block 11 part 2 boundary protection

Question 1

boundary protection

Answer 1

Prevent/Detect unauthorized Access

protects base’s “network perimeter”

allows only authorized personnel access to (C&I) through single logical service delivery point (SDP)

Question 2

what is National Institute of Standards and Technologies (NIST)

Answer 2

• device controls communication at external boundary of system
• key internal boundaries within system.

Question 3

what should informations systems do?

Answer 3

establish communication path between remote users with firewalls controlling outgoing/incoming network traffic

separate computing systems and network infrastructures

Question 4

what is a parallel configuration?

Answer 4

wide but shallow
many entrances
(ex. mall)

Question 5

serial configuration?

Answer 5

very narrow but very deep
ex. bank or airport
single entrance (several gateways or checkpoints)

Question 6

what does network security policy do?

Answer 6

• controls network traffic, usage, identifies resources, threats
• defines network use, responsibilities, details action plans for when security policy is violated.

Question 7

when you deploy a network security policy it should

Answer 7

strategically enforced at defensible boundaries within your network.

strategic boundaries=perimeter networks

Question 8

To establish a collection of perimeter networks

Answer 8

networks of computers and network security mechanisms need to be designated and defined

Question 9

what are the three types of perimeters present?

Answer 9

-Outermost (Untrusted)

• Internal (DMZ)
• Innermost (Trusted)

Question 10

what is outermost (untrusted)?

Answer 10

identifies separation point between controlled/uncontrolled assets.

• DOD COM. most insecure/untrusted part of network

Question 11

what is internal (DMZ)?

Answer 11

• located between the
  innermost and outermost networks.

uses intranet firewalls, IAP and filtering routers.

what goes out must come back in

Question 12

what is innermost (trusted)?

Answer 12

last line of protection from outside intrusion. contains the computers, servers, routers, and switches

• protection on devices (OS firewall or access lists on the routers)

contains more layers of security than other layers

Question 13

what is POLP?

Answer 13

principle of least privilege =
All accounts will only have access to what they need to conduct day-to-day mission requirements.

Question 14

why do most orgs prefer a single link to connect to the internet?

Answer 14

Managing/policing Internet connection becomes much easier this way.

firewall system; restrict access to services and systems, and can be a monitoring station, keeping logs of attempts to access services and systems from off-site.

Question 15

what is the most insecure area of a network infrastructure?

Answer 15

outermost perimeter

this area is reserved for external routers, public Internet servers, such as HTTP, FTP, and Gopher servers.
easiest area to gain access and therefore, it is the most frequently attacked.

Question 16

what is a proxy server?

Answer 16

application/device that breaks connection between client and server.

accepts traffic entering/leaving network processes it, and forwards it.

authority to act for someone else.
(HTTP proxy for web,
SMPT used for email)

Question 17

what is a gateway?

Answer 17

two (or more) computer networks that have SIMILAR functions but dissimilar implementations.

enables one way or two-way com between networks

provide compatibility by converting transmission speeds, protocols, codes, or security measures

(voice signals into IP packets, signaling, control, and address translation functions)

Question 18

what is a guard (system)?

Answer 18

mechanism limiting exchange of information

• acts as gateway between two information systems operating under different security policies
• mediate information data transfers

Question 19

what is a firewall?

Answer 19

monitors traffic crossing network perimeters

gateway for communication between trusted, untrusted or unknown networks.

most commonly separate internal
(private) and external (public) networks.

Question 20

what is encrypted tunneling?

Answer 20

technology enables network to send data via another network’s connections.