5.1 Key Security Concepts

Question 1

What are the key security concepts in network security?

Answer 1

• Threat
• Vulnerability
• Exploit
• Mitigation

Threat – Any potential danger to an asset or system integrity.

Vulnerability – A weakness or gap in a system that can be exploited.

Exploit – A method or tool used to take advantage of vulnerabilities.

Mitigation – Actions taken to reduce the severity or impact of threats.

Question 2

List three common network threats.

Answer 2

1. Malware
2. Phishing Attacks
3. Denial of Service (DoS) Attacks

Malware – Malicious software designed to harm or exploit systems.

Phishing Attacks – Deceptive attempts to steal sensitive information.

Denial of Service (DoS) Attacks – Overloading a system to disrupt its functionality.

Question 3

List three types of malware.

Answer 3

1. Viruses
2. Worms
3. Trojans

Viruses – Malicious programs that attach to files and spread when executed.

Worms – Self-replicating malware that spreads without user action.

Trojans – Deceptive software that appears legitimate but contains harmful code.

Question 4

Why are weak passwords considered vulnerabilities?

Answer 4

They can be easily guessed or cracked, allowing unauthorized access.

Implementing complex passwords and multi-factor authentication mitigates unauthorized access risks.

Question 5

True or False:

A zero-day exploit refers to vulnerabilities that are known publicly.

Answer 5

False

Zero-day exploits target vulnerabilities unknown to vendors, giving no prior notice or opportunity to patch.

Question 6

Define:

phishing attacks

Answer 6

Fraudulent emails or websites trick users into revealing sensitive data.

Phishing relies on social engineering to manipulate victims into providing credentials, financial information, or personal details.

Question 7

What is a commonly used tool to mitigate phishing attacks.

Answer 7

Email filtering solutions

Email filters help detect and quarantine suspicious emails, reducing phishing attack risks.

Question 8

How does domain spoofing contribute to phishing attacks?

Answer 8

Attackers impersonate legitimate domains to trick users.

Domain spoofing creates deceptive URLs that mimic trusted websites, increasing the success rate of phishing attacks.

Question 9

What is social engineering?

Answer 9

A tactic that manipulates people into revealing sensitive information.

This often* exploits trust and lack of awareness* to deceive users.

Question 10

List three network mitigation techniques.

Answer 10

1. Firewalls
2. Intrusion Detection Systems (IDS)
3. Antivirus software

Firewalls – Block unauthorized network traffic.

Intrusion Detection Systems (IDS) – Monitor and alert on suspicious activity.

Antivirus Software – Detect and remove malicious programs.

Question 11

What is the principle of least privilege (PoLP)?

Answer 11

Users and systems should have only the minimum access necessary.

PoLP reduces the risk of insider threats and limits potential damage if credentials are compromised.

Question 12

What are two types of network vulnerabilities?

Answer 12

1. Software vulnerabilities
2. Misconfigured devices

Software Vulnerabilities – Flaws in programs that attackers can exploit.

Misconfigured Devices – Improper settings that create security gaps.

Question 13

True or False:

Antivirus software alone ensures complete network security.

Answer 13

False

Antivirus software must be part of a broader, layered defense strategy.

Question 14

Fill in the blank:

A firewall primarily protects networks by filtering ______.

Answer 14

traffic

Firewalls filter incoming and outgoing network traffic based on predefined security rules.

Question 15

Why is regular patching critical in security?

Answer 15

It addresses vulnerabilities, preventing exploitation.

Timely patching is essential in defending against known threats.

Question 16

What is a zero-trust security model?

Answer 16

A security model that requires continuous verification.

Zero-trust assumes no entity is trustworthy by default. It enforces strict authentication, least privilege access, and micro-segmentation to limit unauthorized movement within a network.

Question 17

What’s a technique to mitigate unauthorized access to network devices?

Answer 17

Secure passwords and access control lists (ACLs).

ACLs enforce policies by restricting unauthorized access and enhancing network security.

Question 18

What is the goal of penetration testing?

Answer 18

To discover vulnerabilities before attackers exploit them.

Penetration testing simulates real-world attacks to strengthen security measures.

Question 19

Fill in the blank:

Intrusion Detection Systems (IDS) primarily ______ network threats.

Answer 19

detect

IDS monitors network traffic, generating alerts for suspicious activity.

Question 20

What is the role of encryption in network security?

Answer 20

It protects data confidentiality by converting it into unreadable format.

Encryption ensures data privacy, even if intercepted by unauthorized parties.

Question 21

True or False:

End-to-end encryption (E2EE) keeps data encrypted from sender to receiver.

Answer 21

True

E2EE prevents unauthorized access to data in transit, commonly used in messaging apps and secure communications.