2D

Question 1

The Basic Input/Output System (BIOS) chip in a computer holds code that interfaces with the hardware. Within the BIOS, the complementary metal–oxide–semiconductor (CMOS) setup
program determines what storage device to boot the system from. An attacker can insert a disc into the optical drive and boot into another operating system (OS), bypassing the system’s normal
OS security controls. Best security practice is to disable ___ from everything but the primary storage drive. To protect the CMOS itself, you can consider enabling a bootup ____ which would be required before getting to the OS.

Answer 1

booting
password

Question 2

___ ___ has the system digitally sign bootup files. Only digitally signed bootup files will run. This process prevents someone from booting up a different operating system to gain access.

Answer 2

Secure boot

Question 3

Universal Serial Bus (USB) flash drives and external hard drives are an easy way to store and carry information between computer systems. Because this can lead to data theft the organization’s
security policy should…?

Answer 3

specify what data may be stored on them

Question 4

Worms can infect a flash drive on a user’s home computer and then infect a work computer by being plugged in. USB data ports can be ____ to prevent these threats, and they are ____ on DoD computers.

Answer 4

disabled

Question 5

Hardware devices are investments and need to be protected from theft. Hardware that needs to be protected includes but is not limited to…?

Answer 5

laptops, switches, routers, monitors, removable storage drivers, etc.

Question 6

Facilities should be protected through facility protection measures that limit…?

Answer 6

physical access

Question 7

Routers, switches, and servers should be stored in secured communications rooms or…?

Answer 7

server rooms

Question 8

Portable devices can be secured with ___ ___ and secured to desks.

Answer 8

lockdown cables

Question 9

Removable media and removable drives should be stored in a…?

Answer 9

locked safe, cabinet or drawer

Question 10

Device encryption, or hardware encryption, applies very complex encryption more quickly than ___ ___.

Answer 10

software encryption

Question 11

Hardware encryption is done using chips ___ installed in the system.

Answer 11

physically

Question 12

What are the two types of encryption?

Answer 12

1. Full Disk Encryption
2. Storage Device Encryption

Question 13

The following describes which type of encryption?

An entire hard disk drive can be encrypted using ___ ___ ___ in case of theft or loss. In the Windows 7 OS or higher, BitLocker performs this ___ ___ ___ function, including the entire contents of the disk drive to include the OS. Without the BitLocker key the system cannot boot.

Answer 13

Full Disk Encryption

Question 14

The following describes which type of encryption?

Permanent and removable storage devices such as hard drives and USB drives can and should be encrypted.

Answer 14

Storage Device Encryption

Question 15

What are the two kinds of FDE encryption?

Answer 15

Trusted Platform Module (TPM)
Hardware Security Module (HSM)

Question 16

The following describes which kind of FDE encryption?

When using FDE, a ___ stores cryptographic keys used to encrypt the data. On Windows-based OS’s, BitLocker utilizes ___.

Answer 16

TPM

Question 17

What does TPM stand for?

Answer 17

Trusted Platform Module

Question 18

What does HSM stand for?

Answer 18

Hardware Security Module

Question 19

What does FDE stand for?

Answer 19

Full Disk Encryption

Question 20

The following describes which kind of FDE encryption?

Cryptographic processors can also be stored on a separate card that can be installed on a system. The ___ is an add-on device.

Answer 20

HSM

Question 21

What does NIDS stand for?

Answer 21

Network Intrusion Detection System

Question 22

___ is required for monitoring activity on multiple systems.

Answer 22

NIDS

Question 23

A NIDS can be installed as its ___ ___ ___ or as software on a system.

Answer 23

own network device

Question 24

Either way, the ___ analyzes all traffic that travels across the network. The ___ analyzes the network traffic and looks for suspicious activity, logs the details of the activity, and sends out an administrative alert.

Answer 24

NIDS

Question 25

NIDS is made up of what components?

Answer 25

1. Sensor
2. Analysis Engine
3. Console

Question 26

The following describes which component of NIDS?

A ___ is a piece of software or hardware that is placed on each network segment and is responsible for collecting traffic from that segment and then forwarding the traffic to the analysis engine, or to a collector if your infrastructure has one. The collector will collect all traffic from the ___ and send them to the analysis engine.

Answer 26

Sensor

Question 27

The following describes which component of NIDS?

The ___ ___ is responsible for receiving packets from the sensor or collector and then performing the analysis on the packets to determine if they are suspicious.

Answer 27

Analysis Engine

Question 28

The following describes which component of NIDS?

The ___ is where alerts and notifications are typically sent to. The administrator configures the NIDS from the ___.

Answer 28

Console