TLS Key Generation and Data Transmission Overview

Questions and Answers

What is the purpose of using pre-master secret in TLS key generation?

To establish a secure connection between client and server

Which vulnerability is associated with the Cipher Block Chaining (CBC) mode in SSL/TLS?

Poodle Attack

Why is TLS not directly used in datagram environments?

Packets may be lost or reordered in datagram environments

In SSL/TLS, what is the purpose of the initialization vector (IV) in Cipher Block Chaining (CBC)?

To generate randomness for secure output

What happens when a server is forced to downgrade its connection to SSL 3.0 during an attack?

Server exposes itself to vulnerabilities like Poodle attack

How does DTLS handle packet loss?

By assigning a specific sequence number to each handshake message

What does HSTS (HTTP Strict Transport Security) aim to achieve?

Enforce HTTPS connections and prevent downgrading to HTTP

What type of attack is Browser Exploit Against SSL/TLS (BEAST)?

Chosen Plain Text Attack

Why can't SSL/TLS traffic encryption layer allow independent decryption of individual records?

Because each record depends on the previous one for decryption context

What is the main function of MITM (Man-in-the-Middle) attacks?

To intercept and modify web traffic between a client and server unnoticed