IS 414 CH. 8 (VOCAB)

Question 1

Defense-in-depth

Answer 1

Employing multiple layers of controls to avoid a single point-of-failure

Question 2

Time-based model

Answer 2

Implementing a combination of preventative, detective, and corrective controls that protect information assets long enough to enable an organization to recognize that an attack is occurring and take steps to thwart it before any information is lost

Question 3

Social Engineering

Answer 3

using deception to obtain unauthorized access to information resources.

Question 4

Authentication

Answer 4

Verifying the identity of the person or device attempting to access the system

Question 5

Biometric identifier

Answer 5

A physical or behavioral characteristic that is used as an authentication credential

Question 6

Multifactor authentication

Answer 6

The use of two or more types of authentication credentials in conjunction to achieve a greater level of security

Question 7

Multimodal authentication

Answer 7

The use of multiple authentication credentials of the same type to achieve a greater level of security

Question 8

Authorization

Answer 8

The process of restricting access of authenticated users to specific portions of the system and limiting what actions they are permitted to perform

Question 9

Access control matrix

Answer 9

A table usd to implement authorization controls

Question 10

Compatibility test

Answer 10

Matching the user’s authentication credentials against the access control matrix to determine whether that employee should be allowed to access that resource and perform the requested action

Question 11

Border router

Answer 11

A device that connects an organization’s information system to the internet

Question 12

Firewall

Answer 12

A special-purpose hardware device or software running a general-purpose computer that controls both inbound and outbound communication between the system behind the firewall and other networks

Question 13

Demilitarized zone (DMZ)

Answer 13

A separate network located outside the organization’s internal information system that permits controlled access from the internet

Question 14

Routers

Answer 14

Special purpose devices that are designed to read the source and destination address field in IP packet headers to decide where to send (route) the packet next

Question 15

Access control list (ACL)

Answer 15

A set of if-then rules used to determine what to do with arriving packets

Question 16

Packet filtering

Answer 16

A process that uses various fields in a packet’s IP and TCP headers to decide what to do with the packet

Question 17

Deep packet inspection

Answer 17

A process that examines the data in the body of a TCP packets to control traffic, rather than looking only at the information in the IP and TCP headers

Question 18

Intrusion prevention systems (IPS)

Answer 18

Software or hardware that monitors patterns in the traffic flow to identify and automatically block attacks

Question 19

Remote authentication dial-in user service (RADIUS)

Answer 19

A standard method for verifying the identity of users attempting to connect via dial-in access

Question 20

War dialing

Answer 20

Searching for an idle modem by programming a computer to dial thousands of phone lines

Question 21

Endpoints

Answer 21

Collective term for the workstations, servers, printers, and other devices that comprise an organization’s network

Question 22

Vulnerabilities

Answer 22

Flaws in programs that can be exploited to either crash the system or take control of it

Question 23

Vulnerability scanners

Answer 23

Automated tools designed to identify whether a given system possesses any unused and unnecessary programs that represent potential security threats

Question 24

Hardening

Answer 24

The process of modifying the default configuration of endpoints to eliminate unnecessary settings and services

Question 25

Change control and change management

Answer 25

The formal process used to ensure that modifications to hardware, software, or processes do not reduce systems reliability

Question 26

Log analysis

Answer 26

The process of examining logs to identify evidence of possible attacks

Question 27

Intrusion detection systems (IDS)

Answer 27

A system that creates logs of all network traffic that was permitted to pass the firewall and then analyzes those logs for signs of attempted or successful intrusions

Question 28

Penetration test

Answer 28

An authorized attempt to break into the organization’s information system

Question 29

Computer incident response team (CIRT)

Answer 29

A team that is responsible for dealing with major security incidents

Question 30

Exploit

Answer 30

A program designed to take advantage of a known vulnerability

Question 31

Patch

Answer 31

Code released by software developers that fixes a particular vulnerability

Question 32

Patch management

Answer 32

The process of regularly applying patches and updates to software

Question 33

Virtualization

Answer 33

Running multiple systems simultaneously on one physical computer

Question 34

Cloud computing

Answer 34

Using a browser to remotely access software, data storage, hardware, and applications