Scribd Logo
Upload

Welcome to Scribd!

  • 4 views

    Final

    Uploaded by

    dreamd0a6v2i3d
    This document appears to be a final exam for a network security course. It contains 10 questions testing knowledge of key network security concepts: (1) True/false questions about ticket modification attacks, replay attacks, certificate protection, IPSec authentication, IPsec features, stateful vs packet filtering firewalls, and fragment attacks. (2) A question about how Alice and Bob can have a server compute the XOR of their private values without revealing them. (3) A question analyzing a key distribution protocol, identifying a possible attack, and suggesting how to prevent it. (4) A question discussing why ESP before AH is recommended in IPSec documentation. (5) A question listing

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Final

    Uploaded by

    dreamd0a6v2i3d
    4 views2 pages
    This document appears to be a final exam for a network security course. It contains 10 questions testing knowledge of key network security concepts: (1) True/false questions about ticket modification attacks, replay attacks, certificate protection, IPSec authentication, IPsec features, stateful vs packet filtering firewalls, and fragment attacks. (2) A question about how Alice and Bob can have a server compute the XOR of their private values without revealing them. (3) A question analyzing a key distribution protocol, identifying a possible attack, and suggesting how to prevent it. (4) A question discussing why ESP before AH is recommended in IPSec documentation. (5) A question listing

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document appears to be a final exam for a network security course. It contains 10 questions testing knowledge of key network security concepts: (1) True/false questions about ticket modification attacks, replay attacks, certificate protection, IPSec authentication, IPsec features, stateful vs packet filtering firewalls, and fragment attacks. (2) A question about how Alice and Bob can have a server compute the XOR of their private values without revealing them. (3) A question analyzing a key distribution protocol, identifying a possible attack, and suggesting how to prevent it. (4) A question discussing why ESP before AH is recommended in IPSec documentation. (5) A question listing

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    4 views2 pages

    Final

    Uploaded by

    dreamd0a6v2i3d
    This document appears to be a final exam for a network security course. It contains 10 questions testing knowledge of key network security concepts: (1) True/false questions about ticket modification attacks, replay attacks, certificate protection, IPSec authentication, IPsec features, stateful vs packet filtering firewalls, and fragment attacks. (2) A question about how Alice and Bob can have a server compute the XOR of their private values without revealing them. (3) A question analyzing a key distribution protocol, identifying a possible attack, and suggesting how to prevent it. (4) A question discussing why ESP before AH is recommended in IPSec documentation. (5) A question listing

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 2

    11210/IIS500200 Network Security

    Final
    Instructor: Prof. Amir Rezapour

    1. True or False? Explain why? (50 points)

    (a) Suppose an opponent captures an unexpired service granting ticket and modifies
    its network address to match that of the valid user. Is it correct that the opponent
    will be granted access to the corresponding service.
    (b) If the lifetime stamped on a ticket is very short (e.g., minutes) an opponent has
    a greater opportunity for replay.
    (c) User certificates generated by a CA need special efforts made by the directory
    to protect them from being forged.
    (d) In IPsec, authentication must be applied to the sections of the original IP packet.
    (e) The principal feature of IPsec is that it can encrypt and/or authenticate all traffic
    at the IP level.
    (f) A stateful packet inspection firewall reviews the same packet information as a
    packet filtering firewall but also records information about TCP connections.
    (g) Packet filter firewalls examine upper layer data therefore they can prevent attacks
    that employ application specific vulnerabilities or functions.
    (h) The change cipher spec protocol exists to signal the transition in ciphering strate-
    gies.
    (i) Transport mode in IPSec provides security to the entire IP packet.
    (j) In tint fragment attack, it is possible for an intermediate fragment to pass through
    filter before the initial fragment is rejected.

    2. Suppose Alice has a secret a and Bob has a secret b. Alice and Bob also have access to
    a secure communication channel. The goal is to let a server s compute sum = a ⊕ b.
    However, they don’t want s learn a or b. How can they achieve this. (10 points)

    3. Consider the following protocol:

    A → KDC :IDA ||IDB ||N1


    KDC → A :E(ka , [ks ||IDB ||N1 ||E(kb , [ks ||IDA ]))
    A → B :E(kb , [ks ||IDA ]) (1)
    B → A :E(ks , N2 )
    A → B :E(ks , f (N2 ))

    (a) Explain the protocol. (5 points)


    (b) Can you think of a possible attack on this protocol? Explain how it can be done.
    (5 points)

    1-1
    (c) How can we prevent this attack? just write the basics of the idea. (5 points)

    4. IPSec documentation allows combining the security associations. Discuss why is it


    recommend to perform ESP protocol before AH protocol? (10 points)

    5. What are the different types of port forwarding supported by SSH? Give an example
    for each type. (15 points)

    1-2

    You might also like