Explore topic-wise InterviewSolutions in .

The correct CHOICE is (C) CBC

The best explanation: The cipher BLOCK CHAINING mode is the recommended mode of OPERATION in the SSH Transport layer.

The correct option is (c) 255.255.255.255

Easiest explanation: Broadcast address is given by 255.255.255.255. This address is the last address in the range of addresses, and is the address whose HOST portion is SET to all ONES.

Right OPTION is (d) 14.24.74.192/28

To EXPLAIN: FIRST address = 14.24.74.192/28

First address = (any address) AND (NETWORK mask).

Right answer is (b) 14.24.74.128/26

The BEST EXPLANATION: First ADDRESS = 14.24.74.128/26

First address = (any address) AND (network MASK).

Correct answer is (a) 16

Explanation: The number of addresses in the THIRD SUBBLOCK (10) is not a POWER of 2.

Thus, we allocate Nsub3 = 16 addresses.

Correct OPTION is (c) 32

To EXPLAIN: HLEN = 1000 = 8.

8 x 4 = 32 bytes.

Right CHOICE is (c) It specifies how MANY bytes of CHANNEL data can be sent

Best EXPLANATION: The ‘innitial window size’ specifies how many bytes of channel data can be sent.

Right answer is (c) IP

Easy EXPLANATION: The IP is the LOWEST LEVEL in SSH the protocol stack.

Correct option is (C) initialization vector

The BEST I can explain: The PRF does not require an initialization vector.

Right answer is (b) 4

Easy explanation: The first 4-bits SHOW the VERSION i.e. 0100 -> version 4.

The correct option is (d) Server WRITE Key

For explanation: Session state is defined by the following PARAMETERS – Session IDENTIFIER, PEER CERTIFICATE, Compression method, Cipher spec, Master secret, Is resumable. Server Write Key falls under Connection State.

Correct CHOICE is (a) 32 bits

The EXPLANATION: The SEQ# is 32 bits.

The CORRECT ANSWER is (c) 16384

For EXPLANATION: TOTAL addresses: 64×256 = 16384.

The correct CHOICE is (c) Uniform RESOURCE LOCATOR

The EXPLANATION: URL STANDS for Uniform Resource Locator.

The CORRECT choice is (c) 36 bytes

Easiest EXPLANATION: The size is 36 bytes after MD5 and SHA-1 PROCESSING.

Right OPTION is (d) is the BYTE 0x36 repeated 48 times for MD5

For EXPLANATION: pad_1 = is the byte 0x36 repeated 48 times for MD5.

Right choice is (B) is the BYTE 0X5C repeated 48 times for MD5

Easy EXPLANATION: pad_2 = is the byte 0x5C repeated 48 times for MD5.

Correct OPTION is (a) 190.100.0.0/24

Easiest EXPLANATION: Find the IP ADDRESS using basic NETWORKING concepts.

The CORRECT choice is (c) 14.24.74.255/24

The best I can explain: LAST Address = 14.24.74.255/24

Last address = (any address) OR [NOT (NETWORK MASK)].

Correct ANSWER is (b) 2^16

The best I can EXPLAIN: Since 180 is between 128 and 191, it is CLASS B ADDRESS n=16.

N = 2^(32-n) = 2^16 = 65,536.

The CORRECT choice is (a) There should be no LEADING ZEROS

For EXPLANATION I WOULD say: There should be no leading zeros.

Correct choice is (d) certificate_type

To explain I would say: The certificate_request massage INCLUDES TWO parameters : certificate_type and certificate_authorities.

The correct option is (B) 2^24

To explain: Each block in CLASS A CONTAINS 2^24 ADDRESSES.

Right ANSWER is (d) 2^16

Explanation: Each BLOCK in CLASS B CONTAINS 2^16 ADDRESSES.

Right answer is (B) CLIENT FINISHED for the client, server finished for the server

Easiest explanation: The finished_label is the string client finished for the client, server finished for the server.

Correct answer is (d) Any of the mentioned

For explanation I would say: We can use either of the following for the CipherSuite KEY exchange-

i) RSA

ii) Fixed Diffie-Hellman

iii) Ephemeral Diffie-Hellman

iv) ANONYMOUS Diffie-Hellman

v) FORTEZZA.

The CORRECT CHOICE is (d) CHANGE Cipher Spec PROTOCOL

Explanation: The Change Cipher Spec Protocol is used for this action.

The CORRECT choice is (c) 25

The explanation: 128 customers, each needs 128 addresses

Suffix LENGTH = 7 (2^7=128)

Prefix length = 32-7= 25.

Correct CHOICE is (a) 180.8.255.255.

Explanation: KEEP the leftmost 16 BITS and set the rightmost 16 bits all to 1s. Last ADDRESS = 180.8.255.255.

Correct choice is (a) 180.8.0.0

For explanation I WOULD say: KEEP the leftmost 16 bits and SET the rightmost 16 bits all to 0S. First address = 180.8.0.0, in which 16 is the VALUE of n.

Right ANSWER is (a) 01101111 00111000 00101101 01001110

Easy explanation: Replacing each decimal NUMBER with its BINARY equivalent we GET 01101111 00111000 00101101 01001110.

The correct choice is (b) 51

For explanation I would say: SSH_MSG_USERAUTH_FALIURE is REPRESENTED by 51. This happens in cases when the SERVER (1) either rejects the AUTHENTICATION request or (2) accepts the request but REQUIRES one or more additional authentication methods.

Right OPTION is (d) HASH(K||H||”D”||session_id)

To EXPLAIN I would say: The INITIALIZATION Vector from the server to client is given by HASH(K||H||”D”||session_id).

Correct CHOICE is (a) HASH(K||H||”E”||session_id)

The explanation is: The INITIALIZATION VECTOR from the CLIENT to server is GIVEN by HASH(K||H||”E”||session_id).

The correct answer is (b) COMPRESSION; PADDING and ADDITION of seq bits; Encryption

For EXPLANATION: The correct order of operation is – Compression; Padding and Addition of seq bits; Encryption.