Packet filtering firewalls work by examining

Assignment Help Business Management
Reference no: EM131770720

Firewalls

1)   Packet filtering firewalls work by examining (Choose one):

A.   A packet's source address, destination address, source port, destination port and protocol field/type.

B.   A packet's source address, destination address, user name, and password

C.  A packet's source port, destination port, user name, and password

D.  Whether a packet is encrypted.

E.   All of the above.

Answer(s):  

2)   A packet filtering firewall cannot/do not normally (Select all that apply.):

A.   Detect A SYN flood attack.

B.   Detect A PING flood attack.

C.  Perform User authentication.

D.  Deny a specific service from a specific port.

E.   Deny a specific service from a specific IP address.

Answer(s):

3)   As you increase the security of your network, you are concerned that the added security measures may impact in ways you had not intended. For example, how could a firewall have a negative impact on business from the following list? Explain.

A.   It can filter packets from a site known to cause DoS attacks.

B.   It can filter packets that have a virus signature.

C.  It can block traffic that should be allowed through.

D.   It can log every packet that is transmitted.

Answer(s):

4)   Available in many operating systems or provided as an add-on package, a ________ is a software module used to secure an individual host and also filters and restricts the flow of packets.

A.   application level gateway ?               

B.   circuit level gateway

C.  host based firewall ?                         

D.  DMZ

Answer(s):

5)   Which of the following statements are/is true? Select all that apply.

A.   Stateful inspection firewalls can detect SYN attacks.

B.   Both application-level and circuit-level gateways do not allow a direct end-to-end connection between the connecting parties.

C.  Stateful inspection firewalls, circuit-level gateways and application-level gateways provide reactive network defense, whereas packet filtering firewalls provide proactive network defense.

Answer(s):

IPsec and Virtual Private Network Security(VPN)

6)   What term refers to the data recipient's ability to ensure that the data was not altered in any fashion as the data was sent across the VPN?

A.   Encryption

B.   Integrity

C.  Authentication

D.  Tunneling

Answer(s):

7)   What is the transmission of data through a public network in such a way that the routing nodes in the public network are unaware that the transmission is part of a private network?

A.   Tunneling

B.   Virtual private network

C.  Output feedback

D.  Promiscuous mode

E.   End-to-end connection

Answer(s):

8)   In which case an IPsec VPN is generally considered a better solution than an SSL VPN for remote access? Explain.

A.   Telecommuters coming from fixed sites, using managed corporate devices and terminating in a secure, private network on either side.

B.   Telecommuters without fixed access who want to come in from a variety of sites.

C.  Both of the above

Answer(s):

9)   Which approach to VPNs is an acceptable solution? Explain.

A.   VPN-specific gateway device

B.   Router-based

C.  Firewall-based

D.  Implemented in software

E.   All of the above

Answer(s):

10) Which of the following ones is/are true of IPsec? Select all that apply.

A.   The transport mode provides protection to the entire IP packet.

B.   By implementing security at the IP level an organization can ensure secure networking not only for applications that have security mechanisms but also for the many security ignorant applications.

C.  Additional padding may be added to provide partial traffic flow confidentiality by concealing the actual length of the payload.

D.  The Payload Data Field is designed to deter replay attacks..

Answer(s):

Wireless Network Security

11) What is the protocol developed for the wireless network security in Layer 2 (data link layer)?

A.   Wireless Integrity Protocol (WIP)

B.   Wireless Application Protocol (WAP)

C.  Wired Equivalent Privacy (WEP)

D.  Wireless Session Protocol (WSP)

Answer(s):

12) WEP has been publicized as having vulnerabilities. Which of the following is a reason why it is vulnerable? Select all that apply.

A.    Shared WEP keys among all clients

B.    An RC4 engine used for cryptography not properly initialized

C.  20-bit initialization vector

D.  Access Point (AP) is not authenticated to a device/station.

E.   400-bit (WEP) keys

Answer(s):

13)  Which of the following is/are true of WPA TKIP? Select all that apply.

A.   Provides better protection than WEP without requiring hardware updates for devices and the AP.

B.   It uses RC4 for the core cryptographic algorithm.

C.  Provides integrity functions to protect against fragmentation and impersonation attacks.

D.  Does not provide replay attack detection.

E.   All of the above.

Answer(s):

14) Which of the following is/are true of the security features of WPA CCMP? Select all that apply.

A.   Provides better protection than WEP (and WPA TKIP), but requires hardware update for devices and AP.

B.   It uses RC4 for the core cryptographic algorithm

C.  Provides both message integrity and data origin authentication.

D.  Does provide replay attack detection.

Answer(s):

Transport and Web Protocols

15) The SSL Internet standard version is called _________ .

A.    SSH ?              

B.    HTTPS

C.   SLP

D.  TLS

Answer(s):

16) Which of the following is true of the SSH protocol? Choose all that apply.

A.   SSH is a layer 3 (IP layer) protocol.

B.   SSH supports multiple authentication schemes including public key authentication.

C.  SSH does not provide message integrity, but only provides authentication and message encryption.

D.  SSH does not authenticate the server to the client.

Answer(s):

17) Which of the following is true of the HTTPS protocol? Choose all that apply.

A.   Supports the verification of the identity of both the server and client

B.   Supports confidentially of the HTTP requests and responses using the secret (symmetric) key cryptography.

C.  Does not support message integrity.

D.  All of the above.

Answer(s):

18) Which of the following is true about web client or server attacks? Choose all that apply.

A.   One way to prevent XSS attacks is to disable client side scripts.

B.   Banks and financial institutions try to minimize CSRF (Cross-Site Request Forgery) attacks by requiring re-authentication before every security-critical operations such as money transfer or withdrawal.

C.  Lack of input validation is the main reason for SQL injection attacks.

D.  All the above.

Answer(s):

Reference no: EM131770720

Questions Cloud

Calculate sirens manufacturing cost per unit : Assuming the company uses variable costing, calculate Siren's manufacturing cost per unit
Leading to a cartesian product : Assume table1 has the columns named col1, col2 and col3. Also, assume that table2 has columns named col4 and col5 and that the linking column
Describe the best approach for teaching : Describe the best approach for teaching. Prepare a presentation to accompany the teaching plan and present the information to your community.
What were the equivalent units for the month : Cooperative San José of southern Sonora state in Mexico makes a unique syrup using cane sugar and local herbs. The syrup is sold in small bottles.
Packet filtering firewalls work by examining : 1) Packet filtering firewalls work by examining (Choose one):
Discuss in what countries does it do business : In what countries does it do business. Then identify if those countries are common law or code law
How to dismantle a piece of equipment : A representative said on Wednesday it would now release copies of MPs invoices and receipts in redacted form if requested through the Freedom of Information Act
Develop a community teaching proposal designed to address : Applying what you have learned thus far, develop a community teaching proposal designed to address the needs of your community.
Explain why each of these elements is important : identify at least three elements of a strong company culture of trust and integrity. Explain why each of these elements is important

Reviews

Write a Review

Business Management Questions & Answers

  Caselet on michael porter’s value chain management

The assignment in management is a two part assignment dealing 1.Theory of function of management. 2. Operations and Controlling.

  Mountain man brewing company

Mountain Man Brewing, a family owned business where Chris Prangel, the son of the president joins. Due to increase in the preference for light beer drinkers, Chris Prangel wants to introduce light beer version in Mountain Man. An analysis into the la..

  Mountain man brewing company

Mountain Man Brewing, a family owned business where Chris Prangel, the son of the president joins. An analysis into the launch of Mountain Man Light over the present Mountain Man Lager.

  Analysis of the case using the doing ethics technique

Analysis of the case using the Doing Ethics Technique (DET). Analysis of the ethical issue(s) from the perspective of an ICT professional, using the ACS Code of  Conduct and properly relating clauses from the ACS Code of Conduct to the ethical issue.

  Affiliations and partnerships

Affiliations and partnerships are frequently used to reach a larger local audience? Which options stand to avail for the Hotel manager and what problems do these pose.

  Innovation-friendly regulations

What influence (if any) can organizations exercise to encourage ‘innovation-friendly' regulations?

  Effect of regional and corporate cultural issues

Present your findings as a group powerpoint with an audio file. In addition individually write up your own conclusions as to the effects of regional cultural issues on the corporate organisational culture of this multinational company as it conducts ..

  Structure of business plan

This assignment shows a structure of business plan. The task is to write a business plane about a Diet Shop.

  Identify the purposes of different types of organisations

Identify the purposes of different types of organisations.

  Entrepreneur case study for analysis

Entrepreneur Case Study for Analysis. Analyze Robin Wolaner's suitability to be an entrepreneur

  Forecasting and business analysis

This problem requires you to apply your cross-sectional analysis skills to a real cross-sectional data set with the goal of answering a specific research question.

  Educational instructional leadership

Prepare a major handout on the key principles of instructional leadership

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd