Network Security and Encryption Basics

Questions and Answers

Which method helps detect and prevent DDoS attacks by inspecting packets?

Digital signature

Deep Packet Inspection (DPI) (correct)

Firewall monitoring

Echo check

A SYN flood attack involves the initiating host sending the final acknowledgment packet.

False

What is the primary purpose of an EDI audit trail?

To maintain a control log of transactions

The technique used to ensure a message sequence cannot be deleted, reordered, or duplicated is called ______.

Message Sequence Numbering

Which encryption method is computationally intensive and typically used alongside DES in a digital envelope?

RSA

Triple-DES encryption provides less security than standard Data Encryption Standard (DES).

False

Match the following encryption methods with their descriptions:

RSA = Computationally intensive encryption method DES = Standard encryption method for data Triple-DES = Enhanced security through multiple DES encryptions AES = Advanced encryption standard widely used for secure data

Echo checks are used to compare the returned message with the ______ to detect errors.

original

Which type of firewall provides a higher level of customizable network security?

Application-level firewall

A firewall breach attack is a common type of Denial of Service attack.

False

What is the primary function of a digital certificate?

Authenticate sender identity

The method of encryption that uses two different keys for encoding and decoding is called ______.

Public key encryption

Which of the following is not a type of Denial of Service (DoS) attack?

Firewall Breach Attack

Which encryption technique uses a 128-bit encryption standard?

AES (Advanced Encryption Standard)

Match the following encryption methods with their characteristics:

Symmetric encryption = Uses the same key for encryption and decryption Public key encryption = Uses two different keys for encryption and decryption Digital signature = Confirms authenticity of messages AES = Advanced encryption standard with up to 256-bit keys

A callback device in network security is used to monitor network traffic.

False

Which encryption standard uses a single key known to both sender and receiver?

AES

Digital certificates are used to encrypt messages in the EDI system.

False

What is the term for the technique that uses both DES and RSA encryption methods together?

Digital Envelope

A network security feature that verifies the identity of the caller is known as a ______.

Callback Device

Match the following firewall types with their descriptions:

Network-level Firewall = Filters traffic using a screening router Application-level Firewall = Provides comprehensive transmission logging and user authentication Packet-filtering Firewall = Examines data packets against a set of criteria Stateful Firewall = Tracks active connections and makes decisions based on the state of the connection

Which method allows users to encrypt data with the speed of secret key encryption and the security of public key encryption?

Digital Envelope

A Smurf attack uses the victim's IP address to send echo responses to other devices.

False

Name the tool that hackers can use to flood a network with messages using a forged IP address.

Smurf Attack

Study Notes

Firewalls

• Application-level firewalls provide the highest level of customizable network security.
• Network-level firewalls use a screening router to examine source and destination addresses.

Data Loss

• Equipment noise is a common cause of data loss in network communications.

Encryption

• Public key encryption uses two different keys for encoding and decoding.
• AES (Advanced Encryption Standard) uses a 128-bit encryption standard.
• Triple-DES enhances DES for better security.
• Digital Envelope uses both DES and RSA encryption methods.
• RSA is computationally intensive and used alongside DES in a digital envelope.

Authentication

• Digital certificates authenticate sender identity.
• Callback devices authenticate users by reconnecting after verifying identity.

Denial of Service (DoS)

• SYN flood attacks involve the initiating host not sending the final acknowledgment packet.
• Smurf attacks flood a network with messages using a forged IP address.
• Distributed DoS (DDoS) attacks are a type of DoS attack.
• Deep Packet Inspection (DPI) helps detect and prevent DDoS attacks by inspecting packets.

Other

• Three-way handshake involves sending these packets: SYN, SYN-ACK, ACK.
• Line errors are the most common issue leading to message corruption.
• Message Transaction Log logs each message with user ID, access time, and terminal location.
• Parity check adds an extra bit to ensure data integrity during transmission.
• Message Sequence Numbering ensures that a message sequence cannot be deleted, reordered, or duplicated during transmission.
• EDI audit trail maintains a control log of transactions.
• Echo check compares the returned message with the original to detect errors.

Description

This quiz covers essential concepts related to network security, including firewalls, data loss, encryption methods, authentication techniques, and denial of service attacks. Test your knowledge on application-level and network-level firewalls, encryption standards like AES, Digital Certificates, and DoS attacks.