Network Security — Winter 2018

Do as directed (any 7): 1. What is Information Security, Computer Security, Intranet Security & Internet Security? 2. Two types of attack are _________ and ______. 3. Nonce is _________. 4. Three classes of intruders are ______, ______ & ______. 5. Firewalls are classified into ________________. 6. X/MIME stands for _____________ 7. The number of key(s) used in Asymmetric Cryptography is/are ____. 8. Phil Zimmermann is the founder of ____________. 9. KDC is responsible for ____________. 10. What is clear signed data in S/MIME? 11. IP address spoofing means _____________. 12. Use of subject field in X.509 certificate.

Differentiate between (any 2): 1. Active attack & Passive attack 2. Security service & Security mechanism 3. SSL and TLS

Discuss RC4 algorithm in detail.

Discuss RSA Public-Key Encryption with a suitable example.

(i) What is Elliptic Curve Cryptography (ECC)? (ii) What is a Digital Signature? (iii) Explain benefits of IPSec.

Discuss Kerberos in detail. Write any 3 differences between version 4 and 5.

Discuss Diffie-Hellman key exchange algorithm in detail with suitable example.

Discuss SSL architecture. Also draw and explain the SSL Record Protocol.

Discuss in detail Public Key Infrastructure architecture (PKIX) with diagram.

Discuss IEEE 802.11i Services.

What is Pretty Good Privacy (PGP)? Discuss its services in detail.

What is ESP (Encapsulating Security Payload)? Discuss ESP packet format in detail with diagram.

Explain the X.509 certificate in detail with suitable diagram.

Discuss WAP infrastructure.

What do you mean by a Firewall? How it protects a machine/network? Discuss any one type of firewall and explain its configuration.

Short notes on: 1. Statistical Anomaly Detection 2. Honeypots 3. CIA Triad 4. Design & parameters of HMAC 5. Block & Stream Ciphers 6. Anti-replay window in IPSec 7. Heuristic rules for intrusion detection.

Discuss IPsec Association Database and IPsec Policy database in detail with suitable diagram.