User Account

All Pages

What is the relationship between a vpn and an extranet

Assignment Help Computer Engineering
Reference no: EM131965417

Assignment

Part 1: Multiple Choice Questions. Unless specified otherwise all multiple choice questions have only one correct answer. Each question is worth 5 points.

PROBLEM 1 - IPSec and VPN

a) Select the term that refers to the data recipient's ability to ensure that the data was not altered in any fashion as the data was sent across the VPN:

A) Encryption.
B) Integrity.
C) Authentication.
D) Tunneling.

b) Tunneling is a technique in which the IP datagram is first _______ and then _______.

A) Encapsulated in another datagram; encrypted.
B) Encrypted; encapsulated in another datagram.
C) Authenticated; encrypted.
D) Encrypted; authenticated.

c) What is the relationship between a VPN and an extranet? Explain.

A) Some extranets are VPNs; some VPNs are extranets.
B) Some extranets are VPNs; all VPNs are extranets.
C) VPNs and extranets are the same type of network.
D) VPNs are unrelated to extranets.

d) Which one is the best approach to VPNs? Explain.

A) VPN-specific gateway device.
B) Router-based.
C) Firewall-based.
D) Software only.
E) All of the above.

PROBLEM 2 - Wireless Network Security

a) What is the protocol developed for the wireless network communications? Explain.

A) Wireless Encryption Protocol (WEP)
B) Wireless Application Protocol (WAP)
C) Wired Equivalent Privacy (WEP)
D) Wireless Session Protocol (WSP)

b) Consider 802.11 shared key authentication. Which of the following statements is false? Explain.

A) If a device with the key is lost then the security for the entire WLAN is compromised.
B) 802.1X requires shared key authentication.
C) Real users and attackers with a shared WEP key have the same rights.
D) Users cannot determine whether the access point is an imposter.
c) The term used for certified 802.11b products is ___________ .

A) WAP
B) Wi-Fi
C) WiMAX
D) WPA

d) Which of the following is not a reason why WEP may be considered vulnerable? Explain. (Select all that apply.)

A) Shared WEP keys among all clients
B) 20-bit initialization vector
C) An RC4 engine not properly initialized
D) 48-bit WEP key

PROBLEM 3 - Firewalls

a) What governs the type of traffic that is and is not allowed through a firewall? Explain.

A) TCP/IP headers.
B) Gateway.
C) Rule base.
D) Access control list.
E) Network protocol in use.

b) Firewalls can be implemented in different ways. Consider a dedicated firewall device. What is its major advantage when the target is throughput and security? Explain.

A) The management console is easily installed.
B) The device contains proprietary operating systems.
C) The connection to the device is monitored by security personnel.
D) A thorough packet inspection capability.
E) The hackers know most router-based firewall code.

c) Choose the best answer from the following options about the description of a firewall:

A) Firewalls statefully inspect reply packets to determine whether they match the expected state of a connection in the state table.
B) Firewalls statically inspect packets in both directions and filter on layer 3and layer 4 information.
C) A firewall is any device that blocks access to a protected network.
D) A firewall is a system or a group of systems that enforce an access control policy between two networks.
E) None of the above

d) For a stateful packet-inspection firewall, which information is stored in the connection flow table?

A) TCP control header and trailer information associated with a particular session.
B) Inside private IP address and the translated inside global IP address.
C) Outbound and inbound access rules (ACL entries).
D) Source and destination IP addresses, and port numbers and sequencing information associated with a particular session.
E) TCP SYN packets and the associated return ACK packets.

PROBLEM 4 - Web and Transport Layer Security

a) Which of the following are not methods for minimizing a threat to a Web server? Indicate the two best answers from the following list, and explain your choice:

A) Disable all non-Web services.
B) Ensure telnet is running.
C) Disable nonessential services.
D) Enable logging.

b) SSL is used to

A) Encrypt specific elements of data for application-specific purposes.
B) Encrypt files located on a Web server.
C) Encrypt data as it travels over a network.
D) Encrypt digital certificates used to authenticate a Web site.
E) Encrypt passwords for storage in a database.

c) What kind of attacks does SSL prevent? Select the best answer. Explain.

A) SQL Injection.
B) Sniffing.
C) Variable Manipulation.
D) Phishing Attacks.

d) _________ provides secure, remote logon and other secure client/server facilities.

A) SLP
B) HTTPS
C) TLS
D) SSH

Part 2: Short Answers. Please answer briefly and completely, and you must cite all sources of information.

1. Suppose you suspect that your session with a server has been intercepted in a man-in-the-middle attack. You have a key, K, that you think you share with the server, but you might be only sharing it with an attacker. But the server also has a public key, Kp, which is widely known, and a private secret key, Ks, that goes with it. Describe how you can either confirm you share K with the server or discover that you share it only with a man-in-the-middle. Also, be sure your solution will not be discovered by a packet sniffer.

2. A common management requirement is that "all external Web traffic must flow via the organization's Web's proxy." However, that requirement is easier stated than implemented. Discuss the various problems and issues, possible solutions, and limitations with supporting this requirement. In particular, consider issues such as identifying exactly what constitutes "Web traffic" and how it may be monitored, given the large range of ports and various protocols used by Web browsers and servers.

Reference no: EM131965417

Questions Cloud

Compute the current price of the bond : Katie Pairy Fruits Inc. has a $3,400, 13-year bond outstanding with a nominal yield of 15 percent (coupon equals 15% × $3,400 = $510 per year).
Compare and contrast standard computer machines : Compare and contrast standard computer machines and gaming (video games) computers.
Discuss the advantages and disadvantages of the use : Discuss the advantages and disadvantages of the use of mobile devices for business operations.
Prepare incremental cost analysis : Instead of manufacturing and selling this product, the company can purchase Product B for $5.00 per unit and sell it for $12.00 per unit.
What is the relationship between a vpn and an extranet : What is the relationship between a VPN and an extranet? Explain. What is the protocol developed for the wireless network communications? Explain.
What is the nominal rate of interest convertible monthly : David makes a sequence of 35 monthly deposits of $515 each into an account paying interest convertible monthly. Immediately after making the 35th deposit.
Calculate the after-tax cost of the sony bond : David Abbot is interested in purchasing a bond issued by Sony. He has obtained the following information on the security.
Calculate the percentage changes in roe for expansion : Calculate return on equity, ROE, under each of the three economic scenarios before any debt is issued.
Find a description of moore law : Do research on the Web to find a description of Moore's Law. What are the implications of this law? Are there any practical limitations to Moore's Law?

Reviews

Write a Review

Computer Engineering Questions & Answers

  Mathematics in computing

Binary search tree, and postorder and preorder traversal Determine the shortest path in Graph

  Ict governance

ICT is defined as the term of Information and communication technologies, it is diverse set of technical tools and resources used by the government agencies to communicate and produce, circulate, store, and manage all information.

  Implementation of memory management

Assignment covers the following eight topics and explore the implementation of memory management, processes and threads.

  Realize business and organizational data storage

Realize business and organizational data storage and fast access times are much more important than they have ever been. Compare and contrast magnetic tapes, magnetic disks, optical discs

  What is the protocol overhead

What are the advantages of using a compiled language over an interpreted one? Under what circumstances would you select to use an interpreted language?

  Implementation of memory management

Paper describes about memory management. How memory is used in executing programs and its critical support for applications.

  Define open and closed loop control systems

Define open and closed loop cotrol systems.Explain difference between time varying and time invariant control system wth suitable example.

  Prepare a proposal to deploy windows server

Prepare a proposal to deploy Windows Server onto an existing network based on the provided scenario.

  Security policy document project

Analyze security requirements and develop a security policy

  Write a procedure that produces independent stack objects

Write a procedure (make-stack) that produces independent stack objects, using a message-passing style, e.g.

  Define a suitable functional unit

Define a suitable functional unit for a comparative study between two different types of paint.

  Calculate yield to maturity and bond prices

Calculate yield to maturity (YTM) and bond prices

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd