Some Basic questions you would like to get answers for.

Q1. What is HTTP, HTTPS, SMTP, FTP and VOIP?

HTTP:

HTTP is the abbreviation of Hypertext Transfer Protocol. HTTP is an application based protocol for collaborative, distributed, Hypermedia information system. HTTP is the basic foundation of data communication for WWW (World Wide Web).

The hypertext uses logical links between nodes containing texts. These logical links are known as Hyperlinks. HTTP is used to exchange these hyperlinks.

A peep into the History of HTTP: 

The WorldWideWeb project was Tim Berners Lee's brainchild. It was then known as "World Wide Web". He, along with his team, invented HTTP and HTML. The term HTTP was given by Ted Nelson. The first version of HTTP had only one method known as GET. The function of GET was to request a page from server and the server, in return, will give a HTML page.

HTTP V0.9 was the first version of HTTP. In 1995, Dave Ragett gave more operations to the protocol. Thus, HTTP V 1.0 was launched in 1996. By the month of March in the same year, HTTP V 1.1 was supported by Arena, Netscape 2.0, Internet Explorer, Mosaic,etc.  Due to lot of complaints by the Web browsers, HTTP, with improvements, released Version 1.1 standard in January 1997. 

And some Technicalities..

HTTP works on the principle of Request-Response system. The client places a request to the server and then the server responds by giving HTML pages and other sources to the client.This protocol is an intermediate between a client and the server and enables them to communicate. Usually HTTP request functions on Port 80 on the server. 

There are many ways to request a server. They are:

GET

HEAD

POST

PUT

DELETE

TRACE

OPTIONS

CONNECT

PATCH

HTTPS:

HTTPS stands for Hypertext Transfer Protocol Secure. HTTPS was created by Netscape in 1994, which was used with SSL protocol. It gives us a more secure mode of communication. It is not basically a protocol. It is just a layer of security over HTTP. HTTPS certifies a website and it gives authentication to the website for more security. It encrypts the communication between the client and the server to make it safer. Initially it was used for monetary transactions only. But with growing threat of Cyber crime, many websites and web pages started getting authenticated by HTTPS to enhance security. It sees to it that a third party cannot barge into the conversation or exchange of information between two parties.

How would you know whether the website is HTTP secured?

•  If you find a pre installed certificate
• If the authority of the certificate is for legitimate websites.
• If the certificate has a trusted signature.
• If the certificate identifies the website properly

HTTPS should not be mistaken with Secure HTTP. Their URLs begin from https://.

In short, HTTPS is not a separate or a higher protocol. It is just the secure version of  HTTP. Authorities like CACert give certificates of authenticity to the webpages. 

SMTP:

SMTP stands for Simple Mail Transfer Protocol. It is used to transmit E mails over IP networks. It has many versions. SMTP is used by E Mail servers mostly for sending emails. SMTP took birth in 1970s. With the course of time, various improvised versions of SMTP came to picture. SMTP became a rage in early 1980s when it started being used by majority of  Email servers. 

The SMTP session consists of commands which are generated by SMTP client. It has three command sequences.

1. MAIL
2. RCPT
3. DATA

The previous versions of SMTP did not authenticate the users. The later versions saw an enhanced security within the protocol.

FTP:

FTP is the abbreviation of File Transfer Protocol. It is mainly used to transfer files from one host to another. 

The original founder of FTP was an Indian named Abhay Bhushan in 1971. FTP has active and passive modes of operation. In active mode, the user creates a TCP connection. In case of firewall protection, Passive mode is required. 

Four representations can be used while transferring data.

1. ASCII
2. Image mode
3. EBCDIC
4. Local mode

Where as, Data transfer can be done in 3 modes.

1. Stream mode
2. Block mode
3. Compressed mode

FTP is not fullproof secure. It has many loopholes. It is subjected to Spoof attacks, bounce attacks and packet stealing. Like HTTPS, FTPS is the secure version of FTP.

VoIP:

VoIP is the short form of Voice Over Internet Protocol. It is a protocol that allows Voice communications over IP networks. It is often known as Internet telephony. It was a major breakthrough in the field of communication. People could interact easily over the internet because of VoIP. These protocols control the signaling,  set up and tear down of calls. 

Apps such as skype have brought a revolution in the field of video communication. The calls became free because of VoIP. Audio and video codecs are put in place to encode AV files. VoIP is now available in Smartphones.

VoIP gave the user, freedom to make calls without being charged. Skype is now used by various companies to interact in meetings without calling people to a specified place. 

VoIP does not have any direct link between the sender and the location of the receiver. It has to be given power to function. It also has security concerns. Hackers can easily manipulate data and get the transferred data from a conversation. Call spoofing is also common in VoIP.

Q2. What is the difference between Core i3, Core i5 and Core i7?

The difference between core i3, i5 and i7 seem confusing to a layman. If we use a simple difference, we can say that Core i7 is better than Core i5 which is better than Core i3.  Unlike the popular notion, Core i7 does not have 7 cores or something like that.

The level of processing power of these processors are known by their star rating. Core i3 has 3 stars, Core i5 has 4 stars while Core i7 has 5 stars. Processors can be classified by their target devices. Each have their own specification and characteristics. More the number of cores, the more tasks it can perform simultaneously. Core i3's are dual core processors i.e they have 2 cores. Also, all Core i5's are Quad cores.

Core i3's are cheaper than Core i5's. There are many other factors that affect the processing speed of these processors. For example, i5-661 runs as same speed as i3-560 and has same no. of cores but its performance is greater than i3-560 because of Turbo boost. Because of Turbo boost, all i5 processors can outsmart i3 processors.

Cache size also affects the working of these processors. Core i3's have 3 mb cache size, while i5 and i7 have 6 mb and 8 mb sizes respectively.

Each and every processor has its own pros and cons. But on the work ability factor, the difference has been shown above.

Q3. What is "Bug bounty" from Microsoft? How much Bounty do they give for Windows 8.1?

Bug Bounty: 

Microsoft has come out with a really out of the box and innovative idea.  Microsoft, instead of relying on its own tech team to find vulnerability, has now launched a Bug Bounty program.  There are infact three bug bounty programs. Microsoft will provide the person who finds out bugs in their operating systems with a handsome bounty. 

Experts are saying that the launch of this Bug bounty program shows the level of confidence in the microsoft camp about their operating systems' security. Also they say it is better to spend money on security rather than being attacked.  Also as there is the induction of money in this program, microsoft will now be more serious in enhancing the security of their operating systems.

The other major advantage of this program is that many Black hats might turn to white hats to earn some genuine money by using their minds in the right direction. It would help microsoft making their products better. 

Microsoft has agreed to offer $100000 as a bounty for cracking their latest Windows 8.1 OS. 

Q4. What is Oracle Padding attack?

An Oracle Padding attack is a side channel attack which is performed on the padding of a cryptographic message. The leakage of information about padding mainly occurs during decryption of the text. 

These attacks are mainly associated with ECB or CBC mode decryption. They are used withing block ciphers. Asymmetric algorithms such as OAEP are vulnerable to such attacks. In CBC mode operation , oracle leaks whether the padding of the encrypted message is correct or not. This can help attackers to decrypt messages using Oracle's key. 

Q5. What are top 5 apps for iPad 2? 

• iMovie: iMovie was apple's first elite app launch for iPad 2. You can import Videos and pictures iPad gallery, USB, Cameras, SD card, Built in camera.  The concept is same as iMove '11. You can mould your video using touch. It is a universal app. You can modify title  audio, transitions and many more and make your video look professional. It costs around $4.99 on i tunes. 
• Garage Band: If you are a musician and own an Ipad 2, then this is the ultimate app for you. It is completely different from garage band '11. Touch sensitive instruments give you a totally realistic feel. A range of different accoustic to electronic instruments are available. You can plug your own instrumentsand record vocals. It has 8 tracks to give access to mix well.  It costs $4.99 in i tunes.
• Twitter for iPad: Twitter app has been updated exclusively for Ipad 2. Users can send images using front or back camera. It gives you real time searches and trending topics on twitter. This app is free of cost.
• Magic Mirror: Augmented reality is a genre which can be used in the newer generations of ipad. Magic mirror enables users to try out 3D objects such as glasses or hairstyles. Due to its advanced facial recognition system, the objects remain in place even when you move. It is a free app.
• Real Racing 2 HD: The 2nd version of Real racing is as good as its first version. The accelerometer tipping driving is realistic and has a superb atmosphere. It has better cars, better tracks and more realistic approach. 10 hours of exciting gameplay and 30 different cars to unlock. This app is surely one heck of an experience.  Costs $9.99 on i tunes.

~ Kirat Antani, Bharuch