4 - Network Security + System Software

Question 1

What is Malware and give examples?

Answer 1

Malcious software. Executable programs that run on computer.
Examples: trojans, worms, viruses, ransomware

Question 2

What is a Virus?

Answer 2

Replicates code onto other programs. Infects other computers and harms them by deleting, corrupting or modifying files.

Question 3

What is a worm?

Answer 3

Replicates itself to spread to other computers. Causes no damage to attacked computer but slows it down.

Question 4

What is a Trojan Horse?

Answer 4

File appears to be something user wants e.g. program, game or cracked file
Causes damage, takes control and provides access to computer

Question 5

What is Ransomware?

Answer 5

Holds computer hostage by locking or encrypting access to it. Access is restored once ransom is paid.

Question 6

What are the 8 ways of exploiting vulnerabilities?

Answer 6

Unpatched software
Out-of-data anti-malware
Social engineering
Shoulder surfing
Phishing
Denial of Service
Man in the Middle attack
SQL injection

Question 7

How is Unpatched software exploited?

Answer 7

Vulnerable software as software and security updates have not been installed

Question 8

How is out-of-date anti-malware exploited?

Answer 8

If anti-virus software isn’t regularly updated then it is unable to detect latest viruses.

Question 9

What is Social engineering?

Answer 9

Ability to obtain confidential information by asking people for it.

Question 10

What is shoulder surfing and give examples

Answer 10

Ability to get information or passwords by observing as someone types them in e.g. CCTV camera, looking over someone’s shoulder.

Question 11

What is phishing?

Answer 11

A type of social engineering technique where messages are sent to users pretending to be banks/ websites. Try to get personal info e.g. passwords, credit card details e.t.c

Question 12

What are the 6 signs of Phishing?

Answer 12

Greeting
Sender’s address
Forged link
Request for personal info
Sense of urgency
Poor spelling

Question 13

What is Denial of service?

Answer 13

DOS - hacker uses/infects computer to flood server with requests. Server can’t respond fast enough and slows down or goes offline.
DDOS involves multiple computers

Question 14

What is a Man in the middle attack?

Answer 14

MITM - attacker intercepts communications between user and server. Attacker eavesdrops to find personal details. Adds different info to a web page or email.

Question 15

What is an SQL injection?

Answer 15

Structured query language - database query language which takes advantage of web input forms to access or destroy data.
Select From Where

Question 16

What are the 7 ways of identifying and preventing vulnerabilities?

Answer 16

Penetration testing
Anti-malware software
Encryption
Firewalls
User access levels
Password policy
Physical Security

Question 17

What is Penetration testing?

Answer 17

Delibarately trying to find security holes in your own systems.
Goals:
Identify targets of potential attacks
Idenitfy possible entry points
Attempt to break in
Report findings

Question 18

What is Anti-malware software and how does it work?

Answer 18

Detects malware e.g. spyware.
Process: Malware detected –> antivirus company and malware is verified and a signature is created –> virus database and computter runs update

Question 19

What is encryption and give examples of how it is used

Answer 19

Securing data so it cannot be understood without being decode with encryption key. (can still be read)
Storage and hard disk data is encrypted
HTTPS ( Secure hyper text transfer protocol)- encrypts connection to server.
Web browser send key and form data encrypted with server key. Server encrypts web page using web browser’s key. Individual files cna be encrypted with password.

Question 20

What is a Firewall and how does it work?

Answer 20

Seperate trusted and untrusted networks (normally on the internet)

Data sent around in small packets. Packets checked for origin and destination. Packets not matching filtering rules are dropped. Can be run on dedicated hardware.

Question 21

What are User access levels?

Answer 21

Access rights may be set on disks, folders and individual files.Only authorised users have access to and can edit particular files.

Question 22

What is Password policy?

Answer 22

Passwords checked so they conform to parameters given in required policy e.g. length, numvers, letters and special characters.

Question 23

What is physical security?

Answer 23

Physical methods of protecting hardware, software and networks.
Examples: CCTV, intruder alarms, locks, physical barriers and security guards.

Question 24

What is operating system software and what 6 things does it provide?

Answer 24

Manages hardware, users and software resources.

Provides: User interface, Memory managment, Multi-tasking, Peripheral management, File management + User management.

Question 25

How does Memory Management work?

Answer 25

Program run and copied from storage into main memory. Data also copied into main memory. OS keeps records of programs data and location and makes sure not to overwrite existing programs and data Main memory - RAM Secondary memory- SSD HDD

Question 26

What is Multi-tasking?

Answer 26

OS manages many tasks simultaneously occuring. Decode which process will run next on CPU and for whar duration. Appears that multiple tasks are running at the same time

Question 27

What are interrupts?

Answer 27

Signals sent to CPU by external devices indicating an event that needs immediate attention. Hardware interrupts - generated by hardware devices e.g. printer out of paper Software interrupts - generated by programs e.g. divding by 0 error.

Question 28

What is Peripheral management?

Answer 28

Receiving inputs and sending outputs to peripheral devices e.g. mouse, keyboard, printer e.t.c Device drivers: Programs that control peripheral devices. Hard disk is a storage peripheral.

Question 29

What is File management?

Answer 29

Responsibe for: Naming Allocating files to folders Moving Saving Copying Deleting files

Question 30

What is user management and access rights?

Answer 30

OS responsible for user logins and passwords. Access rights: User can see their own files. Users and admins have different access right levels. Some users can read but not edit a file.

Question 31

What are the 5 types of User interface?

Answer 31

GUI - Graphical user interfcae Menu driven interface CLI - Command line interface Voice activated Real time

Question 32

What does the GUI provide?

Answer 32

WIMP - Windows, icons, menus and pointers

Question 33

What does the menu driven interface provide?

Answer 33

Start up menu used by devices with a dedicated function e.g. mp3 players, atm machines, old ipods

Question 34

What is the CLI and what are its advantages?

Answer 34

Text commands are entered into the interface. Advantages: little processing, no need for expensive graphics card, faster to enter commands for expert users, less hard disk storage space required, less ram required.

Question 35

What is real-time?

Answer 35

Sensors that detect inputs.

Question 36

What is the purpose of Utility Software?

Answer 36

Maintains and organise a computer system. Performs extra functionality and housekeeping tasks.

Question 37

What 6 things are involved in Utility software?

Answer 37

Encryption software Disk defragmentation Data compression Disk clean up tools Disk formatters Anti-virus software

Question 38

What is Encryption software?

Answer 38

Encodes text so it can not be understood (can be read). Cypher key needed to decode it. Extra info: Padlock on sites show they are using HTTPS

Question 39

How does Disk defragmentation work?

Answer 39

Reorganises files so they are stored together in consecutive memory locations. Fragmented files are not in consecutive memory locations so are slower to access. Defragmented disks are faster to read and free space is in one place. New files do not need to be fragmented. Defragmentation is only applicable to mechanical HDD as they having move parts only. SSD's have no moving parts.

Question 40

How does data compression work?

Answer 40

Reduces ammount of storage space needed on a disk by reducing file size. Reduces amount of data sent. Allows attachments otherwise too large for file-size limit. More data can be stored on backup media.