Chapter 10 Flashcards
(54 cards)
What is the role of Microsoft Windows security administration?
The role involves implementing security controls within the IT infrastructure and maintaining security policies.
What does the C-I-A triad stand for?
Confidentiality, Integrity, and Availability.
What is security administration?
The process of putting security controls into effect within the IT infrastructure.
What are some tasks of security administrators?
Configuring and maintaining computers, user accounts, authentication methods, and monitoring security policies.
What is the Plan-Do-Check-Act Cycle?
A cycle used to implement and manage security policies effectively.
What is required to maintain confidentiality?
Protecting data from unauthorized access and ensuring that only authorized users can view data.
What is the effective user in Windows security?
The user account that is running the process requesting object access.
What are some security controls that protect data confidentiality?
Data labeling, encryption, password policies, object DACLs, Active Directory, physical access controls, anti-malware protection, OS updates, and DLP software.
What is the main goal of maintaining integrity?
To ensure that no unauthorized user can change data.
What are some security controls that protect data integrity?
Password policies, object DACLs, Active Directory, physical access controls, message/file authentication, anti-malware protection, OS updates, and digital signatures.
What does maintaining availability require?
Controls that address daily operations and unusual situations.
What are the four main types of concerns affecting data availability?
Attacks, performance, interruptions or disasters, and other security controls.
What are some security controls that protect data availability?
Firewalls, IDS, IPS, performance monitors, backups, recovery plans, and resource redundancy.
What is the purpose of Windows Firewall administration?
To maintain settings for inbound and outbound rules, connection security rules, and monitor firewall performance.
What is the function of the Windows Defender Firewall with Advanced Security MMC snap-in?
Provides real-time performance data and identifies potential problems threatening data availability.
What is the purpose of creating backups?
To ensure that an organization’s data is preserved and can be restored if lost.
What utility does Microsoft provide for backup starting with Windows 7?
The Backup and Restore utility.
What is the benefit of defining Group Policy Objects (GPOs) in Active Directory?
It centralizes security rules and reduces the workload of administrators.
What is a DACL in Windows security?
A Discretionary Access Control List that determines access permissions for an object.
What are the main methods to encrypt stored data in Windows?
Encrypting File System (EFS), BitLocker, and BitLocker To Go.
What is required for compliance in security administration?
Ensuring that all items in the IT infrastructure meet or exceed security goals.
What are the three main elements for satisfying security goals?
Clearly stated security goals, documented plans, and communication with stakeholders.
What should a solid security plan include?
Security policy, security standard, security procedure, and security guidelines.
What is the primary focus of Chapter 10 in Security Strategies in Windows Platforms and Applications?
The primary focus is on implementing security strategies in Windows environments.
