TLS Key Generation and Data Transmission Overview

Questions and Answers

What is the purpose of using pre-master secret in TLS key generation?

• To establish a secure connection between client and server (correct)
• To encrypt the session keys
• To generate the master secret
• To provide randomness to the encryption process

Which vulnerability is associated with the Cipher Block Chaining (CBC) mode in SSL/TLS?

• Version Rollback Attack
• Poodle Attack (correct)
• Heartbleed Attack
• BEAST Attack

Why is TLS not directly used in datagram environments?

• TLS keys become insecure in datagram environments
• TLS encrypts data using a weak algorithm in datagram environments
• TLS decryption becomes too complex in datagram environments
• Packets may be lost or reordered in datagram environments (correct)

In SSL/TLS, what is the purpose of the initialization vector (IV) in Cipher Block Chaining (CBC)?

To generate randomness for secure output (D)

What happens when a server is forced to downgrade its connection to SSL 3.0 during an attack?

Server exposes itself to vulnerabilities like Poodle attack (C)

How does DTLS handle packet loss?

By assigning a specific sequence number to each handshake message (C)

What does HSTS (HTTP Strict Transport Security) aim to achieve?

Enforce HTTPS connections and prevent downgrading to HTTP (D)

What type of attack is Browser Exploit Against SSL/TLS (BEAST)?

Chosen Plain Text Attack (B)

Why can't SSL/TLS traffic encryption layer allow independent decryption of individual records?

Because each record depends on the previous one for decryption context (B)

What is the main function of MITM (Man-in-the-Middle) attacks?

To intercept and modify web traffic between a client and server unnoticed (D)