Module 9

Question 1

SCADA systems controlling critical infrastructure are usually completely separated from the Internet by which of the following?

Answer 1

air gap

Question 2

Which of the following is a common Linux rootkit?

Answer 2

Linux Rootkit 5

Question 3

Which of the following source code is now available to the public and was considered a trimmed down version of the Windows desktop OS?

Answer 3

Windows CE

Question 4

Embedded OSs are usually designed to be small and efficient so they do not have some of the functions that general-purpose OSs have. (True or False)

Answer 4

True

Question 5

Which of the following is an SELinux OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users?

Answer 5

Mandatory Access Control

Question 6

What type of malicious code could be installed in a system’s flash memory to allow an attacker to access the system at a later date?

Answer 6

BIOS-based rootkit

Question 7

Rootkits containing Trojan binary programs that are ready to install are more dangerous than typical Trojan programs. (True or Flase)

Answer 7

True

Question 8

What programming languages are vulnerable to buffer overflow attacks?

Answer 8

C and C++

Question 9

Which of the following is often found within an embedded OS that can cause a potential vulnerability to an attack?

Answer 9

Web server

Question 10

What is the most serious shortcoming of Microsoft’s original File Allocation Table (FAT) file system?

Answer 10

no ACL support

Question 11

Which of the following is considered to be the most critical SQL vulnerability?

Answer 11

null SA password

Question 12

When using the Common Internet File System (CIFS), which security model does not require a password to be set for the file share?

Answer 12

Share-level security

Question 13

Ubuntu and Debian Linux use what command to update and manage their RPM packages?

Answer 13

apt-get

Question 14

Rootkits that pose the biggest threat to any OS are those that infect what part of the targeted device?

Answer 14

firmware

Question 15

Which one of the following, if compromised might allow attackers the ability to gain complete access to network resources?

Answer 15

router

Question 16

Which of the following systems should be used when equipment monitoring and automation is critical?

Answer 16

SCADA

Question 17

When using the Common Internet File System (CIFS), which security model will require network users to have a user name and password to access a specific resource?

Answer 17

User-level security

Question 18

What is the current file system that Windows utilizes that has strong security features?

Answer 18

NTFS

Question 19

What type of viruses and code has been created by security researchers and attackers that could infect phones running Google’s Android, Windows Mobile, and the Apple iPhone OS?

Answer 19

Java-based

Question 20

Which of the following is an advantage of Windows CE over other Windows embedded OSs?

Answer 20

Its source code is available to the public.

Question 21

Which of the following describes an RTOS?

Answer 21

An embedded OS capable of multitasking and responding predictably

Question 22

Which of the following is a major challenge of securing embedded OSs?

Answer 22

Patching

Question 23

The lack of a familiar interface, such as CD/DVD-ROM drives, contributes to the difficulty of updating embedded OSs. True or False?

Answer 23

True

Question 24

SCADA systems are used for which of the following?

Answer 24

Monitoring equipment in large-scale industries

Question 25

Multifunction devices (MFDs) are rarely which of the following?

Answer 25

Scanned for vulnerabilities

Question 26

A common vulnerability of routers and other network devices with built-in Web management interfaces is which of the following?

Answer 26

authentication vulnerability

Question 27

Which of the following can modify part of the OS or install themselves as kernel modules, drivers, libraries, and even applications?

Answer 27

rootkit

Question 28

Which of the following doesn’t use an embedded OS?

Answer 28

A workstation running Windows Vista Business

Question 29

If the time and money required to compromise an embedded system exceeds the value of the system’s information, a security tester might recommend not fixing the vulnerability. True or False?

Answer 29

True

Question 30

One reason that some vendors of embedded OSs are using open-source software more is that the cost of developing and patching an OS is shared by the entire open-source community. True or False?

Answer 30

True

Question 31

Which of the following is considered a good defense against low-level rootkits?

Answer 31

Trusted Platform Module (TPM)

Question 32

An embedded OS must be developed specifically for use with embedded systems. True or False?

Answer 32

False

Question 33

*nix embedded OSs are most likely to be found on which of the following devices?

Answer 33

Cisco switches and routers

Question 34

Most printers now have only TCP/IP enabled and don’t allow default administrator passwords, so they’re inherently more secure. True or False?

Answer 34

False

Question 35

VxWorks is which of the following?

Answer 35

A proprietary embedded OS