A. Automatically pushing ACLs to layer 3 devices to block the attacker’s traffic
B. Automatically pushing commands to layer 2 switches to shutdown the attacker’s ports
C. Automatically resetting the attacker’sTCP connections
D. RecommendingACLs tobe manuallypushed tolayer 3 devices such as routers/firewalls
E. Operating as an inline appliance， it automaticallyblocks malicious traffic inline
F. Working inconjuction with CSM to block the attacker’s traffic inline

A. Client sends Hello to Server listing all of its supported cipher suites
B. Server sends Hello to Client listing all of its supported cipher suites
C. Client calculates and sends encryptedpre_master_secret
D. Client and Server calculate keys from pre_master_secret
E. Server sends Change Cipher Spec to indicate a shift to encrypted mode

A. RC4
B. TLS
C. SSH
D. AES
E. 3DES

A. Cisco SecurityAgent （CSA）
B. CiscoTrustAgent （CTA）
C. Cisco Secure Desktop （CSD）
D. A small Java Applet
E. SSLVPN Client （SVC）
F. SSLVPN Client （SVC） and Cisco Secure Desktop （CSD）

A. To ensure the router has the correct time when generating its private/public key pairs.
B. To ensure the router has the correct time when checking certificate validity from the remote peers
C. To ensure the router time is sync with the remote peers for encryption keys generation
D. To ensure the router time is sync with the remote peers during theDH exchange
E. To ensure the router time is sync with the remote peers when generating the cookies during IKE phase 1

A. The FTP server sends back an acknowledgment （ACK） to the client
B. The FTP server allocates a port touse for the data channel and transmit that port number to the client
C. The FTP server opens the data channel to the client using the port number indicated by the client
D. The FTP client opens the data channel to the FTP server on Port 20
E. The FTP client opens the datachannel to the FTP server on Port 21

A. RC4 is a stream cipher
B. Stream ciphers require padding
C. AES is a block cipher
D. DES and 3DES are stream ciphers
E. AES is a stream cipher
F. AES， DES， and 3DES can be used as HMAC algorithms

A. MD5 produces a 160-bit result.
B. SHA-256 is an extension to SHA-1 with a longer output.
C. MD5 takes more CPU cycles to compute than SHA-1.
D. Changing1 bit of the input to SHA-1 changes 1 bit of the output.
E. SHA-1 is stronger than MD5 because it can be used with a key to prevent modification.

A. decrypts the received MAC using a secret key
B. compares the computed MAC vs. the MAC received
C. authenticate the receivedmessage using the sender’s public key
D. look up the sender’s public key
E. extracts the MAC from the receivedmessage thenencrypts the received message with a secret keyto producethe MAC
F. Computes the MAC using the receivedmessage and a secret key as inputs to the hash function

A.An irreversible fast encryption method
B.A reversible fast encryption method
C.A reversible value computed from a piece of data and used to detect modifications
D.An irreversible value computed froma piece of data and used to detect modifications
E.A table inwhich values are stored for efficient retrieval.