Security and Cryptography

Question 2

What is symmetric-key cryptography?

Answer 2

Both the sender and receiver share a single key for encryption and decryption.

Question 3

What is public-key cryptography?

Answer 3

Uses two related keys: a public key for encryption and a private key for decryption.

Question 4

What are hash functions?

Answer 4

Algorithms that compute a fixed-length hash value from plaintext, making it impossible to recover the original content.

Question 5

List the three types of cryptographic techniques used in general.

Answer 5

• Symmetric-key cryptography
• Hash functions
• Public-key cryptography

Question 6

Why is data security important?

Answer 6

Protects valuable data from corruption and unauthorized access, preventing financial loss and reputation damage.

Question 7

What is authentication in data security?

Answer 7

Verifies if a user’s credentials match those stored in a database.

Question 8

What technologies are included in standard authentication processes?

Answer 8

• Passwords
• PINs
• Security tokens
• Swipe cards
• Biometrics

Question 9

What is access control?

Answer 9

The process of determining what an authenticated user is allowed to do or see.

Question 10

List the types of access control systems.

Answer 10

• Discretionary access control
• Role-based access control
• Mandatory access control

Question 11

What is the purpose of backups in data security?

Answer 11

To access data in the event of system failure, disaster, or data corruption.

Question 12

What is data security?

Answer 12

The practice and technology of protecting sensitive company and customer data.

Question 13

What is a Virtual Private Network (VPN)?

Answer 13

Creates a secure connection to a network from another endpoint, encrypting data between the two points.

Question 14

What do stateful multilayer inspection (SMLI) firewalls do?

Answer 14

Filter packets at multiple layers and ensure communication is only with trusted sources.

Question 15

What is the main difference between packet-filtering firewalls and stateful firewalls?

Answer 15

Stateful firewalls remember information about previously passed packets, while packet-filtering firewalls do not.

Question 16

What are next-generation firewalls (NGFW)?

Answer 16

Combine traditional firewall technology with additional functionalities such as intrusion prevention and deep packet inspection.

Question 17

What is a proxy firewall?

Answer 17

Acts as an intermediary that filters network traffic at the application level based on security rules.

Question 18

What is the function of NAT firewalls?

Answer 18

Allow multiple devices to connect to the internet using a single IP address, enhancing security.

Question 19

What is data encryption?

Answer 19

Transforms normal text into unreadable ciphertext using an algorithm and an encryption key.

Question 20

What is data masking?

Answer 20

Hides data by obscuring it with proxy characters, revealing the original only to authorized users.

Question 21

What is tokenization?

Answer 21

Substitutes sensitive data with random characters that are not algorithmically reversible.

Question 22

What is symmetric key cryptography?

Answer 22

An encryption system where the sender and receiver share a common key.

Question 23

What is a transposition cipher?

Answer 23

An encryption method that shifts the positions of plaintext units according to a system.

Question 24

What is a substitution cipher?

Answer 24

An encryption method where plaintext units are replaced with ciphertext according to a fixed system.

Question 25

What is a stream cipher?

Answer 25

An encryption algorithm that encrypts a single bit at a time, producing different ciphertext for the same plaintext.

Question 26

What are the two categories of cryptography?

Answer 26

* Symmetric key Cryptography * Asymmetric key Cryptography

Question 27

What is erasure in data management?

Answer 27

The process of permanently clearing data so that it is irretrievable.

Question 28

What is the purpose of firewalls?

Answer 28

To monitor and control incoming and outgoing network traffic based on security rules.

Question 29

What are the types of network security?

Answer 29

* Network Access Control * Antivirus and Antimalware Software

Question 30

What is administrative network security?

Answer 30

Consists of policies and processes that control user behavior and access.

Question 31

What is the purpose of comprehensive access control policies?

Answer 31

To manage user and device access to network resources.

Question 32

What does Network Access Control (NAC) allow?

Answer 32

Granular access control, such as granting administrators full access while restricting access to confidential folders.

Question 33

What types of malicious software do antivirus and antimalware software protect against?

Answer 33

Viruses, ransomware, worms, trojans.

Question 34

True or False: Antimalware is the same as antivirus.

Answer 34

False.

Question 35

What is the main focus of antimalware software?

Answer 35

To detect broader and more advanced software threats.

Question 36

What are the two main types of security controls in network security?

Answer 36

* Physical * Technical * Administrative

Question 37

What is the primary goal of technical security controls?

Answer 37

To protect data stored on the network and in transit.

Question 38

What is the definition of network security?

Answer 38

A set of rules and configurations designed to protect the integrity, confidentiality, and accessibility of computer networks and data.

Question 39

What are some common signs of a computer virus?

Answer 39

* Slow system performance * Excessive pop-up windows * Self-executing programs * Unauthorized logouts * Device crashes

Question 40

What does a firewall do?

Answer 40

Acts as a barrier between untrusted external networks and trusted internal networks.

Question 41

What is an overwrite virus?

Answer 41

A virus that overwrites file content, potentially damaging or replacing the original program.

Question 42

What is a file infector virus?

Answer 42

A virus that targets executable files and spreads to other programs.

Question 43

What is a boot sector virus?

Answer 43

A virus that infects the boot sector of disks and can damage the system's boot records.

Question 44

What characterizes a polymorphic virus?

Answer 44

It modifies itself to evade detection while infecting systems.

Question 45

What is the function of antimalware software?

Answer 45

To detect and remove new types of malware that antivirus might miss.

Question 46

What should your antivirus software include?

Answer 46

* Real-time scanning * Automatic updates * Removal of threats

Question 47

What does a resident virus do?

Answer 47

It resides in RAM and can infect files even when its originating program is not active.

Question 48

What are the four main concerns of modern cryptography?

Answer 48

* Confidentiality * Integrity * Non-repudiation * Authentication

Question 49

What is a block cipher?

Answer 49

An encryption method that encrypts a block of text using a symmetric key.

Question 50

What is RSA in the context of encryption?

Answer 50

The most widely used form of public key encryption.

Question 51

Fill in the blank: Antivirus software protects against _____ threats.

Answer 51

traditional

Question 52

True or False: Antimalware is designed to supplement antivirus protection.

Answer 52

True.

Question 53

What is the significance of sandboxing in antimalware software?

Answer 53

It allows testing of suspected threats in a controlled environment.

Question 54

What is a multipartite virus?

Answer 54

A virus that can attack both the boot sector and executable files.

Question 55

What is the risk of a network virus?

Answer 55

It replicates itself through shared resources across the network.