5a - Network Security

Question 1

Uses duplication of critical components/devices, increasing the reliability of the system.

Answer 1

Redundancy

Question 2

Eliminates a single point of power failure within the network.

Answer 2

Redundant power

Question 3

Comes in various sizes and can sustain network operations for only a limited time in the event of an outage.

Answer 3

UPS

Question 4

Provides incremental trunk speeds by combining multiple interfaces to act as one link.

Answer 4

Link Aggregation

Question 5

Used primarily on Cisco switches;
Allows multiple physical ethernet links to combine into one logical channel.

Answer 5

EtherChannel

Question 6

Lets you monitor network nodes from a management server.

Answer 6

SNMP

Question 7

SNMPv1

Answer 7

Operates over UDP, IP, OSI CLNS, DDP, and IPX

Question 8

SNMPv2

Answer 8

Revises v1 and improves on security, confidentiality, and manager-to-manager communications.

Question 9

SNMPv3

Answer 9

Added security and remote configuration to SNMP;
The preferred version and required on AF networks.

Question 10

Any program or code designed to do something on a system or network that you don’t want to have happen.

Answer 10

Malware

Question 11

A program that has two jobs: replicate and activate.

Answer 11

Virus

Question 12

Replicates exclusively through networks.

Answer 12

Worm

Question 13

Can be embedded into a program file and automatically runs when the file is opened.

Answer 13

Macro Virus

Question 14

A piece of malware that looks or pretends to do one thing while doing something bad.

Answer 14

Trojan horse

Question 15

Usually a trojan horse that takes advantage of very low-level operating system functions to hide from all but the most aggressive of antimalware tools.

Answer 15

Rootkit

Question 16

A program that monitors the types of websites you frequent and uses that information to generate targeted advertisements.

Answer 16

Adware

Question 17

A function of any program that sends information about your system or your actions over the Internet.

Answer 17

Spyware

Question 18

The process of using or manipulating people inside the network environment to gain access to that network from the outside.

Answer 18

Social Engineering

Question 19

When the attacker poses as some trusted site, such as your bank, so you could put in your personal information.

Answer 19

Phishing

Question 20

A type of phishing that targets specific individuals or groups within an organization.

Answer 20

Spear phishing

Question 21

A highly targeted phishing attack aimed at senior executives masquerading as a legitimate email.

Answer 21

Whaling

Question 22

When a person goes through the trash in order to find personal information.

Answer 22

Dumpster diving

Question 23

When a person inserts themselves into a conversation between two others, covertly intercepting traffic thought to be only between two people.

Answer 23

Man in the middle attack

Question 24

Floods the network with so many requests that it becomes overwhelmed and stops functioning.

Answer 24

DoS
Denial of Service

Question 25

Using another person's network without permission.

Answer 25

Leeching

Question 26

Four types of encryption

Answer 26

WEP, WPA, WPA2, and WPA3

Question 27

An unauthorized WAP installed on the network.

Answer 27

Rogue access point

Question 28

A rogue access point that looks like a legitimate access point.

Answer 28

Evil twin

Question 29

Occurs when a user identifies themselves to the system, and the identity is verified against an authentication database.

Answer 29

Authentication

Question 30

Occurs after the user has been authenticated.

Answer 30

Authorization

Question 31

The tracking of network and resource usage on the network.

Answer 31

Accounting

Question 32

States what users are allowed and not allowed to do on the company's network.

Answer 32

Acceptable Use Policy (AUP)

Question 33

Protect networks from potential attacks outside the network by filtering packets using a number of methods.

Answer 33

Firewalls

Question 34

Permits or denies access to the network based on the MAC address of the client.

Answer 34

MAC address filtering

Question 35

Like MAC address filtering, except filtering is based on IP addresses instead of MAC addresses.

Answer 35

IP Address filtering / Packet filtering

Question 36

Prevents the passage of any TCP or UDP segments/datagrams through any port other than the ones prescribed by the system administrator.

Answer 36

Port filtering

Question 37

A method used by firewalls to prevent a hacker from gaining access to the real IP address.

Answer 37

Hiding the real IP address

Question 38

A software utility that detects, prevents, and removes viruses, worms, and other malware from a computer.

Answer 38

Anti virus

Question 39

Software tools and programs designed to identify and prevent malicious software, or malware, from infecting computer systems or electronic devices.

Answer 39

Anti-malware software

Question 40

Inspects incoming packets looking for active intrusions; does NOT take any actions to stop the attack.

Answer 40

Intrusion Detection System IDS

Question 41

Similar to IDS, but adds the capability of actively prevent intrusions.

Answer 41

Intrusion Prevention System IPS

Question 42

Proactively identifies security vulnerabilities of computing systems in a network to determine if and where a system can be exploited and/or threatened.

Answer 42

Vulnerability scanners

Question 43

The name assigned to a wi-fi network; a text string that is up to 32 bytes long.

Answer 43

SSID

Question 44

A security access control method whereby the 48-bit address assigned to each wireless NIC is used to determine access to the network.

Answer 44

MAC address filtering

Question 45

A security algorithm for IEEE 802.11

Answer 45

WEP Wired Equivalent Privacy

Question 46

An intermediate measure to take the place of WEP.

Answer 46

WPA

Question 47

Implements the mandatory elements of IEEE 802.11i.

Answer 47

WPA2

Question 48

Adds better protection from brute-force dictionary attacks and adds individualized data encryption.

Answer 48

WPA3