1.4 Network Security

Question 1

What is malware?

Answer 1

Malware is a type of program that can replicate itself and cause a computer to malfunction.

Question 2

List different malware.

Answer 2

Virus, worms, ransomware, spyware, root kits, Trojan horses, and back doors.

Question 3

List some measures to prevent malware attacks.

Answer 3

Installing anti-virus software, backing-up a system in off-site mode, updating operating systems and browsers and avoiding downloads of email attachments from unknown senders.

Question 4

What is phishing?

Answer 4

Phishing is a type of attack to obtain security-related information such as passwords by disguising as a trustworthy entity through electronic communication.

Question 5

How are phishing emails filtered?

Answer 5

Email service providers filter phishing emails

Question 6

What is a Denial of Service (DoS) attack?

Answer 6

Denial of Service attacks prevent a user from accessing part of a network.

Question 7

In what ways do attackers intercept and steal data?

Answer 7

By using hijacking software and pretending to be the destination across the network. Also, by using packet sniffing software.

Question 8

What does packet sniffing software do?

Answer 8

Packet sniffing software examines data packets in a certain route and by using a network switch an attacker manages to examine all the data packets at a certain IP address.

Question 9

How can a user defend himself against brute-force attacks?

Answer 9

Using long passwords with lowercase, uppercase, numbers and special characters.

Question 10

What are the steps involved in penetration testing?

Answer 10

Identifying a vulnerability
Setting up an attack
Carrying out the attack
Testing the ability of the system to recover any lost or corrupted data

Question 11

List some of the functions of a firewall.

Answer 11

Checks whether the incoming and outgoing data meet the set of requirements.
Prevent malware, hackers and DoS attacks.

Question 12

What is an incident response plan?

Answer 12

In case of a security failure, a plan is established to recover from it, which is called an incident response plan.

Question 12

List some areas covered by network policies.

Answer 12

Acceptable use policy, archiving, passwords, email, web, remote access, wireless network, servers and incident response plan.

Question 13

What is ethical hacking?

Answer 13

Ethical hacking is the process of analysing the weakness in network and security vulnerabilities with organisation’s knowledge.

Question 14

What is gateway?

Answer 14

A hardware that acts as firewall is called gateway.

Question 15

How is a system protected from keyloggers?

Answer 15

Systems ask the user to enter only a certain characters of the password to protects the system from keyloggers.

Question 16

What is proxy server?

Answer 16

A proxy server is a server installed between user’s computer and web server, acts as a firewall.

Question 17

How does proxy server provide security?

Answer 17

Use of proxy server ensures that only safe websites are visited. Access to certain websites can be blocked. Proxy server hides the IP address of user to enhance security.

Question 18

List some security protocols.

Answer 18

Secure Sockets Layer (SSL) and Transport Layer Security (TLS)

Question 19

What is hashing algorithm?

Answer 19

A hashing algorithm converts a text message into a string of hexadecimal characters.