Study Points

Question 1

XDR stands for

Answer 1

Extended detection and response

Question 2

UBA stands for

Answer 2

User behaviour analytics

Question 3

Smishing is

Answer 3

SMS phishing

Question 4

Spimming is

Answer 4

instant messaging attack (spam)

Question 5

Pharming is

Answer 5

a DNS spoofing attack

Question 6

SWG stands for

Answer 6

secure web gateway

Question 7

SCAP stands for

Answer 7

Security Content Automation Protocol

Question 8

Does OAuth work with SAML?

Answer 8

No

Question 9

SPF does what

Answer 9

This is an email authentication method that helps detect and prevent sender address forgery commonly used in phishing and spam emails

Question 10

DKIM does what

Answer 10

This protocol leverages encryption features to enable email verification by allowing the sender to sign emails using a digital signature.

Question 11

AML stands for

Answer 11

Anti-money laundering

Question 12

KYC stands for

Answer 12

know your customer

Question 13

Risk Analysis is

Answer 13

individual risks

Question 14

Risk Assessment is

Answer 14

looking at all of the risks

Question 15

Reflected attack involves

Answer 15

spoofing the IP address

Question 16

Compensating controls are

Answer 16

a partial control solution that is implemented when a control cannot fully meet a requirement

Question 17

Cipher Blocks information:

Answer 17

ECB avoid (the only E)
Only GCM authenticates (the only G)
GCM is the best
CTR is stream like
CFB self-synchronizing

Question 18

encryption is specifically designed to allow data to be worked on without decrypting it first?

Answer 18

homomorphic

Question 19

TACAS is on port

Answer 19

49

Question 20

PAP stands for

Answer 20

Password Authentication Protocol (in clear text)

Question 21

CHAP stands for

Answer 21

Challenge Handshake Protocol

Question 22

DRA stands for

Answer 22

data recovery agent