Section 27: Security Protocols

Question 1

S/MIME

Answer 1

Secures email by encrypting the contents (downside is it’ll encrypt the malware if it has it, too)

Question 2

SSL and TLS

Answer 2

Cryptographic protocols that provide secure Internet communications for web browsing, instant messaging, email, VoIP, and many other services

Question 3

Downgrade Attack

Answer 3

A protocol is tricked into using a lower quality version of itself instead of a higher quality version

Question 4

SSH (Secure Shell)

Answer 4

A protocol that can create a secure channel between two computers or network devices to enable one device to control the other device

Question 5

SSH requires

Answer 5

a server (daemon) to be run on one device and a client on the other; operates over port 22

Question 6

SSH 2.0 uses

Answer 6

Diffie-Hellman key exchange and MACs

Question 7

VPN

Answer 7

Secure connection between two or more computers or devices that are not on the same private network.

Question 8

PPTP for VPN

Answer 8

A protocol that encapsulates PPP packets and ultimately sends data as encrypted traffic (port 1723)

Question 9

L2TP for VPN

Answer 9

Connection between two or more computers or device that are not on the same private network (not secure and doesn’t have any encryption - it’s usually paired with IPsec) (port 1701)

Question 10

IPSec for VPN

Answer 10

A TCP/IP protocol that authenticates and encrypts IP packets and effectively securing communications between computers and devices using this protocol

Question 11

IKE

Answer 11

Internet Key Exchange - used by IPSec; has three modes - main, aggressive, quick

Question 12

SA (Security Association)

Answer 12

Establishment of secure connections and share security information using certificates or cryptographic keys

Question 13

Authentication Header

Answer 13

Protocol used in IPSec that provides integrity and authentication