2.4-3.1

Question 1

ddos reflection amplification

Answer 1

sending many requests to protocols that require no authentication to take up bandwidth through a botnet

Question 2

dns poison

Answer 2

send fake response to valid dns request, “on-path attack”

Question 3

rf jamming

Answer 3

transmit interfering wireless signals

Question 4

on path

Answer 4

redirects your traffic, arp poisonning is on path attack on the local IP subnet

Question 5

how to prevent session hijacking

Answer 5

encrypt end to end using vpn

Question 6

privilege escalation

Answer 6

gain higher level access to a system using a vulnerability

Question 7

birthday attack

Answer 7

uses collisions which are same hash output for different plaintext

Question 8

downgrade attack

Answer 8

force systems to downgrade their security

Question 9

IOC

Answer 9

indicators of compromise

Question 10

acl

Answer 10

access control list
allow or disallow traffic

Question 11

app allow/deny

Answer 11

allow=strict only apps on allow can run
deny= anything except apps on deny can run

Question 12

monitoring methods

Answer 12

info from devices

sensors- fw logs, ips, authentication logs

collectors- siem consoles, syslog servers

Question 13

configuration enforcement

Answer 13

checking posture of devices, and updates

Question 14

decommisioning

Answer 14

getting rid of a device. should have a formal policy

Question 15

responsibility matrix

Answer 15

shows who is responsible for what depending on the service they provide

Question 16

hybrid cloud considerations

Answer 16

mix public and private cloud which can have network protection mismatches, data leakage

Question 17

FaaS

Answer 17

Function as a Service
doesn’t need os. applications are individual autonomous. event triggered and ephemeral

managed by third party security is done by third party

Question 18

api architecture

Answer 18

also known as monolithich architechtrure is one big programmable app does it all

Question 19

microservice architecture

Answer 19

scalable, resilient

Question 20

sdn

Answer 20

software defined networking. data, control, mgmt. splits functions into separate logical units.

Question 21

data plane

Answer 21

process the network frames and packets

Question 22

control plane

Answer 22

manages the actions of the data plane

Question 23

mgmt plane

Answer 23

api, configure and manage the device

Question 24

centralized infrastructure

Answer 24

everything in one place. single point of failure

Question 25

centralized vs decentrilized

Answer 25

when organization have all systems in different places they are decentralized. so they have to consolidate and make it centralized (single point of failure)

Question 26

app containerization

Answer 26

DOCKER is containerization software, manage multiple apps. apps cant interact with each other

Question 27

rtos

Answer 27

real time operating system. drive car when u brake hard all system of car focuses on brakes

Question 28

embedded systems

Answer 28

hardware and software designed for a specific function.

traffic light, medical image system

Question 29

resilience

Answer 29

also known as mttr