IPSec Modes and Protocols
34 Questions
0 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What is the primary function of the IPSec component in the network layer?

  • To add the AH, ESP, or both headers to the payload (correct)
  • To authenticate the data link layer packets
  • To make routing decisions for packets flowing through a router
  • To encrypt the IP header
  • Which mode of IPSec is used when security is desired from end to end?

  • Transport mode (correct)
  • Tunnel mode
  • Network mode
  • Envelope mode
  • What happens when security is not enabled in the transport layer?

  • The transport layer packets are authenticated
  • The transport layer packets are encrypted
  • The transport layer packets flow into the network layer (correct)
  • The transport layer packets are blocked
  • What is the reason for applying ESP first when both AH and ESP are used in transport mode?

    <p>Because it is obvious</p> Signup and view all the answers

    What is the primary difference between tunnel mode and transport mode?

    <p>Tunnel mode protects the entire IP packet, while transport mode protects only the payload</p> Signup and view all the answers

    What is the purpose of IPSec in tunnel mode?

    <p>To encapsulate an IP packet with IPSec headers and add an outer IP header</p> Signup and view all the answers

    Why can't transport mode IPSec header be inserted for packets flowing through a router?

    <p>Because it violates the rule of routers looking only at the network layer header</p> Signup and view all the answers

    What is the characteristic of an IKE SA?

    <p>It is a duplex connection</p> Signup and view all the answers

    What is the purpose of IKE in establishing a VPN?

    <p>To negotiate terms and conditions of the communication</p> Signup and view all the answers

    What is used to maintain an IKE SA?

    <p>A special header and SA identifiers called cookies</p> Signup and view all the answers

    What is the characteristic of an IPSec SA?

    <p>It is a one-way logical relationship</p> Signup and view all the answers

    How many SAs are required for authenticated, confidential, bi-directional communications between systems?

    <p>Two</p> Signup and view all the answers

    What is the primary purpose of a Security Association (SA)?

    <p>To identify and manage the parameters of an IPSec connection</p> Signup and view all the answers

    What is the function of the Security Parameters Index (SPI)?

    <p>To identify a specific SA in the SA database</p> Signup and view all the answers

    What is the purpose of the Authentication Header (AH)?

    <p>To authenticate and ensure the integrity of data</p> Signup and view all the answers

    What is the format of the Authentication Data field in AH?

    <p>96 bits</p> Signup and view all the answers

    What is the purpose of the Sequence Number in AH?

    <p>To prevent replay attacks</p> Signup and view all the answers

    What is the difference between tunnel mode and transport mode in IPSec?

    <p>Tunnel mode encrypts the entire IP packet, while transport mode only encrypts the payload</p> Signup and view all the answers

    What is the purpose of the Encapsulating Security Payload (ESP)?

    <p>To encrypt data</p> Signup and view all the answers

    What is the format of the ESP header?

    <p>Unique format</p> Signup and view all the answers

    What is the purpose of the Pad Length field in ESP?

    <p>To specify the length of the padding</p> Signup and view all the answers

    What is the purpose of the Next Header field in ESP?

    <p>To specify the protocol of the encrypted data</p> Signup and view all the answers

    What is the primary function of the ESP header in Transport Mode?

    <p>To provide integrity and confidentiality of the payload</p> Signup and view all the answers

    What is the purpose of the Integrity Check Value in ESP?

    <p>To ensure the integrity of the packet</p> Signup and view all the answers

    What is the main advantage of ESP over AH?

    <p>ESP provides confidentiality, which AH does not</p> Signup and view all the answers

    What is the purpose of Internet Key Exchange (IKE)?

    <p>To manage IPsec keys and negotiate protocol parameters</p> Signup and view all the answers

    What is the name of the protocol that IKE is based on?

    <p>ISAKMP and Oakley</p> Signup and view all the answers

    What is the current version of IKE?

    <p>IKEv2</p> Signup and view all the answers

    What is the primary function of ISAKMP?

    <p>To create a framework for key exchange</p> Signup and view all the answers

    What is the main criticism of IKE?

    <p>It is too complex and confusing</p> Signup and view all the answers

    What is the purpose of VPNs?

    <p>To securely connect multiple private networks across a public network</p> Signup and view all the answers

    What is the advantage of using VPNs over leased lines?

    <p>VPNs are cheaper</p> Signup and view all the answers

    What is the main concern of organizations using VPNs?

    <p>Data security</p> Signup and view all the answers

    What has driven the evolution of VPNs?

    <p>The demand for security features</p> Signup and view all the answers

    More Like This

    IPSec Fundamentals Quiz
    10 questions

    IPSec Fundamentals Quiz

    InviolableDalmatianJasper avatar
    InviolableDalmatianJasper
    Network-Layer Security: IPsec and VPNs Quiz
    5 questions
    IPSec Protocols in Network Security
    30 questions
    Use Quizgecko on...
    Browser
    Browser