16 Flashcards
Defense in depth approach(layerd approach)
this requires a combination of networking devices to work in tandem
firewall, VPN, IPS, AAA server etc.
backup considerations
frequency
*Perform backups on a regular basis as identified in the security policy.
*Full backups can be time-consuming, therefore perform monthly or weekly backups with frequent partial backups of changed files.
storage
*Always validate backups to ensure the integrity of the data and validate the file restoration procedures.
security
*Backups should be transported to an approved offsite storage location on a daily, weekly, or monthly rotation, as required by the security policy.
validation
*Backups should be protected using strong passwords. The password is required to restore the data.
waar staat AAA voor?
Authentication, Authorization, and Accounting.
AAA is a way to control who is permitted to access a network (authenticate), what actions they perform while accessing the network (authorize), and making a record of what was done while they are there (accounting).
types of firewalls
- Packet filtering - Prevents or allows access based on IP or MAC addresses
- Application filtering - Prevents or allows access by specific application types based on port numbers
- URL filtering - Prevents or allows access to websites based on specific URLs or keywords
- Stateful packet inspection (SPI) - Incoming packets must be legitimate responses to requests from internal hosts. Unsolicited packets are blocked unless permitted specifically. SPI can also include the capability to recognize and filter out specific types of attacks, such as denial of service (DoS)
