Secure Protocols 2.6 Flashcards
Secure Real-Time Transport Protocol (SRTP) / Secure RTP
Used to encrypt VOIP technology via AES to ensure all video and audio is confidential on the network. Also includes authentication, integrity, and replay protection by using HMAC-SHA1 a Hash-based message authentication code using SHA1.
Time Synchronization (NTP)
Classic NTP has no security features. NTPsec is a developing protocol to make NTP secure. The code is being patched up and fixing vulnerabilities.
S/MIME (Secure/Multipurpose Internet Mail Extensions)
Public key encryption and digital signing of mail content. Requires a public key infrastructure (PKI) or similar organization of keys.
Secure POP (Post Office Protocol) and Secure IMAP (Internet Message Access Protocol)
Uses existing POP3 and IMAP and adds SSL encryption for them.
SSL/TLS/HTTPS
Transfers a symmetric key via asymmetric encryption and uses the symmetric key to provide security and speed from your web browser to the web server.
File Transfer Protocol Secure (FTPS) / SSH FTP (SFTP)
FTPS is a secure version of FTP using SSL. SFTP is SSH based SFT. They are not the same. SFTP provides some additionally file system functionality. It is able to resume interrupted file transfers, directory listing, remote file removal.
Lightweight Directory Access Protocol (LDAP)
Protocol for reading and writing directories over an IP network. Essentially its just an organized set of records like a phone directory. LDAP uses a standard X.500 written by International Telecom Union (ITU). Creates a standard so different OS’s can use LDAP. LDAP is and updated X.500. LDAP is not secure however can be used with SSL called LDAPS.
Simple Authentication and Security Layer (SASL)
Provides authentication using many different methods. Essentially it take existing protocols and just adds more authentication to make the a bit more secure.
Secure Shell (SSH)
Encrypted terminal communication through a command line. Just like a TELNET communication but TELNET is not encrypted.
Domain Name Systeme Security Extensions (DNSSec)
DNS was not designed with security. DNSSEC is the secure version of DNS. Uses public key cryptography with a trusted third party.
Simple Network Management Protocol v3 (SNMPv3)
Provides security for routers/switches by adding confidentiality, integrity, and authentication.
Dynamic Host Configuration Protocol (DHCP)
There is no secure version of DHCP. DHCP must be specifically authorized via Windows. DHCP must come from a “trusted” interface.
Subscription Services
Anti-virus and anti-malware services require subscriptions. Intrusion prevention systems also require subscriptions and firewalls also need constant updates through subscriptions. Each subscription requires a different update method. It’s a good idea to set up a trust relationship with those services to make sure they are not being compromised.
