TLS Key Generation and Data Transmission Overview

Questions and Answers

What is the purpose of using pre-master secret in TLS key generation?

To establish a secure connection between client and server (correct)

To encrypt the session keys

To generate the master secret

To provide randomness to the encryption process

Which vulnerability is associated with the Cipher Block Chaining (CBC) mode in SSL/TLS?

Version Rollback Attack

Poodle Attack (correct)

Heartbleed Attack

BEAST Attack

Why is TLS not directly used in datagram environments?

TLS keys become insecure in datagram environments

TLS encrypts data using a weak algorithm in datagram environments

TLS decryption becomes too complex in datagram environments

Packets may be lost or reordered in datagram environments (correct)

In SSL/TLS, what is the purpose of the initialization vector (IV) in Cipher Block Chaining (CBC)?

To generate randomness for secure output

What happens when a server is forced to downgrade its connection to SSL 3.0 during an attack?

Server exposes itself to vulnerabilities like Poodle attack

How does DTLS handle packet loss?

By assigning a specific sequence number to each handshake message

What does HSTS (HTTP Strict Transport Security) aim to achieve?

Enforce HTTPS connections and prevent downgrading to HTTP

What type of attack is Browser Exploit Against SSL/TLS (BEAST)?

Chosen Plain Text Attack

Why can't SSL/TLS traffic encryption layer allow independent decryption of individual records?

Because each record depends on the previous one for decryption context

What is the main function of MITM (Man-in-the-Middle) attacks?

To intercept and modify web traffic between a client and server unnoticed