Domain 3 Security Architecture and Engineering Flashcards

Question

Firewalls

Answer 1

Devices that control traffic between networks based on predefined rules. They act as barriers between trusted and untrusted networks, such as an internal corporate network and the Internet.

Answer 2

Monitor network traffic and detect or prevent potential attacks. IDS alerts administrators of suspicious activities, while IPS takes active measures to mitigate threats.

Answer 3

Secure communication channels that use encryption to protect data transmitted over the Internet. VPNs allow users to send and receive data as if their devices were directly connected to a private network.

Answer 4

Protocols used to secure communications between client and server systems. They encrypt the data transmitted, ensuring confidentiality and integrity.

Answer 5

Protocol => USE => Secure (Yes/No) HTTP => Web browsing => No HTTPS => Secure Web browsing => Yes FTP => File transfer => No SFTP => Secure File transfer => Yes SNMP => Network management => No SNMPv3 => Secure Network Management => YES POP3 => Email retrieval => No IMAP => Email retrieval with multiple device support => No IMAPS => Secure email retrieval => Yes SMTP => sending Email => No SMTPS => Secure email sending => Yes DNS => Domain name resolution => No DNSSEC => Secure Domain Name Solution => Yes

Answer 6

Secure system design is a critical component of Security Architecture and Engineering. It aims to create systems that are resilient to attacks and maintain their functionality even in adverse conditions.

Answer 7

A design principle organizes system components into separate, hierarchical layers. Each layer performs specific functions and interacts only with its adjacent layers. This approach enables better separation of concerns, limits the attack surface, and simplifies the management and maintenance of systems.

Answer 8

Abstraction is a design concept that simplifies complex systems by hiding the details of lower-level components and providing a higher-level, more user-friendly interface. This approach allows developers and administrators to focus on the relevant aspects of a system while reducing complexity and potential vulnerabilities.

Answer 9

A security domain is a collection of resources that share a common security policy and are controlled by a single authority. Dividing systems into security domains helps enforce security policies and manage access controls more effectively. Security domains are often represented by trust boundaries, which define the level of trust between different domains and the rules governing data flow between them.

Answer 10

The ring model is a security architecture that organizes system components into hierarchical protection rings, each representing a different privilege level. The most privileged components, such as the operating system kernel, reside in the innermost ring (Ring 0). As the ring number increases, the level of privilege decreases. This model ensures that more sensitive components have higher levels of protection and limits the potential damage caused by security breaches.

Answer 11

Open systems follow widely accepted standards and protocols, making it easier for components to interoperate with other systems. These systems often promote collaboration and innovation but may be more susceptible to security threats due to their transparency. On the other hand, closed systems use proprietary protocols and technologies, making it more difficult for external entities to interact with or compromise the system. While closed systems offer increased security, they can limit interoperability and hinder collaboration.

Answer 12

Threat modeling is a systematic process of identifying, prioritizing, and addressing potential threats and vulnerabilities in a system. It helps organizations proactively mitigate risks and improve the security posture of their systems.

Answer 13

The principle of least privilege states that users, processes, and systems should have the minimum access rights necessary to perform their tasks. This approach limits the potential damage caused by security breaches and reduces the attack surface.

Answer 14

Defense in depth is a security strategy that employs multiple layers of protection to defend against potential threats. By implementing diverse security controls at various levels of a system, this approach ensures that even if one layer is compromised, other layers can still provide protection.

Answer 15

Secure defaults is a design principle that ensures systems are configured with secure settings by default. This approach reduces the likelihood of misconfigurations, which can lead to security vulnerabilities.

Answer 16

Failing securely means that when a system encounters an error or failure, it should maintain its security posture and not expose sensitive data or resources. This approach helps to prevent data leaks and unauthorized access in case of system failures.

Answer 17

Separation of duties is a principle that divides critical tasks among multiple individuals to prevent fraud and misuse of access privileges. By requiring more than one person to perform sensitive actions, SoD helps to ensure accountability and maintain data integrity.

Answer 18

The principle of simplicity emphasizes that systems should be designed with as little complexity as possible. Simpler systems are easier to manage, maintain, and secure, as they have fewer potential vulnerabilities and are less prone to errors.

Answer 19

Zero Trust is a security model that assumes all users, devices, and networks are untrustworthy by default. This model enforces strict access controls and continuous monitoring, requiring users to verify their identities and permissions for every access request.

Answer 20

Privacy by design is a framework that promotes the integration of privacy considerations into the design and development of systems and processes. This approach ensures that privacy is an integral part of a system’s architecture rather than an afterthought.

Answer 21

Trust but verify is a security principle emphasizing the importance of validation and verification, even when dealing with trusted entities. By continuously monitoring and verifying the actions of users and systems, organizations can detect potential security issues and maintain a strong security posture.

Answer 22

The shared responsibility model highlights the need for collaboration between stakeholders, such as service providers and customers, to ensure system security. All parties must implement and maintain security controls and practices in this model.

Answer 23

A diverse range of computing systems exist, each designed to serve specific purposes and meet unique requirements. Understanding these computing systems is essential for security professionals as they design and implement secure solutions across various environments.

Answer 24

These are computing devices, such as desktops, laptops, or smartphones, that users interact with directly. They typically run end-user applications and rely on server-based systems for centralized data storage and processing.

Answer 25

Provide resources and services to client-based systems, such as file storage, application hosting, or data processing. They are often more powerful and have higher availability than client-based systems.

Answer 26

Database systems store, manage, and retrieve structured data. They support various data models, such as relational, NoSQL, or graph databases, and provide mechanisms for ensuring data consistency, integrity, and security.

Answer 27

These systems use cryptographic techniques, such as encryption, decryption, and digital signatures, to protect the confidentiality, integrity, and authenticity of data and communications.

Answer 28

ICS are used to monitor and control industrial processes, such as manufacturing, power generation, or water treatment. They include Supervisory Control and Data Acquisition (SCADA) systems and Distributed Control Systems (DCS).

Answer 29

Cloud-based systems offer computing resources and services over the Internet. Examples include Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS), which allow users to access applications, infrastructure, or development platforms on a subscription basis.

Answer 30

These systems consist of multiple computing nodes that collaborate to achieve a common goal, such as processing large datasets or providing high availability. Examples include peer-to- peer networks, distributed databases, and blockchain systems.

Answer 31

IoT refers to the network of interconnected devices that collect and exchange data, often using sensors and actuators. These devices can range from smart home appliances to industrial equipment and wearables.

Answer 32

Microservices is an architectural pattern that breaks down applications into small, loosely coupled, and independently deployable services. This approach enables greater flexibility, scalability, and resilience than monolithic architectures.

Answer 33

Containerization is a virtualization method that packages applications and their dependencies into lightweight, portable containers. This approach allows faster deployment, improved resource efficiency, and greater application portability.

Answer 34

Serverless computing is a cloud-based execution model that automatically manages and scales the underlying infrastructure, allowing developers to focus on application logic rather than server management.

Answer 35

Embedded systems are specialized computing devices designed for a specific purpose, such as automotive control systems or smart appliances. They typically have limited resources and are optimized for their specific function.

Answer 36

HPC systems are designed for processing complex and resource-intensive tasks, such as simulations, data analysis, or artificial intelligence. They often use parallel processing techniques and specialized hardware for high computational performance.

Answer 37

Edge computing is a distributed computing paradigm that brings processing capabilities closer to the data sources, reducing latency and bandwidth consumption. This approach is beneficial for IoT and real-time applications.

Answer 38

Virtualization allows multiple virtual machines (VMs) to run on a single physical host, sharing hardware resources. This approach improves resource utilization, reduces costs, and enables greater flexibility in managing and scaling computing environments. Chapter 5 Security architecture and engineering

Answer 39

Infrastructure as a Service (IaaS) provides virtualized computing resources over the Internet. For example, Amazon EC2 allows businesses to run virtual servers and scale computing power based on needs. Users are responsible for managing the OS, applications, and data, offering flexibility but requiring a robust understanding of the underlying components.

Answer 40

Platform as a Service (PaaS) takes this a step further by providing a platform for developers to build applications without worrying about the underlying infrastructure. For instance, Microsoft Azure’s App Service offers a fully managed platform for building, deploying, and scaling web apps, abstracting the complexities and allowing developers to focus on creating applications.

Answer 41

Software as a Service (SaaS) represents the most user- friendly model, delivering software applications over the Internet. Google Workspace, for example, provides access to productivity tools like Gmail, Docs, and Drive, all hosted and maintained by Google, making it an attractive option for end users without technical expertise.

Answer 42

These are owned and operated by third- party providers and deliver resources over the Internet. Amazon Web Services (AWS) offers a wide range of cloud services publicly, available to anyone who wants to purchase them, offering scalability and flexibility.

Answer 43

These are used exclusively by one organization. A large corporation might have its private cloud to ensure control and compliance with specific regulations. This model provides more control and is suitable for organizations with stringent security requirements.

Answer 44

These combine public and private clouds, allowing data and applications to be shared between them. A healthcare provider might use a private cloud for sensitive patient data and a public cloud for nonsensitive administrative information, offering greater flexibility and optimization of existing infrastructure.

Answer 45

These are shared by several organizations with common concerns. Several government agencies might share a community cloud to collaborate on joint projects while maintaining regulatory compliance. This collaborative approach allows multiple entities to benefit from shared resources while maintaining aligned goals and requirements.

Answer 46

The cryptographic life cycle includes the generation, distribution, usage, storage, and disposal of cryptographic keys. Proper management of the cryptographic life cycle helps ensure the security and integrity of encrypted data and communications.

Answer 47

Cryptographic methods include symmetric (e.g., AES), asymmetric (e.g., RSA), elliptic curve cryptography, and emerging quantum- resistant algorithms. Each method has its strengths, weaknesses, and use cases.

Answer 48

PKI is a framework that enables the secure distribution and management of digital certificates and public keys. It provides a trusted environment for establishing secure communication and verifying identities.

Answer 49

Key management practices involve securely generating, distributing, storing, using, and disposing of cryptographic keys. Proper key management is essential for maintaining the security of encrypted data and preventing unauthorized access.

Answer 50

Digital signatures use public key cryptography to authenticate the sender and ensure data integrity. Digital certificates issued by a certificate authority (CA) bind a public key to an entity’s identity, enabling secure communication and identity verification.

Answer 51

Non-repudiation ensures that a sender cannot deny having sent a message or performed an action. Cryptographic techniques, such as digital signatures, provide non-repudiation by authenticating the sender and verifying data integrity.

Answer 52

Cryptographic hashing algorithms, such as SHA-256, maintain data integrity by creating a unique, fixed-size output (hash) from an input. A small change in the input data results in a significantly different hash, making it easy to detect alterations.

Answer 53

Brute-force attacks involve systematically attempting all possible combinations of keys or passwords until the correct one is found. These attacks can be resource-intensive but may succeed when weak encryption or passwords are used.

Answer 54

In ciphertext-only attacks, an attacker attempts to decrypt a message using only the ciphertext without knowing the plaintext or encryption key.

Answer 55

In known plaintext attacks, the attacker possesses both the ciphertext and corresponding plaintext, which can be used to deduce the encryption key or reveal weaknesses in the encryption algorithm.

Answer 56

Frequency analysis is a cryptanalysis technique that exploits the frequency of letters or patterns in the encrypted text to deduce the underlying plaintext or encryption key.

Answer 57

In chosen ciphertext attacks, the attacker can choose ciphertexts and obtain their corresponding plaintexts, which can reveal weaknesses in the encryption scheme or deduce the encryption key.

Answer 58

Implementation attacks: These attacks exploit weaknesses in how cryptographic algorithms or protocols are implemented in software or hardware rather than targeting the algorithms.

Answer 59

Side-channel attacks exploit information leaked through unintended channels, such as power consumption, electromagnetic emissions, or timing, to deduce sensitive data like encryption keys.

Answer 60

Fault injection: These attacks intentionally induce errors in a system to exploit its behavior and reveal sensitive information or bypass security controls.

Answer 61

Timing attacks exploit the time it takes for a system to perform cryptographic operations, allowing attackers to deduce sensitive information, such as encryption keys.

Answer 62

MITM attacks involve an attacker intercepting and potentially altering communications between two parties, allowing the attacker to eavesdrop or impersonate one of the parties.

Answer 63

These attacks exploit weaknesses in authentication protocols, allowing an attacker to use a stolen password hash to authenticate as a user without knowing the actual password.

Answer 64

Kerberos exploitation: Exploitation attacks target the Kerberos authentication protocol, aiming to obtain or forge authentication tickets to gain unauthorized access to resources.

Answer 65

Ransomware: This is a malware that encrypts a victim’s files or systems, demanding a ransom payment for the decryption key. This attack can have severe consequences like data loss or business disruption.

Answer 66

Wiring closets and intermediate distribution facilities house telecommunications and networking equipment. They should be secured to prevent unauthorized access and tampering and maintain the integrity and availability of the network infrastructure.

Answer 67

Server rooms and data centers house critical computing and storage resources. These facilities should be designed with strict access controls, redundancy, and environmental controls to ensure the continuous operation and security of the housed systems.

Answer 68

Media storage facilities store sensitive data on physical media, such as tapes or hard drives. They should be secured against unauthorized access, theft, and environmental hazards like fire, water damage, or electromagnetic interference.

Answer 69

Evidence storage facilities store physical evidence related to investigations or legal proceedings. They should be designed to maintain the stored evidence’s integrity and chain of custody and protect against unauthorized access and tampering.

Answer 70

Restricted and work areas should have appropriate access controls, such as badge readers or biometric authentication, to ensure that only authorized personnel can access sensitive spaces and resources.

Answer 71

Utilities and HVAC systems should be designed to maintain the proper environmental conditions for the equipment and personnel. This includes temperature, humidity, air quality control, and ensuring essential services like power and water availability.

Answer 72

Environmental issues, such as natural disasters, pollution, or climate change, can significantly impact the security and availability of facilities and systems. Organizations should assess and mitigate these risks through planning, design, and operational measures.

Answer 73

Fire prevention, detection, and suppression systems should be in place to minimize the risk of fire damage to facilities and equipment. This includes using fire-resistant materials, fire detection systems, and appropriate fire suppression systems, such as sprinklers or clean agent systems.

Answer 74

Power systems should be designed to ensure the continuous availability of critical systems. This includes redundant power sources, uninterruptible power supplies (UPS), and backup generators to maintain power during outages or other disruptions.

Answer 75

A thorough assessment helps organizations identify potential threats and vulnerabilities in their site and facility design. This information can be used to develop a comprehensive security plan that addresses identified risks and implements appropriate security measures.

Answer 76

Layered security: Implementing a layered security approach ensures multiple security measures are in place to protect assets and personnel. This can include perimeter security, access controls, surveillance systems, and intrusion detection systems, which provide a robust and comprehensive security solution.

Answer 77

Secure access control: Access control measures, such as card readers, biometric authentication, and security guards, should be implemented to restrict access to sensitive areas and resources. These controls help prevent unauthorized access and maintain the security of the site and facility.

Answer 78

Surveillance and monitoring: Installing surveillance systems, such as CCTV cameras and intrusion detection systems, can help monitor and detect unauthorized access, theft, or vandalism. Monitoring systems should be strategically placed to cover critical areas and entry points, providing a clear view of the facility’s premises.

Answer 79

Environmental controls, such as HVAC systems, fire detection and suppression systems, and backup power systems, should be implemented to maintain a safe and secure environment for personnel and equipment. These controls help ensure the continuous operation of critical systems and protect sensitive data from environmental hazards.

Answer 80

Segregation of duties and restricted areas can help prevent unauthorized access to sensitive information or resources. By separating responsibilities and access to sensitive areas, organizations can minimize the risk of insider threats and maintain the security of their assets.

Answer 81

Implementing physical security measures, such as barriers, gates, locks, and lighting, can help deter unauthorized access and protect the site and facility from external threats. These measures should complement other security controls, providing a comprehensive security solution.

Domain 3 Security Architecture and Engineering Flashcards

(106 cards)