Unit 5 - Networks and the Internet

Question 1

What does each device that connects to the internet need?

Answer 1

A network interface card (NIC)

Question 2

What is a NIC?

Answer 2

Every device that connect to the internet requires one. On computers it is commonly built into the mother board.

Question 3

What is an IP address?

Answer 3

Stand for internet protocol address and is a series of numbers that identifies any device on a network. Computers use IP addresses to communicate with each other both over the internet as well as on other networks.

Question 4

What is the format of an IP address?

Answer 4

• Each address has a 32-bit number
• It is usually written in denary with a dot separating each byte

Question 5

How are data packets used over the internet?

Answer 5

When data is sent through the Internet or a TCP/IP network, it is split up into much smaller quantities known as data packets
- These packets each store a smallamount of the data
- Each packet may take a different route through the network

Question 6

What are routers used for?

Answer 6

Routers are used to send data to a specific destination on a network.
- Contains a wireless access point for Wi-Fi connections
- Connects the local network to the internet using a modem
- Assigns IP addresses to each computer that connects to it

Question 7

What assigns the IP address to a device?

Answer 7

A DHCP server (Dynamic Host Configuration Protocol) is built to home routers When a new device connects to the network it is assigned an IP address by the DHCP server

Question 8

How do you connect to the internet?

Answer 8

A router is used to connect a network to the Internet. In a home network, the router is combined with the modem, switch, wireless access point and firewall.In a large business, the router is likely to be a dedicated item of hardware The computers and devices will then connect to dedicated switches or wireless access points.

Question 9

What is the wireless access point?

Answer 9

The wireless access point maybe inbuilt to the router - it allows devices to connect wirelessly

Question 10

What is the modem?

Answer 10

A modem will be part of a home router - it converts data from digital to analogue (radio or optical)

Question 11

What is a MAC address?

Answer 11

Media Access Control Address (MAC address) and if given to an every network device which is unique and stored permanently on the device. Thy are used to send data between two items of hardware on a network such as a computer and router. MAC addresses are used on Ethernet, Wi-Fi and Bluetooth devices.

Question 12

What is the structure of a MAC address?

Answer 12

MAC addresses are 48-bit addresses allowing for 281 trillion (248) possible devices.

MAC addresses are usually written as hexadecimal digits that often have each byte separated by colons or hyphens
An example of a MAC address is:
1f - 38 - 69 - ba - 9f - 0c

Question 13

What do you think the MAC address identifies, other than the specific device it is stored on?

Answer 13

The first three bytes (24 bits) of the MAC address contains a number that represents the manufacturer

Question 14

What is the second part of the number on the MAC address?

Answer 14

The second part of the number is the serial code which is given to the hardware device by the manufacturer

Question 15

What are the two version of IP address?

Answer 15

• IPv4
• IPv6

Question 16

How many bytes make up an IPv4 address?

Answer 16

four bytes

Question 17

What is the format of an IP address usually?

Answer 17

They are usually represented as four denary numbers separated by full stops such as:
192.168.52.211

Question 18

How many IPv4’s are their available?

Answer 18

2^32, Which is 4.3 billion addresses

Question 19

What is the problem with IPv4 address?

Answer 19

• The problem with 32-bit IP addresses is that there aren’t enough of them.
• As more and more devices are added to the Internet we need an IP address system that can address all of them
• We therefore need to use a larger binary number than a 16-bit address

Question 20

How many bytes in a IPv6?

Answer 20

sixteen bits

Question 21

How many devices can be assigned an IPv6 address?

Answer 21

2^128 340 trillion trillion trillion addresses

Question 22

What is the format of an IPv6 address?

Answer 22

IPv6 addresses are separated into eight groups each containing four hex digits and separated by a colon – for example:

0123 : 4567 : 90ab : cdef : 0123 : 4567 : 89ab : cdef

Question 23

What are the differences between an IPv4 and an IPv6? (address size, number of unique addresses, separators, security and assignment of IP address)

Answer 23

(Characteristic) (IPv4) (IPv6)
address size - 32-bit | 128-bit
Number of unique addresses - 4.3 bill | 340 trillion trillion trillion
separators - full stops(.) | colons (:)
Security - | improved security
Assignment of IP address - DHCP server | IPv6 devices can configure themselves automatically (Auto-configuration) or DHCPv6

Question 24

What is a dynamic IP address?

Answer 24

This is where the ISP (internet service provider) gives a different Ip address each time the router connects

Question 25

What is a static IP address?

Answer 25

If the IP address is always the same, this is a static IP address

Question 26

What is an ISP?

Answer 26

It stands for an internet service provider which provides the device with the IP address when it connects to the network.

Question 27

What are some features of web browsers?

Answer 27

• Storing bookmarks and favourites
• Recording user history
• Allowing use of multiple tabs
• Storing cookies
• Providing navigation tools
• Providing an address bar

Question 28

What is the address bar and navigation used for?

Answer 28

The address bar allows the user to enter a web address. Navigation is used as previous page, next page and refresh page

Question 29

What are bookmarks and favourites?

Answer 29

Users are able to store a list of bookmarks of sites they want to visit again (known as favourites on microsoft)

Question 30

What is the user browsing history?

Answer 30

Web browsers keep a record of all web pages that users visit

Question 31

What are tabs used for?

Answer 31

Tabs are a user interface feature that allow many web pages to remain open at the same time

Question 32

What is the internet?

Answer 32

The Internet is the large global network of networks. It refers to the physical network infrastructure that is used for the transfer of data

Question 33

What is the world wide web?

Answer 33

The World Wide Web (www) is one service for information sharing that makes use of the Internet. It makes use of the hypertext transfer protocol (HTTP) to send the data. The information stored in Hypertext Markup Language (HTML)

Question 34

What is the URL structure like?

Answer 34

A web address is technically known as a Uniform Resource Locator (URL). A full web address will specify the protocol that needs to be used, the domain name and the webpage or file name

Question 35

What is HTTP?

Answer 35

Hypertext Transfer Protocol (HTTP) is the protocol used to send webpages.

Question 36

Why is HTTP not safe to send personal information?

Answer 36

It is unencrypted so not safe for sending personal information

Question 37

What is HTTPS?

Answer 37

HTTPS (Hypertext Transfer Protocol Secure) is used to send and receive web pages and form data in an encrypted format

Question 38

What is HTML?

Answer 38

Web pages are written in hypertext markup language (HTML). The HTML describes the content of the web page

Question 39

What is the main purpose of a web browser?

Answer 39

The main purpose of a web browser is, of course, to render (show) web pages

Question 40

How does a browser know which IP address to send a web page request to if it only knows the domain name?

Answer 40

It makes use of a domain name system server (DNS server)
The DNS server will translate the domain name into a corresponding IP address

Question 41

Where are websites and web pages stored?

Answer 41

Web servers

Question 42

What are web servers?

Answer 42

• These are dedicated machines that are used to serve web pages to devices that request them
• An ordinary computer can be turned into a web server by installing web server software.

Question 43

What is a commercial web server?

Answer 43

Commercial web servers are a physical size that allows many of them to be placed inside a server cabinet. Data centres will be filled with server cabinets

Question 44

What is the domain name system?

Answer 44

The Domain Name System is a global system that maps domain names to IP addresses. Browsers ask DNS servers to translate a domain name to an IP address so that they know where to send requests

Question 45

How to web requests work?

Answer 45

When the user requests a web page the following happens:
1. The web browser requests the IP address of the domain name from the DNS server
2. The server sends theIP address to the web browser
3. The web browser sends a request for the web page to the IP address
4. The web server sends the web page, in HTML, to the browser

Question 46

What are cookies?

Answer 46

Cookies are small amounts of data sent to a web browser. Cookies are designed to personalise your user experience while browsing.

Question 47

Where are cookies stored?

Answer 47

The cookie data is stored in a browser file so that it is able to be accessed at a later time

Question 48

What is the purpose of a web server sending cookies to a user’s web browser?

Answer 48

• Saving personal details
• Tracking user preferences
• Holding items in an online shopping cart
• Storing login details

Question 49

What is a persistent cookie?

Answer 49

Persistent cookies remain on the computer even if the web browser is closed or the computer is turned off

Question 50

What do persistent cookies?

Answer 50

This allows a user to remain logged into a website or items in a shopping cart not to be lost

Question 51

Do persistent cookies expire?

Answer 51

The programmer of the websitewill specify the expiry date for the persistent cookie – after that date the cookie is deleted by the browser

Question 52

What are session cookies?

Answer 52

Session cookies only last for the browsing session.

Question 53

Do session cookies expire?

Answer 53

Yes:
- They don’t have an expiry date which indicates that they are a session cookie
- They are stored temporarily in memory and not on secondary storage
- When the browser window is closed or the computer is turned off, the session cookies will be lost

Question 54

When a user enters a _______________, the domain name is sent to a _______________. The DNS server looks up the _______________ and sends the associated _______________ to the web browser. The web browser now requests the web page to the IP address for the _______________. The web server then sends the web page, written in _______________, to the browser.

Domain name IP address HTML Web serverURL DNS server

Answer 54

When a user enters a URL, the domain name is sent to a DNS server. The DNS server looks up the domain name and sends the associated IP address to the web browser. The web browser now requests the web page to the IP address for the web server. The web server then sends the web page, written in HTML, to the browser.

Question 55

Explain the difference between session cookies and persistent cookies

Answer 55

• Session cookies are deleted after the browser window closes
• Persistent cookies remain on the computer until their expiry date

Question 56

What are some examples of harmful malware?

Answer 56

viruses, worms, Trojan horses, spyware, adware and ransomware

Question 57

What is malware?

Answer 57

Pieces of software that have been written and coded with the intention of causing damage to or stealing data from a computer system.

Question 57

What is malware?

Answer 57

Pieces of software that have been written and coded with the intention of causing damage to or stealing data from a computer system.

Question 58

What is a virus?

Answer 58

it is quite like a human virus, this type of malware infects a computer and then replicates itself to be sent to another computer. This transmission can happen where infected files are shared via hard disks drives or sending online.

Question 59

What is a trojan horse?

Answer 59

A trojan horse is malware that is hidden away in the code of software that appears to be harmless. Criminal with often hide Trojan horses in illegal or pirate software to obtain user data.

Question 60

What is a worm?

Answer 60

A worm operates similarly to a virus, however rather then trying to damage files its simply replicates itself until the computer’s resources are used to their maximum capacity and no further processing can take place, leading to system failure or crashing

Question 61

What is spyware?

Answer 61

Spyware is a piece of malware that behaves a little bit like a cookie but instead of benefiting the user it sends data back to a criminal. Spyware collects information about online browsing habits with the user knowing. The spyware may be hidden inside an app, software, file attachment or malicious website

Question 62

What is adware?

Answer 62

Adware is not alway malicious, but it almost always involves the instalment process for displaying pop-up adverts while browsing websites, and will install, cookies often without user permission. In the worst cases, new adverts appear faster than the user is able to close them The hacker aims to make money from users clickingon the adverts.

Question 63

What is ransomware?

Answer 63

Ransomware is a type of malware that first encrypts the hard drive of a computer. The user is unable to read any files on the computer or run any programs. They need to pay a ransom, usually by a cryptocurrency such as bitcoin. If they pay the ransom, their files should be restored. Otherwise, all files will be deleted. The motivation for this attack is to receive the ransom (money)

Question 64

What is a hacker?

Answer 64

A hacking is a user who is seeking to gain unauthorised access to a computer system. They usually do this so that they can access, change or damage the data held on the system being hacked.

Question 65

What is a black-cat-hacker?

Answer 65

A hacker who is attempting to gain access to someones computer system for a criminal purpose.

Question 66

How are 2 ways hackers can exploit vulnerabilities?

Answer 66

Unpatched software – if software updates and security updates are not installed then the software will be vulnerable

Out-of-date anti-malware – if software, such as antivirus software, isn’t regularly updated then it won’t be able to detect the latest viruses

Question 67

What is social engineering?

Answer 67

Social engineering is the ability to obtain confidential information by asking people for it

Question 68

What is phishing?

Answer 68

Phishing is a type of social engineering technique. Emails, texts or phone calls are sent to users commonly pretending to be from a bank or website

Question 69

What does phishing try to gain?

Answer 69

These messages will try to getpersonal information such as:
- Usernames
- Passwords
- Credit cards details
- Other personal information

Question 70

How to spot for a phishing email:

Answer 70

Greeting: The phishers don’t know your name – just your email address, so the greeting is not personalised

The sender’s address is often a variation on a genuine address

Forged link: The link looks genuine, but it the URL attached to it may not link to the website given. Roll your mouse over it to check

Request for personal information: Genuine organisations never do this

Sense of urgency: Criminals try to persuade you that something bad will happen if you don’t act fast

Poor spelling, grammar and tone

Question 71

What is Pharming?

Answer 71

Pharming is a term made from the two words: Phishing and Farming
- A users computer or a DNS server are altered so that they match a domain name to an incorrect IP address
- When the browser searches for a web page, it will go to the wrong IP address which is controlled by a hacker
- The hacker will have a web server that serves a fake web page, such as a form for a user to log in to a bank

Question 72

What is a DoS?

Answer 72

In a denial of service attack, a hacker will use or infect a computer so that:
- it sends as many requests to the serveras it can (known as a flood) the server can’t respond fast enoughso slows down or goes offline

Question 73

What is a DDoS?

Answer 73

A Distributed Denial of Service (DDoS) attack can happen to a website or web server and is designed to cause disruption to website owners. A criminal would use software that can ‘force’ thousands of innocent computers around the world to send a viewing request to a web server. This unofficial network of recruited computers is known as a botnet and would have likely been infected with some form of malware. The flooding of requests sent to a server will overload it and either slow the website right down or cause it to go offline altogether.

Question 74

What is a man-in-the-middle attack (MITM)?

Answer 74

A man-in-the-middle attack (MITM) allows the attacker to intercept data communications between the user and server. The attacker can then:
- eavesdrop to find passwords and personal information
- add different information to a web page or other communication such as email

Connecting to unencrypted Wi-Fi makes it easy to perform a MITM attack

Question 75

How can criminals use an USB to download malware onto your device?

Answer 75

Criminals sometimes leave a USB stick containing malware in a public place such as a company car park. An unsuspecting employee may pick it up and insert it into their computer. The malware can now install onto the computer so that a hacker can gain access to files, personal data and system resources

Question 76

How to reduce threats on your mobile phones?

Answer 76

• Use the password feature and choose a strong password
• Make sure the data is encrypted
• Do not follow links in suspicious emails
• Think carefully before posting your mobile phone number on public websites
• Don’t install apps without researching them first – if they require unnecessary extra permissions, don’t install them
• Delete all information stored on your mobile before discarding

Question 77

What is a brute force attack?

Answer 77

This type of attack is designed to try and obtain a user’s password without their consent. It is like a thief taking all available keys (not just yours) and trying them all in a door lock one after the other until the correct key is found. A brute-force attack is where a computer program floods a system with an enormous number of potential passwords or passcodes and uses trial and error to try and find the password that matches. Brute-force attacks target weak passwords created by users.

Question 78

What data interception?

Answer 78

When data is being transmitted around a network such as the internet, if it is unencrypted it has the potential to be intercepted on its way to its intended destination. A cyber criminal could use a piece of software called a packet sniffer to examine packets of data as they make their way around a network. The packet sniffer can then feed the contents back to the criminal, who may be able to use the information for fraudulent purpose.

Question 79

define the following:
- Brute-force attack
- Data interception
- Distributed denial of service (DDoS) attack
- Hacking
- Malware
- Pharming
- Phishing
- Social engineering

Answer 79

Brute-force attack – trying all possible passwords until the correct one is found
Data interception – obtaining data, without permission, passing through a network
Distributed denial of service (DDoS) attack – flooding a server or network with pointless requests to make it fail or slow down
Hacking – Activities that misuse computer systems/networks
Malware – software that aims to harm computers and/or data
Pharming – Changing DNS records to point to the wrong IP address
Phishing - emails that pretend to be form legitimate companies but actually try to gain personal information
Social engineering – Obtaining confidential information by asking for it - usually making use of confidence tricks

Question 80

What are the ways that vulnerabilities are protected against?

Answer 80

• penetration testing
• anti-malware software – including anti-virus software
• firewalls
• user access levels
• passwords
• encryption
• physical security

Question 81

how does access level mean?

Answer 81

This method of protection is hugely important in organisations where there are lots of users accessing a network. Users should be assigned different levels of access depending on the role they have. Administrators of a network have full access and control, and there are several levels of access going down to basic user access which has only limited rights of usage. This method of protection ensures that user behaviour can be controlled while they use a computer on a network

Question 81

how does access level mean?

Answer 81

This method of protection is hugely important in organisations where there are lots of users accessing a network. Users should be assigned different levels of access depending on the role they have. Administrators of a network have full access and control, and there are several levels of access going down to basic user access which has only limited rights of usage. This method of protection ensures that user behaviour can be controlled while they use a computer on a network