Standards

Question 1

X.500

Answer 1

Directory services (DAP)

Question 2

802.1x

Answer 2

Remote login (RADIUS)
Password is hashed with MD5 and sent to RADIUS server via UDP.
To encrypt, use TCP with TLS.

Question 3

802.3

Answer 3

Ethernet. Specifically the Media Access Control sublayer of Layer 2.

Question 4

802.11n vs. 802.11ac

Answer 4

Both are Wi-Fi transmission standards. Both use OFDM spread spectrum.

• 802.11n= fastest dual band ( both 2.4 and 5 Ghz).
• 802.11ac= fastest 5 Ghz. Supports directional beamforming.

Question 5

802.15

Answer 5

Bluetooth

Question 6

Virtual Circuit: Frame Relay

Answer 6

Layer 2
Packet switching
Fast --  no error checking
Utilizes ISDN (phone lines)
Cheaper than T1
Supports multiple PVNs
Requires DCE/DTE at each end
Provides a Committed Information Rate
Speed: T1 (1.5 Mbs) to T3 (45 Mbs)

Question 7

Packet switching vs circuit switching

Answer 7

• packet switching: packets are distributed across the bandwidth. Billed by data transmitted.
• circuit switching: predefined narrow individual circuits in parallel. Billed by circuit, whether being used or not.

Question 8

Virtual circuit: X.25

Answer 8

Layer 3
Older, therefore includes error checking because in the old days transmission media were not reliable.
Packet switching
Slow: error check, store and forward
Requires DCE/DTE at each end
Does not support multiple VPNs
Speed: 2 Mbs

Question 9

Virtual circuit: ATM

Answer 9

Layer 2
Utilizes vendor-provided end-to-end virtual circuits – either permanent or per-call.
Both packet switching and circuit switching
Fast, because it does not lookup addressing information, does not do error checking.
Uses fixed length cells
Utilizes IDSN or SONET
Instead of DCE/DTE, uses ATM switch at each end
Supports multiple PVNs
Supports voice, data and video at same time
Speed: 25-620 Mbs

Question 10

Speed of T1

Answer 10

1.544 Mbs

Question 11

Speed of T3

Answer 11

45 Mbs

Question 12

ISDN BRI

Answer 12

Integrated Services Digital Network, Basic Rate Interface
Basic phone line service, primarily for single voice transmission
Good for single user

Question 13

ISDN PRI

Answer 13

Integrated Services Digital Network, Primary Rate Interface
Premium phone line service, for multiple simultaneous voice and data transmissions
Good for offices (i.e. multiple users)

Question 14

Digital Signature encryption standards

Answer 14

• RSA
• DSA (Digital Signature Algorithm)
• Elliptic Curve DSA for cell phones

Question 15

802.11e

Answer 15

“e” for excellent quality.

Wireless Quality of Service: gives priority to delay-sensitive protocols like VoIP

Question 16

802.11i

Answer 16

“I” for information security

Wireless security standard

Question 17

ISO/IEC 14443

Answer 17

Smart card standard

Four fours, four sides to card

Question 18

MPLS

Answer 18

Multi Protocol Layer Switching.
Layer 3 and 2
New, replacing ATM and Frame Relay.  
Avoids the internet.
Rent virtual circuits (Label Switch Paths) from vendor. Need two LSPs, one for each way.  These use predefined shortcut addresses for routing, so not flexible like traditional IP routing. 
Use for office-to-office link, replacing VPN.
Supports QoS.
Speed: 2 Mbs-1 Gbs

Question 19

iSCSI

Answer 19

High speed access to drives over ethernet

Question 20

FCoE

Answer 20

Fiber Channel over Ethernet. Use fiber optics within data center for high speed access to servers and drives.

Question 21

Class A network

Answer 21

16 million hosts, 127 networks

1.0.0.1 to 126.255.255.254

Question 22

Class B network

Answer 22

65,000 hosts, 16,000 networks

128.1.0.1 to 191.255.255.254

Question 23

Class C network

Answer 23

254 hosts, 2 million networks

192.0.1.1 to 223.255.255.254

Question 24

Last octet of IP address

Answer 24

0 = network name
1 = gateway
2 = also can be gateway
3-254 = hosts
255 = broadcast to all the network

Question 25

Kerberos

Answer 25

Single sign on
Uses AES
Uses LDAP to access AD for authentication
Weaknesses: plaintext storage of keys and all password hashes stored with same encryption key on server – all eggs in one basket
Microsoft default

Question 26

SESAME

Answer 26

Similar to Kerberos but better: encrypted storage of user passwords
Uses PKI for authentication
Encrypted s
UNIX based

Question 27

ISC2 cannons

Answer 27

Papa:

1. Protect society
2. Act honorably
3. Provide service to principals
4. Advance the profession

Question 28

Graham-Denning Model

how many rules

Answer 28

Data security model
Primarily for integrity of financial transactions
8 rules: 4 for creating and deleting subjects & objects, 4 for rights (read, delete, etc.)

Question 29

TLS/SSL process

Answer 29

Goal: confidential communication with authenticated web server.

1. Client sends request to server.
2. Server sends digital certificate. Certificate contains the server’s public key for confidential return of the session key, as well as a CA’s digital signature to prove the server’s authenticity.
3. Client authenticates the server.
4. Client generates a symmetric session key, encrypts it with the server’s public key, and sends it back to the server.
5. The server decrypts the session key with its private key.
6. The client and server communicate using encryption from the session key.

Question 30

S/MIME

Answer 30

For public email.

Uses PKI for both signature and encryption

Question 31

CAT3

Answer 31

10base-T,10 Mbps

Question 32

CAT5

Answer 32

100Base-T, 100 Mbps, 100 M max distance

Question 33

CAT5e

Answer 33

1000Base-T, 1000 Mbps, 100 M max distance

Question 34

CAT6

Answer 34

1000Base-T, 1000 Mbps, 100 M max distance

Question 35

IPSEC

Answer 35

Uses IKE (Internet Key Exchange) with ISAKMP & OAKLEY
Used AES for confidentiality, SHA for integrity, HMAC for authentication

Question 36

SONET

Answer 36

Synchronous Optical NETwork.

Two fiber optic rings in opposite directions

Question 37

X.509 (International Telecommunications Union)

Answer 37

Digital signature standard

Question 38

VPN protocol: PPTP

Answer 38

Most widely used VPN protocol, used by Microsoft. Uses PPP to encrypt data.
Obsolete?
Multiprotocol

Question 39

VPN protocol: L2TP

Answer 39

Better than PPTP or L2F
Uses IPsec Transport mode to encapsulate
Multiprotocol & supports non-IP traffic

Question 40

VPN protocol: L2F

Answer 40

Uses PPP to encrypt. Replaced by L2TP.

Question 41

VPN protocol: MPLS

Answer 41

Multi-protocol Label Switching

Fast and efficient. Uses short labels to route packets through pre-defined routes.

Question 42

PGP

Answer 42

Proprietary email protocol. Web of trust. Commercial version uses RSA, IDEA and MD5.
Shareware uses Diffie-Hellman, CAST, SHA.