Need Help completing my study guide Review my TCP lecture & lecture slide: o Sho

Question

Need Help completing my study guide

Review my TCP lecture & lecture slide:

o Should be able to explain the followings:

§ Why TCP is called a “end to end service.

§ Why TCP is called reliable

§ Why TCP is called connection oriented:

· MUST memorize/understand TCP 3 way handshake (review my lecture diagram on the 3 way handshake)

o TCP vs UDP comparison.

o TCP/UDP service and corresponding port number (e.g., HTTP: TCP & port 80, DNS: UDP & port 53, etc.; see my lecture slide).

- You should be able to explain how ARP (Address Resolution Protocol) works (review my last lecture on ARP; APR-protocol.pptx).

- Study Ethernet (my last lecture on Ethernet; MAC address, etc.; study my Ethernet powerpoint slides; my lecture on switches' learning & forwarding process)

- My lecture on security:

o Confidentiality, Integrity, Authentication

o Understanding of Asymmetric key encryption (Public/Private key)

o Understanding of very basic concept of PKI (especially, digital certificate, Certificate Authority (CA)). What is a digital certificate? Why do we need a digital certificate?

Explanation / Answer

Q.Why TCP is called a “end to end service?

Answer: That since some transport layer protocols, for instance TCP, however not UDP, give end-to-end reliable communication.

Additionally you ought to have a legitimate learning about the Network Layer where it does the steering part and Transport Layer does the end to end communication.

The transport layer is additionally in charge of the administration of blunder amendment, giving quality and unwavering quality to the end client. This layer empowers the host to send and get mistake revised information, parcels or messages over a network and is the network segment that permits multiplexing.

Basically this layer doesn't include with the steering system in the network, only the end to end communication.

Q.Why TCP is called reliable

Answer: The reason that Transmission Control Protocol (TCP) is viewed as 'reliable' is that the protocol itself verifies whether everything that was transmitted was conveyed at the less than desirable end (it might not have been because of packet loss). TCP takes into consideration the retransmission of lost packets, in this way ensuring all information transmitted is (in the end) got.

Q.Why TCP is called connection oriented ?

Answer : Web's connection oriented administration is TCP and connection-less administration is UDP, and both dwells in the transport layer of Internet Protocol stack. Web's just network layer is IP, which is a connection-less administration. So it implies whatever application we plan it in the long run utilizes IP to transmit the packets.

In telecommunications, connection-oriented portrays a methods for transmitting information in which the gadgets toward the end guides utilize a preparatory protocol toward build up an end-to-end connection before any information is sent. Connection-oriented protocol benefit is once in a while called a "reliable" network benefit, since it ensures that information will touch base in the correct grouping. Transmission Control Protocol (TCP) is a connection-oriented protocol.

For connection-oriented communications, each end point must have the capacity to transmit so it can convey. The other option to connection-oriented transmission is the connectionless approach, in which information is sent starting with one end point then onto the next without earlier game plan. Connectionless protocols are normally portrayed as stateless on the grounds that the end focuses have no protocol-characterized approach to recollect where they are in a "discussion" of message trades. Since they can monitor a discussion, connection-oriented protocols are at times depicted as stateful.

Q.TCP vs UDP comparison.

Answer:

General

Both TCP and UDP are protocols utilized for sending bits of information — known as packets — over the Internet. They both expand on top of the Internet protocol. At the end of the day, regardless of whether you are sending a parcel through TCP or UDP, that bundle is sent to an IP address. These packets are dealt with likewise, as they are sent from your PC to middle person switches and on to the goal.

TCP and UDP are by all account not the only protocols that work on top of IP. Be that as it may, they are the most broadly utilized. The generally utilized term "TCP/IP" alludes to TCP over IP. UDP over IP could similarly also be alluded to as "UDP/IP", despite the fact that this isn't a typical term.

TCP:

TCP stands for Transmission Control Protocol. It is the most regularly utilized protocol on the Internet.

When you stack a site page, your PC sends TCP packets to the web server's address, requesting that it send the page to you. The web server reacts by sending a surge of TCP packets, which your web program join together to shape the page and show it to you. When you click a connection, sign in, post a remark, or do whatever else, your web program sends TCP packets to the server and the server sends TCP packets back. TCP isn't only one way communication — the remote framework sends packets back to recognize it is gotten your packets.

UDP:

UDP stands for User Datagram Protocol — a datagram is an indistinguishable thing from a parcel of data. The UDP protocol works also to TCP, yet it tosses all the mistake looking at stuff. All the forward and backward communication and deliverability ensures back things off.

When utilizing UDP, packets are simply sent to the beneficiary. The sender won't hold up to ensure the beneficiary got the parcel — it will simply keep sending the following packets. On the off chance that you are the beneficiary and you miss some UDP packets, too terrible — you can not request those packets once more. There is no assurance you are getting every one of the packets and there is no real way to request a bundle again on the off chance that you miss it, however losing this overhead means the PCs can impart all the more rapidly.

Q. Confidentiality, Integrity, Authentication

Confidentiality:

Confidentiality is generally identical to security. Measures attempted to guarantee confidentiality are intended to keep delicate data from contacting the wrong individuals, while ensuring that the correct individuals can in reality get it: Access must be confined to those approved to see the information being referred to. It is normal, too, for information to be ordered by the sum and kind of harm that should be possible should it fall into unintended hands. Pretty much stringent measures would then be able to be actualized by those classes.

Once in a while protecting information confidentiality may include unique preparing for those conscious of such archives. Such preparing would regularly incorporate security hazards that could undermine this data. Preparing can assist acclimate approved individuals with hazard factors and how to make preparations for them. Facilitate parts of preparing can incorporate solid passwords and secret key related prescribed procedures and data about social building techniques, to keep them from bending information handling rules with great goals and possibly sad outcomes.

Integrity:

Integrity includes keeping up the consistency, exactness, and reliability of information over its whole life cycle. Information must not be changed in travel, and steps must be taken to guarantee that information can't be modified by unapproved individuals (for instance, in a rupture of confidentiality). These measures incorporate document consents and client get to controls. Variant control possibly used to avoid mistaken changes or coincidental cancellation by approved clients turning into an issue. Moreover, a few means must be set up to identify any adjustments in information that may happen because of non-human-caused occasions, for example, an electromagnetic heartbeat (EMP) or server crash. A few information may incorporate checksums, even cryptographic checksums, for confirmation of integrity. Reinforcements or redundancies must be accessible to restore the influenced information to its right state.

Authentication:

Authentication is the way toward deciding if somebody or something is, truth be told, who or what it is declared to be.

Intelligently, authentication goes before approval (in spite of the fact that they may regularly appear to be consolidated). The two terms are regularly utilized synonymously yet they are two unique procedures.

Authentication is a procedure in which the certifications gave are compared to those on record in a database of approved clients' data on a nearby working framework or inside an authentication server. In the event that the certifications coordinate, the procedure is finished and the client is allowed approval for get to. The consents and organizers returned characterize both the condition the client sees and the way he can associate with it, including hours of access and different rights, for example, the measure of apportioned storage space.

Q. Understanding of Asymmetric key encryption (Public/Private key)

Answer:  Asymmetric cryptography, otherwise called public key cryptography, utilizes public and private keys to encrypt and decode information. The keys are essentially huge numbers that have been matched together however are not indistinguishable (asymmetric). One key in the combine can be shared with everybody; it is known as the public key. The other key in the match is kept mystery; it is known as the private key. Both of the keys can be utilized to encrypt a message; the contrary key from the one used to encrypt the message is utilized for unscrambling.

Numerous protocols like SSH, OpenPGP, S/MIME, and SSL/TLS depend on asymmetric cryptography for encryption and advanced mark capacities. It is likewise utilized as a part of software programs, for example, programs, which need to build up a safe connection over an unreliable network like the web or need to approve an advanced mark. Encryption quality is straightforwardly attached to key size and multiplying key length conveys an exponential increment in quality, despite the fact that it impairs execution. As processing power increments and more proficient factoring calculations are found, the capacity to factor bigger and bigger numbers additionally increments.

For asymmetric encryption to convey confidentiality, integrity, validness and non-repudiability, clients and frameworks should be sure that a public key is true, that it has a place with the individual or substance asserted and that it has not been altered or supplanted by a pernicious outsider. There is no ideal answer for this public key authentication issue. A public key framework (PKI), where trusted declaration experts affirm responsibility for sets and testaments, is the most widely recognized approach, yet encryption items in light of the Pretty Good Privacy (PGP) display (counting OpenPGP), depend on a decentralized authentication show called a web of trust, which depends on singular endorsements of the connection amongst client and public key.

Q.Understanding of very basic concept of PKI

Answer:  As you've likely effectively made sense of, PKI stands for Public Key Infrastructure. PKI has heaps of various uses, however it is utilized principally to encrypt and/or marking information. Encrypting information alludes to scrambling it in a way that makes it unintelligible but to approved people.

Marking information fundamentally alludes to verifying it. A decent case of this is marking an E-mail message. In the event that an E-mail message contains a legitimate advanced mark, it demonstrates two things. To begin with, it demonstrates that the message has not been altered in travel. Second, it demonstrates that the message is from the individual that it cases to be from. Email messages are not by any means the only thing that can be marked however.

Q.What is a digital certificate? Why do we need a digital certificate?

Answer: A digital certificate is an electronic "passport" that permits a man, PC or association to trade data safely finished the Internet utilizing the public key infrastructure (PKI). A digital endorsement may likewise be alluded to as a public key authentication.

Much the same as an passport, a digital testament gives recognizing data, is imitation safe and can be confirmed in light of the fact that it was issued by an official, confided in office. The testament contains the name of the authentication holder, a serial number, lapse dates, a duplicate of the declaration holder's public key (utilized for encrypting messages and digital marks) and the digital mark of the endorsement issuing expert (CA) with the goal that a beneficiary can confirm that the endorsement is genuine.

To give prove that a declaration is honest to goodness and legitimate, it is digitally marked by a root endorsement having a place with a trusted testament expert. Working frameworks and programs keep up arrangements of trusted CA root certificates so they can undoubtedly check certificates that the CAs have issued and marked. At the point when PKI is sent inside, digital certificates can act naturally marked.

Digital certificates are needed because every time a client sends an email it traversed the web or internet. It is known as the internet on the grounds that the web is comprised of thousands of servers or a 'web of servers'. Every single communication visits at least 8 and a most extreme of 32 servers before it achieves its intended goal. Every one of these purposes of contact speaks to a security hazard. Contents, infections, programmers and different gadgets can capture the information whenever and can duplicate or adjust it unnoticed.

Gadget to-gadget authentication, two factor authentication, exchange marking and the inalienable 'digital character' inside the Digital Certificate implies that you know who and what you're speaking with.

Related Questions

Navigate

• Browse (All)
• Browse N
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.