ICS-SCADA Exam Dumps : ICS/SCADA Cyber Security Exam

IPsec offers two modes of operation: Transport mode and Tunnel mode.

Transport mode in IPsec provides security for the payload (the message part) of each packet along the communication path between two endpoints.

In this mode, the IP header of the original packet is not encrypted; it secures only the payload, not protecting the headers. This means while the data is protected, information about the sender and receiver as contained in the IP header is not obscured.

References

"Security Architecture for IP," RFC 4301.

IPsec documentation, Internet Engineering Task Force (IETF).

TCP (Transmission Control Protocol) is a connection-oriented protocol used in the majority of internet communications.

Connection-oriented protocols like TCP require a connection to be established between the communicating devices before data is transmitted. This ensures reliable and ordered delivery of data.

TCP manages this by establishing a handshake mechanism (TCP three-way handshake) to set up the connection prior to transmitting data and properly terminating the connection once the communication session has completed.

References

"TCP/IP Illustrated, Volume 1: The Protocols" by W. Richard Stevens.

Postel, J., "Transmission Control Protocol," RFC 793.

Ingress filtering is a method used in network security to ensure that incoming packets are allowed or blocked based on a set of security rules.

This type of filtering is often implemented at the boundaries of networks to prevent unwanted or harmful traffic from entering a more secure internal network.

The term "ingress" refers to traffic that is entering a network boundary, whereas "egress" refers to traffic exiting a network.

References

Cisco Networking Academy Program: Network Security.

"Understanding Ingress and Egress Filtering," Network Security Guidelines, TechNet.