1

Question 1

to set a limit on the amount of data we expect to receive to set aside storage for that data
*required in most programming languages
* prevents buffer overflows

Answer 1

Bounds Checking

Question 2

A type of software development vulnerability that occurs when multiple processes or multiple threads within a process control or share access to a particular resource, and the correct handling of that resource depends on the proper ordering or timing of transactions

Answer 2

Race Conditions

Question 3

a type of attack that can occur when we fail to validate the input to our applications or take steps to filter out unexpected or undesirable content

Answer 3

Input Validation

Question 4

a type of input validation attacks in which certain print functions within a programming language can be used to manipulate or view the internal memory of an application

Answer 4

Format String Attack

Question 5

A type of attack that can occur when we fail to use strong authentication mechanisms for our applications

Answer 5

Authentication Attack

Question 6

A type of attack that can occur when we fail to use authorization best practices for our applications

Answer 6

Authorization Attack

Question 7

A type of attack that takes advantage of weaknesses in the software loaded on client machines or one that uses social engineering techniques to trick us into going along with the attack

Answer 7

Cryptographic Attack

Question 8

A type of attack that takes advantage of weaknesses in the software loaded on client machines or one that uses social engineering techniques to trick us into going along with the attack

Answer 8

Client-Side Attack

Question 9

an attack carried out by placing code in the form of a scripting language into a web page or other media that is interpreted by a client browser

Answer 9

XSS (Cross Site Scripting)

Question 10

an attack in which the attacker places a link on a web page in such a way that it will be automatically executed to initiate a particular activity on another web page or application where the user is currently authenticated

Answer 10

XSRF (cross-site request forgery)

Question 11

An attack that takes advantage of the graphical display capabilities of our browser to trick us into clicking on something we might not otherwise

Answer 11

Clickjacking

Question 12

A type of attack on the web server that can target vulnerabilities such as lack of input validation, improper or inadequate permissions, or extraneous files left on the server from the development process

Answer 12

server-side attack

Question 13

Name the 4 main categories of database security issues

Answer 13

1. Protocol issues
2. unauthenticated access
3. arbitrary code execution
4. privilege escalation

Question 14

A type of tool that analyzes web pages or web-based applications and searches for common flaws such as XSS or SQL injection flaws, and improperly set permissions, extraneous files, outdated software versions, and many more such items

Answer 14

web application analysis tool

Question 15

unauthenticated flaws in network protocols, authenticated flaws in network protocols, flaws in authentication protocols

Answer 15

protocol issues

Question 16

An attack that exploits an applications vulnerability into allowing the attacker to execute commands on a user’s computer.
* arbitrary code execution in intrinsic or securable SQL elements

Answer 16

arbitrary code execution

Question 17

An attack that exploits a vulnerability in software to gain access to resources that the user normally would be restricted from accessing.
* via SQL injection or local issues

Answer 17

Privilege Escalation

Question 18

a security best practice for all software
* the most effective way of mitigating SQL injection attacks

Answer 18

validating user inputs

Question 19

A web server analysis tool that performs checks for many common server-side vulnerabilities & creates an index of all the files and directories it can see on the target web server (a process known as spidering)

Answer 19

Nikto (and Wikto)

Question 20

A well-known GUI web analysis tool that offers a free and professional version; the pro version includes advanced tools for conducting more in-depth attacks

Answer 20

burp suite

Question 21

A type of tool that works by bombarding our applications with all manner of data and inputs from a wide variety of sources, in the hope that we can cause the application to fail or to perform in unexpected ways

Answer 21

fuzzer

Question 22

A tool developed by Microsoft to find flaws in file-handling source code

Answer 22

MiniFuzz File Fuzzer

Question 23

A tool developed by Microsoft to examine source code for general good practices

Answer 23

BinScope Binary Analyzer

Question 24

A tool developed by Microsoft for testing certain pattern-matching expressions for potential vulnerabilities

Answer 24

SDL Regex Fuzzer

Question 25

CERT, NIST 800, BSI, an organization’s internal coding guidelines

Answer 25

good sources of secure coding guidelines

Question 26

the process of reducing the number of available avenues through which our OS might be attacked

Answer 26

OS hardening

Question 27

The total of the areas through which our operating system might be attacked

Answer 27

attack surface

Question 28

1. Removing unnecessary software
2. Removing or turning off unessential services
3. Making alterations to common accounts
4. Applying the principle of least privilege
5. Applying software updates in a timely manner
6. Making use of logging and auditing functions

Answer 28

6 main hardening categories

Question 29

states we should only allow a party the absolute minimum permission needed for it to carry out its function

Answer 29

Principle of Least Privilege

Question 30

A particularly complex and impactful item of malware that targeted the Supervisory Control and Data Acquisition (SCADA) systems that run various industrial processes; this piece of malware raised the bar for malware from largely being a virtual-based attack to actually being physically destructive

Answer 30

Stuxnet

Question 31

A type of tool that uses signature matching or anomaly detection (heuristics) to detect malware threats, either in real-time or by performing scans of files and processes

Answer 31

anti-malware tool

Question 32

the process of anomaly detection used by anti-malware tools to detect malware without signatures

Answer 32

heuristics

Question 33

A hardware and software-based technology that prevents certain portions of the memory used by the operating system and applications from being used to execute code

Answer 33

executable space protection

Question 34

The act of inputting more data than an application is expecting from a particular input, creating the possibility of executing commands by specifically crafting the excess data

Answer 34

buffer overflow (overrun)

Question 35

a security method that involves shifting the contents of memory around to make tampering difficult

Answer 35

ASLR (Address Space Layout Randomization)

Question 36

This type of firewall generally contains a subset of the features on a large firewall appliance but is often capable of similar packet filtering and stateful packet inspection activities

Answer 36

software firewall

Question 37

a system used to analyze the activities on or directed at the network interface of a particular host.
* may communicate with management device by sending regular beacons

Answer 37

HIDS (host-based intrusion detection system)

Question 38

a type of tool that can detect various security flaws when examining hosts

Answer 38

scanner

Question 39

A tool that is aimed specifically at the task of finding and reporting network services on hosts that have known vulnerabilities

Answer 39

vulnerability assessment tool

Question 40

A well-known vulnerability assessment tool that includes a port scanner

Answer 40

Nessus

Question 41

A group of tools that can include network mapping tools, sniffers, and exploits

Answer 41

exploit framework

Question 42

small bits of software that take advantage of flaws in software/applications in order to cause them to behave in ways that were not intended by their creators

Answer 42

exploits

Question 43

Name 3 examples of exploit frameworks

Answer 43

Metasploit, Immunity CANVAS, Core Impact

Question 44

This method of security involves a well-configured and patched network, and incorporating elements such as network segmentation, choke points, and redundancy

Answer 44

security in network design

Question 45

The act of dividing a network into multiple smaller networks, each acting as its own small network (subnet)

Answer 45

network segmentation

Question 46

certain points in the network, such as routers, firewalls, or proxies, where we can inspect, filter, and control network traffic

Answer 46

choke points

Question 47

a method of security that involves designing a network to always have another route if something fails or loses connection

Answer 47

redundancy

Question 48

a mechanism for maintaining control over the traffic that flows into and out of our networks

Answer 48

firewall

Question 49

A firewall technology that inspects the contents of each packet in network traffic individually and makes a gross determination (based on source and destination IP address, port number, and the protocol being used) of whether the traffic should be allowed to pass

Answer 49

packet filtering

Question 50

a firewall that can watch packets and monitor the traffic from a given connection

Answer 50

SPI (Stateful Packet Inspection)

Question 51

a firewall technology that can analyze the actual content of the traffic that is flowing through

Answer 51

DPI (Deep Packet Inspection)

Question 52

a specialized type of firewall that can serve as a choke point, log traffic for later inspection, and provides a layer of security by serving as a single source of requests for the devices behind it

Answer 52

proxy server

Question 53

a combination of a network design feature and a protective device such as a firewall.
Often used for systems that need to be exposed to external networks but are connected to our own network (such as a web server)

Answer 53

DMZ (demilitarized zone)

Question 54

A system that monitors network traffic and alerts for unauthorized activity

Answer 54

NIDS (Network intrusion detection system)

Question 55

An IDS that maintains a database of signatures that might signal a particular type of attack and compares incoming traffic to those signatures

Answer 55

signature-based IDS

Question 56

an IDS that takes a baseline of normal network traffic and activity and measures current traffic against this baseline to detect unusual events

Answer 56

anomaly-based IDS

Question 57

an encrypted connection between two points

Answer 57

VPN (Virtual Private Network)

Question 58

protocol used to secure traffic in a variety of ways, including file transfers and terminal access. uses RSA encryption (asymmetric encryption)

Answer 58

SSH (Secure Shell)

Question 59

a phrase that refers to an organization’s strategy and policies regarding the use of personal vs. corporate devices

Answer 59

BYOD (bring your own device)

Question 60

a solution that manages security elements for mobile devices in the workplace

Answer 60

MDM (mobile device management)

Question 61

a well-known Linux sniffing tool used to detect wireless access points

Answer 61

kismet

Question 62

A Windows tool used to detect wireless access points

Answer 62

NetStumbler

Question 63

A well-known port scanner that can also search for hosts on a network, identify the operating systems those hosts are running, detect the version of the services running on any open ports, and more

Answer 63

nmap

Question 64

this type of tool can intercept traffic on a network; listens for any traffic that the network interface of our computer or device can see

Answer 64

packet sniffer (aka network or protocol analyzer)

Question 65

classic, command-line sniffing tool that monitors network activities, filters traffic, and more
runs on UNIX systems

Answer 65

tcpdump (WinDump for Windows)

Question 66

a graphical interface protocol sniffing tool that is capable of filtering, sorting, & analyzing both wired and wireless traffic - popular troubleshooting tool

Answer 66

Wireshark

Question 67

A type of tool that deliberately displays vulnerabilities or attractive data so it can detect, monitor, and sometimes tamper with the activities of an attacker

Answer 67

honeypot

Question 68

A tool used to test the security of firewalls and map network topology.
- constructs specially crafted ICMP packets to evade measures to hide devices behind firewall
- scripting functionality to test firewall/IDS

Answer 68

hping3

Question 69

A type of security that is concerned with the protection of people, equipment, and data

Answer 69

physical security

Question 70

the plans we put in place to ensure that critical business functions can continue operations in the event of an emergency

Answer 70

BCP (Business Continuity Plan)

Question 71

the plans we put in place in preparation for a potential disaster, and what exactly we will do during and after

Answer 71

DRP (Disaster Recovery Plan)

Question 72

extreme temperature, gases, living organisms, projectiles, movement, energy anomalies, people, toxins, smoke, and fire

Answer 72

major categories of physical threats

Question 73

The devices, systems, people, and other methods we put in place to ensure our security in a physical sense

Answer 73

physical security controls

Question 74

name the 3 main types of physical controls

Answer 74

1. deterrent
2. detective
3. preventive

Question 75

Controls designed to discourage those who might seek to violate our security controls

Answer 75

deterrent controls

Question 76

controls designed to detect and report undesirable events that are taking place

Answer 76

detective controls

Question 77

Controls designed to physically prevent unauthorized entities from breaching our physical security

Answer 77

preventive controls

Question 78

Data that is unintentionally left behind on a storage device

Answer 78

residual data

Question 79

Name the 3 main considerations for protecting people

Answer 79

1. Safety
2. evacuation plans
3. administrative controls

Question 80

Name the 3 main considerations for protecting data

Answer 80

1. availability
2. residual data
3. backups

Question 81

Name the considerations for protecting equipment

Answer 81

equipment, facility repair/replacement

Question 82

storage media that is least sensitive to temperature, humidity, magnetic fields, and impacts

Answer 82

flash media

Question 83

a data storage virtualization technology that combines multiple physical disk drive components into a single logical unit for the purposes of data redundancy, performance improvement, or both.

Answer 83

RAID (redundant array of inexpensive disks)

Question 84

protecting data, passwords, social engineering, network usage, malware, the use of personal equipment, clean desk, policy knowledge

Answer 84

most common security awareness issues

Question 85

a security awareness issue that is concerned with the criticality of carefully handling data from the perspectives of compliance, as well as reputation and customer retention

Answer 85

protecting data

Question 86

a security awareness issue that involves educating users of the importance of strong passwords and password handling best practices

Answer 86

passwords

Question 87

techniques used by an attacker that rely on the willingness of people to help others

Answer 87

social engineering

Question 88

A technique involving a fake identity & a believable scenario that elicits the target to give out sensitive information or perform some action which they would not normally do for a stranger

Answer 88

pretexting

Question 89

a social engineering technique that uses electronic communications (email, text, phone calls) to convince a potential victim to give out sensitive information or perform some action

Answer 89

phishing

Question 90

a social engineering techniqe that targets a specific company, organization, or person, and involves knowing specifics about the target to appear valid

Answer 90

spearphishing

Question 91

a method by which a person follows directly behind another person who authenticates to the physical access control measure, thus allowing the follower to gain access without authenticating

Answer 91

tailgating (piggybacking)

Question 92

a security awareness issue that involves educating users about security issues around connecting devices to networks, such as connecting outside devices to the corporate network, and connecting corporate resources to a public network

Answer 92

network usage

Question 93

a security awareness issue that involves educating users about malicious software and how to avoid it

Answer 93

malware

Question 94

security awareness issue that is concerned with protecting a company’s assets

Answer 94

use of personal equipment

Question 95

a security awareness issue that requires users to protect sensitive information at all times, even when away from one’s desk

Answer 95

clean desk policy

Question 96

a security awareness issue that is necessary to maintain compliance throughout the organization

Answer 96

policy and regulatory knowledge

Question 97

a program that seeks to make users aware of the risk they are accepting through their current actions and attempts to change their behavior through targeted efforts

Answer 97

SATE (Security Awareness, Training and Education)

Question 98

the process we use to protect our information

Answer 98

OPSEC (Operations Security)

Question 99

A Chinese military general from 6th century BC who wrote The Art of War, a text that shows early examples of operations security principles

Answer 99

Sun Tzu

Question 100

The codename of a study conducted to discover the cause of an information leak during the Vietnam War; is now a symbol of OPSEC

Answer 100

Purple Dragon

Question 101

the process of intelligence gathering and analysis in order to support business decisions

Answer 101

competitive intelligence

Question 102

5 steps of the operations security process (OPSEC)

Answer 102

1.Identification of critical information
2.Analysis of threats
3.Analysis of vulnerabilities
4.Assessment of risks
5.Application of countermeasures

Question 103

If you don’t know the threat, how do you know what to protect?

Answer 103

The 1st Law of Haas’ Laws of Operations Security

Question 104

If you don’t know what to protect, how do you know you are protecting it?

Answer 104

The 2nd Law of Haas’ Laws of Operations Security

Question 105

If you are not protecting it, the dragon wins!

Answer 105

The 3rd Law of Haas’ Laws of Operations Security

Question 106

services that are hosted, often over the Internet, for the purposes of delivering easily scaled computing services or resources

Answer 106

cloud computing

Question 107

1st step in the OPSEC process, arguably the most important: to identify the assets that most need protection and will cause us the most harm if exposed

Answer 107

identification of critical information

Question 108

2nd step in the OPSEC process: to look at the potential harm or financial impact that might be caused by critical information being exposed, and who might exploit that exposure

Answer 108

analysis of threats

Question 109

3rd step in the OPSEC process: to look at the weaknesses that can be used to harm us

Answer 109

analysis of vulnerabilities

Question 110

4th step in the OPSEC process: to determine what issues we really need to be concerned about (areas with matching threats and vulnerabilities)

Answer 110

assessment of risks

Question 111

5th step in the OPSEC process: to put measures in place to mitigate risks

Answer 111

appliance of countermeasures

Question 112

this law provides a framework for ensuring the effectiveness of information security controls in federal government - changed from Management (2002) to Modernization in 2014

Answer 112

FISMA (Federal Information Security Modernization Act)

Question 113

this law improves the efficiency and effectiveness of the health care system and protects patient privacy

Answer 113

HIPAA (Health Insurance Portability and Accountability Act)

Question 114

this law protects the privacy of students and their parents

Answer 114

FERPA (Family Educational Rights and Privacy Act)

Question 115

this law regulates the financial practice and governance of corporations

Answer 115

SOX (Sarbanes-Oxley Act)

Question 116

this law protects the customers of financial institutions

Answer 116

GLBA (Gramm-Leach-Bliley Act)

Question 117

relating to an organization’s adherence to laws, regulations, and standards

Answer 117

compliance

Question 118

Regulations mandated by law usually requiring regular audits and assessments

Answer 118

regulatory compliance

Question 119

Regulations or standards designed for specific industries that may impact ability to conduct business (e.g. PCI DSS)

Answer 119

industry compliance

Question 120

the state or condition of being free from being observed or disturbed by other people

Answer 120

privacy

Question 121

This act safeguards privacy through the establishment of procedural and substantive rights in personal data

Answer 121

The Federal Privacy Act of 1974

Question 122

Rights relating to the protection of an individual’s personal information

Answer 122

privacy rights

Question 123

Information that can be used to identify an individual, and should be protected as sensitive data and monitored for compliance

Answer 123

PII (Personally Identifiable Information)

Question 124

the science of keeping information secure

Answer 124

cryptography

Question 125

The science of breaking through the encryption used to create ciphertext

Answer 125

Cryptanalysis

Question 126

The overarching field of study that covers cryptography and cryptanalysis

Answer 126

cryptology

Question 127

The specifics of the process used to encrypt plaintext or decrypt ciphertext

Answer 127

cryptographic algorithm (cipher)

Question 128

unencrypted data

Answer 128

plaintext (cleartext)

Question 129

encrypted data

Answer 129

ciphertext

Question 130

an ancient cryptographic technique based on transposition; involves shifting each letter of a plaintext message by a certain number of letters (historically 3)

Answer 130

Caesar cipher

Question 131

a more recent cipher that uses the same mechanism as the Caesar cipher but moves each letter 13 places forward

Answer 131

ROT13 cipher

Question 132

uses a single key for both encryption of the plaintext and decryption of the ciphertext

Answer 132

symmetric key cryptography (private key cryptography)

Question 133

A type of cipher that takes a predetermined number of bits in the plaintext message (commonly 64 bits) and encrypts that block

Answer 133

block cipher

Question 134

A type of cipher that encrypts each bit in the plaintext message, 1 bit at a time

Answer 134

stream cipher

Question 135

A set of symmetric block ciphers endorsed by the US government through NIST. Shares the same block modes that DES uses and also includes other modes such as XEX-based Tweaked CodeBook (TCB) mode

Answer 135

AES (Advanced Encryption Standard)

Question 136

this method uses 2 keys, a public key and a private key

Answer 136

asymmetric key cryptography (public key cryptography)

Question 137

a protocol that uses the RSA algorithm (an asymmetric algorithm) to secure web and email traffic

Answer 137

SSL (secure sockets layer)

Question 138

keyless cryptography that creates a largely unique and fixed-length hash value based on the original mesage

Answer 138

hash function (message digest)

Question 139

used to determine whether the message has changed; provides integrity (but not confidentiality)

Answer 139

hash

Question 140

a method of securing a message that involves generating a hash and encrypting it using a private key

Answer 140

digital signature

Question 141

created to link a public key to a particular individual;
used as a form of electronic identification for that person

Answer 141

certificate

Question 142

a trusted entity that handles digital certificates

Answer 142

CA (certificate authority)

Question 143

infrastructure that includes the CAs that issue and verify certificates and the RAs that verify the identity of the individuals associated with the certificates

Answer 143

PKI (public key infrastructure)

Question 144

An authority in a PKI that verifies the identity of the individual associated with the certificate

Answer 144

RA (registration authority)

Question 145

a public list that holds all the revoked certifications for a certain period of time

Answer 145

CRL (Certificate Revocation List)

Question 146

Data that is on a storage device of some kind and is not moving

Answer 146

data at rest

Question 147

Data that is moving over a WAN or LAN, a wireless network, over the internet, or in other ways

Answer 147

data in motion

Question 148

This type of data is protected using data security (encryption) and physical security

Answer 148

data at rest

Question 149

This type of data is the hardest to protect

Answer 149

data in use

Question 150

a subset of cryptography that refers specifically to the transformation of unencrypted data into its encrypted form

Answer 150

encryption

Question 151

decryption
The process of recovering the plaintext message from the ciphertext

Answer 151

decryption

Question 152

a set of methods we use to establish a claim of identity as being true - corroborates the identity of an entity, whether it is the sender, the sender’s computer, some device, or some information

Answer 152

authentication

Question 153

An asymmetric encryption algorithm that uses smaller key sizes and requires less processing power than many other encryption methods.
commonly used in smaller wireless devices

Answer 153

ECC (Elliptic Curve Cryptography)

Question 154

this provides us with the means to trace activities in our environment back to their source

Answer 154

accountability

Question 155

Refers to a situation in which sufficient evidence exists as to prevent an individual from successfully denying that he or she has made a statement, or taken an action

Answer 155

nonrepudiation

Question 156

refers to elements that discourage or prevent misbehavior in our environments

Answer 156

deterrence

Question 157

a tool that alarms and takes actions when malicious events occur

Answer 157

IDS (intrusion detection system)

Question 158

a methodical examination and review that ensures accountability through technical means;
ensures compliance with applicable laws, policies, and other bodies of administrative control, and detects misuse

Answer 158

auditing

Question 159

A process that provides a history of the activities that have taken place in the environment

Answer 159

logging

Question 160

a subset of auditing that focuses on observing information about the environment in order to discover undesirable conditions such as failures, resource shortages, security issues, and trends

Answer 160

monitoring

Question 161

An activity involving the careful examination of our environment using vulnerability scanning tools in order to discover vulnerabilities

Answer 161

vulnerability assessment

Question 162

A more active method of finding security holes that includes using the kinds of tools attackers use to mimic an attack on our environment

Answer 162

penetration testing

Question 163

a record of where evidence was and how it was passed and protected;
required by courts for admissibility of records

Answer 163

chain of custody

Question 164

enables us to determine what users are allowed to do

Answer 164

authorization

Question 165

States that we should allow only the bare minimum access required in order for a given party (person, user account, or process) to perform a needed functionality

Answer 165

principle of least privilege

Question 166

the act of doing something that is prohibited by law or rule

Answer 166

violation

Question 167

An act that grants a particular party access to a given resource

Answer 167

allowing access

Question 168

an act that prevents a party from accessing something, such as logging on to a machine or entering the lobby of our building after hours

Answer 168

denying access

Question 169

An act that allows some access to a given resource, but only up to a certain point

Answer 169

limiting access

Question 170

A set of resources devoted to a program, process, or similar entity, outside of which the entity cannot operate

Answer 170

sandbox

Question 171

the ability to remove access from a resource at any point in time

Answer 171

revocation

Question 172

typically built to a certain resource, these contain the identifiers of the party allowed to access the resource and what that party is allowed to do

Answer 172

ACL (Access Control List)

Question 173

in this method of security, a person’s capabilities are oriented around the use of a token that controls their access (e.g. a personal badge)

Answer 173

capability-based security

Question 174

A type of attack that is more common in systems that use ACLs rather than capabilities;
- when software has greater permissions than user, the user can trick the software into misusing authority

Answer 174

confused deputy problem

Question 175

a type of attack that misuses the authority of the browser on the user’s computer

Answer 175

CSRF (Cross Site Request Forgery)

Question 176

client-side attack that involves the attacker placing an invisible layer over something on a website that the user would normally click on in order to execute a command differing from what a user thinks they are performing
- takes advantage of some of the page rendering features that are available in newer browsers

Answer 176

clickjacking (user interface redressing)

Question 177

access control model in which access is determined by the owner of the resource in question
- e.g. network share permissions

Answer 177

DAC (Discretionary Access Control)

Question 178

access control model in which access is based on attributes (of a person, a resource, or an environment)

Answer 178

ABAC (attribute-based access control)

Question 179

access is based on the role the individual is performing
- similar to MAC in that access controls are set by an authority responsible for doing so, rather than by the owner of the resource

Answer 179

RBAC (Role Based Access Control)

Question 180

Attributes of a particular individual, such as height

Answer 180

subject attributes

Question 181

Attributes that relate to a particular resource, such as operating system or application

Answer 181

resource attributes

Question 182

Attributes that relate to environmental conditions, such as time of day or length of time

Answer 182

environmental attributes

Question 183

• Designed to prevent conflicts of interest
• commonly used in industries that handle sensitive data
• 3 main resources classes are considered in this model: objects, company groups, and conflict classes

Answer 183

Brewer and Nash model

Question 184

A combination of DAC and MAC, primarily concerned with the confidentiality of the resource.
- 2 security properties define how information can flow to and from the resource: the simple security property and the * property

Answer 184

Bell-LaPadula Model

Question 185

Primarily concerned with protecting the integrity of data, even at the expense of confidentiality.
- 2 security rules: the simple integrity axiom and the * integrity axiom

Answer 185

Biba model

Question 186

A method by which a person follows directly behind another person who authenticates to the physical access control measure, thus allowing the follower to gain access without authenticating

Answer 186

Tailgating

Question 187

Access controls that regulate movement into and out of building or facilities

Answer 187

Physical access controls

Question 188

An access control model that includes many tiers of security and is used extensively by military and government organizations and those that handle data of a very sensitive nature

Answer 188

Multilevel access control model

Question 189

Access control model in which access is decided by a group or individual who has the authority to set access on resources

Answer 189

MAC (Mandatory Access Control)

Question 190

Something that supports our claim to identity, either in our personal interactions or in computer systems, e.g. social security cards

Answer 190

identity verification

Question 191

the claim of what someone or something is

Answer 191

identification

Question 192

Authentication requirements help prevent this crime

Answer 192

Falsifying Identification

Question 193

A password is an example of this type of factor

Answer 193

Something you know

Question 194

An iris scan is an example of this type of factor

Answer 194

something you are

Question 195

A swipe card is an example of this type of factor

Answer 195

something you have

Question 196

The time delay between your keystrokes is an example of this type of factor

Answer 196

something you do

Question 197

Being at a specific terminal is an example of this type of factor

Answer 197

where you are

Question 198

An authentication mechanism in which both parties authenticate each other
-can prevent a man-in-the-middle attack

Answer 198

multifactor authentication

Question 199

a password that is a combination of uppercase letters, lowercase letters, numbers, and symbols, such as punctuation marks

Answer 199

elements of a complex password

Question 200

Unique physical characteristics of an individual, such as the color patterns in an iris, fingerprints, or handprints

Answer 200

biometrics

Question 201

a stipulation that our chosen biometric characteristic should be present in the majority of people we expect to enroll in the system

Answer 201

universality

Question 202

a measure of the differences of a particular characteristic among a group of individuals

Answer 202

uniqueness

Question 203

how well a particular characteristic resists change over time and with advancing age

Answer 203

permanence

Question 204

How easy it is to acquire a characteristic that we can later use to authenticate a user

Answer 204

collectability

Question 205

A set of metrics that judge how well a given system functions

Answer 205

performance measurement

Question 206

A measure of how agreeable a particular characteristic is to the users of a system

Answer 206

acceptability

Question 207

Describes the ease with which a system can be tricked by a falsified biometric identifier

Answer 207

circumvention

Question 208

the rate at which we accept users whom we should actually have rejected

Answer 208

FAR (false acceptance rate)

Question 209

the rate at which we reject legitimate users when we should have accepted them

Answer 209

FRR (false rejection rate)

Question 210

protects information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction

Answer 210

Information Security

Question 211

companies that process credit card payments must comply with this set of standards

Answer 211

PCI DSS (Payment Card Industry Data Security Standard)

Question 212

the act of holding information in confidence, not to be released to unauthorized individuals
-a necessary component of privacy

Answer 212

Confidentiality

Question 213

refers to the ability to prevent our data from being changed in an unauthorized or undesirable manner

Answer 213

integrity

Question 214

refers to the ability to access our data when we need it

Answer 214

availability

Question 215

a type of attack, primarily against confidentiality

Answer 215

interception

Question 216

something that has the potential to cause harm to our assets

Answer 216

threat

Question 217

a weakness that can be used to harm us

Answer 217

vulnerability

Question 218

the likelihood that something bad will happen

Answer 218

risk

Question 219

involves considering the value of the asset being threatened to assess risk
-sometimes added to the threat/vulnerability/risk equation

Answer 219

impact

Question 220

An attack that causes our assets to become unusable or unavailable for our use, on a temporary or permanent basis
-primarily affects availability
-can affect integrity

Answer 220

interruption attack

Question 221

A model that adds three more principles to the CIA triad: possession or control, utility, and authenticity

Answer 221

Parkerian hexad

Question 222

the physical disposition of the media on which the data is stored

Answer 222

possession/control

Question 223

allows for attribution as to the owner or creator of the data in question

Answer 223

authenticity

Question 224

refers to how useful the data is to us

Answer 224

utility

Question 225

An attack that involves generating data, processes, communications, or other similar activities with a system;
- affects primarily integrity and availability

Answer 225

fabrication attack

Question 226

One of the first and most important steps of the risk management process

Answer 226

identify assets

Question 227

A multilayered defense that will allow us to achieve a successful defense should one or more of our defensive measures fail

Answer 227

defense in depth

Question 228

based on rules, laws, policies, procedures, guidelines, and other items that are “paper” in nature

Answer 228

administrative controls

Question 229

controls that protect the systems, networks, and environments that process, transmit, and store our data

Answer 229

logical controls (technical controls)

Question 230

Controls that protect the physical environment in which our systems sit, or where our data is stored

Answer 230

physical controls

Question 231

Involves putting measures in place to help ensure that a given type of threat is accounted for

Answer 231

mitigating risk

Question 232

The risk management phase that consists of all of the activities that we can perform in advance of the incident itself, in order to better enable us to handle it

Answer 232

preparation phase

Question 233

The risk management phase where we detect the occurrence of an issue and decide whether it is actually an incident so that we can respond to it appropriately

Answer 233

detection and analysis phase

Question 234

The risk management phase where we determine specifically what happened, why it happened, and what we can do to keep it from happening again

Answer 234

post-incident activity phase

Question 235

to completely remove the effects of the issue from our environment

Answer 235

eradication

Question 236

taking steps to ensure that the situation does not cause any more damage than it already has, or at the very least, lessen any ongoing harm

Answer 236

containment

Question 237

restore to a better state (either the state prior to the incident, or if we did not detect the problem immediately, prior to when the issue started)

Answer 237

recovery

Question 238

EU regulation that safeguards personally identifiable information

Answer 238

EU Directive 95/46/EC

Question 239

Detects wireless access points and analyzes network traffic. Useful for surveying a network to understand its wireless security footprint.

Answer 239

Kismet/Netstumbler

Question 240

Scans networks to identify active hosts and open ports. Employed for initial network reconnaissance and security auditing.

Answer 240

NMAP

Question 241

A packet sniffer and protocol analyzer for real-time network monitoring. Ideal for diagnosing network issues or analyzing security incidents.

Answer 241

WireShark

Question 242

A Unix/Linux command-line packet capture tool. Helpful for real-time network troubleshooting and capturing packets for later analysis.

Answer 242

TCPDump

Question 243

Decoy systems to lure attackers away from legitimate targets. Useful for studying attacker behaviors and tactics.

Answer 243

Honeypots

Question 244

Crafts custom ICMP, UDP, and TCP packets to test firewalls. Employed to identify vulnerabilities or misconfigurations in firewall rules.

Answer 244

Hping3

Question 245

Provides hardware-level buffer overflow protection in Intel chipsets. Useful for preventing malicious code execution at the system level.

Answer 245

Intel Executable Disable (XD)

Question 246

Randomizes memory locations for process execution, offering buffer overflow protection. Effective against exploits aiming to predict memory addresses.

Answer 246

Address Space Layout Randomization (ASLR)

Question 246

Offers chipset-level buffer overflow protection for AMD processors. Acts as a hardware-level security feature against certain types of attacks.

Answer 246

AMD Enhanced Virus Protection

Question 247

A Tenable product for vulnerability assessment, it scans networks to identify security risks. Ideal for regular security audits.

Answer 247

Nessus

Question 248

Vulnerability assessment tool by Immunity, designed for identifying network and system weaknesses. Useful for enterprise security audits.

Answer 248

CANVAS

Question 248

A penetration testing framework that includes tools and exploits for security assessments. Can be used to simulate cyber-attacks to test network resilience

Answer 248

Metasploit

Question 249

Analyzes web servers and identifies security issues like outdated software and misconfigurations. Effective for hardening web servers before deployment.

Answer 249

Nikto and Wikto

Question 250

A web security testing platform for web application vulnerabilities. Ideal for security assessments of web-based applications.

Answer 250

Burp Suite

Question 250

Automated tools for identifying vulnerabilities by inputting unexpected data. Helpful for discovering unknown issues like crashes or security flaws in software.

Answer 250

Fuzzers (MiniFuzz, Binscope, Regex Fuzzer)

Question 251

Open-source vulnerability scanning and management software. Useful for detecting vulnerabilities in your network before they can be exploited.

Answer 251

OpenVAS

Question 252

Intrusion Detection System (IDS) that monitors network traffic in real-time for malicious activities. Employed for real-time threat detection and prevention.

Answer 252

Snort

Question 252

Advanced password recovery and cracking tool. Useful for assessing the strength of passwords by attempting to crack hashed password files.

Answer 252

Hashcat

Question 253

Password cracking software designed to identify weak passwords by using various attack methods. Effective for security audits to improve password policies.

Answer 253

John the Ripper

Question 254

Cuckoo Sandbox

Answer 254

Malware analysis tool that isolates suspicious files in a secure environment. Useful for understanding the behavior of unknown or potentially harmful files.

Question 255

Federal Information Security Management Act: Mandates a comprehensive framework to protect government information, operations, and assets.

Answer 255

FISMA

Question 256

Health Insurance Portability and Accountability Act: Regulates the use and disclosure of sensitive patient health information.

Answer 256

HIPAA

Question 257

Family Educational Rights and Privacy Act: Governs the protection of student education records and grants specific rights to students.

Answer 257

FERPA

Question 257

The Sarbanes-Oxley Act: Imposes regulations on financial reporting to improve the accuracy and integrity of corporate disclosures.

Answer 257

SOX

Question 258

The Gramm-Leach-Bliley Act: Requires financial institutions to explain their data-sharing practices and safeguard sensitive data.

Answer 258

GLBA