FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 20: Ip Security

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 1

Multiple Choice

Review LaterAdd Note

Review Later

The key management mechanism that is used to distribute keys is coupled to the authentication and privacy mechanisms only by way of the _________ .

A) IAB
B) SPI
C) ESP
D) SPD

E) C) and D)
F) B) and C)

Correct Answer

verified

Show Answer

Question 2

True/False

Review LaterAdd Note

Review Later

An end user whose system is equipped with IP security protocols can make a local call to an ISP and gain secure access to a company network.

A) True
B) False

Correct Answer

verified

Show Answer

Question 3

Multiple Choice

Review LaterAdd Note

The __________ mechanism assures that a received packet was in fact transmitted by the party identified as the source in the packet header and assures that the packet has not been altered in transit.

At any point in an IKE exchange the sender may include a _________ payload to request the certificate of the other communicating entity.

A security association is uniquely identified by three parameters: Security Protocol Identifier,IP Destination Address,and ________ .

Generic in that it does not dictate specific formats,the _________ is a key exchange protocol based on the Diffie-Hellman algorithm with added security.

_________ consists of an encapsulating header and trailer used to provide encryption or combined encryption/authentication.The current specification is RFC 4303.

Any traffic from the local host to a remote host for purposes of an IKE exchange bypasses the IPsec processing.

Authentication must be applied to the entire original IP packet.

Transport mode provides protection to the entire IP packet.

The _________ facility enables communicating nodes to encrypt messages to prevent eavesdropping by third parties.

The __________ facility is concerned with the secure exchange of keys.

The term _________ refers to a sequence of SAs through which traffic must be processed to provide a desired set of IPsec services.

Additional padding may be added to provide partial traffic flow confidentiality by concealing the actual length of the payload.

An individual SA can implement both the AH and the ESP protocol.

_________ mode is used when one or both ends of an SA are a security gateway, such as a firewall or router that implements IPsec.

The principal feature of IPsec is that it can encrypt and/or authenticate all traffic at the IP level.

The Security Parameters Index identifies a security association.

IPsec is executed on a packet-by-packet basis.

A _________ is a one way relationship between a sender and a receiver that affords security services to the traffic carried on it.