Telecommunications - Domain 2

Question 1

What are the 7 layers of the OSI model and give an example:

Answer 1

Top Application - HTTP, Presentation - JPEG, Session - Appletalk, Transport - TCP/UDP, Network - IP/IPX (router), Data - Ethernet (switch) and Physical - Ethernet (hub) Bottom

Question 2

Purpose of the OSI Model

Answer 2

1. Increase interoperability between vendor products. 2. Clarify network services functionality and communications processes. 3. Modular approach so that component can be modified without affecting others.

Question 3

Data Encapsulation - OSI Model

Answer 3

Each layer adds its own information to the data as it travels down the layers.

Question 4

Physical Layer - OSI Model

Answer 4

1. Specifies how signals are transmitted on the network. 2. Interface to media. 3. Responsible for encoding scheme - Manchester Encoding.

Question 5

Data Link Layer - OSI Model

Answer 5

1. Sender breaks data into frames. 2. Formats for proper technology - Token Ring, Ethernet, and ATM. 3. Media Access. 4. Media access methods a. CSMA/CD ethernet 802.3 b. Collision/Contention based c. Token Passing 802.5 Token Ring FDDI d. 802.11 Wireless e. 802.12 Polling 5. Synchronization and Error Control

Question 6

Network Layer - OSI Model (Routing)

Answer 6

1. Routes data between systems or different networks. 2. Confidentiality, authentication, and integrity can be provided at this layer. 3. Select route for packets to take. 4. Fragmentation for dissimilar frame sizes.

Question 7

Transport Layer - OSI Model

Answer 7

1. End to end packet xfer use connection-oriented or connection services. 2. Buffering of data until all is sent or receiving system can process. 3. Error control and recovery if necessary. 4. Use of ports to communicate with higher level protocols. 5. Segmenting packets for processing by the network layer. 6. Packet sequencing.

Question 8

Session Layer - OSI Model - diagram

Answer 8

1. Sets up communication with destination. 2. Maintenance of connection. 3. SQL, NFS, and RPC

Question 9

Session Layer - OSI Model

Answer 9

1. Allows applications to organize and synchronize how they will transfer data. 2. Exception reporting. 3. Session setup, maintenance, session tear down. 4. Provides recovery services if required. 5. Full-duplex: two way conversations at the same time. 6. Half-duplex - only on node can speak at a time.

Question 10

Presentation Layer - OSI Model - diagram

Answer 10

1. Translates message into standard presentations. 2. Formatting and encoding. 3. File level encryption. 4. File level compression.

Question 11

Presentation Layer - OSI Model

Answer 11

1. Specifies or negotiates how data is represented in binary when exchanged by applications. 2. Encoding (ASCII or EBCDIC). 3. Formatting (TIFF, GIF, JPEG).

Question 12

Application Layer - OSI Model

Answer 12

1. Functionality. 2. Services and protocols-FTP, Email, Access Control Services, Gateways, File Management, Web Browser, non-repudiation.

Question 13

OSI Model - Acronym

Answer 13

APSTNDP All people seem to need delicious pizza.

Question 14

OSI Model - PROTOCOLS - Application Layer

Answer 14

FTP TFTP BOOTP SNMP RLOGIN SMTP MIME FINGER TELNET NCP APPC AFP SMB HTTP

Question 15

OSI Model - PROTOCOLS - Presentation Layer

Answer 15

ASCII TIFF GIF JPEG MPEG MIDI

Question 16

OSI Model - PROTOCOLS - Session Layer

Answer 16

DNS NETBIOS NFS RPC SQL

Question 17

OSI Model - PROTOCOLS - Transport Layer

Answer 17

TCP UDP SPX SSL TLS

Question 18

OSI Model - PROTOCOLS - Network Layer

Answer 18

IP ICMP RIP IGMP IPX

Question 19

OSI Model - PROTOCOLS - Data Layer

Answer 19

SLIP PPP ARP RARP L2F L2TP ETHERNET TOKEN RING X.25 FRAME RELAY ATM

Question 20

OSI Model - PROTOCOLS - Physical Layer

Answer 20

HSSI X.21 EIA/TIA-232 EIA/TIA-449 SONET

Question 21

Protocols - what are they?

Answer 21

1. Rules used to allow two or more computers to send and receive data. 2. Allow different operating systems and applications to communicate. 3. Different protocols have different functionalities and goals. 4. Different network models specify services carried out by protocols. 5. Protocol stack means modules of functionality at different layers.

Question 22

TCP/IP - Protocol of the Internet

Answer 22

1. Transmission Control Protocol/Internet Protocol. 2. Suite of protocols that govern how data is transmitted. 3. Port numbers track different conversations-20 and 21 (FTP), 25 (SMTP), 161 (SNMP), 80 (HTTP), and 23 (TELNET). 4. Source port numbers are dynamic. 5. Destination values are usually under 1024.

Question 23

TCP vs UDP

Answer 23

1. TCP -Connection oriented, Reliable, and provides flow control. 2. UDP - connectionless, non-reliable, no handshake is performed, and it is best effort protocol.

Question 24

IPv4 addressing

Answer 24

1. 32 bits (4 bytes long) 2. uniquely identify a particular network interface 3. contains two parts-network ID and locally administered bits.

Question 25

IPv4 Class A addressing

Answer 25

RFC 721 0.0.0.0 to 126.0.0.0 - first byte defines network 8 networks 24 hosts 126 total networks 16.7 M hosts

Question 26

IPv4 Class B addressing

Answer 26

RFC 721 128.0.0.0 to 191.0.0.0 - first two byte defines network 16 networks 16 hosts 65K total networks 65K hosts

Question 27

IPv4 Class C addressing

Answer 27

RFC 721 192.0.0.0 to 223.0.0.0 - first three byte defines network 24 networks 8 hosts 16.7M total networks 254 hosts

Question 28

IPv4 Class D addressing

Answer 28

RFC 721 224.0.0.0 to 239.0.0.0 - Multicast

Question 29

IPv4 Class E addressing

Answer 29

RFC 721 240.0.0.0 to 255.0.0.0 - reserved for future use.

Question 30

IPv6

Answer 30

1. 128 bit addresses. 2. Eight blocks for four hex digits. 3. colon’d hex. 4. Can be shortened be deleting leading zeros. Adjacent blocks of zero’s can be replaced with ::, but only once.

Question 31

Unique local Addresses

Answer 31

1. Equivalent of IPv4 private address (10.x.x.x, 172.16.x.x, and 192.168.x.x). 2. Routable between subnets on a private network only. 3. Begin with “fd”. 4. The next 40 bits are the global ID and is randomly generated value that identifies a specific sit within the organization. 5. Next 16 bits represent subnet ID. 6. Last 64 bits represent the interface ID.

Question 32

Signals

Answer 32

1. Analog-varying electromagnetic waves and varied by amplification vs 2. Digital-electric pulses representation binary digits (on and off only).

Question 33

Signaling Techniques

Answer 33

1. Sync Transmission-stream of data, two systems sync before data is sent and used to transfer large amounts of data. 2. Async Transmission-bits are sent sequentially, xfer small amounts of data, start and stop bits used, and modems and dialup are main tech.

Question 34

Baseband vs Broadband

Answer 34

1. Baseband-cable only uses one channel and uses dedicated freqs. 2. Broadband-cable uses several channels and can xmit more data per unit of time.

Question 35

Coaxial Cable construction

Answer 35

Sheath then braided shielding then insulation then conducting core.

Question 36

Twisted pair construction

Answer 36

Low speed xmit using twisted copper-STP, UTP. UTP vulnerable to interference. UTP is less secure then STP and fiber.

Question 37

Fiber characteristics

Answer 37

1. Data travels as light over glass medium. 2. Hi-speed less attenuation. 3. Extremely resistant to eavesdropping. 4. Very expensive. 5. Hard to work. 6. Most secure cabling type.

Question 38

Cable issues

Answer 38

1. Noise-dirty signals. 2. Attenuation-LOS. 3. Cross talk-signals spills onto other wires. UTP most susceptible.

Question 39

Twisted Pair Speeds

Answer 39

1. UTP/STP 100M RJ-45 connector. 2. CAT 3-10 MBPS 2 pairs. 3. CAT 5-100M 4 pairs. 4. CAT 5e/6 1000M. 5. CAT 7 10 GBPS.

Question 40

Fiber Optic design

Answer 40

1. Singe Mode 2000M. 2. Multimode 500M-both ST (twist), SC (clip) connectors.

Question 41

Transmission methods

Answer 41

1.Unicast-one to one. 2. Multicast-one to many. 3. Broadcast-one to all.

Question 42

LAN Protocols - Address Resolution Protocol (ARP)

Answer 42

1. Maps the IP address to the MAC. 2. MAC is only used to forward frames on the same network segment, not for routing. 3. LAN media only understand MAC addresses not IP.

Question 43

LAN Protocols - Reverse Address Resolution Protocol (RARP)

Answer 43

1. Has MAC address and broadcasts to get matching IP address. 2. RARP server responds to RARP broadcast. 3. Used in dumb terminals. 4. BOOTP was created after RARP and has more functions-gives station IP, gateway IP, and name server IP.

Question 44

LAN Protocols - Dynamic Host Configuration Protocol (DHCP)

Answer 44

1. Automates IP config. 2. Creates scopes to manage. 3. Options added to scope to set add’l TCP/IP parms. 4. Support for Superscopes and Multicast scopes. 5. Integration with DNS.

Question 45

DHCP Leasing Process- DORA acronym

Answer 45

1. Client boots and broadcasts DHCPDiscover message. 2. Server(s) respond and returns a DHCPOffer message. 3. Client chooses first DHCPO it receives and sends DHCPRequst accepting info from that server. 4. Server sends DHCPAck. 5. DHCP renewal-client requests from original server 50% lease time, if no response, sends request to any server for 87.5% lease time.

Question 46

Internet Control Message Protocol

Answer 46

1. Message protocol for IP. 2. IP sends ICMP. 3. Status and error messages. 4. Ping. 5. Routers put ICMP messages into IP datagrams to indicate a message could not be delivered. 6. Can be used to trick routers into changing their tables thus redirecting traffic.

Question 47

Hub characteristics

Answer 47

1. Layer 1. 2. Connects multiple LAN devices.

Question 48

Switch characteristics (Bridge)

Answer 48

2. Layer 2. Forwards frame to correct network segment. 3. Data link layer device. 4. Subject to MAC flooding.

Question 49

Router characteristics

Answer 49

1. Layer 3. 2. Routes packets based on IP address in header. 3. Can connect to similar or different networks. 4. Uses ACL security. 5. Network layering device.

Question 50

Routing protocol types

Answer 50

1. Distance vector based. 2. Link states. 3. Border protocols. - interior routing (RIP, OSPF) exterior routing (BGP).

Question 51

Distance Vector Protocols

Answer 51

1. List of destination networks with direction and distance hops. 2. Routing by rumor. 3. Each router periodically sends its entire table to a neighbor router. 4. Should not update from unauthorized routers. 5. Noisey-not efficient. 6. Infinity = 16 to prevent loops. Small newtkrk usage only.

Question 52

Link state Protocol - Open Shortest Path First (OSPF)

Answer 52

1. Each router keeps a topo map of the net and identifies all routers and sub-nets. 2. Route is determined from shortest path (speed) to dest. 3. Routers elect DR (designated router) within an area. 4. All routers establish their topology database using DR as gateway between areas. 6. LSA (Link State Advertisements are used to communicate between devices to ensure the topology has not changed. 7. These protocols can be very resource intensive.

Question 53

Gateway

Answer 53

1. Layers 5, 6, 7. 2. Usually software that links two different networks. 2. Not to be confused with “default gateway” which is usually a router. 3. Translates different protocols or applications.

Question 54

Firewall

Answer 54

1. Layers 3 to 7. 2. A combination of SW and HW that supports and enforces network security policy. 3. restrict access from one net to another. 4. 5 types are Static Packet filtering, Stageful Packet Filtering, Circuit Proxy, Application Proxy, and Kernel proxy.

Question 55

Packet Filtering

Answer 55

1. Uses ACL’s to make decisions. 2. Access is based on source and destination IP’s and port #’s. 3. Network layer service.

Question 56

Static Packet Filter Firewall

Answer 56

1. Simplest and least expensive method to stop messages based on addresses, ports, and protocol type. 2. Minimum security for low-risk environments. 3. Screening routers with rules for accepting or rejecting data. 4. Cannot keep state information.

Question 57

Stateful Firewalls

Answer 57

1. Packets are captured by inspection engine and each OSI layer is inspected. 2. Keeps track of the “state” or dialog of a communication stream. 3. Build a state table to monitor each comm dialog. 4. Tracks connectionless protocols. 5. Can enforce context access control.

Question 58

Proxy Firewall

Answer 58

1. Circuit and Application Gateways. 2. Middleman between communicating computers. 3. Masks source computer by copying the packet and inserting its own address. 4. High processing on each packet means low performance.

Question 59

Circuit Level Firewall

Answer 59

1 Does not look as deep into the packet as application-level proxy. 2. Provides protection for a wide variety of protocols and is easier to maintain. 3. Makes access decision based on source and dest address, port, and protocol. 4. Similar functionality as a packet filter, but breaks connection.

Question 60

Kernel Proxy

Answer 60

1. Build a virtual stack to examine each packet at each layer to ensure integrity. 2. Faster then app proxy. Takes place in the kernel.3. Performs NAT.

Question 61

Bastion Host

Answer 61

1. Also known as a hardened system or a locked down system. 2. Disable unnecessary services and subsystems. No file sharing. Limited ports. No unnecessary SW or utilities. 3. Computers in DMZ’s should be hardened.

Question 62

Firewall Placement

Answer 62

1. Protect an internal network from ext net and act as a choke point. 2. Segment net sections and enforce access controls between different subnets. 3. Construct a DMZ to provide a buffer zone between the internal and external net. 4. Architectures defined by NIST-Screened host, dual-homed firewall and screened subnet.

Question 63

Screened host Firewall

Answer 63

1. Proxy directly behind a packet-filtering router. 2. Separates trusted and non-trusted networks.

Question 64

Dual-homed Firewall

Answer 64

1. Two interfaces-one for each network. 2. Forwarding and routing is turned off so packets can be inspected.

Question 65

Screened subnet

Answer 65

1. A DMZ created by implementing two screened routers (Internet-router-DMZ w/ FW - router - LAN). 2. Optionally can include a proxy.

Question 66

Demilitarized Zone (DMZ)

Answer 66

1. Network segment between protected network and external non-trusted network. 2. Creates a buffer zone between the internal and external network. 3. Bastion Hosts are put in DMZ. One router or firewall should connect the trusted network to the DMZ. 5. One entry path.

Question 67

Firewalls should:

Answer 67

1. Should deny all traffic unless expressly permitted (white listing). 2. Should block directed broadcasts (defense against surf and fragile attacks). 3. Block traffic leaving the net from a non-internal address (indicitive of a Zombie or DDoS attack). 4. Block all traffic entering the network from an internal IP address (Spoofing). 5. If security is important then packets should be reassembled before forwarding (slow).

Question 68

Downfalls of firewalls:

Answer 68

1. Security is concentrated in one spot. 2. Firewalls present a postnatal bottleneck to the flow of traffic. 3. firewalls may restrict service users want to use. 4. Most firewalls do not protect from viruses in emil. 5. Firewalls provide little protection against an insider attack.

Question 69

Domain Name Service (DNS)

Answer 69

1. Network service that translates host names to IP addresses. 2. Host names are divided into zones. 3. DNS server that holds resource records for a zone is the authritive DNS server for that zone.

Question 70

Securing DNS

Answer 70

1. Enable DNSSec. 2. Place a DNS server on both ext and int networks. 3. Limited DNS interface access.

Question 71

Network Address Translation (NAT)

Answer 71

1. NAT allows the use of private addresses. 2. NAT device has a pool of public IP addresses that get mapped to internal computers. 3. Limits the understanding of the internal net to ext entities.

Question 72

NAT**

Answer 72

1. Converts addresses used internally and internet IP addresses. 2. Developed because quick depletion of public IP addresses and ability to hide internal addresses. 3. Static NAT - each internal system has a corresponding external routable IP address. 4. Hiding NAT - all systems share same external routable IP address. Dynamic or static mapping.

Question 73

Classless Internet Domain Routing (CIDR)

Answer 73

1. Subnetting - borrowing bits from host portion to use for the network portion. 2. Supernetting - aggregating multiple networks to borrow bits from the host portion to make a larger network.

Question 74

Circuit Switching

Answer 74

1. A virtual connection that acts like a dedicated link is built for two device to communicate. 2. Connection oriented virtual link. 3. Trafic travels in a predictable and constant manner. 4. Fixed delays. 5. Usually carries voice.

Question 75

Packet Switching

Answer 75

1. Packets can use many different dynamic paths to get to the same destination. 2. Supports traffic that is bursty. 3. Variable delays. 4. Data oriented comms.

Question 76

Multiplexing

Answer 76

1. Device that combines two or more channels. 2. The path is a physical (cable) or is a logically separated (freq or TDM).

Question 77

Fiber Distributed Data Interface (FDDI)

Answer 77

1. High Speed token passing media access technology. 2. Dual rings going in opposite directions for fault tolerance. 3. 100 MBPS 3. Long distance at high speeds with minimal interference. 5. CDDI uses UTP. Usually for MANs.

Question 78

Sync Optical Net (SONET)

Answer 78

1. Standard for transferring data over fiber. 2. Backbone carrier network-defines transmission rates, signal formats, and optical interfaces and the way phone companies transmit digital voice and data over optical networks. 3. Layer 1. 4. Many channels multiplexed together. 5. Self-healing. SDH in England.

Question 79

Metro Ethernet

Answer 79

1. Next gen LAn tech. 2. Emerging tech.

Question 80

WAN Tech

Answer 80

WAN PSTN ISDN DSL Frame Relay X.25 ATM VOIP MPLS Metro Ethernet

Question 81

PBX Protection

Answer 81

1. Change Admin PWD regularly. 2. Change default config. 3. Disable maint. modems. 4. Block remote calling after hours. 5. Block unassigned access codes. 6. Use call detail recording. 8. Review telephone bills.

Question 82

Issues w/ Telephone Security

Answer 82

1. Phreaker-Blue box tones to trick a phone company into free LD, Red boxes simulated the sound of coins dropping into the phone and Black boxes manipulated line voltage to get free LD. 2. Slamming and Cramming-Slamming change a carrier without the cusomters approval. Cramming a- adding additional features without the customers approval.

Question 83

Smart phone/Blue tooth attacks

Answer 83

1. Spoofing based on serial number for free LD. 2. Bluetooth attacks-bluejack anon spam to victim, bluebof, overflow in services remotely, bluebug, use AT commands on victims phone. 3. Bluesnarfing-stealing information from a blue tooth device.

Question 84

Dedicated Lines

Answer 84

1. Only end points talk to each other. Secure. 2. Inflexible and expensive. 3. T1, T3.

Question 85

Channel Service Unit/Data Service Unit (CSU/DSU)

Answer 85

1. HW required to allow network devices to communicate with a telephone network. 2. Converts digital signals from network devices to signals that can go over SP’s digital lines. 3. DSU connects to customers device and CSU connects to Telco.

Question 86

X.25

Answer 86

1. First packet switching technology that also used switched and permanent virtual networks. 2. Slower than frame relay because of all the error correction a nd error detection. 3. Developed when Internet was not stable or redundant. Uses Link Access Procedure-Baanced for error detection and correction procedures.

Question 87

Frame Relay

Answer 87

1. Faster WAN packet-switching protocol-simple framing and no error detection. 2. Permanent Virtual Circuit-construction to ensure customer gets a certain bandwidth level and configured into supporting switches. 3. Switched Virtual Circuit (SVC)-dynamically built when required. 4. Committed Information Rate (CIR)-customer pays a certain monthly payment to en

Question 88

Asynchronous Transfer Mode (ATM)

Answer 88

1. High band width tech that uses switching and multiplexing. 2. 53 byte fixed cells instead of various frame lengths. 3. Cell switching technology.

Question 89

Multiple Protocol Label Switching (MPLS)

Answer 89

1. secure WAN 2. virtual 3. faster because P2P VPN’s are not needed.

Question 90

Voice over IP (VOIP)

Answer 90

1. tech that combines data, voice or video into one packet. 2. Higher performance. 3. Reduced operational costs. 4. Greater flexibility. 5. Ease of administration.

Question 91

How VOIP works:

Answer 91

1. Converts analog to digital through use of telephony adapter or smart phone. 2. Data is channeled though gateways . 3. At the other end the smartphone or TA converts the signal back to analog.

Question 92

Challenges with VOIP:

Answer 92

1. IP was designed for bursty data. When voice and data are combined jittering can happen. 2. IP is connectionless, so packets can arrive out of sequence. 3. IP is a store and forward tech. Each hop introduces the potential for latency.

Question 93

Session Initiation Protocol (SIP)

Answer 93

1. Allows for the establishment of user location-user name to their network address. 2. Provides for feature negotiation so all parties are in agreement to what features are available. 3. A mechanism for call management-adding, dropping, transferring participants. 4. Allows for changing features of a session while it is in progress. 5. Provides signaling Service. Realtime transfer protocol (RTP) carries the voice stream.

Question 94

Integrated Services Digital Network (ISDN)

Answer 94

1. Circuit switched tech to get digital services over standard voice lines for last mile. 2. Popular for dial backup on routers because control channel is out of band, which allows for quicker call setup and tear down. 3. Signal does not need to be converted from analog to digital. 4. Has a basic service (data transmission) and supplementary (call waiting, call transfer).

Question 95

ISDN Tech

Answer 95

1. Allows for digital signals to be xmit over pots. 2. Basic Rate Interface (BRI)- this implements 2 B channels and 1 D channel for a combined bandwidth of 144K. 3. Primary Rate Interface (PRI)-Implements up to 23 B channels and 1 D channel for a total of T1 (1.544MB/s).

Question 96

Digital Subscriber Line (DSL)

Answer 96

1. Provides high digital data xmi over POTS. 2. Higher speeds then ISDN and dialup. 3. Security issue of always being “on”. 4. Users should use a personal firewall and shutdown system when not in use.

Question 97

Cable Modem

Answer 97

1. High speed access to the internet provided by a cable company. 2. All cable modems within an area eventually share the same coaxial trunks, thus one neighbor can easily “sniff” another neighbors traffic. 3. Insecure and users should implement personal firewalls. 4. Always “on” technology.

Question 98

Remote Access

Answer 98

1. Older tech that allows road warriors or home-based users to access network resources.2. Reduces the cost of dedicated leased lines. 3. Provides flexibility.

Question 99

Dial-up Security Mechanisms

Answer 99

1. Call back-user provides reds, access server calls back at a pre-configured number (dont know who is at initiating end). 2. Caller ID-verifies number user is calling from and compares it against acceptable phone numbers before establishing the session and more flexible.

Question 100

VPN’s provide three capabilities:

Answer 100

1. Authentication 2. Encryption 3. Tunneling

Question 101

VPN/Tunneling Protocols

Answer 101

1. Remote Access 2. Dial-up and RAS 3. Dial-up protocols (PPP, PAP, CHAP, EAP). 3. Tunneling protocols (PPTP, L2TP, SSTP, IPSec). 5. VPN.

Question 102

Point-to-Point Protocol

Answer 102

1. Protocol used to encapsulate data over a serial line for dial-up connectivity. 2. Authentication (PAP,CHAP, EAP)

Question 103

Tunneling

Answer 103

1. Preserves original headers. 2. Frame is wrapped in a second frame to travers another network. 3. Second protocol insulates the frame and created the illusion of a tunnel for the data to travel through. 4. The frame of one protocol is the data of another. (First protocol may not be routable and first frame may need to be encrypted for confidentiality).

Question 104

Tunneling Protocol - PPTP

Answer 104

1. Point-to-point tunneling protocol. 2. Encapsulation protocol based on PPP. 3. Data link layer protocol that provides single PTP connections. 4. Data can be encrypted but negotiation information is in clear text. 5. Works only over IP traffic.

Question 105

Tunneling Protocol - Layer 2 Tunneling Protocol (L2TP)

Answer 105

1. Hybrid of L2F and PPTP. 2. Sets up a single P2P connection between to computers. 3. Works at the data link layer. 4. Transmits over multiple types of networks. (any layer 3 protocol). 5. Combined with IPsec for security.

Question 106

Virtual Private Network (VPN)

Answer 106

1. Trusted comm channel through a network that is not trusted. 2. Cheaper and more flexible than dedicated links. 3. VPN is usually configured on the firewall - different link and trust levels.

Question 107

Password Authentication Protocol (PAP)

Answer 107

1. Auth protocol used be remote users. 2. Auth after a PPP connection is up. 3. Creds are sent in clear text. 4. Vulnerable to sniffing, man-in-the-middle, and replay attacks.

Question 108

Challenge Handshake Authentication Protocol (CHAP)

Answer 108

1. Challenge Handshake Authentication Protocol. 2. Auth protocol that sends a challenge response. 3. User’s password is used to encrypt challenge value. 4. Periodical sends a challenge to protect against man-in-the-middle attacks. 5. Password is not sent over the wire.

Question 109

Extensible Authentication Protocol (EAP)

Answer 109

1. EAP is a general protocol for auth that also supports multiple auth methods: a. token Ring b. Kerberos c. OTP 4. public key auth. 2. IEEE 802.1x specifies how EAp is encapsulated in ethernet.

Question 110

Wireless transmission methods

Answer 110

1. First wireless network standard: 802.11. 2. Defines three physical layers: a. infrared b. narrowband c. spread spectrum. 2. Spread spectrum-derived from military comms. 3. Variations: a. DSSS b. FHSS c. ODM.

Question 111

WLan Freq and Signals

Answer 111

1. 802.11a - more channels and high speed less interference. 2. 802.11b - protocol of wifi revolution-first standard. 3. 802.11g - similar to b only faster. 4. 802.11i - adds WPA. 5. 802.11n - 450 MBPS. 6. 802.16 - long distance wireless.

Question 112

WLan Components

Answer 112

1. Access Point - a. infrastructure and peer to peer. 2. Service Set ID (SSID). 3. Encryption - most AP’s come without encryption enabled.

Question 113

WLan Security

Answer 113

Securing WLans is harder then LAN. 2. Includes WEP, WPA, WPA2 aka 802.11i.

Question 114

Wireless Standards - Wired Equivalent Privacy (WEP)

Answer 114

1. Wired Equivalent Privacy. 2. Wep is based on RC4 (weak). 3. Easy to recover the key: single shared key, cleartext IV transmission, Weak IV’s and no checking for rx of same packet.

Question 115

Wireless Standards - Wifi Protected Access (WPA)

Answer 115

1. Replaces WEP. 2. More secure: a. uses TKIP b. 48-bit IV, uses a different session key for each packet, uses MIC to detect invalid packets. 3. WPA-Enterprise a method for net auth using EAP/TLS, TTLS or PEAP. 4. WPA-Personal - uses a shared passphrase.

Question 116

Wireless Standards - Wifi Protected Access 2 (WPA2)

Answer 116

1. 802.11i standard. 2. CCMP (Counter mode with cipher block chaining message authentication code protocol) - an AES based encryption mech that is stronger than TKIP. 3. AES uses 128, 192, or 256 bit encryption.

Question 117

Wireless Network Attacks

Answer 117

1. Wireless networking opens up a network to attacks. 2. Attacks include: a. detection (wardriving) b. eavesdropping c. open auth d. spoofing e. denial of service.

Question 118

War driving for wireless LANs

Answer 118

1. War walking-walking around looking for open networks 2. wardriving - driving around looking for open networks 3. war flying - flying around looking for open networks 4. warchalking - using chalk around looking for open networks 5. GPS used to mark location of open networks. 6. BlueJacking - sending unsolicited messages to a blue tooth enabled device.

Question 119

Wireless Application Protocol (WAP)

Answer 119

1. Set of protocols provides same type of functionality as HTML and TCP/IP. 2. Allows wireless device to access the internet. 3. Lower overhead protocol than what is used in PC’s. 4. Wireless devices have limited storage, memory and processing power.

Question 120

Attacks - Impersonation

Answer 120

1. Impersonate a user with reds, alter MAC addresses to impersonate another computer, email spoof. 2. Countermeasures: strong auth mech (2FA), digital signature, OTP.

Question 121

Attacks -Packet Modification

Answer 121

1. Data altered during xmit. 2. Countermeasures: hashes, digital signatures.

Question 122

Attacks - Flooding

Answer 122

1. Sending more data than a system can handle - ping. 2. Countermeasures: filter packets before reaching destination, patch system.

Question 123

Attacks - Web Spoofing

Answer 123

1. Redirecting to a different site. 2. Changing a DNS record to point to a different site.

Question 124

Attacks - DNS Poisoning

Answer 124

1. Bogus resource records. 2. Countermeasure: DNSSEC.

Question 125

Attacks - Login Spoofing

Answer 125

1. Counterfeit page inserted for login process. 2. Counter measure: mutual auth.

Question 126

Attacks - Tunneling

Answer 126

1. Use a mechanism in a way that it was not designed-insert data behind ICMP header and send malware through port 80. 2. Countermeasure - firewall device that looks deeper into packet (appliance level proxy).