Deck 13: Network Protection Systems

What is cryptanalysis?

As long as people attempt to create encryption algorithms to protect data,others will endeavor to break those encryption algorithms.This study is called cryptanalysis.It's taught in universities and by government organizations,but hackers also find the challenge of breaking an encryption algorithm intriguing and continue to push the envelope for developers of encryption algorithms.When a new encryption algorithm is developed,cryptanalysis is performed on it to ensure that breaking the code is impossible or would take so much time and so many resources to break that it would be impractical for hackers to attempt.

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Uses a single key to encrypt and decrypt data

What is an encryption algorithm?

An encryption algorithm is a mathematical function or program that works with a key.The algorithm's strength and the key's secrecy determine how secure the encrypted data is.In most cases,the algorithm isn't a secret; it's known to the public.What is secret is the key.

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Uses two keys: one to encrypt data and one to decrypt data

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
A sequence of random bits generated from a range of allowable values

What is the difference between a public key and a private key?

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Encryption algorithm used for the Data Encryption Standard

How can confidentiality and authentication be achieved using public key cryptography?

What is Triple Data Encryption Standard (3DES)?

How does public key infrastructure work?

What is a digital signature?

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Used for verification,takes a variable-length input and converts it to a fixed-length output string

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Operate on plaintext one bit at a time

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
The use of random data alongside plaintext as an input to a hashing function so that the output is unique

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
A digital document that verifies the two parties exchanging data over the Internet are really who they claim to be

What is the RC5 algorithm?

What is a one-way function? Provide an example or an analogy to help explain the concept.

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
A structure consisting of programs,protocols,and security policies for encrypting data and uses public key cryptography to protect data transmitted over the Internet

What is a certificate?

Match each item with a statement below.a.asymmetric algorithm
b.DEA
c.symmetric algorithm
d.certificate
e.hashing algorithm
f.birthday attacks
g.stream cipher
h.PKI
i.key
j.salt
Used to find the same hash value for two different inputs and reveal any mathematical weaknesses in a hashing algorithm

What is a Unified Threat Management device?

Routers operate at the Network layer of the TCP/IP protocol stack.

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Handle each packet separately and are not resistant to spoofing or DoS attacks

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Small network containing resources that a company wants to make available to Internet users and helps maintain security

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Inspects network traffic at a higher level in the OSI model than a traditional stateful packet inspection

How do "Network-based IDSs/IPSs" monitor activity on network segments?

List the different types of memory and their main function found in Cisco routers?

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
IDS systems that don't take any action to stop or prevent an activity

What are the advantages and disadvantages of hardware and software firewalls?

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Administrator can perform full router configuration tasks

What are the interfaces in a Cisco router?

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
IDS systems log events and send alerts,but they can also interoperate with routers and firewalls to stop an attack

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Internal private IP addresses are mapped to public external IP addresses hiding the internal infrastructure

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Records session-specific information about a network connection

What is a path-vector routing protocol?

What is a link-state routing protocol?

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Administrator can perform basic troubleshooting tests and list information stored on the router

What is a distance-vector routing protocol?

What is the purpose of creating a "Security Operations Center"?

What is the difference between passive and active IDSs?

Match each item with a statement below.a.stateful packet filter
b.passive systems
c.NAT
d.DMZ
e.stateless packet filter
f.user mode
g.privileged mode
h.indicators of compromise
i.active systems
j.application-aware firewall
Indicates that a system or network has been hacked