N2K - Flash Cards - General Security Concepts - Summarize Fundamental Security Concepts
(31 cards)
In the data plane, what term refers to entities requesting access to resources?
Subject/System
Which type of security mechanism lures attackers by simulating valuable files?
Honeyfile
What is the purpose of threat scope reduction?
To minimize the potential impact of security incidents
What is a network of decoy systems designed to detect and observe malicious activity?
Honeynet
Which control plane component evaluates and enforces security policies in real-time?
Policy Engine
Which type of sensor detects motion by emitting microwave signals and analyzing reflections?
Microwave Sensors
Which type of sensor triggers alarms upon detecting changes such as footsteps?
Pressure Sensors
Which type of sensor detects heat signatures to identify potential threats?
Infrared Sensors
Which access control method enforces rules based on predefined policies?
Policy-Driven Access Control
In the control plane, who is responsible for creating and managing security policies within an organization?
Policy Administrator
Which data plane component enforces access control policies at the network perimeter?
Policy Enforcement Point
Which environmental security measure illuminates areas to deter intruders?
Lighting
Which logical part of a network architecture processes and forwards user traffic?
Data Plane
What is the purpose of a bollard?
A bollard is a physical security control that prevents cars from accessing certain areas. They are most often deployed in front of retail storefronts.
Which logical component of a network architecture manages traffic forwarding decisions?
Control Plane
What is a honeypot?
A decoy system in your network installed to lure potential intruders away from legitimate systems
What is an access control vestibule?
Also called a mantrap, it is a door system that allows for someone to be physically identified prior to entering the facility.
Which category of controls includes controlling access to different parts of a building, implementing locking systems, installing fencing, implementing environmental controls, and protecting the facility perimeter?
Physical Controls
Which security model assumes no trust, even within internal networks?
Zero Trust
Which security concept adjusts user privileges dynamically based ontheir behavior, their connecting devices, and/or their location?
Adaptive Identity
Which physical credential grants entry to secure areas?
Access Badge
Which security concept assumes all network traffic in a particular segment is trusted by default?
Implicit Trust Zones
Which type of sensor uses high-frequency sound waves to detect movement or presence?
Ultrasonic Sensors
Which security concept ensures that a sender cannot deny the authenticity or integrity of a message?
Non-Repudiation
