Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

NetSec > websec > Flashcards

websec Flashcards

1
Q

How to we protect against TLS downgrade attack?

A

If a client had tried a higher TLS version before, it appends a signaling cipher suite value to the TLS 1.1 handshake. this value tells the server that the client supports a higher TLS version.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How can we make sure that a certificate is adhered to the CA guidelines? mention one solution.

A

Public logs like CT certificate transparency.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is certificate transparency? and what are its problems?

A

make transparent who issued a certificate to whom. Problem that it is just a after the fact solution meaning that we can only know that a certificate isnt adhered to the guidlines but we can not do anything about it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the parts of the certificate transparency? give short explanation for each

A
  1. Public ct logs - idk
  2. Log monitoring - continuously verify that entities are only added and not removed or edited.
    3.public certificate auditing - perform inclusion checks of certificates.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the parts of the certificate transparency? give short explanation for each

A
  1. Public ct logs - idk
  2. Log monitoring - continuously verify that entities are only added and not removed or edited.
    3.public certificate auditing - perform inclusion checks of certificates.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

NetSec (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions