Protecting Your NetworkChapter 19 Flashcards
Define Hardening
Applying security hardware software and processes to your network to prevent bad things from happening.
Define Network Segmentation
Separating network assets through various means such as with vlans or with a DMZ to protect against access by malicious actors.
Define Amplification
AKA Amplified Dos Attack
Type of DOS attack that sends a small amount of traffic to a server which produces a much larger response from the server that is sent to a spoofed IP address overwhelming a victim machine.
Define a De-authentication Attack
Type of DOS attack, targets wifi networks, specifically by sending out a frame that kicks a wireless client off its current WAP connection, a Rouge WAP prevents a stronger signal which the client will prefer. Rouge WAP connects to internet and monitors users traffic.
What is another name for On-Path Attack?
Man in the Middle Attack
Define Postering
Process by which a client presents its security characteristics via an agent or agentless interface to an access control server. Server checks characteristics and decides weather to grant a connection, deny a connection, or redirect the connection depending on the security compliance evoked.
Define Reflection
Used in DDOS attacks, attacker sends request to normal servers with the targets IP address spoofed as the source. Normal servers responded to spoofed ip address (target system) overwhelming it with reflected traffic without identifying the true initiator