Exam #3 (Ch 6, 7, 8) Practice

10 September 2022
4.7 (114 reviews)
119 test answers

Unlock all answers in this set

Unlock answers (115)
question
Elaborate on the three different types of wireless network topologies.​
answer
frq
question
Multipath signaling is a significant cause of fading.​
answer
True
question
Which of the following are two different types of attacks against Bluetooth connections that can be used to send unsolicited data, or download data without permission?​
answer
​bluesnarfing,​bluejacking
question
What two terms describe a wireless network topology in which access points work as peer devices on the same network?​
answer
​wireless mesh network (WMN),​mesh WLAN
question
Which of the following is not a valid wireless network topology?
answer
​bus
question
Select below the band that is not one of the four frequency bands used in the 5 GHz range for wireless LANs:​
answer
​5.9 GHz
question
Which 802.11 technology is the first Wi-Fi standard to approach gigabit Ethernet capabilities, and operates on the 5 GHz band?​
answer
​802.11ac
question
In an 802.11 data frame, what is the size of the frame check sequence field?​
answer
6 bytes
question
After L2TP establishing a VPN tunnel, GRE is used to transmit L2TP data frames through the tunnel.​
answer
False
question
The PPP headers and trailers used to create a PPP frame that encapsulates Network layer packets vary between 8 and 10 bytes in size due to what field?​
answer
​FCS
question
Describe the TLS/SSL handshake process as initiated by a web client accessing ​a secure website.
answer
it allows the client and server to introduce themselves to each other and establishes terms for how they will securely exchange data.
question
The original version of the Secure Hashing Algorithm (SHA) was developed by the NSA, and used a hash of what length?​
answer
​160 bit
question
​In Kerberos, a temporary set of credentials that a client uses to prove that its identity has been validated is known as a _____________.
answer
Ticket
question
A SecurID key chain fob from RSA security generates a password that changes how often?
answer
every 60 seconds
question
When using a site-to-site VPN, what type of device sits at the edge of the LAN and establishes the connection between sites?​
answer
​VPN gateway
question
Digital certificates are issued by organizations known as what term?​
answer
​certification authorities
question
An attack in which hackers transmit bogus requests for connection to servers or applications in order to harvest useful information to guide their attack efforts is known as what option below?​
answer
​banner-grabbing attack
question
What characteristic of viruses make it possible for a virus to potentially change its characteristics (such as file size, and internal instructions) to avoid detection?
answer
​polymorphism
question
Botnets often make use of what chat protocol in order to receive commands?​
answer
​IRC
question
Which option below is a standard created by the NSA that defines protections against radio frequency emanations?
answer
​TEMPEST
question
A firewall typically involves a combination of hardware and software.​
answer
True
question
A proxy that provides Internet clients access to services on its own network is known as what type of proxy?​
answer
​reverse proxy
question
​Describe two different implementations of IDS that can be deployed on a network.
answer
A HIDS (host-based intrusion detection system) runs on a single computer to alert about attacks to thatone host. For example, a HIDS might detect an attempt to exploit an insecure application running on aserver or repeated attempts to log on to the server. A NIDS (network-based intrusion detection system) protects a network and is usually situated at theedge of the network or in a network' s protective perimeter, known as the DMZ, or demilitarized zone.Here, it can detect many types of suspicious traffic patterns, including those typical of denial-of-serviceor smurf attacks, for example.
question
​A type of intrusion detection that protects an entire network and is situated at the edge of the network or in a network's protective perimeter, known as the DMZ (demilitarized zone). Here, it can detect many types of suspicious traffic patterns.
answer
NIDS
question
​A program that runs independently and travels between computers and across networks. Although worms do not alter other programs as viruses do, they can carry viruses.
answer
worm
question
​A software security flaw that can allow unauthorized users to gain access to a system. Legacy systems are particularly notorious for leaving these kinds of gaps in a network's overall security net.
answer
backdoor
question
​A type of intrusion prevention that runs on a single computer, such as a client or server, to intercept and help prevent attacks against that one host.
answer
HIPS
question
​A portion of the security policy that explains to users what they can and cannot do, and penalties for violations. It might also describe how these measures protect the network's security.
answer
acceptable use policy (AUP)
question
A type of intrusion detection that runs on a single computer, such as a client or server, to alert about attacks against that one host.
answer
HIDS
question
​A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic and providing one address to the outside world, instead of revealing the addresses of internal LAN devices.
answer
proxy service
question
A program that replicates itself to infect more computers, either through network connections when it piggybacks on other files or through exchange of external storage devices, such as USB drives, passed among users.​
answer
virus
question
​A specification created by the NSA to define protection standards against RF emanation, which when implemented are called EmSec (emission security).
answer
TEMPEST
question
​A threat to networked hosts in which the host is flooded with broadcast ping messages.
answer
smurf attack
question
In the context of wireless signal propagation, the phenomenon that occurs when an electromagnetic wave encounters an obstruction and splits into secondary waves. The secondary waves continue to propagate in the direction in which they were split.
answer
diffraction
question
An 802.11 frame type that is responsible for carrying data between stations. Two other frame types include management frames, which are involved in association and reassociation, and control frames, which are related to medium access and data delivery.​
answer
data frame
question
​A method used by wireless stations to detect the presence of an access point. Using this method, the station issues a probe to each channel in its frequency range and waits for the access point to respond.
answer
active scanning
question
The act of driving around an area while running a laptop configured to detect and capture wireless data transmissions.​
answer
war driving
question
​A security exploit in which a WPS PIN is discovered by means of a brute force attack, giving the attacker access to the network's WPA2 key. The PIN feature in WPS should be disabled if possible.
answer
WPS attack
question
The throughput experienced at the application level, such as the quality of a video feed or the speed of a Web page loading in the browser.​
answer
goodput
question
A type of antenna that issues wireless signals along a single direction, or path. Also called a directional antenna.​
answer
unidirectional antenna
question
A type of antenna that issues and receives wireless signals with equal strength and clarity in all directions. This type of antenna is used when many different receivers must be able to pick up the signal, or when the receiver's location is highly mobile.​
answer
omnidirectional antenna
question
The use of chalk to draw symbols on a sidewalk or wall within range of an access point. The symbols, patterned after marks that hobos devised to indicate hospitable places for food or rest, indicate the access point's SSID and whether it's secured.​
answer
war chalking
question
An attack in which a Bluetooth connection is used to download data from a device without the owner's permission.​
answer
bluesnarfing
question
How does the 802.11 data frame indicate how a large packet should be fragmented?​
answer
​The sequence control field indicates how packets will be subdivided
question
What two frequencies are used for most wireless networks?​
answer
​5 GHz,2.4 GHz
question
All 802.11 standards use ______________ signaling, meaning a wireless station can only transmit or receive, but cannot do both simultaneously.​
answer
half-duplex
question
What signal propagation phenomena causes the diffusion, or the reflection in multiple different directions, of a signal?​
answer
scattering
question
_________________ is an outdated wireless technology that has been mostly replaced by Bluetooth to connect personal devices.​
answer
Infrared (IR)
question
Describe the 802.11a standard, and detail some of its history and advantages / disadvantages versus other 802.11 standards.​
answer
frq
question
​What signal propagation phenomena causes a wireless signal to split into secondary waves when it encounters an obstruction?
answer
​diffraction
question
A service model in which hardware services are provided virtually, including network infrastructure devices such as virtual servers.​
answer
IaaS(Infrastucture as a Service)
question
A service model in which applications are provided through an online user interface and are compatible with a multitude of devices and operating systems.​
answer
SaaS(Softeware as a Service)
question
​In the context of IPsec, a type of encryption that provides authentication of the IP packet's data payload through public key techniques. In addition, it also encrypts the entire IP packet for added security.
answer
ESP (Encapsulating Security Payload)
question
One of two services in the key management phase of creating a secure IPsec connection. It negotiates the exchange of keys, including authentication of the keys. It uses UDP and usually runs on port 500.​
answer
IKE(Internet Key Exchange)
question
An authentication protocol that operates over PPP and also encrypts usernames and passwords for transmission​
answer
CHAP(Challenge Handshake Authentication Protocol)
question
An encryption key generation and management scheme used by 802.11i.​
answer
TKIP(Temporal Key Intergrity Protocol)
question
A service model in which various platforms are provided virtually, enabling developers to build and test applications within virtual, online environments tailored to the specific needs of a project.​
answer
PaaS(Platform as a Service)
question
In Kerberos terminology, the server that issues keys to clients during initial client authentication.​
answer
KDC(Key Distribution Center)
question
A Layer 2 communications protocol that enables a workstation to connect to a server using a serial connection such as dial-up or DSL. It can support multiple Network layer protocols and can encrypt transmissions.​
answer
PPP (Point to Point Protocol)​
question
In the context of IPsec, a type of encryption that provides authentication of the IP packet's data payload through public key techniques.​
answer
AH (Authentication Header)
question
What two different types of encryption can be used by IPsec during data transfer?​
answer
Authentication Header (AH), ​Encapsulating Security Payload (ESP)
question
​Windows, UNIX, Linux, and Mac OS clients are all capable of connecting to a VPN using PPTP.
answer
True
question
An enterprise-wide VPN can include elements of both the client-to-site and site-to-site models.
answer
True
question
How is GRE used by the PPP protocol?
answer
frq
question
The _________________ cloud service model provides virtual environments online that can be tailored to the needs of developers.
answer
Platform as a Service (PaaS)
question
What two types of agents are used to check compliance with network security policies?​
answer
dissolvable agent , persistent agent
question
Which virus below combines polymorphism and stealth techniques to create a very destructive virus?
answer
Natas
question
At what layer of the OSI model do firewalls operate?​
answer
Network
question
Networks that use ________________, such as T-1 or DSL connections to the Internet, are vulnerable to eavesdropping at a building' s demarc (demarcation point), at a remote switching facility, or in a central office.
answer
leased public lines
question
​In ACL statements, the any keyword is equivalent to using which wildcard mask?
answer
255.255.255.255
question
The _____________ proxy server software is available for use on the UNIX / Linux platform.​
answer
SQUID
question
A ______________ on a device attempts to alter management interfaces within the hardware to the point where the device is irreparable.
answer
physical attack
question
Different types of organizations have similar levels of network security risks.
answer
False
question
Describe the three way handshake process as used by CHAP.​
answer
frq
question
In IEEE terminology, a group of stations that share an access point are said to be part of what option below?
answer
​basic service set
question
The wireless spectrum, as defined by the FCC, spans between which two frequencies?​
answer
300 GHz, 9 KHz
question
Which 802.11 wireless innovation allows for the use of multiple antennas on an access point that can issue a signal to one or more receivers?​
answer
​MIMO
question
NFC tags are very expensive and cannot be purchased blank, requiring them to be pre-loaded.​
answer
False
question
When PPP is used over an Ethernet network, it is known as ________________.​
answer
Point to Point over Ethernet PPPoE
question
Amazon and Rackspace both utilize what virtualization software below to create their cloud environments?​
answer
Citrix Xen
question
​If multiple honeypots are connected to form a larger network, what term is used to describe the network?
answer
​honeynet
question
Which two terms can be used to describe a decoy system that is purposely vulnerable for the sake of attracting attackers?​
answer
​honeypot, ​lure
question
What kind of attack involves a flood of broadcast ping messages, with the originating source address being spoofed to appear as a host on the network?​
answer
smurf attack​
question
List and describe the four different locations in which anti-malware can be installed.
answer
frq
question
All wireless signals are carried through the air by electromagnetic waves.
answer
True
question
Unlike wired signals, wireless signals originate from electrical current traveling along a capacitor.​
answer
False
question
Describe the hidden node problem, and explain how it can be mitigated.​
answer
frq
question
The MD5 hashing algorithm is not susceptible to the possibility of hash collisions.​
answer
False
question
Which type of cloud service model involves hardware services that are provided virtually, including network infrastructure devices such as virtual servers?​
answer
IaaS​
question
What two protocols below are Data Link Layer protocols designed to connect WAN endpoints in a direct connection, such as when a client computer connects to a server at an ISP using a dial-up or DSL connection and modem?
answer
SLIP, PPP
question
​An attack that involves a person redirecting or capturing secure transmissions as they occur is known as what type of attack?
answer
​man-in-the-middle attack
question
A SOHO wireless router typically acts as a firewall and may include packet filtering options.​
answer
True
question
What feature on some network switches can be used to detect faked arp messages?
answer
​dynamic ARP inspection
question
The proportion of noise to the strength of a signal is called the _________________.​
answer
signal-to-noise ratio (SNR or S/N)
question
What is the name for the special signal that contains information that a wireless node requires in order to associate itself with an access point?
answer
​beacon frame
question
__________________ is a form of radio communication that transfers data wirelessly over very short distances (usually 10 cm or less).​
answer
NFC (near field communication)
question
At which two layers do wireless LANs operate?​
answer
Layer 1, 2
question
Explain the difference between a unidirectional antenna and an omnidirectional antenna​.
answer
frq
question
What authentication protocol sends authentication information in cleartext without encryption?​
answer
PAP
question
At what layer of the OSI model does the IPsec encryption protocol operate?​
answer
Network layer
question
What are the three tenets of the CIA triad, and how do they provide assurances that data will be protected?
answer
frq
question
​What protocol below only provides the framework for authenticating clients and servers, but relies on other encryption and authentication schemes to verify the credentials of clients or servers?
answer
EAP
question
he combination of a public key and a private key are known by what term below?
answer
key pair
question
​What security encryption protocol requires regular re-establishment of a connection and can be used with any type of TCP/IP transmission?
answer
IPsec
question
What two options below are IDS implementations used to provide additional security on a network?
answer
NIDS, HIDS
question
Programs that run independently and travel between computers and across networks, such as by e-mail attachment or virtually any kind of file transfer, are known as which option below?​
answer
worms
question
Describe some of the characteristics of malware that make it difficult to detect.
answer
frq
question
What is the maximum theoretical throughput of 802.11n?​
answer
600 Mbps
question
​At what layer of the OSI model do the 802.11 standards vary?
answer
Physical layer
question
Which 802.11 standard was the first to utilize the 5 GHz band?​
answer
802.11a
question
How many address fields exist in an 802.11 frame?​
answer
4
question
The key management phase of IPSec is reliant on which two services below?
answer
​Internet Key Exchange (IKE), ​Internet Security Association and Key Management Protocol (ISAKMP)
question
​The SSH service listens on what TCP port?
answer
22
question
A _________________ is a service that is shared between multiple organizations, but not available publicly.​
answer
community cloud
question
Describe how public key encryption works.​
answer
frq
question
What type of virus are dormant until a specific condition is met, such as the changing of a file or a match of the current date?​
answer
logic bomb​
question
​What characteristic of viruses make it possible for a virus to potentially change its characteristics (such as file size, and internal instructions) to avoid detection?
answer
polymorphism
question
The ________________ utility is a Windows console that is used to control what users do and how the system can be used.​
answer
gpedit.msc
question
Ideally, stations must remain within what range of an access point in order to maintain optimal transmission speeds?​
answer
300 feet