1) What are the purposes of the SNMP and ICMP protocols?
2)Explain the uses of a nonce in challenge-response protocols?
3)Explain why a message hash is used for a digital signature rather than just using a private key to encrypt the message?
4) Ping (ICMP) is a useful tool for debugging network problem. Given an example of how to ping could be used in network testing.
5) Explain how traceroute build a list another router on the path from the host through the network to the destination?
Please provide all 5 questions answers.
1)The Internet management Message Protocol (ICMP) is one amongst
the most protocols of the web protocol suite. It is utilized by
network devices, like routers, to send error messages indicating,
as an example, that a requested service isn't out there or that a
number or router might not be reached. ICMP can even be accustomed
relay question messages.
i. the web management Message Protocol (ICMP) could be a mechanism
utilized by hosts and gateways to send notification of datagram
issues back to the sender. ICMP sends query and error reporting
messages.
ii. the web management Message Protocol (ICMP) has been designed to
complete the 2 deficiencies: lack of error management and lack of
help mechanisms. It is a companion to the IP protocol.
2)SNMP is a protocol that is implemented on the application layer
of the networking stack (click here to learn about networking
layers). The protocol was created as some way of gathering info
from terribly completely different systems in an exceedingly
consistent manner. Although it may be utilized in affiliation to a
various array of systems, the tactic of querying info and also the
methods to the relevant info area unit standardized.
There area unit multiple versions of the SNMP protocol, and lots of
networked hardware devices implement some style of SNMP access. The
most wide used version is SNMPv1, however it's in many ways
insecure. Its popularity largely stems from its ubiquity and long
time in the wild. Unless you have got a robust reason to not, we
tend to advocate you utilize SNMPv3, that provides a lot of
advanced safety features.
In general, a network being profiled by SNMP can in the main
comprises devices containing SNMP agents. An agent could be a
program which will gather info a few piece of hardware, organize it
into predefined entries, and reply to queries victimization the
SNMP protocol.
2)I am implementing a radio protocol and making an attempt to
stop replay attacks. It is an embedded system so storing nonce
values is not an option, as each node in the system may talk to
each other.
My plan is to implement a challenge response system to authenticate
both ends of the communication. Instead of one by one generating a
novel worth for the challenge, my intention is to use the nonce as
the challenge and then encrypt the nonce using ChaCha20 and the
pre-shared key for the challenge response.
Is it safe to encrypt the previous nonce? This will not be a random
unpredictable value, but it will be unique and it wont be the same
nonce that is used to encrypt the current packet. The assailant can
understand each the plain text and therefore the encrypted kind (is
they understand the protocol), however this solely helps for a
brute force attack, I believe?
The packets are authenticated with poly1305 using the same key.
3)There square measure numerous objective of getting those ways
that in cryptography. Not having hash wih message can expose you to
message integrity risk. In order to attain confidentiality,
integrity and authenticity you need to have digitally signed hash
value. the hashing operate ensures the integrity of message and
linguistic communication of this hash worth provides authentication
and nonrepudiation.
Coming to your thought process. you are providing confidentiality
by encrypting it and as you are signing it with your private key
authenticity is also achieved. What you are not providing is
integrity. What stops me from decrypting your message with your
pulic key and modify the message calculate hash and sent it to
target.
Envelope is encrypted mistreatment receivers public key this
implies solely receiver will decipher is mistreatment his personal
key nobody else will see it. Confidentiality achieved.
Hash worth is encrypted mistreatment sender's personal key, this
tells USA sender has sent it(non repudiation achieved) and it
confirms that it's come back from valid mastermind.
4)Ping stands for Packet net Groper and may be wont to send
associate degree ICMP (Internet management Message Protocol) echo
request and echo reply which is able to verify the provision of
native or remote machines. Ping will be thought of as a utility
that sends a message to a different machine requesting a
confirmation if the machine continues to be there. By default, Ping
sends four ICMP packages and awaits for the responses back in one
second. This default setting will but be modified and therefore the
range of packages sent and therefore the look time for responses
will be altered through the choices out there for Ping.
As well as substantiating the provision of remote machines, Ping
can assist in determining name resolution issues. To use Ping, go
to a command prompt and enter Ping Targetname. Several completely
different parameters ar out there to be used with Ping. To show all
the parameters enter Ping /? or Ping (with no parameters). The
parameters to be used with the Ping command ar as below:
-4 : Specifies that IPv4 should be used to ping, this is not
required for identifying the target machine with a IPv4 address but
it will be required solely to spot the target machine by
name.
-6 : Specifies that IPv6 should be used to ping, similar to –4 this
is not required for identifying the target machine with an IPv6
address but it will be required solely to spot the target machine
by name.
-a : Resolves the information science address to the hostname that
is displayed if this command is no-hit.
-f : Requests that the echo back messages area unit sent with a
Don’t Fragment flag in packets (only out there in IPv4).
-i ttl : will increase the timeout once victimization slow
connections, conjointly sets price|the worth} of TTL (Time to Live)
the goop value for this is often 255.
5)Traceroute may be a command-line tool enclosed with Windows and
different operative systems. Along with the ping command, it’s a
crucial tool for understanding web affiliation issues, including
packet loss and high latency.
If you’re having hassle connecting to an internet site, traceroute
will tell you wherever the matter is. It may also facilitate
visualize the trail traffic takes between your pc and an online
server.
How Traceroute Works
When you hook up with an internet site – say, howtogeek.com – the
traffic has got to bear many intermediaries before reaching the web
site. The traffic goes through your native router, your web service
provider’s routers, onto larger networks, and so on.
Traceroute shows U.S.A. the trail traffic takes to succeed in the
web site. It conjointly displays the delays that occur at every
stop. If you’re having problems reaching web site|an internet
site|a web site} which website is functioning properly, it’s
potential there’s a drag somewhere on the trail between your pc and
also the website’s servers. Traceroute would show you where that
problem is.
We’ve used traceroute to clarify – and demonstrate — World Health
Organization provides the net service for your web service
supplier.
In more technical terms, traceroute sends a sequence of packets
victimization the ICMP protocol (the same protocol used for the
ping command.) The first packet has a time-to-live (also known as
TTL, or hop limit) of 1, the second packet has a TTL of 2, and so
on. Each time a packet is passed to a brand new router, the TTL is
decreased by 1. When it reaches zero, the packet is discarded and
the router returns an error message. By causing packets during this
manner, traceroute ensures that every router within the path can
discard a packet and send a response.
1) What are the purposes of the SNMP and ICMP protocols? 2)Explain the uses of a...
Risk management in Information Security today Everyday information security professionals are bombarded with marketing messages around risk and threat management, fostering an environment in which objectives seem clear: manage risk, manage threat, stop attacks, identify attackers. These objectives aren't wrong, but they are fundamentally misleading.In this session we'll examine the state of the information security industry in order to understand how the current climate fails to address the true needs of the business. We'll use those lessons as a foundation...
Please see the articles below… 1. What is your opinion on the subject? 2. Which ethical views (i.e., utilitarian view, moral rights view, justice view, practical view) you feel are being used by both sides of the argument (i.e., for and against downloading) to justify their positions? High Court Enters File-Sharing Spat; Justices Must Determine Software Providers' Liability For Copyright Violations by Anne Marie Squeo. Wall Street Journal. (Eastern edition). New York, N.Y.: Mar 30, 2005. pg. A.2 WASHINGTON -- The Supreme...