A UDP-based protocol used to communicate with an AAA server. It does not encrypt an entire authentication packet, but only the password.
What is RADIUS (Remote Authentication Dial-In User Service).
100
This VPN protocol is currently the one of choice for providing cryptography and reliability to upper layers of the OSI model. When you securely connect to a website using HTTPS, you are probably using it.
What is TLS (Transport Layer Security).
100
The "ping of death" or an attack known as a Smurf Attack.
What is ICMP attack.
100
The same key is used by both the sender and receiver to encrypt or decrypt a packet. Examples include, DES, 3DES, and AES.
What is symmetric encryption.
100
A vulnerability scanner that scans and sweeps features that identify services running on systems in a specified range of IP addresses; it uses a stealth approach to scanning and sweeping, making it less detectable; uses OS fingerprinting technology to identify an OS running on a target system.
What is Nmap.
200
A type of NAC that can permit or deny a wireless or wired LAN client to a network. If used to permit access to a LAN, via a switch port, then it is being used for port security.
What is IEEE 802.1X.
200
This protocol lacks security features, such as encryption; however, it scan still be used for a secure VPN connection if it is combined with another protocol that does provide encryption.
What is L2TP (Layer 2 Tunneling Protocol).
200
A dedicated area of memory to which a computer can write but it attempts to write more information to this area than the area can accommodate causing the output to spill over into the memory area being used for a different program.
What is Buffer Overflow.
200
An approach used to provide integrity to data transmissions crossing a network. It is the result of a string of data that is taken and ran through an algorithm.
What is a hash.
200
A system designated to be an attractive attack target; it acts as a distracter, and can be extensively monitored to learn what an attacker is attempting to do on the system.
What is a honey pot.
300
Performs two-way authentication for a remote-access connection via handshake.
What is MS-CHAP (Microsoft Challenge-Handshake Authentication Protocol).
300
It provides cryptography and reliability for upper layers of the OSI model and provides secure web browsing via HTTPS, but it has largely been replaced.
What is SSL (Secure Socket Layer).
300
A collection of computers infected with software robots that can be controlled remotely.
What is a Botnet.
300
An electrical disturbance that causes and extended reduction in power.
What is a brownout.
300
A dedicated security appliance that has a defined set of rules to dictate which types of traffic are permitted or denied as that traffic enters or exits an interface. It can be software or hardware-based.
What is a firewall.
400
A client-server authentication protocol that supports mutual authentication between a client and a server. Uses a trusted third party (a key distribution center that hands out tickets that are used instead of a username and password combination.
What is Kerberos.
400
It is an older VPN protocol (which supported the dial-up networking feature in older versions of Microsoft Windows) and lacks native security features.
What is PPTP (point-to-point tunneling protocol).
400
A collection of small attacks that result in a larger attack when combined.
What is Salami Attack.
400
A Bluetooth vulnerability that creates unauthorized backdoor access to connect a Bluetooth device back to the attacker.
What is Bluebugging.
400
It supports secure communication between two sites over an untrusted network.
What is a VPN (virtual private network).
500
A TCP-based protocol used to communicate with an AAA server. It encrypts an entire authentication packet, rather than just the password.
What is TACACS+ (Terminal Access Controller Access-Control System Plus).
500
It is a VPN protocol with the intent of providing a tunneling protocol for PPP.
What is L2F (Layer 2 Forwarding).
500
An attacker in the direct path between a client and server, eavesdropping on the conversation.
What is a Man-in-the Middle Attack.
500
Detailed documents that provide step-by-step instructions for completing specific tasks.
What is a procedure.
500
A device that resides inline with network traffic to recognize network attacks.