week 17 - human factor and cyber security

Question 1

usability in security, 3 factors to concider

Answer 1

opportunity
to make mistakes

environment
distracted or under pressure

lack of awareness
inadequate training and skills to recognise threats

Question 2

effects of usability on security

Answer 2

stronger password , at cost to user - does not protect against phishing

Question 3

extended SMTP (ESMTP)

Answer 3

to provide authentication of sender

Question 4

Transport layer security (TLS) - emails encryption

Answer 4

uses strong encryption to protect data across the network - protection from eavesdroppers

Question 5

what are the two phases of TLS?

Answer 5

handshake - both parties agree on version - key exchange - signatures - hashing

post handshake - the communication itself - the key is then deleted from both

Question 6

sender policy framework (SPF)

Answer 6

form of authentication - check IP address of server for authorisation from admin - if not it is marked as spam

Question 7

DomainKeys Identified Mail (DKIM)

Answer 7

An Internet standard which uses digital signatures and hashing to authenticate email headers.