SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CCIE Sec Encryption Ipsec
Start Test
Study First
Subjects
:
cisco
,
it-skills
,
ccie
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. 'Developed in 1977 by Ronald Rivest - Adi Shamir - and Leonard Adleman (therefore - RSA).'
AH/ESP
AH/ESP
RSA
IPSEC (phase2)
2. You use this encryption method by keeping one key private and giving the other key to anyone in the public Internet. It does not matter who has your public key; it is useless without the private key.
RSA/DSA
Hashing
Asymetric Encryption Protocols
ESP
3. 'Digital signatures. Peer X encrypts a hash value with his private key and then sends the data to Peer Y. Peer Y obtains Peer X
RSA
ISAKMP
IPSEC BENEFIT
DSA
4. 'algorithm encrypts and decrypts data three times with 3 different keys - effectively creating a 168-bit key.'
3DES
IPSEC (main mode)
IPSEC
IKE
5. It uses UDP 500 and is defined by RFC 2409.
IKE
SHA
RSA
IPSEC (aggressive mode)
6. 'group 1 identifies a 768-bit key - group 1 is faster to execute - but it is less secure -'
RSA
3DES
Difffie-Hellman
Hashing
7. Used in IPsec for two discreet purposes:
'IPSEC (phase1 -step2)'
RSA
AH/ESP
ESP
8. Provide authentication in Internet Key Exchange (IKE) Phase 2.
HMAC
RSA/DSA
Origin Auth (DH auth)
AH/ESP
9. The sending device encrypts for a final time with another 56-bit key.
AES
SHA
MD5
3DES
10. Main mode establishes ISAKMP security association in six messages and performs authenticated D-H exchange.
Hashing
IPSEC (main mode)
IKE
Origin Auth (DH auth)
11. Drawback of this is that the hash is passed unencrypted and is susceptible to PSK crack attacks.
IKE
IPSEC (aggressive mode)
message authentication codes (MAC).
3DES
12. The receiving device then encrypts the data with the second key.
IPSEC (aggressive mode)
MD5
MD5
3DES
13. 'The sending device decrypts the data with the second key - which is also 56 bits in length.'
Antireplay
DES
3DES
Hashing
14. Act of encapsulating a packet within another packet.
AH/ESP
Antireplay
DES
Tunneling
15. 'defines the mode of communication - creation - and management of security associations.'
RSA
AH
RSA
ISAKMP
16. More CPU intensive
DES
'DES - 3DES - or AES.'
RSA
SHA
17. 'in most cases - this mode is preferred with certificates.'
HMAC-MD5/HMAC-SHA
IKE
AH/ESP
IPSEC (main mode)
18. That authenticate data packets and ensure that data is not tampered with or modified.
hash algorithms
IPSEC (phase2)
DES
IKE
19. A
Hashing
Difffie-Hellman
AH/ESP
Difffie-Hellman
20. No additional Layer 3 header is created. The original Layer 3 header is used.
Transport Mode (Ipsec)
SHA
HMAC
Asymetric Encryption Protocols
21. Main disadvantage of asymmetric algorithms is that they are slow.
Antireplay
MD5
ESP
RSA/DSA
22. 'provides everything required to securely connect over a public media - such as the Internet.'
RSA/DSA
IPSEC
Asymetric Encryption Protocols
3DES
23. 'key exchange is vulnerable to a man-in-the-middle attack. You can rectify this problem by allowing the two parties to authenticate themselves to each other with a shared secret key - digital signatures - or public-key certificates.'
Origin Auth (DH auth)
RSA
Difffie-Hellman
DSA
24. 'Three keys encrypt the data - which results in a 168-bit encryption key. The sending device encrypts the data with the first 56-bit key.'
Hashing
SHA
AH/ESP
3DES
25. Negotiation of a shared secret key for encryption of the IKE session using the D-H algorithm
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
26. Uses protocol number 51.
hash algorithms
Tunnel Mode (ipsec)
AH
3DES
27. Has a trailer which identifies IPsec information and ESP integrity-check information.
Hashing
Tunnel Mode (ipsec)
ESP
AH
28. Can be implemented efficiently on a wide range of processors and in hardware.
IPSEC BENEFIT
3DES
MD5
AES
29. Takes variable-length clear-text data to produce fixed-length hashed data that is unreadable.
IPSEC (phase2)
MD5
IKE
DSA
30. Turns clear-text data into cipher text with an encryption algorithm. The receiving station decrypts the data from cipher text into clear text. The encryption key is a shared secret key that encrypts and decrypts messages.
Hashing
Hashing
DES
Antireplay
31. The DES algorithm that performs 3 times sequentially.
3DES
AH/ESP
SHA
IKE
32. Origin authentication validates the origin of a message upon receipt; this process is done during initial communications.
Asymetric Encryption Protocols
AH
IPSEC BENEFIT
Difffie-Hellman
33. IPSEC Encryption is performed by
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
34. ID exchange and authentication of D-H key by using the reply to the received nonce or string of bits
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
35. 'requires that the sender and receiver have key pairs. By combining the sender
DES
Difffie-Hellman
'IPSEC (phase1 -step3)'
SHA
36. The protocol of choice for key management and establishing security associations between peers on the Internet.
AH
ISAKMP
IPSEC (aggressive mode)
AES
37. Integrity checks are done
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
38. Where the original Layer 3 header and payload inside an IPsec packet is encapsulated. Tunnel mode does add overhead to each packet and uses some additional CPU resources.
Tunnel Mode (ipsec)
message authentication codes (MAC).
DES
Hashing
39. Used in government installs and was created to work with the SHA-1 hash algorithm.
HMAC
DSA
IPSEC (aggressive mode)
Asymetric Encryption Protocols
40. Common key size is 1024 bits.
RSA
Transport Mode (Ipsec)
AES
IPSEC (main mode)
41. 'Created by NIST in 1994 - is the algorithm used for digital signatures but not for encryption.'
ISAKMP
DSA
3DES
Hashing
42. IPSEC performs this function by using a sequence field in the IPsec header combined with integrity checks.
IPSEC BENEFIT
Origin Auth (DH auth)
DSA
Antireplay
43. 'The messages are authenticated - and the mechanisms that provide such integrity checks based on a secret key are usually called'
Difffie-Hellman
AES
message authentication codes (MAC).
3DES
44. Verify whether the data has been altered.
ESP
Hashing
IKE
'IPSEC (phase1 -step3)'
45. Hybrid protocol that defines the mechanism to derive authenticated keying material and negotiation of security associations (SA).
IKE
Difffie-Hellman
IPSEC (main mode)
AES
46. 'is a block-cipher algorithm - which means that it performs operations on fixed-length data streams of 64-bit blocks. The key ostensibly consists of 64 bits; however - only 56 are actually used by the algorithm.'
ESP
'IPSEC (phase1 -step1)'
DES
IKE
47. 'Message digest algorithms have a drawback whereby a hacker (man in the middle) can intercept a message containing the packet and hash values - then re-create and transmit a modified packet with the same calculated hash to the target destination.'
RSA
3DES
Hashing
IPSEC (aggressive mode)
48. IPsec implements using a shim header between L2 and L3
Difffie-Hellman
AH/ESP
Asymetric Encryption Protocols
SHA
49. A variable block- length and key-length cipher.
'IPSEC (phase1 -step2)'
AES
Transport Mode (Ipsec)
DSA
50. Used for integrity checks on peer and data sent by peer and for authentication checks.
'MD5 - SHA-1 - or RSA'
RSA
AH
3DES
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests