Deck 10: Cybersecurity: Data Protection

A) PPTP
B) IPsec
C) SSL
D) PPP
E) DES

A) PPTP
B) IPsec
C) SSL
D) PPP
E) DES

A) IPsec and SSL technologies are defined at the internet layer
B) IPsec software should be installed in each user station in the "tunnel" mode, but SSL software is built into the web browser.
C) SSL has higher overhead than IPsec in setup, maintenance and update.
D) SSL is considered as secure as IPsec.
E) IPsec is considered technically more complex than SSL in implementing VPN.

A) digital certificate
B) digital signature
C) IPsec gateway
D) IPsec-enabled web browser
E) session key

A) site-to-site and remote access
B) tunnel and transport
C) tunnel and site-to-site
D) transport and remote access
E) site-to-site and transport

A) The technology is defined in the internetwork layer
B) Its usage requires that necessary software be separately purchased and installed.
C) It generally provides a higher level of security than IPsec.
D) It can be used for both site-to-site and remote access VPNs.
E) The software should be installed and maintained in each user station.

A) IPsec servers are placed at the boundary of local sites securing all inter-site transactions.
B) Internal hosts are unaware of the IPsec server's existence, making it transparent to the hosts.
C) Packets inside of a corporate network remain unencrypted.
D) The tunnel mode is popular in implementing both remote access and site-to-site VPNs.
E) It provides end-to-end (or host-to-host) security.

A) Owner's name or alias
B) Owner's public key
C) Issuer's name
D) Owner's private key
E) Issuer's digital signature

A) WPA, WEP, WPA2
B) WPA2, WEP, WPA
C) WEP, WPA2, WPA
D) WEP, WPA, WPA2
E) WPA, WPA2, WEP

A) Plaintext
B) Ciphertext
C) Digital signature
D) Key value
E) Encryption algorithm

A) message digest
B) digital certificate
C) session key
D) public key
E) private key

A) digital signature
B) digital certificate
C) public key
D) message digest
E) access control list

A) Digital signature
B) Digital certificate
C) Public key
D) Message digest
E) Access control list

A) Packet Sniffing Detection
B) IP Spoofing Prevention
C) IP Spoofing Detection
D) Access Control List
E) SSL/TLS

A) encryption technologies
B) hashing algorithms (or functions)
C) digital certificate standards
D) well-known worms
E) well-known Trojan horses

A) The message digest is a short message calculated from an original message.
B) A hash function is generally used to produce a message digest from the original message.
C) The message digest is encrypted with a receiver's public key, resulting in a digital signature.
D) The receiver computer decrypts the sender's digital signature using the sender's public key.
E) The receiver computer produces its own message digest based on the delivered message for comparison purpose.

A) When A sends a message to B, A encrypts it with B's public key.
B) After A encrypts a message with B's public key, A can decrypt it using the same B's public key.
C) When A needs authentication to B, A encrypts a message with A's private key.
D) If A and B send messages to each other, each encrypts with the other's public key.
E) If A encrypts a message with B's public key, B's private key will decrypt it.

A) WPA is an official IEEE standard.
B) WPA and WPA2 rely on the same encryption standard.
C) With WPA, the pre-shared key is permanently used making it vulnerable for password cracking.
D) The home network relies on centralized authentication between hosts and an authentication server.
E) To derive pre-shared keys in WEP or WPA-PSK, passwords/passphrases are heavily used.

A) 0
B) 1
C) 2
D) 4
E) 8

A) create digital certificates
B) maintain a certificate revocation list
C) distribute digital certificates
D) securely distribute private keys
E) perform security testing of a business system

A) a message digest produced from an original text
B) a message digest produced from an encrypted text
C) an original text to be encrypted.
D) an encrypted text
E) an encrypted text that has been compromised.

A) Party A creates a single key for a session (called session key).
B) Party A encrypts the session key using Party B's private key and sends it to Party B.
C) Party B decrypts that secret session key with Party B's private key.
D) Both parties now encrypt data with the session key.
E) With the session key, encryption and decryption are faster than using the asymmetric key system.

A) Hashing takes an input of any lengths and produces a variable-length hash value.
B) The hash function is also known as a message digest.
C) A dataset cannot be created in order to produce a predefined hash value.
D) The probability of different messages to produce the same hash value is zero.
E) A hash value can be reversed to restore the original input.