4.1

Question 1

BYOD

Answer 1

bring your own device
cost effective for employers
drawback is less security control

Question 2

COPE

Answer 2

coporate owned personally enabled
high intial investment
employees may have privacy concerns

Question 3

CYOD

Answer 3

employees select devices from a company approved list

Question 4

Data remnants

Answer 4

residual data left behind after deletion or erasure processes. in the cloud it may not be completely removed

Question 5

virtualization

Answer 5

emulates servers each with its own OS within a virtual machine

Question 6

containerization

Answer 6

lightweight alternative encapsulting apps within their OS environment

Question 7

Hype 1 hypervisor

Answer 7

bare metal
runs directly on hardware

Question 8

Type 2 hypervisor

Answer 8

hosted
operates within a standard OS

Question 9

VM Escape

Answer 9

attackers break out of isolated VMs to access hypervisor

Question 10

Live VM migration

Answer 10

attacker captures unencryped data between servers

Question 11

Resource reuse

Answer 11

improper clearing of resources may expose sensitive data to

Question 12

FaaS

Answer 12

developers write and deploy individual functions triggered by events (serverles)

Question 13

IoT

Answer 13

internet of things
network of physical devices with sensors software and connectivity

Question 14

Hub/Control system

Answer 14

central component connecting IoT devices to

Question 15

ICS

Answer 15

industrial control system

Question 16

DCS

Answer 16

distributed control system
used in control production systems within a single location

Question 17

PCL

Answer 17

programmabe logic controllers
used to control specific processes such as assembly lines and facotires

Question 18

SCADA

Answer 18

supervisory control and data acquisition systems
type of ICS used for controlling geographically dispersed industrial processes

Question 19

Risks and vu,nerabilities of ICS and SCADA

Answer 19

unauthroized access
malware attacks
lack of updates because of running outdated software
physical threats

Question 20

Embedded systems

Answer 20

specialized computing components designed for dedicate functions within larger devices
they integrate hardware and mechanical elemants

Question 21

RTOS

Answer 21

real time operatin system
critical for time sensitive apps like flight navigation and medical equipment

Question 22

vulnerabilities in embedded systems

Answer 22

hardware failure (harsh environments)
software bugs
outdated systems

Question 23

wrappers IPsec

Answer 23

protect data during transfer by hiding interception points
way to protect embedded systems

Question 24

firmware code control

Answer 24

manage low level software to maintin system integrity

Question 25

OTA

Answer 25

over the air updates for embedded systems installed remotely

Question 26

bluetooth

Answer 26

wireless technology for short distance data exchange

Question 27

bluetooth vulnerabilities

Answer 27

insecure pairing
spoofing
on path attacks

Question 28

Bluetooth attacks

Answer 28

bluejacking
bluesnarfing
bluebugging
bluesmack
blueborne

Question 29

Bluejacking

Answer 29

sending unsolicited messages to a bluetooth device
often use for pranks and testing vulnerabilities

Question 30

Bluesnarfing

Answer 30

unauthorized access to a device to steal information like contacts, call logs, and text messages

Question 31

Bluebugging

Answer 31

allows attackers to take full control of a device’s bluetooth functions
make calls, send messages, or access the internet

Question 32

Bluesmack

Answer 32

denail of service

Question 33

blueborne

Answer 33

spreads through the air to infect devices without user interaction

Question 34

Sideloading

Answer 34

installing apps from unofficial sources by bypassing the device’s default app store

Question 35

jailbreaking/rooting

Answer 35

gives users escalted privileges on their devices

Question 36

insecure mobile connection methods

Answer 36

using open wifi networks or pairing to unknown devices

Question 37

MDM

Answer 37

mobile device management
includes patching, configuration management and best practice enforcement

Question 38

Zero day vulnerabilities

Answer 38

discovered and exploited before vendor issues a patch

Question 39

zero day exploit

Answer 39

attacks that target previously unknown vulnerabilities

Question 40

zero day

Answer 40

refer to the vulnerability expolit or malware that exploits the vulnerability

Question 41

Secure Baseline

Answer 41

standard set of security configurations and controls applied to systems networks or apps to ensure minimum level fo security

Question 42

Wireless infrastructure security

Answer 42

placement of wireless access points impacts network performance and security

Question 43

WAP

Answer 43

wireless access point, allows wireless devices to connect to a wire network using wifi standards

Question 44

ESS

Answer 44

extended service set
multiple waps working together to provide seamless network coverage

Question 45

wireless access point interference

Answer 45

occurs when multiple WAPS use the same channels or overlapping frequencies

Question 46

Types of wireless access point interference

Answer 46

co channel
adjacent channel

Question 47

Site survey

Answer 47

essential for planning and designing wireless networks
involves a site visit to test for radio frequency intererence and identify optimal WAP installation locations

Question 48

heat maps

Answer 48

graphical representations of wireless coverage, signal strength, frequency utilization,

Question 49

WEP

Answer 49

wired equivalent privacy
outdated encryption protocol

Question 50

WPA3

Answer 50

wifi protected access 3
the most secure
utilizes AES for encryption
feature are
SAE
Enhanced Open
Updated cryotographic protocols
management frame protection

Question 51

SAE

Answer 51

simultaneous authentication of equals
replaces the 4 way handshake with a diffie hellman key
protects against offline dictionary attacks

Question 52

Enhanced Open

Answer 52

aka opportunistic wireless encryption
provides individualized data encryption even in open networks
protects people in open wifi scenarios

Question 53

Managment frame protection

Answer 53

ensures integrity of network management traffic
prevents eavesdropping, forging and tampering with management frames

Question 54

AAA protocols

Answer 54

important for centralized user authentication and access control

Question 55

Examples of AAA protocols

Answer 55

RADIUS
TACACS+

Question 56

RADIUS

Answer 56

remote authentication dial in user service
offers authentication, authorization and accounting services
widely used for secure access to network resources

Question 57

TACACS+

Answer 57

terminal access controller access control system plus
separates authentication, authorization and accounting functions
more granular control

Question 58

Authentication protocols

Answer 58

used to verify user identity and controk network access

Question 59

EAP

Answer 59

extensible authentication protocol
authentication frameowkr supporting multiple methods

Question 60

PEAP

Answer 60

protected extensible authentication protocol
encapsulates EAP within an encrypted TLS tunnel

Question 61

EAP-TTLS

Answer 61

extensible authentication protocol tunneled transport layer security
extends tls support accross platforms

Question 62

EAP-FAST

Answer 62

T (Extensible Authentication Protocol-Flexible Authentication via Secure
Tunneling)
● Developed by Cisco Systems for secure re-authentication

Question 63

Cookies

Answer 63

small data pieces stored by web browsers

Question 64

Secure cookies

Answer 64

transmitted over https

Question 65

SAST

Answer 65

Statis code analysis
reviewing and examining a source code before running the program
identifies issues like buffer overflows, sql injection and xss

Question 66

DAST

Answer 66

dynamic code analysis
analyzed app while running

Question 67

Fuzzing

Answer 67

inputs random data
to provoke crashes and exceptionsstr

Question 68

stress testing

Answer 68

evaluates system stability under extreme conditions