CU HI N TP MN AN TON BO MT HTTT

Cu 1: Trnh by cc vn sau: - Khi nim tn cng mng v hnh ng bo v an ton mng. - Cc kiu tn cng mng, phn loi cc mi e da (active v passive). - Cc dch v an ton mng (confidentiality, authentication, integrity, nonrepudiation, access control, availability). Cu 2: Trnh by v m ha v m ha i xng (m ha truyn thng): - Khi nim m ha, ti sao cn m ha thng tin. - Khi nim m ha i xng, c ch, cc thnh phn ca h m ha i xng. - Cc kiu tn cng h m ha i xng (ciphertext only, known plaintext, chosen plaintext, chosen ciphertext). Cu 3: Trnh by mt s thut ton m ha i xng: - Cu trc Feistel v thut ton DES (Data Encryption Standard). - Ti sao hin nay DES khng cn an ton na? Trnh by v thut ton 3DES. - Thut ton AES (Advanced Encryption Standard). Cu 4: Trnh by v ch m ha khi (block cipher) v vn trao i kha: - Khi nim m ha khi, vn ca m ha khi. - Khi nim cipher block chaining, ti sao cn s dng cipher block chaining. - Vn trao i kha trong m ha i xng, k thut s dng trung tm phn phi kha (KDC - Key Distribution Center) trong vic qun l kha. Cu 5: Trnh by v m ha v m ha bt i xng (m ha kha cng khai) : - Khi nim m ha, ti sao cn m ha thng tin. - Khi nim m ha bt i xng, c ch, cc thnh phn ca h m ha bt i xng. - Cc c im v yu cu ca h m ha bt i xng. Cu 6: Trnh by v thut ton RSA: - tng v cc yu cu ca thut ton. - Chi tit v to kha, qu trnh m ha, gii m. - Thut ton trao i kha Diffie-Hellman. Cu 7: Trnh by v k thut chng thc (authentication): - Khi nim, ti sao cn phi chng thc thng tin. - K thut chng thc bng m chng thc (authentication code), to m chng thc bng hm hash. - Thc hin chng thc bng m ha i xng v m ha bt i xng.

Cu 8: Trnh by v thut ton SHA: - Cc yu cu v c im ca 1 thut ton hash. - Trnh by thut ton SHA-1: tng, cc bc thc hin. - Thut ton HMAC. Cu 9: Trnh by v ch k s (Digital Signature): - Khi nim, to v s dng ch k s bng k thut m ha bt i xng. - Khi nim chng ch s (Digital Certificate), ti sao cn c chng ch s. - Qu trnh xc minh ch k s thng qua chng ch s. Cu 10: Trnh by v IP Security (IPSec): - Khi nim, ti sao cn c IPSec, cc ng dng v li ch ca IPSec. - Kin trc IPSec, cc giao thc trong IPSec. - Cc dch v an ton c cung cp bi cc giao thc trong IPSec. Cu 11: Trnh by v Security Association (SA) trong IP Security: - Khi nim SA, ti sao cn SA, c im ca SA. - Khi nim Security Association Database (SAD) v Security Policy Database (SPD), SAD v SPD c s dng nh th no. - Cu trc v ngha cc trng trong SAD v SPD. Cu 12: Trnh by v ch Transport v Tunnel trong IP Security: - Khi nim v c im ca ch Transport v Tunnel. - Phm v p dng ca AH v EPS trong ch Transport v Tunnel. - Khi no s dng ch Transport hay Tunnel. Cu 13: Trnh by v giao thc AH trong IP Security: - Khi nim AH, cc dch v an ton cung cp bi AH, li ch ca AH. - Cch p dng AH vo gi tin IP, cu trc tiu AH, ngha cc trng. - K thut chng tn cng gi lp bng ca s chng gi lp (anti-replay window). Cu 14: Trnh by v giao thc ESP trong IP Security: - Khi nim ESP, cc dch v an ton cung cp bi ESP. - Cch p dng ESP vo gi tin IP, cu trc tiu ESP, ngha cc trng. - Gi tr m chng thc (ICV - Integrity Check Value) trong ESP (v AH) c to nh th no. Cu 15: Trnh by v kt hp SA trong IP Security: - Khi nim v kt hp SA, ti sao cn phi kt hp SA. - Cc phng php kt hp Transport Adjacency v Iterated Tunneling. - Bn tnh hung kt hp SA ph bin trong thc t.

Cu 16: Trnh by v giao thc ISAKMP (Internet Security Association and Key Management) trong IP Security: - Khi nim ISAKMP, ti sao cn c giao thc ISAKMP. - Cch s dng ISAKMP, cu trc gi tin ISAKMP, cu trc cc ti tin ISAKMP, ngha cc trng. - Nm kiu trao i ISAKMP (Base, Identity Protection, Authentication Only, Aggressive, Informational). Cu 17: Trnh by v giao thc SSL (Secure Socket Layer): - Vn an ton Web, cc phng n tip cn an ton Web theo cc lp. - Khi nim SSL, chc nng, kin trc SSL. - Khi nim SSL Connection v SSL Session. Cc thuc tnh ca SSL Connection v SSL Session. Cu 18: Trnh by giao thc SSL Record: - Khi nim, cc dch v ca SSL Record. - Cc bc thc hin SSL Record. - Cu trc gi tin SSL Record, ngha cc trng. Cu 19: Trnh by cc bc thc hin bt tay trong giao thc SSL Handshake: - Khi nim, mc ch ca SSL Handshake. - Cc giai on trong qu trnh bt tay ca SSL Handshake. - ngha cc thng ip trao i trong cc giai on ca qu trnh bt tay. Cu 20: Trnh by v giao thc SET (Secure Electronic Transaction): - S thanh ton trc tuyn trong giao dch thng mi in t (TMT). - Khi nim SET, li ch ca vic s dng SET trong bo mt TMT. - K thut ch k kp trong SET, ti sao cn dng ch k kp, cch to ch k kp trong SET. Cu 21: Trnh by v vn xm nhp h thng tri php: - Khi nim hnh vi xm nhp h thng tri php, phn loi k xm nhp (Intruder) theo bin php xm nhp, phn loi Intruder theo hnh vi. - Pht hin xm nhp: Mc ch, gi thit c bn trong pht hin xm nhp, hai phng php tip cn trong pht hin xm nhp (da trn thng k v da trn lut). - H pht hin xm nhp phn tn. Cu 22: Trnh by v virus my tnh v cc chng trnh m c: - Khi nim, phn loi cc chng trnh m c. Phn bit virus, su (worm), zombie.

Trnh by cu trc chung ca mt virus, k thut trnh pht hin bng vic nn chng trnh ch. Cc loi virus (file virus, virus boot sector, virus a hnh, virus macro). K thut gii m h virus pht hin v dit cc virus a hnh.

Cu 23: Trnh by v firewall: - Khi nim, ti sao cn c firewall. - Cc k thut iu khin truy cp trong firewall, hn ch ca firewall . - Cc loi firewall: packet-filtering firewall, application-level gateway, circuitlevel gateway. C ch hot ng ca tng loi. Cu 24: Trnh by v packet-filtering firewall: - Khi nim, c ch, u nhc im ca packet-filtering firewall. - Cc bin php thng c s dng tn cng packet-filtering firewall: IP Spoofing, Source routing attack, Tiny fragment attack. - Stateless v Stateful firewall. u im ca Stateful firewall so vi Stateless firewall.