Network Security

Question 1

Advanced Encryption Standard (AES)

Answer 1

uses 128, 192, 256 bit keys

Question 2

Threat

Answer 2

A person or event that has the potential for impacting a valuable resource in a negative manner

Question 3

Vulnerability

Answer 3

A quality or characteristic within a given resource or its environment that might allow the threat to be realized

Question 4

Internal Threat

Answer 4

originates within the organization (most of the time employees or former employees)

Question 5

external threat

Answer 5

originates from outside the organization (hacker or environmental factor)

Question 6

Physical Vulnerabilities

Answer 6

unlocked doors, etc.

Question 7

Operational Vulnerabilities

Answer 7

Focuses on how the network and its systems are run from the perspective of an organization’s policies and procedures

Question 8

Technical Vulnerabilities

Answer 8

system specific conditions like outdates stuff that causes a vulnerabilities

Question 9

CVE

Answer 9

list of vulnerabilities

Question 10

zero-day vulnerability

Answer 10

an unknown or new vulnerability that no one has discovered

Question 11

Exploit

Answer 11

Takes advantage of a security flaw

Question 12

Risk

Answer 12

Threats and vulnerabilities combined

Question 13

Risk Assessment

Answer 13

identifies potential hazards

Question 14

Posture Assessment

Answer 14

Assesses cyber risk posture and exposure to threats caused by misconfigurations and patching delays

Question 15

Least Privilege

Answer 15

Only give what is necessary for the function

Question 16

Role-based Access

Answer 16

add people into certain roles, and then they receive the permissions that are associated with that role (admin, hr, etc.)

Question 17

Defense in Depth

Answer 17

Cybersecurity approach in which a series of defensive mechanisms are layered in order to protect valuable data and information

Question 18

DMZ

Answer 18

A perimeter network that protects an organization’s internal local area network from untrusted traffic

Question 19

Screen Subnet

Answer 19

subnet in the network architecture that uses a single firewall with three interfaces to connect three dissimilar networks

Question 20

Something you know

Answer 20

knowledge factors

Question 21

Dictionary Attack

Answer 21

Guesses using a pre-configured list; don’t use anything that looks like a regular word

Question 22

Brute Force attack

Answer 22

gonna try every possible combination

Question 23

Hybrid Attack

Answer 23

Collection information about your life (like from social media) and then create a list based upon that

Question 24

Something you have

Answer 24

something in your possession; like a smartcard or something like that

Question 25

Something you are

Answer 25

inherence; fingerprints, retina, etc.

Question 26

Something you do

Answer 26

Action factor; draw a pattern, etc.

Question 27

Somewhere you are

Answer 27

location; geotagging, etc.

Question 28

Authenticate

Answer 28

when you verify you are who you say you are

Question 29

Local authentication

Answer 29

user name and password

Question 30

LDAP

Answer 30

database and directory service; communicates over port 389 secure is 636

Question 31

Kerberos

Answer 31

Focused on authentication and authorization within a Windows domain environment in active directory; secure to insecure

Question 32

RADIUS

Answer 32

Provides centralized administration of dial-up, VPN, and wireless network authentication; operates at layer 7; udp; usually on another server; port 1812

Question 33

TACACS+

Answer 33

Cisco proprietary version of radius; TACACS+ is tcp; must have port 49 open

Question 34

802.1x

Answer 34

a standardized framework that’s used for port-based authentication on both wired and wireless networks

Question 35

EAP

Answer 35

allows for numerous different mechanisms of authentication

Question 36

Network Access Control

Answer 36

Ensures a device is scanned to determine its current state of security prior to being allowed network access

Question 37

IEEE 802.1x

Answer 37

Used in port-based Network Access Control

Question 38

Rule-Based

Answer 38

follow a set of logical rules for access control