1.4 network security

Question 1

What is malware

Answer 1

Malicious software designed to hack a system

Question 2

What is a virus

Answer 2

Type of malware. Programs embedded in other files. Cause damage by deleting or modifying data

Question 3

What is a worm

Answer 3

Type of malware. Similar to viruses but not hidden in other data. Often spread through emails

Question 4

What is a Trojan horse

Answer 4

Type of malware. Pretends to be legitimate but is malware. Cannot spread by themselves so deceive users into installing them

Question 5

What is spyware

Answer 5

Type of malware. Programs that monitor user activities (such as websites visited, usernames and passwords used) and send the information back to a hacker.

Question 6

What is ransomware

Answer 6

Type of malware. Attempt to blackmail a user into making a payment to a hacker. Some types of ransomware do little but try to scare users into paying, while others go further - they encrypt documents and will not decrypt them until a ransom is paid.

Question 7

What is phishing

Answer 7

Emails that try to trick users into giving away personal details. The phishing email pretends to be a genuine message and tries to deceive the user into following a link to a website that looks like the real company.

Question 8

What is brute force

Answer 8

Where a program is used to find a password by trying all possible combinations of characters until the correct one is obtained.

Question 9

What is denial of service

Answer 9

Where a computer (or many computers) is used to prevent a server from performing its tasks. This is done by bombarding the server over and over again with requests. Eventually the server is tied up trying to handle all the DOS requests, making it very difficult for it to respond to legitimate requests.

Question 10

What is data interception

Answer 10

Also known as man-in-the-middle attacks. Where data is intercepted during transmission. This is done using software called a packet sniffer, which examines data packets as they are sent around a network, or across the internet. The information gathered is sent back to a hacker.

Question 11

What is an SQL

Answer 11

Where SQL code is entered as a data input. Many databases use SQL code to interrogate the data and maintain the structure. SQL code can be inputted as data, which can cause errors or unintended operations.

Question 12

What is penetration testing

Answer 12

Testing networks for weaknesses to fix them

Question 13

What is a firewall

Answer 13

Application that prevents unauthorised data to and from the network using a firewall policy

Question 14

What is encryption

Answer 14

Files that have been altered using a secret code that are unreadable to unauthorised users

Question 15

What is anti malware software

Answer 15

Software that detects, removes and prevents malware

Question 16

What are secure passwords

Answer 16

A secure password should be one that is not easy to guess, and that requires at least eight characters, including at least one uppercase letter, one number and one special character. This reduces the chances of someone easily working out what the password is.

Question 17

Network policies

Answer 17

A network manager should have an acceptable use policy which ensures:
- users have a secure, hard-to-guess password which meets specified conditions
- users change their password on a regular basis
- users cannot connect unauthorised equipment to the network, such as USB memory sticks, smartphones and tablets
- levels of access are given, which allow only authorised users to access sensitive data
- a regular backup procedure is in place
- a disaster recovery procedure exists in case of data loss
- regular penetration testing and forensic analysis
- regular maintenance including applying software upgrades and security patches to equipment
- preventing physical access to servers
maintaining a high level of security with up-to-date anti-virus software and firewalls

Question 18

What are user access levels

Answer 18

Determine the facilities a user has access to. Network managers should ensure users only have access to data they need