Sybex Chp 12-14

Question 1

True or False

In PPTP, the initial tunnel negotiation is not encrypted

Answer 1

True

Therefore, the IP address of the sender and receiver (and even usernames and hashed passwords) could be intercepted by an attacker.

Question 2

True or False

PPTP does not support TACAS+ or RADIUS

Answer 2

True - PPTP does not support TACAS+ or RADIUS

Question 3

True or False

L2F does not offer encryption

Answer 3

True - L2F does not offer encryption

Question 4

True or False

L2F does not support TACAS+ or RADIUS

Answer 4

False - L2F does support TACAS+ or RADIUS

Question 5

IPSec Authentication Header (AH) provides limited authentication

Answer 5

False

IPSec Authentication Header (AH) supports:

• –Authentication
• –Integrity
• –Non-repudiation

Question 6

IPSec Encapsulating Security Payload (ESP) provides encryption to protect the confidentiality of transmitted data (and limited authentication)

Answer 6

True

ESP has two modes:

—Transport Mode - IP header is not encrypted (data is encrypted)

—Tunnel Mode - IP Header and data is encrypted ad a new header is generated to govern transmission through the tunnel

Question 7

Main difference between Smart-card and Memory-card?

Answer 7

Smart card has a processor that can be used for authentication, encrypt data, or digitally sign email.

Memory card just holds authentication data about a user

Question 8

Explain BYOD Device Fingerprinting

Answer 8

Users register their device and associate it with their account. The enrollment captures system characteristics (CPU, Memory, Applications, model, serial, etc.)

Question 9

What is Identity as a Service (IDaaS)?

Answer 9

3rd Party service that provides cloud identity and access management

Question 10

How does a right and a permission differ?

Answer 10

A permission has to do with an object (read/write/edit/execute,etc.)

A right has to do with an ability to do something (change time, restore a file)

Question 11

__________ are subject focused and identify the objects that subjects can access.

ACL
Capability list

Answer 11

Capability list are subject focused and identify the objects that subjects can access.

Capability tables are focused on subjects (such as users, groups, roles)

Question 12

__________ are object focused and identify access granted to subjects for any specific object.

ACL
Capability list

Answer 12

ACL are object focused and identify access granted to subjects for any specific object.

DAC Access Models are implemented using ACLs on objects

Question 13

Which hash is not collision free?

MD5
SHA-3

Answer 13

MD-5 (128-bits) - considered broken

SHA-3 (512-bits) - considered safe against birthday attacks

Question 14

This attack focuses on finding collisions in hashes

Answer 14

Birthday Attack

Find enough samples and you will find a collision

Question 15

What is an Advanced Persistent Threat?

Answer 15

An APT is usually a government-funded group of very smart people with very expensive toys with the purpose of doing bad things with computers.