
• packet number

Question 6

what is in a packet trailer

Answer 6

• end of packet flag
• checksum

Question 7

what is a router

Answer 7

• routers connect two networks together
• determines which router to send to next
• uses most efficient/shortest route
• updates routing table to reflect network changes

Question 8

what is a gateway

Answer 8

• if a packet is being moved between networks with different protocols, then a gateway is required to translate
• All of the header data is stripped from the packet and a new header is added in the format of the new network

Question 9

what is a firewall

Answer 9

• a firewall is either softwareor hardwae that controls access to and from a network
• numbered doors called ports are opened so that only certain traffic is allowed to pass through

Question 10

what is packet filtering

Answer 10

• packets of data are inspected by the friewall to check which port they are attempting to access
• if the IP address matched those recorded on the administrators permitted list, they are accepted and the port is opened

Question 11

what is stateful inspection

Answer 11

• the firewall maintains information about current connections
• it can inspect the payload of packets
• only allows relevant packets through

Question 12

what is a proxy server

Answer 12

• a proxy server makes a web request on behalf of your own computer, hiding the true request IP address from the recipient
• proxy servers can be used for anonymous surfing and provides a cashe of previously visited sites to speed access

Question 13

what is symmetric (private key) encryption

Answer 13

• uses the same key to encrypt and decrypt data
• this means the key must also be transferred to the same destination as the ciphertext
• this causes security problems as the key can be intercepted as easily as the ciphertext to decrypt the data

Question 14

what is asymmetric (public key) encryption

Answer 14

• uses two separate, but related keys
• the public key is made public and others wishing to send you data can use it for encryption, but not decryption
• another private key is known only by you and is used for decryption

Question 15

what is a digital signature

Answer 15

• in order to verify the integrity of a message, the sender can add a digital signature to a message
• the sender creates the signature by reducing the unencrypted message to produce a hash and encrypting the hash using their private key
• the sender bundles the digital signature with the message and encrypts it using the recipients public key
• recipient decrypts the bundle, uses the senders public key to decrypt the signature and compares the hash with their own calcuated hash

Question 16

what is malicious software (malware)

Answer 16

designed to cause inconvenience, loss or damage to programs, data or computer systems

Question 17

what is a virus/worm

Answer 17

a standalone program that does not require a user for it to spread or duplicate itself

Question 18

what is the TCP/IP stack

Answer 18

• a set of rules used in turn to format a message so it can be sent over a network
• contains four layers that each provide a specific function
• stands for transmission control protocol/ internet protocol

Question 19

what are the four layers of TCIP/IP

Answer 19

• application layer
• transport layer
• network layer
• link layer

Question 20

what happens in the application layer

Answer 20

• uses protocols related to the application being used
• does not determine how the data is tranmistted, rather specifies the rules

Question 21

what happens in the transport layer

Answer 21

• uses TCP to establish an end-to-end connection with the recipient computer
• splits the data into packets, labels them with packet numbers and adds the port number based on http protocol
• at the recieving end, this layer confirms all the packets have been recieved and requests any missing ones
• performs error detection

Question 22

what happens in the network layer

Answer 22

• uses the IP to address packets with the source and destination addresses
• routers operate on this layer and forward each packet towards a socket (endpoint) formed of their IP address and port number
• each router uses a routing table to insruct the next hop

Question 23

what happens in the link layer

Answer 23

• adds the MAC adress identifying the NICs of the source and destination

Question 24

what happens when data is recieved

Answer 24

• the link layer removes the MAC adrewss from each packet
• the network layer removes the IP address from each packet
• the transport layer remobes the port number from each packet and reassembles them in the correct order
• the application layer presents the image data for the user in a browser

Question 24

what is a MAC adress

Answer 24

• media access control address
• unique 12 digit hexadecimal code that is hardcoded on every NIC during manufacture, uniquely identifying each physical device so data packets can be routed to them

Question 25

examples of well known ports

Answer 25

• HHTP: 80 and 8080
• HTTPS: 443
• Post Office Protocols: 110

Question 25

how to improve code quality and protect from malware threats

Answer 25

• guarding against buffer overflow attack
• quarding aagainst SQL injection attack
• use of strong passwords for login credentials
• two factor authentification

Question 25

what is FTP

Answer 25

• file transfer protocol is an application level protocol used to move files between computers on a network
• ftp uses the client server model with seperate data and control channels
• its a set of instructions that can communicate and exchange files

Question 26

what is secure shell

Answer 26

• SSH is an encrypted protocol that allows secure communication between nodes across a network
• ssh uses public key encryption to protect the data in communcication, requireing a digital ceritficate to authenticate the user

Question 27

what is the role of a mail server

Answer 27

• mail servers are dedicated computers that route mail and store it until it can be recieved
• it uses three protocols

Question 28

three protocols used by a mail server

Answer 28

• SMTP: used to send emails and forward them between mail servers to their destination
• POP3: retrieves emails from a mail server that stores incoming mail, then transferrs to the clients computer
• IMAP: manages emails on a server to main synchronicity between devices

Question 29

what are the unusable ip addresses

Answer 29

• 127.x.x.x are private, non-routable addresses used for LANs only
• x.x.x.0 is the network identifyer
• x.x.x.255 is the broadcast address on each network
• x.x.x.1 is conventially the defualt router

Question 30

what are the parts of an ip address

Answer 30

• network identifier: left handed bits of a 32 bit number, used to define the network where nodes are communicating
• host identifier: right handed bits of a 32 bit number, used to identify the device

Question 31

what is classless adressing

Answer 31

• the more hosts in each network, the fewer the networks that can be created
• this system specifies the number of bits in the network ID
• e.g. the network 210.54.101.0/24 has a network ID of 24 bits and a host ID of 8 bits

Question 32

what is subnetting

Answer 32

• an organisation can chose to further subdivide the number of available hots IDs that they have between individual subnetworks
• the subnet ID is formed from the host ID
• this inproves security and can reduce data collisions

Question 33

what is a subnet mask

Answer 33

• a subnet mask is used together with an ip addess to identify the network identifier within the address
• a subnet mask is ANDed with the IP address to get the network identifier

Question 34

what is DHCP

Answer 34

• dynamic host configuration protocol
• automatically allocates IP addresses from a pool of available addresses to a host attempting to operate on a public network
• means theres efficient allocation of addresses
• allows hosts to move between networks
• reduces the need for expert knowledge

Question 35

what is NAT

Answer 35

network address translation is used to convert IP addresses as they pass between a public address space (e.g. via a router) using a public IP address and a LAN with a private address space

Question 36

what is a well-known port

Answer 36

a port number that has a specific purpose

Question 37

what is a dns

Answer 37

• domain name server
• translates fully qualified domain names into IP addresses
• DNS stores a database of FQDNs and corresponding IP addresses
• organised into a heirarchy

Question 38

how can two computers connected to the internet have the same IP address

Answer 38

• the computers have private, non-routable IP addresses
• NAT is performed so the computers can communicate on the internet

Question 39

how can a firewall protect LANs

Answer 39

• block/allow certain ports
• packet filtering
• stateful inspection
• act as a proxy server
• identify unusual behaviour from the host

Question 40

what is a DNS

Answer 40

• domain name server
• maps fully qualified domain names into IP addresses
• DNS stores a database of FQDNs and corresponding IP addresses
• organised into a heirarchy
• if one DNS server cannot resolve a lookup, the query will be passed to another