Question

Network Security Class Questions

1. Which statement best describe the term “Network Enumeration”? (NOT SURE)

1. Network Enumeration means by hackers scout target leverage techniques over the phone to make the target reveal critical information such as SSN, credit information
2. Network Enumeration means “case the joint” this is another form of intelligence gathering
3. Enumeration identifies and poorly protected resource shares are exploited to gain access
4. Network Enumeration describe the motivation of a hacker and the level of ingenuity of the hackers
5. All of the above

2. Choose the best combination that describes six security design concepts an organization should consider from a security technologies perspective to secure their networks?

1. Layers security, controlling access, role-specific security, user awareness, monitoring, and keeping systems patched.
2. Single point of defense, limited control on devices, individual user id based security policy, limited user knowledge regarding security, limited monitor on servers and limited implementation of patches.
3. Single perimeter of defense, very limited role based security setup, only monitoring of servers, limited operating system patch implementation, keep user community isolated form security flaws, single point of contact of security breaches and limited restriction on ports at workgroup router.
4. All of the above

3. What would be the deciding factors that an organization may choose to implement Layer 2 Tunneling Protocol (L2TP) versus Point-to-Point Tunneling Protocol (PPTP)?

1. Since L2TP secures utilizing IPsec transport, IPsec Encapsulating Security Payload (ESP) protects UDP payload to ensure secure communication.
2. L2TP requires the same user-level authentication, as well as computer-level authentication through a computer certificate.
3. Due to the implementation of IPsec in L2TP, it provide data integrity proof and data confidentiality.
4. L2TP connection provides per packet authentication, and protection for control and data packets.
5. All of the above.

Answer 1

Answer)

1) b) This is another form of intelligence gathering as it helps in collecting information about the username and information about the groups, shares, services, as well as the networked computers.

2) a) Layers security, controlling access, role-specific security, user awareness, monitoring, auditing and finally keeping the systems patched.

The monitoring and auditing are a more important aspect of the security

3) All of the above as the L2TP is used for the same user-level authentication as well as the computer level authentication via the computer certificate, it also leads to providing the data integrity and confidentiality, and also has a packet authentication for protection and control of the data packets.

If you found the answer useful, hit like
Hope this answer helps.
Thanks