User Account

All Pages

Deep packet inspection firewalls protect networks

Assignment Help Basic Computer Science
Reference no: EM13921215

Exam Questions

Part 1:

True (T) or False (F).  IMPORTANT:  If you answer False (F), then you MUST say WHY it is in a few words to receive full credit. (5 questions at 2point each, 10 points in all)  

EXAMPLE QUESTIONS ONLY

T  F      Your Professor's last name is Douglas.   Answer: ___F___ (it is Kelly)

T  F      This course is INFO610.   Answer: ___T___

  1. T  F         Deep packet inspection firewalls protect networks by blocking packets based on the packets' header information at the network (IP) layer.   Answer: _____   If F, why?
  2. Employers have the right (and in some cases the obligation) to see any information stored, transmitted, or communicated within the employer's environment. This legal right is the basis for monitoring (or at least explicitly stating the right to monitor) email, network traffic, voice, wireless, and other communications.  Answer: _____
  3. T  F         Intrusion Detection Systems (IDS) provide no protection from internal threats. Answer: _____
  4. T  F         A Denial-of-Service attack does not require the attacker to penetrate the target's security defenses.  Answer: _____

Part 2:

Multiple Choice Questions. Print the correct answer in the blank following the question. (22 questions at 2 points each, 40 points plus 4 bonus points in all)

1.  Match the following TCP/IP protocol layer with its function (select a., b., c., or d. below): 

A. Network            1. Coordinates communication between applications.

B. Physical            2. Supports useful functions over the transport layer such identity/location of applications.

C. Application        3. Moves information between hosts that are not directly connected.

D. Transport         4. Moves bits between the nodes in the network.

a. A--->3; B--->4; C--->2; D--->1

b. A--->2; B--->4; C--->1; D--->4

c. A--->2; B--->3; C--->4; D--->1

d. A--->3; B--->4; C--->1; D--->2

Answer: _____________

2. Protection of a software program that uses a unique, novel algorithm could legally be protected by:

a. A patent

b. A copyright

c. A trademark

d. Ethical standards

Answer: _____

3. Security threats include which of the following:

a. Unlocked doors

b. Disgruntled employees

c. Hurricanes

d. Un-patched software programs

e. All of the above

Answer: _____

4. Denial of service attacks include (select one or more):

a. Buffer overflow attack

b. Smurf attack

c. Ping flood attack

d. SYN flood attack

e. All of the above

Answer: _____

5. A disgruntled employee creates a utility for purging old emails from the server. Inside the utility is code that that will erase the server's hard drive contents on January 1st, 2016. This is an example of which of the following attacks?

a. Virus

b. Logic Bomb

c. Spoofing

d. Trojan horse

e. Botnet

f. Rootkit

g. Backdoor

Answer: _____

6. Mary is the cofounder of Acme Widgets, a manufacturing firm. Together with her partner, Joe, she has developed a special oil that will dramatically improve the widget manufacturing process.

Mary and Joe plan to make large quantities of the oil by themselves in the plant after the other workers have left to keep the formula secret.

They would like to protect this formula for as long as possible. What type of intellectual property protection best suits their needs?

a. Copyright

b. Trademark

c. Patent

d. Trade Secret

Answer:  _______

7. You should clear cookies in your browser periodically because:

a. They (Cookies) can be used to track your web browsing behavior and invade your privacy.

b. They can facilitate impersonation attacks.

c. They can be used to spread viruses.

d. a. & b.

e. b. & c.

f.  a., b. & c.

Answer:  _________

8. A TCP/IP session hijacking can be best described as:

a.

Providing false identity information to gain unauthorized access

b.

Establishing a connection without specifying a username or password

c.

An attacker takes control of a session between the server and a client

d.

Flooding the connection with too many requests

Answer:  _________

9. Tracker attacks in databases get around:

a. Anonymization

b. Data transformation

c. Query size restriction

d. Data partitioning

Answer:  _________

10. A race condition attack can result in:

a. A symbolic link

b. Object orientation

c. A deadlock

d. Access to low address memory locations

Answer: __________

11.  __________ is when the data in the SDB can be modified so as to produce statistics that cannot be used to infer values for individual record resource.

a. Data perturbation

b. Database access control

c. Inference channeling

d. Output perturbation

Answer: _________

12. With __________ the records in the database are clustered into a number of mutually exclusive groups and the user may only query the statistical properties of each group as a whole.

a. compromise

b. inference

c. partitioning

d. query restriction

Answer: ________

13. A web session (i.e., a session between a web browser and a web server) can be protected against the risk of eavesdropping in an economical and convenient manner through the use of which of the following?

a. IPSec

b. HTTP over SSL

c. Link encryption

d. Microsoft Encrypting File System (EFS)

Answer:  ______

14. While reviewing the security logs for your server, you notice that a user on the Internet has attempted to access one of your internal application servers.

Although it appears that the user's attempts were unsuccessful, you are still very concerned about the possibility that your systems may be compromised. Which of the following solutions are you most likely to implement?

a. A firewall system at the connection point to the Internet

b. An improved RBAC-based access control system for the application servers

c. File-level encryption

d. Kerberos authentication

Answer: _______

15.  What specific policy might most likely recommend removing a server from the network and re-installing all software and data?

a.

A privacy policy

b.

An authentication policy

c.

An incident response policy

d.

Wireless network access policy

Answer: ________

16. The security risk of allowing dynamic content ( to execute) on a target machine is:

a. The time delay from when it is downloaded and executed could make the browser experience not very satisfying.

b. Malware may be included in the downloaded code and infect the target machine.

c. The mobile code author may never be known.

d. None of the above.

Answer: _______                     

17. Encrypting a message with a private key (of the sender) in an asymmetric system provides:

a. Proof of receipt

b. Confidentiality

c. Proof of origin

d. Message availability

Answer:_______

18. The correct ordering of the upper layers of the OSI model are:

a. Session, application, presentation

b. Session, presentation, application

c. Session, application, presentation, physical

d. Application, presentation, session, network

Answer: _______

19. In relational database parlance, the basic building block is a __________, which is a flat table.

a. attribute                                                     

b. tuple                            

c. primary key                                               

d. relation

e. field

Answer: _____

20. Routers operate at the _____________ of the OSI stack?

a. Transport

b. Application

c. Session

d. Network

e. Data Link

Answer: _____

21. Gateways operate at the _____________ of the OSI stack?

a. Transport

b. Application

c. Session

d. Network

e. Data Link

Answer: _____

22. Which e-mail security protocol(s) depend(s) upon a "Web of Trust"?  

a. Kerberos

b. Public Key Infrastructure (PKI)

c. Secure Sockets Layer (SSL)

d. Transport Layer Security (TLS)

e. Pretty Good Privacy (PGP)

f. Secure Multipurpose Internet Mail Extensions (S/MIME)

g. Privacy Enhanced Mail (PEM)

h. Data Link

Answer: _____

Part 3:

Short Answer Questions.

1.Briefly describe the purpose of firewalls and how they work, including  two fundamental approaches to creating firewall policies and types of firewalls

2.There are many threats associated with e-mail. List those threats and describe a mitigation strategy for each.

Part 4:

Essay Question. (Maximum length: one and half page, single-spaced including at least 3 references;)

While sitting in the break room at work one day, Stan is talking with his friend Joe, who is excitedly describing an idea for a new intrusion detection system (IDS).

Joe describes an elegant new algorithm that will flawlessly detect intrusion attacks and respond almost instantly. Stan, who is more of an entrepreneur than inventor, quickly grasps the essence of Joe's idea, and decides to incorporate the idea into a commercial product, without the knowledge or participation of Joe.

In his scheme to commercialize Joe's idea, Stan plans to hire a programmer to implement Joe's algorithm, and use the software to control a novel new hardware component.

Stan would like to protect the intellectual property of the algorithm, software, and hardware component, but is experiencing some guilt pangs. Discuss the legal and ethical issues of this situation.

Reference no: EM13921215

Questions Cloud

Make a series of deposits into a interest bearing account : You plan to make a series of deposits into a interest bearing account earning 11%. You will deposit $2000 today, $3000 two years from today, and $9000 five years from today. If you withdraw $2000 four years from today and $5000 seven years from today..
What is their current yield : Garvin Enterprises' bonds currently sell for $1,050. They have a 7-year maturity, an annual coupon of $95, and a par value of $1,000. What is their current yield?
Individual independent variables significant : Develop a correlation matrix using MPG (miles per gallon), HP (horsepower), WT (weight). Is the correlation between the variables significant or not? Conduct a test for all correlations; that is for MPG v. HP; MPG v. WT; HP v. WT. Use a level o..
What would be the stock value of a bond : What would be the "stock" value of a bond that was convertible to 50 shares of stock if the stock was priced at 27.32? Compute the dollar amount of interest that will be earned per year for a bond listed as RKB8 3/4s15. Compute the premium price at w..
Deep packet inspection firewalls protect networks : A Denial-of-Service attack does not require the attacker to penetrate the target's security defenses.
Discuss what strategies could implement to change outcome : Read the article on read the article on Porter's five forces that shape strategy.. Brainstorm the relevant factors for the markets of your entrepreneurial idea and choose the two most challenging forces for your industry. Discuss what strategies y..
Job and go back to school for a law degree : You want to quit your job and go back to school for a law degree 4 years from now, and you plan to save $3,500 per year, starting one year from now. You will make 4 deposits in an account that pays 5.7% interest. Under these assumptions, how much wil..
Estimated auto regression model : The estimated auto regression model: Sales=314+1.18 Sales(-1)-0.36 Sales(-2)
Evaluate the fields franchising policy : Rather, we prefer to maintain ownership of all units to ensure continued good service and quality." Evaluate the Fields' franchising policy.

Reviews

Write a Review

Basic Computer Science Questions & Answers

  How many bits must the mar register have

Assume you have 512MB of main memory. How many bits must the MAR register have? Show your work.

  Explain what type of architecture the new payroll applicatio

Explain what type of architecture the new payroll application should use and why.Identify what types of technology will be involved in the architecture and explain the purpose of each technology.

  Write a program to print duplicates in a string and count

1. write a program to print duplicates in a string and their count.

  Propose three to five additional activities

Propose three to five additional activities you think should be added to a Gantt chart to help you estimate resources and durations. Write a one-page paper describing these new activities.

  Explaining data-tlb hit and data-cache hit

Upon a load instruction, event "data-TLB hit" followed by "data-cache hit" is the most probable to occur among four possibilities of Cartesian product.

  Find minimum associativity needed of level cache

Determine the minimum associativity needed of the level 1 cache for consistent performance independent of both arrays' position in memory?

  Detail the dr team roles responsibilities and sub teams

consider a scenario where the contingency planning management team cpmt of your organization has designated you as the

  Using jflab find a linear grammar for the language

The language L= {a n b m : n?m} is context free. Using JFlab find a linear grammar for the language.

  Explain the complexities of auditing a cloud computing

Explain the complexities of auditing a cloud computing deployment that uses the public model?

  How would you use one of the standard mib objects

How would you use one of the standard MIB objects to determine which one of the stations in a LAN is functioning as a bridge to the external network?

  Convert the floating point number to ieee

Convert the floating point number to IEEE Single Precision Floating-Point Representation and For the following 8-bit data, using 2's complement to conduct the following calculation

  Explain performance measures for balanced scorecard system

Explain three specific performance measures which could be utilized in Balanced Scorecard system in industry of your choice.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd