Cyber - Sheet1

Question 1

What is the CIA triad in cybersecurity?

Answer 1

CIA Triad: Confidentiality ensures data is only accessible by authorized parties. Integrity ensures data is accurate and unaltered. Availability ensures data is accessible when needed.

Question 2

Explain the difference between symmetric and asymmetric encryption.

Answer 2

Symmetric Encryption: Uses the same key for both encryption and decryption. Asymmetric Encryption: Uses a pair of keys (public and private) for encryption and decryption, providing stronger security.

Question 3

What is the difference between a vulnerability and an exploit?

Answer 3

Vulnerability: Weakness in a system that could be exploited. Exploit: Code or technique used to take advantage of a vulnerability.

Question 4

Describe the concept of least privilege.

Answer 4

Least Privilege: Users should only have the minimum level of access required to perform their job functions, reducing the risk of unauthorized access.

Question 5

What is a DDoS attack, and how can it be mitigated?

Answer 5

DDoS Attack: Overwhelms a target system with a flood of traffic, making it inaccessible to legitimate users. Mitigation involves filtering and blocking malicious traffic.

Question 6

What is a phishing attack, and how can it be prevented?

Answer 6

Phishing Attack: Attempts to trick users into divulging sensitive information or clicking on malicious links. Prevention includes user education and email filtering.

Question 7

Describe the concept of defense in depth.

Answer 7

Defense in Depth: Layered approach to security, where multiple security measures are implemented to protect against various threats.

Question 8

What is malware, and what are some common types?

Answer 8

Malware: Malicious software designed to disrupt, damage, or gain unauthorized access to a computer system. Common types include viruses, worms, and ransomware.

Question 9

Explain the difference between white-box and black-box testing.

Answer 9

White-Box Testing: Tester has full knowledge of the system’s internal workings. Black-Box Testing: Tester has no prior knowledge of the system’s internal structure.

Question 10

What is SSL/TLS, and how does it provide security for internet communication?

Answer 10

SSL/TLS: Secure Sockets Layer/Transport Layer Security protocols encrypt data transmitted over the internet, providing secure communication between clients and servers.

Question 11

What is the OWASP Top Ten, and why is it important?

Answer 11

OWASP Top Ten: List of the most critical web application security risks. Important for developers to prioritize security measures.

Question 12

How do you secure a wireless network?

Answer 12

Wireless Network Security: Securing Wi-Fi networks involves using strong encryption (e.g., WPA2), disabling SSID broadcasting, and implementing MAC address filtering.

Question 13

Describe the concept of social engineering and provide examples.

Answer 13

Social Engineering: Manipulating individuals to divulge confidential information or perform actions that compromise security, often through psychological manipulation or deception.

Question 14

What is a zero-day vulnerability, and how can organizations protect against it?

Answer 14

Zero-Day Vulnerability: Vulnerability that is exploited before the vendor releases a patch or fix. Protection involves keeping systems up-to-date and using intrusion detection systems.

Question 15

Explain the concept of a security incident response plan.

Answer 15

Security Incident Response Plan: Documented procedures outlining how an organization will respond to and manage security incidents, minimizing their impact.

Question 16

Describe the difference between a virus, a worm, and a Trojan horse.

Answer 16

Virus, Worm, Trojan: Virus attaches to files, Worm spreads independently, Trojan hides in seemingly harmless software.

Question 17

What is a VPN tunneling protocol, and which protocol is commonly used for secure VPN connections?

Answer 17

VPN Tunneling Protocol: Establishes secure connection over public network. Common protocol: OpenVPN, IPSec.

Question 18

Explain the concept of a “man-in-the-middle” attack and how it can be mitigated.

Answer 18

Man-in-the-Middle Attack: Attacker intercepts communication between two parties. Mitigated by using encryption and digital signatures.

Question 19

What is the difference between vulnerability scanning and penetration testing?

Answer 19

Vulnerability Scanning vs Penetration Testing: Scanning identifies weaknesses, Testing actively exploits them.

Question 20

How does a Public Key Infrastructure (PKI) work, and what is its role in cybersecurity?

Answer 20

Public Key Infrastructure (PKI): Manages keys and certificates for secure communication.

Question 21

Describe the steps involved in a typical cybersecurity incident response process.

Answer 21

Incident Response Process: Prepare, Identify, Contain, Eradicate, Recover, Learn.

Question 22

What are the benefits and risks of using cloud services for storing sensitive data?

Answer 22

Cloud Services: Benefits: Scalability, Accessibility. Risks: Data privacy, Security.

Question 23

Explain the concept of a “zero-trust” security model and its implications for network security.

Answer 23

Zero-Trust Model: Assumes no trust, verifies everything. Improves network security by limiting access.

Question 24

What is the difference between symmetric and asymmetric key cryptography, and when would you use each?

Answer 24

Symmetric vs Asymmetric Key Cryptography: Symmetric uses same key for encryption/decryption, Asymmetric uses key pair (public and private). Symmetric is faster, asymmetric provides better security for key exchange.