Understanding the TCP open/close connections is important for later in the semester. At a very high-level overview, if you were the client and you were trying to connect with your bank, what would the three-way handshake look like to open a connection so you and your bank communicate? HTML Edi BIU A A B CAA 33XX:35 lll 14nt Pa . Question 2 Match the following words to their definitions from Chapter 4. Words will only be used once and some words will not be used at all. If you believe more than one word matches the definition, use the most precise word that matches the definition in the context from Chapter 4. If you were to find and exploit a vulnerability that only you knew about, it would be called an) A weakness in the design or implemenation of a protocol or application is called a(n) A way to take advantage of a weakness in a protocol or application is called a(n) Not designing a protocol with security in mind would be considered an). A person who uses the attack code but doesn't understand the vulnerability itself is called a(n) [ Choose ] Risk Assessment Impact Vulnerability Threat Exploit Attack Hacker Script kiddie Risk Design Flaw Attacker End User Attack Code Zero-day exploit Deciding how important something is and whether it is worth protecting is called The degree to which a device or object will be attacked is called a(n) Question 3 Question 3 Match the following words to their definitions from Chapter 4. Definitions will only be used once and some definitions will not be used at all. If you believe more than one definition matches a word, use the most precise definition that matches the word in the context from Broadcast Packet Ping Host-to-user authentication SYN flood attack [Choose ] A packet sent to every host An attack using the ping of death method When an application, host, or network layer proves its identity to a user A protocol sent to a specific host When an application, host, or network layer proves its identity to another application, host, or network layer An attack that uses a violation of threeway handshake A vulnerability in the authentication between applications, hosts, or network layers Well-known header-based attack that uses invalid values in the header of a ping packet A vulnerability using valid packets in a way that violates the protocol between layers A vulnerability caused by an invalid header or invalid values in the header Authentication-based vulnerability Question 4 Understanding the TCP open/close connections is important for later in the semester. At a very high-level overview, if you were the client and you were trying to connect with your bank, what would the three-way handshake look like to open a connection so you and your bank communicate? HTML Edi BIU A A B CAA 33XX:35 lll 14nt Pa . Question 2 Match the following words to their definitions from Chapter 4. Words will only be used once and some words will not be used at all. If you believe more than one word matches the definition, use the most precise word that matches the definition in the context from Chapter 4. If you were to find and exploit a vulnerability that only you knew about, it would be called an) A weakness in the design or implemenation of a protocol or application is called a(n) A way to take advantage of a weakness in a protocol or application is called a(n) Not designing a protocol with security in mind would be considered an). A person who uses the attack code but doesn't understand the vulnerability itself is called a(n) [ Choose ] Risk Assessment Impact Vulnerability Threat Exploit Attack Hacker Script kiddie Risk Design Flaw Attacker End User Attack Code Zero-day exploit Deciding how important something is and whether it is worth protecting is called The degree to which a device or object will be attacked is called a(n) Question 3 Question 3 Match the following words to their definitions from Chapter 4. Definitions will only be used once and some definitions will not be used at all. If you believe more than one definition matches a word, use the most precise definition that matches the word in the context from Broadcast Packet Ping Host-to-user authentication SYN flood attack [Choose ] A packet sent to every host An attack using the ping of death method When an application, host, or network layer proves its identity to a user A protocol sent to a specific host When an application, host, or network layer proves its identity to another application, host, or network layer An attack that uses a violation of threeway handshake A vulnerability in the authentication between applications, hosts, or network layers Well-known header-based attack that uses invalid values in the header of a ping packet A vulnerability using valid packets in a way that violates the protocol between layers A vulnerability caused by an invalid header or invalid values in the header Authentication-based vulnerability Question 4