Summary questions on network security¶

The questions are randomised per student, and for these questions you will receive only correct/incorrect feedback. In Task 1, each question has exactly one correct answer.

In Task 2, at least one correct option is assigned to each student, usually more. For partially correct answers, the system gives incorrect feedback, but Task 2 is accepted when the score is 12 or more and the points are shown on a yellow background. Points only start accumulating once more than half of the selections are correct. It is not possible to directly infer from the score whether an individual choice is correct or not.

Question 1

A firewall is used in a company network. What is its purpose?

With a firewall, the company prevents hackers from entering the company’s technical facilities.

In enterprise use, a firewall effectively prevents the spread of fire between networks.

A firewall can allow/reject/block data transmission in the network based on a rule set.

A firewall prevents viruses from entering and spreading within the network.

Question 2

Tunnelling in securing data transmission

prevents outsiders from seeing the data transmission inside the tunnel.

prevents data from leaking out of the tunnel and keeps the transmission intact.

is not capable of authenticating the communicating parties.

prevents data from being transmitted outside one’s own network.

Question 3

At which layer of the TCP/IP model (at its ”upper surface”) does TLS operate and provide protection?

Link layer.

Physical layer.

Network layer.

Transport layer.

Question 4

Which two modes are defined in an IPSec implementation?

Protection mode and security mode

Packet transfer mode and encryption mode

Transport mode and tunnelling mode

Tunnel mode and compression mode

Question 5

What is the most important difference between HTTP and HTTPS when a secure connection between parties is desired?

HTTP provides it, HTTPS does not.

HTTPS provides it, HTTP does not.

HTTP traffic uses certificates, HTTPS does not.

There is no difference.

Question 6

Which of the following, in addition to the general terms defined in the CIA model, are complementary security objectives?

Prevention of damage, limitation of data leakage, investigation of incidents.

Non-forgeability, helpfulness, assurance.

Authenticity, non-repudiation, anonymity.

Infallibility, untraceability, deception.

Question 7

How does a man-in-the-middle attack (MITM) work and how is it implemented? The attacker

positions themselves between the communicating parties and monitors the traffic.

redirects the data transmission to flow in the opposite direction.

waits until one party leaves and quickly takes their place in the communication.

sends data packets in another party’s name and waits for someone to respond to the bait.

Select the correct statements. You may select one or more options.

Question 1

IDS/IPS provides companies with security without any risk or threat from network attacks.

IDS detects malicious network traffic and prevents an attacker from carrying out malicious actions in the network.

IDS/IPS requires maintained signatures of malicious network traffic to function well and correctly.

IPS enables the automation of protection measures, e.g. blocking traffic in a firewall if malicious traffic is detected.

Using an intrusion detection system improves network security to the extent that a firewall is no longer needed.

An IDS/IPS system always identifies the attacker’s identity using signatures.

Even without automation, an IDS provides protection against malicious network traffic, provided it is up to date and maintenance responds to system alerts.

After installation of an intrusion detection system, updates improve its ability to detect malicious traffic.

An IDS/IPS system requires monitoring and response to alerts by administrators so that false positives do not interfere with normal network operation.

Firewall rules prevent attack attempts on the network.

When tunnelling data transmission, other network users must be informed about the use of the tunnel.