Shared Flashcard Set

Details

Security + || 4.1 Secure Protocols and Services
Security + || 4.1 Secure Protocols and Services
46
Computer Science
Undergraduate 4
12/12/2018
Click here to study/print these flashcards.

Create your own flash cards! Sign up here.

Additional Computer Science Flashcards

 

 

Cards

Term
What port is HTTPS/SSL?
 Definition
443
Term
What port is DNS?
 Definition
53
Term
What is SCP?
 Definition
Secure File Transfer
Term
Dynamic Host Configuration Protocol (DHCP)
 Definition
Network address configuration
Term
What is the issue of having a rogue DHCP Server?
 Definition
Allow unauthorized access, man in the middle attacks, rogue network sniffing, Denial of Service Attacks (Taking all the available IPs).
Term
DNS Spoofing
 Definition
Editing a host file to make IP addresses redirect where you want.
Term
Host File
 Definition
The first line in a DNS query, it checks for special configurations on naming IP Addresses.
Term
DNS Sect
 Definition
Security Extensions installed in the DNS Server to protect against DNS Spoofing.
Term
Typo Squatting
 Definition
A small change in a url that causes you to go to a bad website.
Term
Footprinting
 Definition
Figuring out information about a system.
Term
SNMP
 Definition
It gives administrators a management protocol to manage a switch or a router.
Term
SNMP v1 and v2 are what?
 Definition
Not secure
Term
SNMP v3 is what?
 Definition
Secure
Term
Why is timing important?
 Definition
If your timing is off, settings that are timing based and logs are completely thrown out of whack.
Term
What Port is HTTP?
 Definition
80
Term
What allows client to upload data to the server?
 Definition
Forms
Term
What are the following?:

Apache

Tomcat

IIS
 Definition
Examples of Webservers
Term
What are examples of Web Server Hardening?
 Definition
Installing a SSL Certificate

Have Logs Active

Remove All Sample Files

Use Web Server Management Tools

Place Your Webserver Somewhere Logically and Securely
Term
SSL Authentication
 Definition
Identify a host using PKI digital certificates
Term
SSL Confidentiality and Integrity
 Definition
Provide a secure connection between two hosts
Term
What are the following?:

•Client requests connection and supplies information about itself

•Server selects best available cipher strength and responds with certificate

•Client checks the certificate then performs session key exchange

•Client and server establish encrypted communications
 Definition
SSL Operation Steps
Term
SSL 1.0 and 2.0 are what?
 Definition
Not Used Anymore
Term
SSL 3.0 has what?
 Definition
Deprecated
Term
What TLS should be used?
 Definition
TLS 1.2 and up
Term
SSL Accelerator
 Definition
Offload cryptographic calculations to a dedicated processor
Term
SSL Decryptor
 Definition
Inspect / intercept encrypted traffic
Term
DLP
 Definition
Data Loss Prevention
Term
SIEM
 Definition
Log analyzer and alert system
Term
HTTP Security Gateways
 Definition
Use Keywords to filter out what can be searched on the internet.
Term
What are the following?:

oSTARTTLS - explicit TLS

oSMTPS - implicit TLS
 Definition
SMTP Security Mechanisms
Term
What are the following?:

oPort 25 - used for message relay optionally with STARTTLS

oPort 587 - used by mail clients with STARTTLS

oPort 465 - message submission over implicit TLS (SMTPS)
 Definition
SMTP Common Configurations
Term
SMTPS
 Definition
Secure Email
Term
Internet Message Access Protocol (IMAP)
 Definition
Interface a browser email client with a built-in system email client.
Term
Secure/Multipurpose Internet Mail Extensions (S/MIME)
 Definition
•Authentication and confidentiality using PKI certificates

•Correspondents must exchange and trust certificates

•Separate key pairs for signing and encryption
Term
Explicit TLS (FTPES)
 Definition
Use the AUTH TLS command to upgrade an unsecure connection established over port 21 to a secure one.
Term
Implicit TLS (FTPS)
 Definition
Negotiate an SSL / TLS tunnel before the exchange of any FTP commands (port 990 for the control connection).
Term
SSH FTP (SFTP)
 Definition
Uses Port 22 to transfer files over a client.
Term
FTPS and FTPES is for what?
 Definition
Transferring files directly from a browser.
Term
Voice over IP (VoIP)
 Definition
Web Conferencing
Term
VTC
 Definition
Video Telecommunication
Term
Unified Communications (UC) Servers
 Definition
Centralize the presence information and coordinate the communication channels.
Term
Unified Communications (UC) Gateways
 Definition
Provide interfaces between the various communications technologies.
Term
Unified Communications (UC) Devices
 Definition
Provide end user access.
Term
Media Gateway Control Protocol
 Definition
MGCP
Term
Media gateways provide what?
 Definition
An interface between the VoIP network and external voice networks.
Term
Phreakers
 Definition
Phone Hackers
Supporting users have an ad free experience!