SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CCIE Sec Encryption Ipsec
Start Test
Study First
Subjects
:
cisco
,
it-skills
,
ccie
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Drawback of this is that the hash is passed unencrypted and is susceptible to PSK crack attacks.
DES
IPSEC (aggressive mode)
IPSEC (main mode)
AH
2. Provide authentication in Internet Key Exchange (IKE) Phase 2.
HMAC
Tunnel Mode (ipsec)
Transport Mode (Ipsec)
'IPSEC (phase1 -step1)'
3. Integrity checks are done
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
4. Verify whether the data has been altered.
IKE
'DES - 3DES - or AES.'
AH
Hashing
5. Uses protocol number 51.
Difffie-Hellman
Difffie-Hellman
Hashing
AH
6. Data integrity is the process of making sure data is not tampered with while it
IPSEC (main mode)
DSA
IPSEC BENEFIT
IPSEC (main mode)
7. Used for integrity checks on peer and data sent by peer and for authentication checks.
'DES - 3DES - or AES.'
AH
RSA/DSA
SHA
8. 'It is not used for encryption or digital signatures; it is used to obtain a shared secret
IPSEC BENEFIT
Difffie-Hellman
MD5
Origin Auth (DH auth)
9. Can be implemented efficiently on a wide range of processors and in hardware.
Transport Mode (Ipsec)
AES
IPSEC BENEFIT
3DES
10. 'group 2 identifies a 1024-bit key - group 2 is more secure - but slower to execute.'
DES
IPSEC (main mode)
MD5
Difffie-Hellman
11. 'has a Next Protocol field which identifies the next Layer 4 transport protocol in use - TCP or UDP'
AH/ESP
'IPSEC (phase1 -step3)'
RSA
Tunneling
12. The DES algorithm that performs 3 times sequentially.
DES
Transport Mode (Ipsec)
'IPSEC (phase1 -step1)'
3DES
13. Main mode establishes ISAKMP security association in six messages and performs authenticated D-H exchange.
Tunnel Mode (ipsec)
IPSEC (main mode)
'IPSEC (phase1 -step3)'
Difffie-Hellman
14. RFC 2631 on the workings of the key generation/exchange process.
IKE
Difffie-Hellman
message authentication codes (MAC).
IPSEC (aggressive mode)
15. 'provides everything required to securely connect over a public media - such as the Internet.'
IPSEC
'IPSEC (phase1 -step2)'
ESP
MD5
16. 'including Internet Security Association and Key Management Protocol (ISAKMP) - Secure Key Exchange Mechanism for the Internet (SKEME) - and Oakley.'
IPSEC BENEFIT
AH/ESP
IKE
DSA
17. 'in most cases - this mode is preferred with certificates.'
AH
DES
IPSEC (main mode)
Difffie-Hellman
18. Does not provide payload encryption.
AH
RSA/DSA
AES
Asymetric Encryption Protocols
19. Negotiation of the ISAKMP policy by offering and acceptance of protection suites
IPSEC (main mode)
AES
ISAKMP
message authentication codes (MAC).
20. Origin authentication validates the origin of a message upon receipt; this process is done during initial communications.
IPSEC BENEFIT
Asymetric Encryption Protocols
Tunnel Mode (ipsec)
DSA
21. 'key exchange is vulnerable to a man-in-the-middle attack. You can rectify this problem by allowing the two parties to authenticate themselves to each other with a shared secret key - digital signatures - or public-key certificates.'
Difffie-Hellman
Antireplay
GRE
3DES
22. IPSec SAs are negotiated and protected by the existing IPsec SA.
IPSEC (phase2)
'MD5 - SHA-1 - or RSA'
3DES
3DES
23. The protocol of choice for key management and establishing security associations between peers on the Internet.
message authentication codes (MAC).
RSA/DSA
3DES
ISAKMP
24. This mode does not support identity protection or protection against clogging attacks and spoofing.
message authentication codes (MAC).
IKE
IKE
IPSEC (aggressive mode)
25. DoS attacks are more probable with this mode.
MD5
IPSEC (main mode)
IPSEC (aggressive mode)
AH/ESP
26. 'A 56-bit encryption algorithm - meaning the number of possible keys
SHA
Antireplay
IPSEC (main mode)
DES
27. The sending device encrypts for a final time with another 56-bit key.
IPSEC (main mode)
3DES
Difffie-Hellman
Antireplay
28. ' is defined in RFC 3174. has as output a 160-bit value -'
Hashing
IPSEC (aggressive mode)
SHA
IPSEC (phase2)
29. That authenticate data packets and ensure that data is not tampered with or modified.
Difffie-Hellman
RSA
hash algorithms
IKE
30. 'key lengths are 128 - 192 - or 256 bits to encrypt blocks of equal length.'
ISAKMP
AES
AH/ESP
MD5
31. Where the original Layer 3 header and payload inside an IPsec packet is encapsulated. Tunnel mode does add overhead to each packet and uses some additional CPU resources.
Tunnel Mode (ipsec)
'IPSEC (phase1 -step3)'
message authentication codes (MAC).
IKE
32. 'can be achieved using one of three methods: preshared keys - encrypted nonces - or digital signatures.'
Origin Auth (DH auth)
RSA
SHA
Difffie-Hellman
33. IPSEC performs this function by using a sequence field in the IPsec header combined with integrity checks.
IKE
hash algorithms
Antireplay
Difffie-Hellman
34. 'When using the hash-based key function -'
AES
HMAC-MD5/HMAC-SHA
IPSEC (main mode)
IPSEC (aggressive mode)
35. The receiving device decrypts the data with the third key.
ISAKMP
3DES
IKE
IPSEC BENEFIT
36. 'Created by NIST in 1994 - is the algorithm used for digital signatures but not for encryption.'
DSA
IPSEC (phase2)
IPSEC
Antireplay
37. Used in government installs and was created to work with the SHA-1 hash algorithm.
DSA
message authentication codes (MAC).
'DES - 3DES - or AES.'
Difffie-Hellman
38. No additional Layer 3 header is created. The original Layer 3 header is used.
hash algorithms
Transport Mode (Ipsec)
Difffie-Hellman
3DES
39. It uses UDP 500 and is defined by RFC 2409.
ISAKMP
DSA
IKE
AH
40. Uses protocol number 50.
MD5
ESP
'IPSEC (phase1 -step2)'
IKE
41. 'defines the mode of communication - creation - and management of security associations.'
ISAKMP
Origin Auth (DH auth)
AES
SHA
42. Negotiation of the ISAKMP policy by offering and acceptance of protection suites
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
43. A variable block- length and key-length cipher.
DES
Hashing
3DES
AES
44. 'Digital signatures. Peer X encrypts a hash value with his private key and then sends the data to Peer Y. Peer Y obtains Peer X
RSA
DSA
IPSEC
ISAKMP
45. 'group 1 identifies a 768-bit key - group 1 is faster to execute - but it is less secure -'
Difffie-Hellman
Origin Auth (DH auth)
'IPSEC (phase1 -step2)'
MD5
46. One of the most popular tunneling protocols is
Transport Mode (Ipsec)
3DES
GRE
Asymetric Encryption Protocols
47. 'is a more secure version of MD5 - and hash-based message authentication codes (HMAC) provides further security with the inclusion of a key-based hash.'
DES
SHA
Difffie-Hellman
MD5
48. Invented by Ron Rivest of RSA Security (RFC 1321).
MD5
AH
IPSEC (aggressive mode)
RSA
49. Main disadvantage of asymmetric algorithms is that they are slow.
Difffie-Hellman
IPSEC (aggressive mode)
Tunneling
RSA/DSA
50. ID exchange and authentication of D-H key by using the reply to the received nonce or string of bits
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests