Internet Security

What is a URL (Uniform Resource Locator)?

It identifies the address of a web page.

What does HTML (Hypertext Markup Language) refer to?

It is the standard markup language for documents designed to be displayed in a web browser.

What is a web page?

A document formatted in HTML that can include text, images, and interactive elements.

What are client-side scripts?

Scripts that are executed by the client (browser), such as JavaScript.

What are server-side scripts?

Scripts that are executed by the server before sending data to the client, such as PHP and Python.

What are cookies used for in web security?

They are used to track the state of individual visitors for maintaining sessions, such as shopping cart data.

What does session management involve?

Tracking user interactions using cookies and scripting languages.

What is Cross-Site Scripting (XSS)?

A script that modifies files or software on the client’s device, often originating from a malicious website.

What are some issues related to server authentication failures?

Domain mismatch, expired certificates, revoked certificates, and invalid digital signatures.

What is SQL injection?

A type of attack that manipulates a website's database through malformed input, like in a form.

What does the Same Origin Policy refer to?

A security measure that ensures scripts are restricted to the same domain, protocol, and port.

What is SSL/TLS?

Secure Sockets Layer/Transport Layer Security, which ensures encrypted communication and server authentication.

What is MIME (Multipurpose Internet Mail Extensions)?

A standard that encodes non-ASCII content, such as images and encrypted data, in emails.

What is POP3?

A simple protocol for retrieving email from a server.

What does SMTP stand for and what is its purpose?

Simple Mail Transfer Protocol, used for sending emails.

What are some risks associated with email?

Sniffing risks, spam, phishing, and email viruses.

What is DKIM (DomainKeys Identified Mail)?

A protocol that prevents email spoofing by verifying sender addresses.

What is DMARC (Domain-based Message Authentication, Reporting, and Conformance)?

A method that determines if DKIM or SPF is in use for email authentication.

What is phishing in the context of email security?

A social engineering attack using fraudulent emails to gather user credentials.

How do email viruses typically spread?

Through executable attachments that propagate when opened and often target email contacts from the infected user's address book.

What are the key protections for web applications?

SSL/TLS and various scripting defenses against threats like SQL injections, XSS, and server masquerades.

What protections are in place for email security?

DKIM, SPF, DMARC, and email filtering techniques to protect against phishing, spam, and email viruses.