Review Questions

Question 1

What is hashing in the context of cybersecurity?

Answer 1

The practice of transforming a given key or string of characters into another value for the purpose of security . (Think encryption)

Question 2

What is “M of N” in context of key signing and cybersecurity?

Answer 2

M of N is multi-user access. (You need multiple people to gain access to something think multiple keycards for one door)

Question 3

Does salting have to be kept secret in context of encryption and or password safety?

Answer 3

Salting does not have to kept secret.

Question 4

What makes plaintext the most effective?

Answer 4

The length.

Question 5

What does 3-factor authentication include?

Answer 5

The third factor is including some sort of bio-metrics. (Fingerprints, facial recognition)

Question 6

When smart cards (key cards) are implemented in security what information is stored on the cards given to employees?

Answer 6

A private key

Question 7

Does rule based access control include negotiation?

Answer 7

No it does not include negotiation

Question 8

What security concept uses the idea of minimum permissions.

Answer 8

The concept of least privilege

Question 9

Give a brief description of identity management.

Answer 9

Ensures that authorized people – and only authorized people – have access to the technology resources they need to perform their job functions

Question 10

What is deprovisioning.

Answer 10

Removing a former employees access to software and network services.

Question 11

What does LDAP stand for

Answer 11

Lightweight Directory Access Protocol

Question 12

What is a distinguised name?

Answer 12

Describes the identifying information in a certificate

Question 13

What is the Kerebos protocol used for?

Answer 13

A protocol for authenticating service requests between trusted hosts across an untrusted network

Question 14

Should assets that require high confidentiality and high integrity have network access or connections.

Answer 14

There should be no network connections.

Question 15

What is the Zero Trust framework.

Answer 15

Zero Trust security means that no one is trusted by default from inside or outside the network, and verification is required from everyone trying to gain access to resources on the network

Question 16

What is scheduling in context of load balancing?

Answer 16

To determine which back-end server to send a request to

Question 17

What is used to keep private network secure, encrypted, and at full integrity

Answer 17

ESP (encapsulating security payload)

Question 18

What does a Real Time Operating System offer when used?

Answer 18

Stability & Speed

Question 19

What does MTD stand for?

Answer 19

Maximum tolerable downtime (redundancies help this)

Question 20

What is OSINT?

Answer 20

Open-Source Intelligence (publicly known issues posted for the public to keep up to date with vulnerabilities and practices)

Question 21

What does CVE stand for?

Answer 21

Common vulnerability and exposure.

Question 22

What do pre-shared keys rely on?

Answer 22

The strength of the passphrase key

Question 23

What type of authentication do enterprises use?

Answer 23

RADIUS (Remote Authentication Dial-In User Service)

Question 24

What is an alternative to password based authentication that uses digital certificates?

Answer 24

EAP-TLS

Question 25

What is a health check that is executed in the hosts memory and CPU but it is not installed?

Answer 25

Dissolvable agent

Question 26

What type of attack against HTTPS forces the service to negotiate weak ciphers?

Answer 26

A downgrade attack

Question 27

What protocol replaced Telnet?

Answer 27

SSH

Question 28

What does the DNSSEC (DNS) depend on?

Answer 28

Chain of trust from the root server

Question 29

Give an example of a SIEM and what it does.

Answer 29

Splunk, Microsoft Sentinel, LogRhythm.

They collect, organize security events, and help respond to them in the correct priority by severeness.

Question 30

What attack framework gives descriptions of specific TTPs

Answer 30

MITREs ATTACK Framework

Question 31

What are indications of an injection attack?

Answer 31

% percent encoding. (EXAMPLE: Access logs with repeating requests for URLs with %3C, %3E

Question 32

Forcing requests from the front end to be authenticated prevents what type of attack?

Answer 32

Serverside Request Forgery

Question 33

Give an example of capabilities that may be included in password management.

Answer 33

Salting, hashing, reset methods

Question 34

What are some potential issues with automation and orchestration?

Answer 34

Complexity , single point of failure, cost, support

Question 35

When getting insurance what is the risk mitigation option called?

Answer 35

Risk Transference

Question 36

What is a risk register?

Answer 36

a document that is used as a risk management tool to identify potential setbacks within a project

Question 37

What legal contract is a non-binding agreement that outlines intentions shared goals, general cooperation?

Answer 37

Memorandum of understanding (MOU)

Question 38

What legal document establishes clear guidelines?

Answer 38

Rules of Engagement

Question 39

What type of data protection is used by payment processing systems?

Answer 39

Tokenization