Explore topic-wise InterviewSolutions in .

Correct answer is (d) HTTP

To elaborate: Internet Control MESSAGE Protocol (ICMP), Internet Protocol (IP) and Internet Group Management Protocol (IGMP) are used in the network LAYER. HTTP is used in APPLICATION layer of TCP/IP model.

Correct option is (B) DNS

The EXPLANATION: DNS protocol attack is DONE in the APPLICATION layer of the TCP/IP model which allows attackers to modify DNS records in order to misdirect user traffic and land them in some malicious or spoofed address.

The correct option is (B) TCP and UDP

Easiest EXPLANATION: The transport layer can VOLUNTARILY declare the consistency of communications.Transmission Control Protocol (TCP) & User Datagram Protocol (UDP) are the most common transport layer protocols.

The CORRECT answer is (a) SYN flooding attack

The best I can explain: SYN flooding attack is an attack TECHNIQUE where numerous SYN packets are spoofed with a bogus source address which is then sent to an inundated server. The SYN & ACK SEGMENTS NEED to begin in a TCP connection.

Right choice is (d) Shoulder surfing

Explanation: MITM, Denial of Service (DoS), and spoofing attacks are possible in the network layer of the TCP/IP model. It is important to secure the network layer as it is the only means to MAKE CERTAIN that your APPLICATION is not GETTING FLOODED with attacks.

The correct choice is (C) Routing PROTOCOL needs to be programmed by security experts

The explanation is: Unused ports should be BLOCKED, Unused interfaces and services should be DISABLED, and Packet filtering needs to be enabled are some of the security measures that need to be taken for the ROUTERS.

Right option is (B) TCP Blind SPOOFING

The best explanation: TCP Blind Spoofing is an attack where the attacker is ABLE to guess TOGETHER with the sequence number of an in progress COMMUNICATION session & the port number.

Correct choice is (d) Return of Bleichenbacher’s ORACLE THREAT

To explain I would say: Return of Bleichenbacher’s Oracle Threat is a transport layer vulnerability that ALLOWS an ATTACKER to get hold of the RSA key essential to decrypt TLS traffic below CERTAIN conditions.

Correct choice is (a) True

Best explanation: Return of Bleichenbacher’s Oracle THREAT is a transport layer vulnerability that ALLOWS an attacker to GET hold of the RSA key essential to decrypt TLS traffic below certain conditions.

The correct choice is (a) address, name

For explanation: Connection AUTHENTICATION is OFFERED for ensuring that the remote HOST has the likely Internet PROTOCOL (IP)’s address & name. This AVOIDS a remote host to masquerade as an added remote host.

Right choice is (a) True

The best I can explain: APPLICATION layer sends & receives data for particular APPLICATIONS using HyperText Transfer Protocol (HTTP), and SIMPLE Mail Transfer Protocol (SMTP). Hence, data encryption for HTTP and SMTP is IMPORTANT.

The correct answer is (C) tcpexec

Easy explanation: Trusted TCP/IP commands such as ftp, rexec and TELNET have the same needs & go through the identical verification PROCESS. INTERNET & TCP/IP are often implemented SYNONYMOUSLY.

Correct choice is (a) True

Best explanation: TCP/IP is EXTENSIVELY used model for the WORLD Wide WEB for providing network communications which are composed of 4 layers that work together. Each layer is composed of header and payload.

Right option is (c) 4

For explanation: TCP/IP is EXTENSIVELY USED model for the World Wide Web for providing network COMMUNICATIONS which are composed of 4 layers that work together. Each LAYER is composed of HEADER and payload.

The correct answer is (b) Very complex application security controls

Easiest explanation: Very complex application security controls can be an example of application layer vulnerability. Inadequate security controls, as WELL as LOGICAL bugs in PROGRAMS, are some other examples of such TYPE.

Right choice is (d) poor handling of unexpected input

For explanation: Poor handling of unexpected input is an EXAMPLE of presentation LAYER VULNERABILITY. Cryptographic FLAWS may be exploited to circumvent privacy, unintentional use of superficially SUPPLIED input are some other examples of presentation layer vulnerability.

Correct answer is (b) overloading of transport-LAYER mechanisms

Best explanation: Overloading of transport-layer mechanisms is an EXAMPLE of transport layer vulnerability. Other EXAMPLES of Transport layer vulnerability are mishandling of undefined, poorly DEFINED, Vulnerability that allows “fingerprinting” & other enumeration of host information.

The CORRECT ANSWER is (d) Weak or non-existent authentication mechanisms

For explanation I would say: Cryptographic flaws may be exploited to circumvent privacy, unintentional or ill-directed use of superficially supplied INPUT, and poor handling of UNEXPECTED input are examples of presentation LAYER flaws.

Right choice is (a) weak or non-existent mechanisms for AUTHENTICATION

For explanation: Weak or non-existent mechanisms for authentication is an example of session layer vulnerability. Other EXAMPLES are SPOOFING and the HIJACKING of data based on failed-authentication attempts & passing of session-credentials allowing intercept and unauthorized USE.

Right answer is (d) Overloading of transport-layer mechanisms

The best I can EXPLAIN: APPLICATION design flaws may bypass security controls, inadequate security controls as well as logical bugs in programs may be by chance or on purpose be used for CRASHING programs. These all are part of application layer vulnerability.

Correct answer is (d) Keystroke & Other Input Logging

To elaborate: Keystroke & other input logging is an example of physical LAYER VULNERABILITY. Other such physical layer vulnerabilities are unauthorized NETWORK access, DAMAGE or destruction of data & hardware and keystroke & Other Input Logging.

The CORRECT option is (c) Session layer

For EXPLANATION: Session identification MAY be subject to spoofing may lead to data leakage which depends on failed authentication attempts and allow hackers to allow brute-force attacks on ACCESS credentials.

Right ANSWER is (d) Unauthorized network access

For explanation I would say: The different vulnerabilities of the Transport LAYER are mishandling of UNDEFINED, poorly defined, Vulnerability that allow “fingerprinting” & other enumeration of host information, Overloading of transport-layer mechanisms ETC. Unauthorized network access is an example of physical layer vulnerability.

The correct option is (c) Route spoofing

The BEST I can explain: Route spoofing is an example of network LAYER vulnerability. Other examples of network layer vulnerabilities are IP Address Spoofing and IDENTITY & RESOURCE ID Vulnerability.

The CORRECT option is (a) MAC Address Spoofing

The best I can explain: MAC Address spoofing is an example of data-link layer vulnerability.VLAN circumvention, as WELL as SWITCHES, may be FORCED for flooding traffic to all VLAN ports are some other examples of data-link layer vulnerability.

The CORRECT option is (a) Switches

The explanation is: Switches MAY be forced for flooding traffic to all VLAN PORTS ALLOWING interception of data through any DEVICE that are connected to a VLAN. It is a vulnerability of data link layer.

Correct choice is (b) VLAN Circumvention

For EXPLANATION: VLAN Circumvention is data-link layer vulnerability where STATIONS are forced to make DIRECT communication with another station by EVADING logical controls implemented using subnets and firewalls.

Correct OPTION is (d) Overloading of transport-layer mechanisms

For explanation: MAC Address Spoofing, VLAN CIRCUMVENTION and switches MAY be forced for flooding traffic to all VLAN PORTS are EXAMPLES of data-link layer vulnerability.

The correct CHOICE is (a) physical

Explanation: In the physical LAYER, vulnerabilities are directly associated with physical ACCESS to networks and hardware such as unauthorised network access, damage or destruction of data & hardware and KEYSTROKE & Other Input Logging.

Right choice is (c) Unauthorized NETWORK access

The EXPLANATION: Unauthorized network access is not an example of physical layer vulnerability. The rest three – Physical theft of DATA & hardware, damage or destruction of data & hardware and keystroke & Other INPUT LOGGING are physical layer vulnerabilities.

Correct CHOICE is (c) OSI

For EXPLANATION I would say: The OSI model is 7-layer ARCHITECTURE where each layer is having some SPECIFIC FUNCTIONALITY to perform. All these layers work in collaboration for transmitting the data from 1 person to another worldwide.

Correct OPTION is (a) Open Systems Interconnection

Easiest explanation: The OSI model is 7-LAYER architecture where each layer is having some specific functionality to perform. All these layers work in collaboration for transmitting the DATA from 1 person to another worldwide.