Securing Devices and Data

Question 1

Allows encryption of individual drives and folders on any NTFS volume. It is included with Business/Professional/Enterprise/Ultimate editions of Windows, as well as all editions of Windows Server

Answer 1

EFS: Encrypting File System

Question 2

Encrypts entire NTFS volumes, including the system drive. It is available on Enterprise and Ultimate Editions of Windows Vista and 7, Pro and Enterprise versions of Windows 8 and later, and all editions of Windows Server 2008 and later.

Answer 2

BitLocker

Question 3

Used to protect removable drives, such as USB flash drives. It can encrypt drives formatted as FAT16, FAT32, and exFAT as well as NTFS. It is included in Windows 7 and later systems which include BitLocker

Answer 3

BitLocker-To-Go

Question 4

Three ways BitLocker can authenticate:

Answer 4

Transparent operation mode
User authentication mode
USB key mode

Question 5

Allows the user to start up the computer and log into Windows as normal

Answer 5

Transparent operation mode

Question 6

Prompts the user for a PIN or password on startup

Answer 6

User authentication mode

Question 7

Stores a startup key on a USB device

Answer 7

USB key mode

Question 8

Use powerful electromagnets to destroy all data on magnetic media like tapes and hard drives, but not optical or flash storage

Answer 8

Degaussers

Question 9

To securely delete files on an active computer, install a secure deletion program such as:

Answer 9

SDlelete, CCleaner, Eraser, and File Shredder.

Question 10

Writes zeroes to the entire drive and restores it to its newly installed configuration

Answer 10

low-level format

Question 11

Data destruction utilities

Answer 11

DBAN, HDShredder, and KillDisk

Question 12

An entire volume encryption feature included with Windows Vista and Windows 7 Ultimate and Enterprise editions; uses a Trusted Platform Module (TPM) microchip; can encrypt the NTFS volumes including the system volume; requires a smaller boot volume with at least 100 MB of free space in order to perform the decryption routines; and is compatible with EFS

Answer 12

Bitlocker Drive Encryption

Question 13

A type of security software used by an IT department to monitor, manage, and secure employees’ mobile devices.

Answer 13

Mobile device management (MDM)

Question 14

Policy governs a user-owned device on the corporate network

Answer 14

BYOD

Question 15

Swing a finger across the screen, or a certain part of the screen, to unlock.

Answer 15

Swipe Screen

Question 16

Unlock the device with a numeric PIN.

Answer 16

Passcode

Question 17

Unlock the device by drawing a predefined structure over points on the screen.

Answer 17

Pattern

Question 18

A strong authentication term of identification which includes mixed cases and special characters.

Answer 18

Password

Question 19

A camera with infrared (IR) sensitivity is effective for unlocking the device under varying light conditions.

Answer 19

Face

Question 20

Used to force stop an app from within the operating system, or uninstall and reinstall it

Answer 20

App control features

Question 21

Used to verify signal problems and check the signal strength or connection speed problems

Answer 21

Wireless analyzer

Question 22

Used to monitor the system or actively scan for signs of malware

Answer 22

Antimalware

Question 23

Used to rearrange the device to a freshly installed state, deleting user data, installed apps, and, any installed malware

Answer 23

Factory resets

Question 24

Used to notice unusual activities in the device even if they’re not strictly malware

Answer 24

App scanner

Question 25

Layers of defense in depth strategies

Answer 25

``` Physical Facility Internal Network Host Application Data ```

Question 26

Signs of Maleware

Answer 26

File alteration, Unfamiliar programs, Security alerts, Log errors, Browser oddities, Email issues, Stability and performance, Failed updates

Question 27

Malware removal tools

Answer 27

``` Antivirus scanner Antimalware software Event Viewer System Restore System backups Terminal MSCONFIG Installation media Recovery environment Rescue disk ```

Question 28

Mobile troubleshooting tools

Answer 28

``` Antimalware App scanner Wireless analyzer App control features Backup and restore Factory resets ```

Question 29

Steps in removing Malware

Answer 29

1. Identify 2. Quarantine the system 3. Disable system restore 4. Repair the system (anti-malware software) 5. Update system/schedule future scans 6. Enable system restore/create new restore point 7. Educate and document findings

Question 30

Steps to Quarantine a system

Answer 30

1. Isolate removable storage (should be scanned) 2. Disable all networking and sharing properties 3. Identify other computers for infection 4. Limit network connectivity

Question 31

Disable System Restore

Answer 31

Win 10: System > System Protection > System Properties > (select drive) > Configure > Disable System Protection > (click ok)

Question 32

Used to detect and diagnose unusual system behavior.

Answer 32

Event Viewer

Question 33

Used to save and reinstate system files and settings

Answer 33

System Restore

Question 34

Used when system files are missing or damaged

Answer 34

Installation media

Question 35

Used when the computer won't boot

Answer 35

Recovery environment

Question 36

Used to change boot options

Answer 36

MSCONFIG

Question 37

In iOS, which feature is responsible for locating and remotely wiping lost devices?

Answer 37

the Find My iPhone feature in iCloud

Question 38

What are the three recycling or repurposing methods listed on the A+ exam guide?

Answer 38

Low-level format vs. standard format Overwrite Drive wipe

Question 39

Which three protocols provide encrypted communications between 802.11x wireless clients and wireless access points?

Answer 39

Wired Equivalent Privacy (WEP), Wi-Fi Protected Access (WPA), and WPA2

Question 40

Why does WPA use Temporal Key Integrity Protocol (TKIP)?

Answer 40

to ensure that a new encryption key is provided for every packet that is sent

Question 41

What does three-factor authentication use?

Answer 41

something you know (i.e. username or password), something you have (i.e., smart card), and something you are (i.e., biometric authentication)

Question 42

Which wireless security protocol is most secure: WPA, WPA2, or WEP?

Answer 42

WPA2

Question 43

A form of malicious software and Internet fraud that misleads users into believing there is a virus on their computer and to pay money for a fake malware removal tool (that actually introduces malware to the computer).

Answer 43

Rogue antivirus

Question 44

A decoy computer system which helps to trap hackers or track unconventional or new hacking methods.

Answer 44

Honeypot

Question 45

A code that is intended to take full or partial control of a system at the lowest levels.

Answer 45

Rootkit

Question 46

Provides strong authentication for client/server applications by using secret-key cryptography.

Answer 46

Kerberos

Question 47

Steps to remove malware

Answer 47

1. Identify symptoms 2. Quarantine the infected systems 3. Disable system restore 4. Remediate infected system 5. Update/install anti-malware software 6. Scan and use removal techniques 7. Schedule scans and run update 8. Enable system restore and create a restore point 9. Educate the end-user