Test your basic knowledge |

CISSP Telecom And Network Security

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Protocol that is used by remote users to authenticate over PPP lines. Sends passwords over clear text. Vulnerable to MITM attacks.






2. Type of firewall that looks at header information to make decisions on whether a packet is deemed acceptable. This type does not look as deep within the packet as an application level proxy - runs at the session layer.






3. Malware attack that sends commands inside of an ICMP packet.






4. Type of wireless authentication where a shared WEP key is used to encrypt a nonce for authentication.






5. Uses tunneling protocols and encryption to provide a secure network connection between two network hosts. Private and secure connections can be made across an unsecured network. Example protocols are PPTP - L2TP - and IPSec.






6. Spam over IM






7. Type of authentication protocol that provides a framework to enable may types of authentication techniques to be used during PPP connections. It extends the possibilities to one-time passwords - token cards - biometrics - Kerberos - and digital certi






8. Transmits high speed bandwidth over phone lines. Provides data rates up to 52 Mpbs using line of 1000 feet or less. Must be within 2.5 miles of a central office.






9. The well known values range from 0-1023. FTP runs on 20 and 21 - SMTP runs on 25 - TFTP runs on 69 - DNS runs on 53 - HTTP runs on 80 - HTTPS runs on 443 - SNMP runs on 161.






10. These are used to connect multiple switches for traffic of the same classification. Example - two voice switches at a local phone company's central office.






11. An older protocol that was used by ISP's to encapsulate data to be sent over dial up connections






12. Type of topology where computers all are connected to each other - which provides redundancy.






13. Wireless communication that distributes individual signals across the allocated frequencies.






14. Protocol that addresses vulnerabilities found in PAP. Uses challenge/response mechanism to authenticate the user instead of sending password.






15. Type of firewall that keeps track of each communication session. It must maintain a state table that contains data about each connection. 3rd generation firewall - runs at the network layer.






16. OSI layer that sets up - maintains - and breaks down the dialog (session) between two applications. Controls dialog organization and synchronization. Protocols that work at this layer are NFS (Network File System) - SQL - NetBIOS - RPC.






17. Type of network layout that is a large geographical region connecting more that one LAN.






18. Type of network device that divides networks into more controllable segments to ensure more efficient use of bandwidth. Works at the data link layer and understands MAC addresses - not IP addresses.






19. Most expensive type of WAN connection because the fee is based on distance between the two points rather than the amount of bandwidth used. Examples - T1 and T3.






20. Problems: If one station experiences a problem - it can negatively affect surrounding computers on the same ring.






21. Used when companies do not want systems to know internal hosts IP addresses. Enables companies to use private - nonroutable IP addresses.






22. Protocol stack used instead of TCP/IP on wireless devices. The "gap" in this protocol involves translating its secure traffic to SSL or TLS - which is typically done by a 3rd party.






23. A technique that allows multiple layers of nesting. Example - IPSec tunnel can originate or terminate at a different IPSec site along the way.






24. Protocol that resolves host names into IP addresses and has distributed databases all over the Internet to provide name resolution.






25. This network technology determines which system will send data based on which one has the token.






26. The process of simulating a 2600Hz frequency tone - which allowed attackers to gain free long distance phone service.






27. Type of network device that is the simplest type of connectivity because it only repeats and amplifies electric signals between cable segments. Works at the physical layer.






28. Type of wireless authentication where the device does not need to provide a key for authentication. Usually - only the SSID is required and plaintext transmission occurs.






29. Wireless LAN standard. Variations include 802.11a - b - f - g - and i. Commonly accepts are 802.11b and g.






30. Identifys a WLAN. Can be used to segment environments into different WLANS.






31. Problems: Central device is a single point of failure.






32. Protocol for allowing multi-cast (one to many) communication






33. OSI layer that provides end to end transmission between computer systems. Protocols that use this layer are TCP (Transmission Control Protocol) - UDP (User Datagram Protocol) - SPX (Sequenced Packet Exchange) - and SSL.






34. Type of LAN and MAN technology - usually used for backbones - that uses token-passing technology and has redundant rings in case the primary ring goes down.






35. New variant to traditional email spam on VoIP networks.






36. Type of ethernet implementation that uses a thicker coaxial cable - which allows a longer cable length to be used.






37. Set of rules that dictates how computer communicate over networks.






38. In the OSI layer 5 - these are the types of what?






39. Communication process that must deliver data with set time constraints. Applications are typically video related where audio and must match perfectly. VoIP is another example.






40. Problems: Requires more expense in cabling and extra effort to track down cable faults.






41. Type of cable where STP and UTP (shielded and unshielded) cables are the most popular - cheapest - and easiest to work with. However - easiest to tap into - have cross talk issues - and are vulnerable to electromagnetic interference (EMI).






42. 7: Application - 6: Presentation - 5: Session - 4: Transport - 3: Network - 2: Data Link - 1: Physical - Remember 'All People Seem To Need Data Processing'






43. More complexity and drastically increases the difficultly of access control. Many different devices - services - and users make it difficult to know which entities to trust and to what degree.






44. Both directions - only one application can send information at a time






45. Network where a dedicated virtual link is not set up - and packets can use many different dynamic paths to get to the same destination. This causes variable delays. Examples are frame relay and X.25






46. Server that can be configured to hang up and call back remote users - but this can be compromise by enabling call forwarding.






47. A WAN protocol that works at the data link layer and performs packet switching. Economical choice because the fee is based on bandwidth usage rather than a dedicated pipeline.






48. Type of network layout that separates and group computers logically.






49. Application layer request/response protocol widely used for VoIP communication sessions. Transported by UDP - makes use of TCP - and is vulnerable to sniffing attacks.






50. Standard that addresses wireless MAN technologies.