chapter 17

1. Domain Name System Security Extensions (DNSSEC)

A set of extensions providing origin authentication, authenticated denial of existence, and data integrity to DNS.

2. Secure Shell (SSH)

An encrypted protocol used for secure remote terminal connections to servers, utilizing TCP port 22.

3. Secure/Multipurpose Internet Mail Extensions (S/MIME)

A standard for public key encryption and digital signing of MIME data in emails, providing authentication, integrity, and non-repudiation.

4. Secure Real-time Transport Protocol (SRTP)

A network protocol for securely delivering audio and video streams over IP networks, providing encryption and replay protection.

5. Lightweight Directory Access Protocol over SSL (LDAPS)

Secure LDAP traffic transmitted over an SSL/TLS-encrypted tunnel using TCP port 636 or 3269 (global catalog).

6. File Transfer Protocol, Secure (FTPS)

FTP implementation secured with TLS encryption, using TCP ports 989 (data) and 990 (control).

7. SSH File Transfer Protocol (SFTP)

Secure file transfer over an SSH channel, utilizing TCP port 22.

8. Simple Network Management Protocol, Version 3 (SNMPv3)

Secure protocol for managing and monitoring devices on IP networks, addressing vulnerabilities in previous SNMP versions, using ports 161 and 162.

9. Hypertext Transfer Protocol over SSL/TLS (HTTPS)

Protocol using SSL/TLS to encrypt HTTP traffic, securing web communications via TCP port 443.

10. Secure Sockets Layer (SSL)

Deprecated cryptographic protocol previously used to provide confidentiality, integrity, and authentication over network communications.

11. Transport Layer Security (TLS)

Modern replacement for SSL, standardizing encryption and secure communication across networks.

12. IPSec (Internet Protocol Security)

Protocol suite designed to securely exchange packets at the network layer, providing integrity, confidentiality, authentication, and anti-replay.

13. Authentication Header (AH)

IPSec protocol providing integrity and authentication for packet headers but not confidentiality.

14. Encapsulating Security Payload (ESP)

IPSec protocol providing confidentiality (encryption) for packet data, and optionally, integrity and authentication.

15. Transport Mode (IPSec)

Encrypts only the data payload of packets, leaving IP header information visible for routing purposes.

16. Tunnel Mode (IPSec)

Encrypts entire packets, including IP headers, offering complete packet confidentiality and integrity for VPN-like secure communications.

17. Post Office Protocol (POP3)

Standard protocol used by email clients for retrieving emails from servers, typically on port 110 (secure version uses port 995).

18. Internet Message Access Protocol (IMAP4)

Protocol allowing email clients to access messages stored on a mail server, typically on port 143 (secure version uses port 993).

19. Simple Mail Transfer Protocol (SMTP)

Protocol for email transmission between servers, typically on port 25 (client submissions typically use ports 587 or secure port 465).

20. Network Time Protocol (NTP)

Protocol used for synchronizing time across networked devices, operating over UDP port 123 without built-in encryption.

21. Software as a Service (SaaS)

Software distribution model where software is centrally hosted and licensed on a subscription basis.