Connect and Protect: Networks and Network Security

Question 1

Active packet sniffing

Answer 1

A type of attack where data packets are manipulated in transit

Question 2

Address Resolution Protocol (ARP)

Answer 2

Used to determine the MAC address of the next router or device to traverse

Question 3

Bandwidth

Answer 3

The maximum data transmission capacity over a network, measured by
bits per second

Question 4

Baseline configuration

Answer 4

A documented set of specifications within a system that is used as a basis for future builds, releases, and updates

Question 5

Bluetooth

Answer 5

Used for wireless communication with nearby physical devices

Question 6

Botnet

Answer 6

A collection of computers infected by malware that are under the control of a
single threat actor, known as the “bot herder”

Question 7

Cloud-based firewalls

Answer 7

Software firewalls that are hosted by the cloud service provider

Question 8

Cloud computing

Answer 8

The practice of using remote servers, application, and network services that are hosted on the internet instead of on local physical devices

Question 9

Cloud network

Answer 9

A collection of servers or computers that stores resources and data in remote data centers that can be accessed via the internet

Question 10

Controlled zone

Answer 10

A subnet that protects the internal network from the uncontrolled zone

Question 11

Data packet

Answer 11

A basic unit of information that travels from one device to another within a network

Question 12

Denial of service (DoS) attack

Answer 12

An attack that targets a network or server and floods it with network traffic

Question 13

Distributed denial of service (DDoS) attack

Answer 13

A type of denial of service attack that
uses multiple devices or servers located in different locations to flood the target
network with unwanted traffic

Question 14

Domain Name System (DNS)

Answer 14

A networking protocol that translates internet domain names into IP addresses

Question 15

Encapsulation

Answer 15

A process performed by a VPN service that protects your data by wrapping sensitive data in other data packets

Question 16

File Transfer Protocol (FTP)

Answer 16

Used to transfer files from one device to another over a network

Question 17

Firewall

Answer 17

A network security device that monitors traffic to or from your network

Question 18

Forward proxy server

Answer 18

A server that regulates and restricts a person’s access to the
internet

Question 19

Hardware

Answer 19

The physical components of a computer

Question 20

Hub

Answer 20

A network device that broadcasts information to every device on the network

Question 21

Hypertext Transfer Protocol (HTTP)

Answer 21

An application layer protocol that provides a method of communication between clients and website servers

Question 22

Hypertext Transfer Protocol Secure (HTTPS)

Answer 22

A network protocol that provides a
secure method of communication between clients and servers

Question 23

Identity and access management (IAM)

Answer 23

A collection of processes and technologies
that helps organizations manage digital identities in their environment

Question 24

IEEE 802.11 (Wi-Fi)

Answer 24

A set of standards that define communication for wireless LANs

Question 25

Internet Control Message Protocol (ICMP)

Answer 25

An internet protocol used by devices to
tell each other about data transmission errors across the network

Question 26

Internet Control Message Protocol (ICMP) flood

Answer 26

A type of DoS attack performed by
an attacker repeatedly sending ICMP request packets to a network server

Question 27

Internet Protocol (IP)

Answer 27

A set of standards used for routing and addressing data packets as they travel between devices on a network

Question 28

Internet Protocol (IP) address

Answer 28

A unique string of characters that identifies the location of a device on the internet

Question 29

IP spoofing

Answer 29

A network attack performed when an attacker changes the source IP of a
data packet to impersonate an authorized system and gain access to a network

Question 30

Local area network (LAN)

Answer 30

A network that spans small areas like an office building, a school, or a home

Question 31

Media Access Control (MAC) address

Answer 31

A unique alphanumeric identifier that is
assigned to each physical device on a network

Question 32

Modem

Answer 32

A device that connects your router to the internet and brings internet access
to the LAN

Question 33

Multi-factor authentication (MFA)

Answer 33

A security measure that requires a user to verify their identity in two or more ways to access a system or network

Question 34

Network

Answer 34

A group of connected devices

Question 35

Network log analysis

Answer 35

The process of examining network logs to identify events of interest

Question 36

Network protocols

Answer 36

A set of rules used by two or more devices on a network to describe the order of delivery of data and the structure of data

Question 37

Network segmentation

Answer 37

A security technique that divides the network into segments

Question 38

Operating system (OS)

Answer 38

The interface between computer hardware and the user

Question 39

Open systems interconnection (OSI) model

Answer 39

A standardized concept that describes
the seven layers computers use to communicate and send data over the network

Question 40

On-path attack

Answer 40

An attack where a malicious actor places themselves in the middle of an authorized connection and intercepts or alters the data in transit

Question 41

Packet sniffing

Answer 41

The practice of capturing and inspecting data packets across a
network

Question 42

Passive packet sniffing

Answer 42

A type of attack where a malicious actor connects to a network hub and looks at all traffic on the network

Question 43

Patch update

Answer 43

A software and operating system update that addresses security vulnerabilities within a program or product

Question 44

Penetration testing

Answer 44

A simulated attack that helps identify vulnerabilities in systems, networks, websites, applications, and processes

Question 45

Ping of death

Answer 45

A type of DoS attack caused when a hacker pings a system by sending it an oversized ICMP packet that is bigger than 64KB

Question 46

Port

Answer 46

A software-based location that organizes the sending and receiving of data
between devices on a network

Question 47

Port filtering

Answer 47

A firewall function that blocks or allows certain port numbers to limit unwanted communication

Question 48

Proxy server

Answer 48

A server that fulfills the requests of its clients by forwarding them to other servers

Question 49

Replay attack

Answer 49

A network attack performed when a malicious actor intercepts a data packet in transit and delays it or repeats it at another time

Question 50

Reverse proxy server

Answer 50

A server that regulates and restricts the Internet’s access to an internal server

Question 51

Router

Answer 51

A network device that connects multiple networks together

Question 52

Secure File Transfer Protocol (SFTP)

Answer 52

A secure protocol used to transfer files from one device to another over a network

Question 53

Secure shell (SSH)

Answer 53

A security protocol used to create a shell with a remote system

Question 54

Security hardening

Answer 54

The process of strengthening a system to reduce its vulnerabilities and attack surface

Question 55

Security information and event management (SIEM)

Answer 55

An application that collects and analyzes log data to monitor critical activities for an organization

Question 56

Security zone

Answer 56

A segment of a company’s network that protects the internal network from the internet

Question 57

Simple Network Management Protocol (SNMP)

Answer 57

A network protocol used for monitoring and managing devices on a network

Question 58

Smurf attack

Answer 58

A network attack performed when an attacker sniffs an authorized user’s IP address and floods it with ICMP packets

Question 59

Speed

Answer 59

The rate at which a device sends and receives data, measured by bits per
second

Question 60

Stateful

Answer 60

A class of firewall that keeps track of information passing through it and
proactively filters out threats

Question 61

Stateless

Answer 61

A class of firewall that operates based on predefined rules and that does not keep track of information from data packets

Question 62

Subnetting

Answer 62

The subdivision of a network into logical groups called subnets

Question 63

Switch

Answer 63

A device that makes connections between specific devices on a network by sending and receiving data between them

Question 64

Synchronize (SYN) flood attack

Answer 64

A type of DoS attack that simulates a TCP/IP
connection and floods a server with SYN packets

Question 65

TCP/IP Model

Answer 65

A framework used to visualize how data is organized and transmitted across a network

Question 66

Transmission Control Protocol (TCP)

Answer 66

An internet communication protocol that
allows two devices to form a connection and stream data

Question 67

Transmission Control Protocol (TCP) 3-way handshake

Answer 67

A three-step process used to establish an authenticated connection between two devices on a network

Question 68

Uncontrolled zone

Answer 68

The portion of the network outside the organization

Question 69

User Datagram Protocol (UDP)

Answer 69

A connectionless protocol that does not establish a connection between devices before transmissions

Question 70

Virtual Private Network (VPN)

Answer 70

A network security service that changes your public IP address and masks your virtual location so that you can keep your data private when you are using a public network like the internet

Question 71

Wide Area Network (WAN)

Answer 71

A network that spans a large geographic area like a city, state, or country

Question 72

Wi-Fi Protected Access (WPA)

Answer 72

A wireless security protocol for devices to connect to the internet