Chapter 1

Question 1

What is use case?

Answer 1

Describes a goal that an organization wants to achieve. A use case can include actors, precondition, trigger, postcondition, normal flow, and alternate flow.

Question 2

What is encryption?

Answer 2

Scrambles data to make it unreadable by unauthorized personnel.

Question 3

What is access control?

Answer 3

Identification, authentication, and authorization combined to ensure only authorized personnel can access data.

Question 4

What is steganography?

Answer 4

It obscure the data and can be used in a use case to support obfuscation. It attempts to make something unclear or difficult to understand.

Question 5

What is digital signature?

Answer 5

Provides authentication and non-repudiation.

Question 6

What is disk redundancies?

Answer 6

Allow a system to continue to operate even if a disk fails.

Question 7

What is server redundancies?

Answer 7

Failover clusters include redundant servers and ensure a service will continue to operate, even if a server fails.

Question 8

What is load balancing?

Answer 8

Uses multiple servers to support a single service and increase availability of web sites and web-based applications

Question 9

What is site redundancies?

Answer 9

If a site can no longer function due to a disaster, the organization can move critical systems to an alternate site.

Question 10

What is backups?

Answer 10

Restore data is necessary.

Question 11

What are the types of security control classification?

Answer 11

Technical, administrative, or physical.

Question 12

What is the purpose of technical control?

Answer 12

It reduces vulnerability by using encryption, antivirus software, intrusion detection systems, firewalls, and least privilege.

Question 13

What is administrative controls?

Answer 13

Use methods mandated by organizational policies or other guidelines. Some methods include risk assessments, vulnerability assessments, and penetration tests.

Question 14

What is the difference between vulnerability assessments and penetration tests

Answer 14

Vulnerability assessment attempts to discover current vulnerabilities or weaknesses while penetration tests attempt to exploit vulnerabilities.

Question 15

What is change management?

Answer 15

Helps ensure changes don’t result in unintended configuration errors.

Question 16

What is contingency planning?

Answer 16

Reduce the overall impact on the organization if an outage occur.

Question 17

What is hardening?

Answer 17

It is a practice of making a system or application more secure than its default configuration.

Question 18

What are examples of detective controls?

Answer 18

Log monitoring, trend analysis, security audit, video surveillance, and motion detection.

Question 19

What is IPS?

Answer 19

Intrusion prevention system attempts to detect attacks and then modify the environment to block the attack from continuing.

Question 20

What is deterrent controls?

Answer 20

Attempt to discourage threat.

Question 21

What is virtualization?

Answer 21

Allow you to host one or more virtual systems or VMs, on a single physical system. Provides high level of flexibility when testing security controls, updates, and patches.

Question 22

What is hypervisor?

Answer 22

The software that creates, runs, and manages the VMs.

Question 23

What is Type I hypervisors?

Answer 23

Run directly on the system hardware.

Question 24

What is Type II hypervisors?

Answer 24

Run as software within a host operating system.

Question 25

What is VM Escape?

Answer 25

It is an attack that allows an attacker to access the host system from within the virtual system.

Question 26

What is VM sprawl?

Answer 26

It occurs when an organization has many VMs that aren’t managed properly.

Question 27

What is ping?

Answer 27

Basic command used to test connectivity for remote systems. Use it to verify a system can resolve valid host names to IP.

Question 28

What is ipconfig?

Answer 28

Shows transmission control protocol/internet protocol (TCP/IP) configuration information for a system. Provides basic information about NIC (network interface cards).

Question 29

What is netstat?

Answer 29

Allow you to view statistics for TCP/IP protocols on a system. View active TCP/IP network connections.

Question 30

What is tracert?

Answer 30

Lists the routers between two systems. Each router is referred to as a hop. Tracert identifies the IP address and sometimes the host name of each hop in addition to the round-trip times for each hop.

Question 31

What is arp?

Answer 31

Resolves IP addresses to MAC addresses and stores the result in the ARP cache.