Deck 3: Security Through Authentication and Encryption

Session authentication works by giving each frame or packet an identification or sequence number.

In stream cipher, a specific key size is used for encryption.

The original version of DES used a 56-bit encryption key combined with 8-bit parity.

Triple DES is a standard adopted by the U.S. government to replace AES.

A random generator starts with a base or seed number and generates the same sequence of random numbers time after time.

Today, Kerberos is the most commonly used form of security for communications and transactions over the Web.

Message Digest 4 takes the original data and adds padded spaces until the length of the data section is 456 bytes.

The purpose of EFS is to protect folder and file contents on a hard disk, in case a hard disk is stolen from a server or workstation, or a portable computer is lost or stolen.

Sniffer software turns the NIC on its host computer into a virtual listening ear, capturing the network traffic that goes across that NIC on a particular network segment.

Secret key encryption uses a public key and a private key.

When a network consists of Windows 2000 or later operating systems, Kerberos is the preferred logon authentication method.

The ethereal sniffer software only functions on Linux/UNIX computers.

The public key/private key method uses an encryption algorithm developed by Joan Daemen and Vincent Rijmen.

A secret key is used to both encrypt and decrypt data.

TLS uses private-key symmetric data encryption and the TLS Handshake Protocol for secure communications.

In TCP/IP communications using IPv4 , the authentication header is placed after the traditional IP header field in a packet and before the TCP (or UDP) field.

Authentication makes data unintelligible to everyone except its intended recipients.

When the hashing method of encryption is used, each password has a unique digital signature.

CFS can be used for remote file access through the NFS used by Netware systems.

Is MD4 incorporated into Microsoft's MS-CHAP v2 hashing algorithm?

Is the maximum size of the private key in AES 256 bits in length?

Are user passwords in Red Hat Linux encrypted using 3DES and stored in the /etc/passwd file?

Did the original version of DES use a 56-bit encryption key combined with 8-bit parity?

Was AES originally developed for the U.S. National Security Agency?

When following the ISO X.509 format, what basic set of encrypted information does a digital certificate include?

Does the Encrypting File System (EFS) employ public- and private-key asymmetrical encryption and a trapdoor function to manipulate prime numbers?

List six of the common authentication methods in use today.

List the four hashing algorithms typically used.

List eight different encryption techniques that are designed to help protect stored or transmitted data.

When Windows 2000 Server or Windows Server 2003 is contacted by a client using IPSec configured in the Client (____________________) role, it will respond by using IPSec communication.

____________________ encryption can work well on a computer for files that are only accessed by an authorized account, but it is difficult to achieve secrecy over a network using this method.

____________________ is the science of creating secret messages.

In session authentication, is each packet given a sequence number when it is constructed at the source computer?

The DES, AES, and MPPE encryption methods are all forms of the ____________________ encryption method, but use different block sizes, key sizes, and algorithms.

The ____________________ field in the ESP is used in the same way as in the AH, to store the Integrity Check Value.

The ____________________ field in the AH uses a special counter to activate anti-replay so that the receiver can determine if it has already received a packet.

____________________ authentication method is an application-independent form of authentication that is modeled after SSL and uses RSA encryption.

____________________ authenticates by using tickets to verify client and server communications, and employs private-key encryption.

Deploying _________________________ with NAT can interfere with the security established by IPSec.

Does each security token have a unique identification number built into it, so that the authentication server can verify the security token before issuing a password?

In a(n) ____________________ attack every character combination is used in an attempt to determine the password of an account.

Was SSH developed by Netscape to provide authentication security for TCP/IP applications such as FTP and Telnet?

Does Microsoft's MPPE use a 40-bit RSA encryption key for its basic encryption?

List and provide the key lengths for the three different flavors of RSA used by MPPE.