NETWORK AND INTERNET SECURITY ASSIGNMENT

PROBLEM 1 - Network Access Control

1) Suppose you are a network administrator and are concerned about unauthorized networked devices being plugged into your system. You have read in your studies that legacy switch port security is not effective and prefer to look into certificate security. You are choosing between alternatives. Of the following answers, which technology BEST solves the problem? Explain.

A) 802.1X

B) Biometric Authentication for Devices (BAD)

C) VLAN Membership Policy Server (VMPS)

D) 802.11X

b)  Which of the following are elements of the Separation of Duties principle of operations security? (Choose two.) Explain.

A) Individuals rotate security-related duties so that no one person is permanently responsible for a sensitive function.

B) Includes two-man and dual operator controls.

C) Operators maintain an arms-length relationship with security controls.

D) Continuous retraining of personnel.

E) Ensures that no one person can compromise the whole system.

c)  What role does the policy server play in endpoint security? Explain.

A) It retrieves security credentials directly from the endpoints.

B) It evaluates security credentials and makes an admission control policy decision.

C) It enforces admission control policy decision.

D) All of the above

d)  Where can NAC have the most impact on your compliance efforts? Explain.

A) Authentication, access control and remediation

B) Policies, authentication and access control

C) Authentication, access control and audit

D) Policies, remediation and audit

PROBLEM 2 - IPSec and VPN

a) Which of the following two terms are IPsec modes of operation? Explain.

A) Transport and Tunnel Mode

B) Security Parameter and Security Associations

C) Authentication Header and Encapsulating Security Payloads

D) Authenticated and Tunnel Mode

b) Tunneling is a technique in which the IP datagram is first _______ and then _______.

A) Encapsulated in another datagram; encrypted.

B) Encrypted; encapsulated in another datagram.

C) Authenticated; encrypted.

D) Encrypted; authenticated.

c) What is the relationship between a VPN and an extranet? Explain.

A) Some extranets are VPNs; some VPNs are extranets.

B) Some extranets are VPNs; all VPNs are extranets.

C) VPNs and extranets are the same type of network.

D) VPNs are unrelated to extranets.

d) Which one is the best approach to VPNs? Explain.

A) VPN-specific gateway device.

B) Router-based.

C) Firewall-based.

D) Software only.

E) All of the above.

PROBLEM 3 - Firewalls

a) Which is untrue of a packet filtering firewall? Explain.

A) High security.

B) Application independence.

C) Performance strength.

D) Excellent scalability.

b) Firewalls can be implemented in different ways. Consider a dedicated firewall device. What is its major advantage when the target is throughput and security? Explain.

A) The management console is easily installed.

B) The device contains proprietary operating systems.

C) The connection to the device is monitored by security personnel.

D) A thorough packet inspection capability.

E) The hackers know most router-based firewall code.

c) Of the following choices, which one is a type of firewall actively maintaining awareness of the status conversations between internal and external hosts? Explain.

A) Stateful Firewall.

B) Non-Passive Firewall.

C) Active State Firewall.

D) Stateless Firewall.

E) None of the above

d) Which answer BEST describes a device that sits between your users and the internet and rewrites source ports and source IP Addresses and enhances your security posture? Explain.

A) Network Address Translator.

B) Web Proxy.

C) Web Firewall.

D) Host based firewall.

PROBLEM 4 - Wireless Network Security

a) What is the protocol developed for the wireless network communications? Explain.

A) Wireless Encryption Protocol (WEP)

B) Wireless Application Protocol (WAP)

C) Wired Equivalent Privacy (WEP)

D) Wireless Session Protocol (WSP)

b) Which of the following vulnerabilities is unique to 802.11 wireless LANs?

A) Forged deauthenticate frames

B) RF jamming

C) TCP SYN floods

D) Data sniffing

c) You are assisting a user implement a wireless network in his home. The wireless hardware he has requires the RC4 protocol. What type of security is BEST for this network? Explain.

A) WEP

B) WPA-TKIP

C) WPA-AES

D) WPA2 Enterprise

d) Which of the following is not a reason why WEP may be considered vulnerable? Explain. (Select all that apply.)

A) Shared WEP keys among all clients

B) 20-bit initialization vector

C) An RC4 engine not properly initialized

D) 48-bit WEP keys

PROBLEM 5 - Web and Transport Layer Security

a) In SSL/TLS protocol, what kind of authentication is supported when you establish a secure session between a client and a server?

A) Only server authentication (optional).

B) Server authentication (mandatory) and client authentication (optional).

C) Role based authentication scheme.

D) Peer-to-peer authentication.

b) SSL is used to

A) Encrypt specific elements of data for application-specific purposes.

B) Encrypt files located on a Web server.

C) Encrypt data as it travels over a network.

D) Encrypt digital certificates used to authenticate a Web site.

E) Encrypt passwords for storage in a database.

c) What kind of attacks does SSL prevent? Select the best answer. Explain.

A) SQL Injection.

B) Sniffing.

C) Variable Manipulation.

D) Phishing Attacks.

d) Which of the following is the most common attack on DNS servers? Explain.

A) Poisoning

B) Flood

C) Ping

D) Masquerading