Network Security Fundamentals

Question 1

What is the CIA Triad?

Answer 1

Confidentiality, Integrity, Availability.

Question 2

What does Confidentiality ensure?

Answer 2

Data is kept private and secure from unauthorized access.

Question 3

How is Confidentiality implemented?

Answer 3

Through encryption and authentication.

Question 4

What is Symmetric Encryption?

Answer 4

Uses the same key for encryption and decryption.

Question 5

Example of symmetric encryption?

Answer 5

AES.

Question 6

Main challenge with symmetric encryption?

Answer 6

Key distribution.

Question 7

What is Asymmetric Encryption?

Answer 7

Uses a key pair: public and private.

Question 8

Example of asymmetric encryption?

Answer 8

RSA.

Question 9

How does HTTPS use asymmetric encryption?

Answer 9

To exchange symmetric keys securely.

Question 10

What does Integrity ensure?

Answer 10

Data has not been altered or tampered with.

Question 11

How is Integrity enforced?

Answer 11

Hashing.

Question 12

Example of hashing algorithms?

Answer 12

MD5, SHA-256.

Question 13

What is Availability?

Answer 13

Ensuring data and services are accessible when needed.

Question 14

How is Availability ensured?

Answer 14

Redundancy and high availability design.

Question 15

Example threats to Availability?

Answer 15

DDoS, hardware failure, power outage.

Question 16

What is a threat in cybersecurity?

Answer 16

A person, event, or condition with potential to cause harm.

Question 17

What is a vulnerability?

Answer 17

A weakness that can be exploited by a threat.

Question 18

When does risk exist?

Answer 18

When both a threat and a vulnerability are present.

Question 19

Examples of internal threats?

Answer 19

Malicious employee, accidental actions by staff.

Question 20

Examples of external threats?

Answer 20

Hackers, natural disasters.

Question 21

Examples of environmental vulnerabilities?

Answer 21

Floods, power outages.

Question 22

Examples of physical vulnerabilities?

Answer 22

Unlocked doors, poor cable management.

Question 23

Examples of operational vulnerabilities?

Answer 23

Poor policies, lack of enforcement.

Question 24

Examples of technical vulnerabilities?

Answer 24

Outdated software, misconfigured firewalls.

Question 25

What is CVE?

Answer 25

Common Vulnerabilities and Exposures, a public list of known technical flaws.

Question 26

What is a Zero-Day vulnerability?

Answer 26

An unknown flaw with no patch at time of discovery.

Question 27

What is an exploit?

Answer 27

Code or technique used to take advantage of a vulnerability.

Question 28

How do attackers exploit vulnerabilities?

Answer 28

Use exploit code to gain access or execute commands.

Question 29

Mitigation for vulnerabilities?

Answer 29

Patch systems, update software, use firewalls, enforce access control.

Question 30

What is risk management?

Answer 30

Identifying, evaluating, and mitigating risks.

Question 31

Real-life example of risk management?

Answer 31

Locking your doors at night.

Question 32

What is a threat assessment?

Answer 32

Identifying possible threats to a network.

Question 33

What is a vulnerability assessment?

Answer 33

Identifying weaknesses in systems or networks.

Question 34

What is a penetration test?

Answer 34

Simulated attack to exploit vulnerabilities.

Question 35

What is a posture assessment?

Answer 35

Holistic evaluation of an organization’s cyber readiness.

Question 36

What is a process assessment?

Answer 36

Reviews internal operations for effectiveness.

Question 37

What is a vendor assessment?

Answer 37

Evaluates third-party vendors for security and reliability.

Question 38

What is PCI DSS?

Answer 38

A standard for protecting credit card data.

Question 39

Who must comply with PCI DSS?

Answer 39

Any organization handling credit card data.

Question 40

What is GDPR?

Answer 40

EU regulation on data protection and privacy.

Question 41

Who must comply with GDPR?

Answer 41

Any organization dealing with EU citizens' data.

Question 42

What are GDPR user rights?

Answer 42

Access, rectification, erasure, restriction.

Question 43

What is data locality?

Answer 43

Where data is stored and processed geographically.

Question 44

What is continuous auditing?

Answer 44

Ongoing monitoring to ensure compliance.

Question 45

Why is employee training important for compliance?

Answer 45

Helps avoid breaches and legal issues.

Question 46

What is device hardening?

Answer 46

Securing a system by reducing its attack surface.

Question 47

Examples of device hardening?

Answer 47

Disable ports/services, change default passwords, install anti-malware.

Question 48

What is patch management?

Answer 48

Keeping systems updated with latest fixes.

Question 49

What is baseline configuration?

Answer 49

Standardized OS images and security settings.

Question 50

What is a host-based firewall?

Answer 50

Local firewall to control inbound/outbound traffic.

Question 51

What is full-disk encryption?

Answer 51

Encrypts entire storage drive to protect data at rest.

Question 52

What is account cleanup?

Answer 52

Removing unused or default accounts.

Question 53

What is EOL (End of Life)?

Answer 53

Product no longer sold or licensed.

Question 54

What is EOS (End of Support)?

Answer 54

No updates or vendor support available.

Question 55

Why avoid EOL/EOS systems?

Answer 55

They are unpatched and vulnerable.

Question 56

What is the principle of least functionality?

Answer 56

Only enable what's necessary for a system's purpose.

Question 57

Why disable unnecessary services?

Answer 57

To reduce attack surface and improve performance.

Question 58

How to disable services in Windows?

Answer 58

Use services.msc or command line (sc/net stop).

Question 59

How to manage services in macOS?

Answer 59

Use Activity Monitor or Terminal.

Question 60

How to kill processes in Linux/macOS?

Answer 60

Use top command, find PID, then kill.

Question 61

Why use host-based firewalls?

Answer 61

To control traffic and block unused ports.

Question 62

What is physical security in cybersecurity?

Answer 62

Protecting physical access to devices and data.

Question 63

What are detective physical controls?

Answer 63

Cameras, motion sensors, tamper alerts.

Question 64

What are preventive physical controls?

Answer 64

Locks, biometric readers, mantraps.

Question 65

What is a mantrap?

Answer 65

A secure two-door entry system.

Question 66

What is badge access control?

Answer 66

Uses ID cards or RFID for physical entry.

Question 67

What are smart lockers?

Answer 67

Secure storage for mobile devices in sensitive areas.

Question 68

Why train employees on physical security?

Answer 68

To prevent social engineering and policy violations.

Question 69

What is active defense in cybersecurity?

Answer 69

Engaging or deceiving attackers proactively.

Question 70

What is a honeypot?

Answer 70

A fake system set up to lure and analyze attackers.

Question 71

What is a honeynet?

Answer 71

A network of honeypots mimicking a real environment.

Question 72

Purpose of honeypots/honeynets?

Answer 72

Divert attackers and gather intelligence.

Question 73

What is threat attribution?

Answer 73

Identifying who is behind an attack.

Question 74

What are deception strategies?

Answer 74

Techniques like fake DNS, bogus files, non-standard ports.

Question 75

What is port spoofing?

Answer 75

Faking port responses to confuse attackers.

Question 76

What is 'hack back'?

Answer 76

Retaliatory cyber action against attackers.

Question 77

Is hack back legal?

Answer 77

No, it's generally illegal and discouraged.

Question 78

Key takeaway about deception?

Answer 78

Useful for learning about attackers, not defense.

Question 79

Summary of CIA Triad?

Answer 79

Confidentiality (keep secret), Integrity (unaltered), Availability (always accessible).

Question 80

What does network segmentation do?

Answer 80

Divides networks to contain breaches.

Question 81

What is IDS?

Answer 81

Intrusion Detection System - monitors for suspicious activity.

Question 82

What is IPS?

Answer 82

Intrusion Prevention System - blocks detected threats.

Question 83

What is the role of firewalls?

Answer 83

Enforce network traffic rules.

Question 84

Why enforce password policies?

Answer 84

To prevent unauthorized access.

Question 85

Why restrict USB device access?

Answer 85

To block potential malware entry.

Question 86

Why log network events?

Answer 86

For auditing and incident response.

Question 87

Why use standard OS images?

Answer 87

For consistency and security across systems.

Question 88

Why are vulnerability scans important?

Answer 88

To identify weaknesses before attackers do.

Question 89

What is a Data Protection Officer (DPO)?

Answer 89

Role required under GDPR for overseeing compliance.

Question 90

What is a DPIA?

Answer 90

Data Protection Impact Assessment - analyzes risks in data handling.

Question 91

What is anti-malware software?

Answer 91

Protects against malicious software threats.

Question 92

Why limit command-line access?

Answer 92

To reduce risk of system misuse or misconfiguration.

Question 93

What is network hardening?

Answer 93

Securing network infrastructure (routers, switches).

Question 94

Why use VLANs?

Answer 94

To segment and isolate traffic in networks.

Question 95

What is network access control (NAC)?

Answer 95

Ensures only authorized devices can connect to the network.