06

Question 1

____________ is the one demand delivery of IT resources and applications across the internet

Answer 1

Cloud Computing

Question 2

___________ is how you implement cloud in your business

Answer 2

Deployment methods

Question 3

In a ___________ the cloud infrastructure is provisioned for exclusive use by a single organization comprised of multiple consumers

Answer 3

Private Cloud

Question 4

In aq ___________ the cloud infrastructure is provisioned for open use by the public and may be owned /operated by a business, academic, or government organization or both.

Answer 4

Public Cloud

Question 5

A _____________ exists when multiple organizations share a common concern, such as specific security requirements

Answer 5

community cloud

Question 6

A _____________ consists of the combination of two or more cloud deployment models

____________ where additional processing is handled outside the standard cloud infrastructure

Answer 6

Hybrid Cloud

Cloud Bursting

Question 7

____________ is how you utilize the cloud

Answer 7

service model

Question 8

_____________ Is the customers use of applications running from a cloud provider but they have no control over the infrastructure

Answer 8

SaaS Software as a service

Question 9

____________ is when a client creates their own applications or software but uses programming languages and tools supported by the cloud provider. The client has no control over the infrastructure

Answer 9

Paas Platform as a Service

Question 10

_______________ is the provisioning of processing, storage, and networks to a customer

Answer 10

Infrastructure as a service Iaas

Question 11

_____________ is the analysis and practice of concealing information and sensitive data

Answer 11

Cryptography

Question 12

______________ encrypts data, hiding contents from unauthorized users

Answer 12

Confidentiality

Question 13

______________ Provides checksums and supports digital signatures

Answer 13

Integrity

Question 14

_______________ Credential checks ensure availability to authorized users while denying access to unauthorized users

Answer 14

Availability

Question 15

_______________ When user accounts are assigned a password, that password is hashed and stored in the system , whe the same account tries to login the password they enter is hashed and compared to the one stored in the database. If it matches their let in.

Answer 15

Password Authentication

Question 16

______________ by hashing certain installed files, such as an executable, a user is assured that file has not been changed or replaced by another

Answer 16

File Verification

Question 17

_____________ Is a technique of providing confidentiality by converting ordinary data into ciphertext, which is unintelligible

Answer 17

Encryption

Question 18

____________ uses a single key to encrypt and decrypt the data. Both the sender and receiver must have a copy of the same key

Answer 18

Symmetric Encryption

Question 19

____________ Uses a different key for encryption than decryption. Based on a one-way function where the same key used for encryption of the data cannot be used for decryption of the data.

Answer 19

Asymmetric encryption

Question 20

To be sure a sender is who they say they are ________________ are used.

Answer 20

digital signatures

Question 21

Verifying identity and if the user is allowed to a space is achieved through _________________

Answer 21

digital certificates

Question 22

_______________ is the protection of the network devices, data, and users, in essence the network as a whole entity

Answer 22

network security

Question 23

A _________ is defined as something that has the potential to damage the network, to include data, hosts, or users.

Answer 23

Network threat

Question 24

Common network threats are?

Answer 24

Hardware failures
Access
Malware
Social engineering
Denial of service

Question 25

______________ is the duplication of components or the functions of a system and can go as far as having an entire secondary site on hand in case it is needed

Answer 25

redundancy

Question 26

____________ protects data through the means of logical controls. These controls include the use of passwords, permissions, access control lists, and traffic filtering devices such as firewalls

Answer 26

Logical Access

Question 27

___________ is the non-local logical access to a network systems or resources from a separate physical location.

Answer 27

Remote Access

Question 28

A _______ is a type of malicious software that distributes itself over the network via user interaction

Answer 28

Virus

Question 29

A ______ is a self-replicating and self-propagating type of malicious software. Unlike viruses, ______ do not need user interaction to execute

Answer 29

Worm

Question 30

_________ Is a seemingly innocent file that contains malicious code underneath

Answer 30

Trojan

Question 31

A ________ is a stealthy type of malware designed to hide existence of specific processes or programs from normal methods of detection and enable continued privilege access to the computer

Answer 31

RootKit

Question 32

All computers infected by a ______ are collectively called a _______, which allows system access to an attacker and causes the attackers computer too be the command-control server

Answer 32

bot, botnet

Question 33

Three main methods of malware prevention?

Answer 33

Anti-malware programs, training, procedures

Question 34

__________ is the process of exploiting human behavior to gain authorized access to information

Answer 34

social engineeering

Question 35

__________ can be broadly characterized by any action that prevents an unauthorized user rom accessing data, a device, or any resource they should normally have access to

Answer 35

DoS, Denial of service

Question 36

___________ overwhelms a system like DoS but through multiple source computers

Answer 36

DDos

Question 37

_________ are hardware and/or software that protect computers and networks from external attacks by utilizing permit/deny statements, filtering any unauthorized or illegitimate traffic

Answer 37

Firewalls

Question 38

__________ software applications or suite of applications installed ona single computer

Answer 38

Host-based firewall

Question 39

________ functioning on a network level, the firewall filters data as it travels from teh internet to computer on the network

Answer 39

Network-based firewalll

Question 40

An _________ is a security tool used to monitor a network and detect unauthorized activities and anomalies, to detect possible intrusions

Answer 40

Intrusion Detection System

Question 41

An _______ that respond to detected issues by blocking traffic or otherwise preventing the malicious activity.

Answer 41

Intrusion Prevention Systems

Question 42

___________ collects and analyzes data that originates on a computer that hosts a service, such as a web server

Answer 42

Host-Based Intrusion Detction/prevention system

Question 43

____________ Analyzes data packets that travel over the actual network to verify their nature as malicious or benign

Answer 43

Network-Based Intrusion Detction/prevention system

Question 44

________ is a framework of data protection for databases that contain usernames and passwords. What do these mean?

Answer 44

AAA Authentication: presenting credentials to network Authorization: The determination of what tasks are and are not allowed on the network Accounting: keeping a log of everything that happens on the network

Question 45

__________ is an AAA standard used in supporting thousands of access points managed by ISPs and linking them to a single database

Answer 45

RADIUS, AAA vendor neutral

Question 46

__________ is another AAA protocol developed by Cisco to include access to routers and switches

Answer 46

TACACS AAA Cisco only

Question 47

________ Is yet another AAA protocol based on TACACS and developed by Huawei

Answer 47

HWTACACAS

Question 48

__________ Is a suite of protocols which allows for secure data transmissions over IP-based networks through authentication and encryption. It is a MANDATORY component of IPV6 because it works at layer 3 of the OSI model

Answer 48

IPsec

Question 49

The ___________ protocol handles authentication services for IPsec. AH provides data integrity and authentication for IP Traffic. It ensures data integrity not security

Answer 49

Authentication Header (AH)

Question 50

The ________________ further protects a datagram by encrypting its payload, ensuring the privacy of a message. Uses a symmetric encryption algorithm to encrypt the payload of the ip packet Ensures data security not integrity

Answer 50

Encapsulating security payload (ESP)

Question 51

The _____________ only encrypts and authenticates the payload of the IP packet, providing the most security by enabling the security functions between two communicating devices or end-points.

Answer 51

Transport mode

Question 52

__________ protects communication between routers and not end hosts. This method provides protection for portions of the route, which travels outside the organization.

Answer 52

Tunnel Mode