S14-Network Security Fundamentals

Question 1

What does the CIA Triad stand for?

Answer 1

• Confidentiality
• Integrity
• Availability

Question 2

Confidentiality

Answer 2

Concerned with keeping data safe and private.
- Encryption

Question 3

Symmetric Encryption

Answer 3

Sender and Receiver use the same key for encryption and decryption

Question 4

Asymmetric Encryption

Answer 4

Sender and receiver use different keys for encryption and decryption: Public & Private keys

Question 5

T/F Asymmetric encryption is faster than symmetric encryption

Answer 5

F, Symmetric encryption is almost 1000x faster than Asymmetric

Question 6

What is the main problem with Symmetric encryption?

Answer 6

Key Management:
has challenges distributing keys at larger scales

Question 7

Public Key Infrastructure (PKI)

Answer 7

Encrypts information and facilitates key exchange using Asym. Encryption

Question 8

What is the difference between Symmetric and Asymmetric keys ?

Answer 8

Symmetric is fast and used for data transfer

Asymmetric is slow, but used for handshake and key exchange

Question 9

Integrity

Answer 9

Ensures data is not modified, and verifies the original source
- Hashing

Question 10

Hashing

Answer 10

Uses an algorithm to convert data into a hash or hash digest that serves as a unique fingerprint for that data

Question 11

Availability

Answer 11

Measures Data accessibility

Question 12

Difference between Threats and Vulnerabilities

Answer 12

Threat : Attacker/ Attack
Vulnerability: Weak Point/ Weakness

Question 13

What are the 2 Types of Threats?

Answer 13

• Internal Threats
• External Threats

Question 14

Internal Threats

Answer 14

Threats from within the Organization

Question 15

External Threats

Answer 15

Threats from without the Organization

Question 16

What are some Types of Vulnerabilities?

Answer 16

• Environmental
• Physical
• Operational
• Technical

Question 17

Environmental Vulnerabilities

Answer 17

Undesirable factors and conditions in the area surrounding the building where the network is run

Question 18

Physical Vulnerabilities

Answer 18

Undesirable weaknesses and conditions in the buildings where a network is run

Question 19

Operational Vulnerabilities

Answer 19

Focuses on how the network and its systems are run from the perspective of an organization’s Policies and procedures

Question 20

Technical Vulnerabilities

Answer 20

System-Specific Conditions that create a security Weakness

Question 21

Common Vulnerabilities and Exposures (CVE)

Answer 21

List of publicly disclosed computer security weaknesses

Question 22

Zero-Day Vulnerability

Answer 22

Any weakness in the system design, Implementation, software code, or lack of preventive measures within a network that is unknown at the time of publication

Question 23

Exploit

Answer 23

Piece of software code that takes advantage of a security flaw

Question 24

Risk Management

Answer 24

Identification, Evaluation, and Prioritization of risks to minimize, monitor , and control the vulnerability exploited by a threat

Question 25

Risk Assessment

Answer 25

Process that identifies potential hazards and their potential impact

Question 26

What are 2 types of risk assessment?

Answer 26

- Security - Business

Question 27

Security Risk assessment

Answer 27

Identify, assess, and implement security controls within an application, system, or network

Question 28

Business Risk Assessment

Answer 28

Used to Identify, Understand, and Evaluate Potential Hazards in the workplace

Question 29

Threat Assessment

Answer 29

Focused on identifying different threats that can attack or cause harm to systems and networks

Question 30

What is the MITRE ATT&AK Framework?

Answer 30

a publicly available knowledge base that organizes and categorizes known cyber adversary behaviors, including tactics, techniques, and procedures (TTPs), used in cyberattacks

Question 31

Vulnerability Assessment

Answer 31

Focused on identifying, quantifying, and prioritizing the risks and vulnerabilities in a system/network.

Question 32

What are some Vulnerability scanners?

Answer 32

- Nessus - QualysGuard - OpenVAS

Question 33

Penetration Test

Answer 33

Evaluates the security of an IT infrastructure by safely trying to exploit vulnerabilities within the systems/network

Question 34

Posture Assessment

Answer 34

Used to Assess the organization's attack surface

Question 35

What are the 4 main steps of a posture assessment?

Answer 35

- Define mission-critical components - Identify strengths, weaknesses , and security issues - Strengthen position - Stay in control

Question 36

What are the 2 main types of business assessments?

Answer 36

- Process Assessment - Vendor Assessment

Question 37

Process Assessment

Answer 37

Examination of processes used by the organization against a set of criteria

Question 38

Vendor Assessment

Answer 38

Assessment of a prospective vendor to determine if they can effectively meet the obligations and the needs of the business

Question 39

Data Locality

Answer 39

Geographic Location where data is stored and processed

Question 40

Payment Card Industry Data Security Standard (PCI DSS)

Answer 40

Set of security standards designed to ensure that all companies that accept, Process, Store, or transmit credit card information maintain a secure environment.

Question 41

General Data Protection Regulation (GDPR)

Answer 41

Regulation created by the European Union that focuses on data protection and privacy in the European Union and European Economic Area

Question 42

Device Hardening

Answer 42

a cybersecurity practice that strengthens a device's security posture by reducing its vulnerability to attacks

Question 43

What does Device Hardening involve?

Answer 43

configuring settings, disabling unnecessary features, and applying security measures to minimize potential exploits

Question 44

What things are addressed when hardening a device?

Answer 44

- Patch Software - Configure Device - Remove unneeded Apps - Block unneeded Ports & Services - Control External Storage - Disable unneeded accounts - Rename Default accounts - Change default passwords

Question 45

End of Life (EOL)

Answer 45

Date when a manufacturer will no longer sell a given product

Question 46

End of Support (EOS)

Answer 46

Date when a manufacturer will no longer support a given product

Question 47

Services

Answer 47

Background Apps that operate within the OS

Question 48

Detection Method

Answer 48

Security control used during an event to find out if something malicious may have happened

Question 49

Active Defense

Answer 49

Practice of responding to a threat by destroying or deceiving a threat actor's capabilities.

Question 50

Honeypot

Answer 50

Host set up to lure attackers away from the actual network components

Question 51

Attribution

Answer 51

Identification and publication of an attacker's methods, techniques, and tactics as useful threat intel

Question 52

Annoyance Strategies

Answer 52

Rely on obfuscation techniques to annoy attackers

Question 53

Examples of Annoyance strats

Answer 53

- Bogus DNS entries - Web servers with Decoy directories - Port triggering an Spoofing

Question 54

Hack Back

Answer 54

Uses offensive or counterattacking techniques to identify the attacker and degrade their capabilities