4.1-4.4

Question 1

3 steps of secure baselines

Answer 1

establish
deploy
maintain

Question 2

mdm

Answer 2

mobile device management. used to mannage company owned mobile devices. set policies on apps,data, control the remote device

Question 3

COPE

Answer 3

Corporate ownerd, personally enabled. company buys the device, used as both a corporate and personal. full control belongs to organization

Question 4

CYOD

Answer 4

Choose your own device.
Like COPE but user chooses the device

Question 5

wpa3 , psk authentication process

Answer 5

USES SAE to create pmk
creates a shared session key that doesn’t need to be sent across network. no fourway handshake no hash no brute force.

Question 6

SAE

Answer 6

SAE-everyone uses the same psk with a different session key

Question 7

AAA framework

Answer 7

authentication authorization accounting

Question 8

radius

Answer 8

common aaa protocol, centralizes authentication. remote vpn access. server authentication.

Question 9

input validation

Answer 9

check and correct all input

Question 10

SAST

Answer 10

Static Application Security Testing. Help to identify security flaws in code. Not always accurate so needs verification

Question 11

app monitoring

Answer 11

watch for blocked injection attempts, app usage, unusual file transfers, increase in client access

Question 12

enumeration

Answer 12

list all parts of an asset (cpu,memory,storage drive, keyboard,mouse)

Question 13

sanitization

Answer 13

system disposal or decommissioning, completely remove data. to destroy or to recycle

Question 14

certification of destruction

Answer 14

certificate of destruction after device has been disposed of

Question 15

data retention

Answer 15

backup your data

Question 16

dynamic analysis(fuzzing)

Answer 16

send random input to an application, looking for something out of the ordinary. many diff types of fuzzing engines

Question 17

cta

Answer 17

cyber threat alliance. members allow specific threat intelligence. this is a information sharing organization

Question 18

prioritize vulnerabilities

Answer 18

not every vulnerability shares the same priority. some are critical some are not.

Question 19

cvss

Answer 19

common vulnerability scoring system 0-10

Question 20

exposure factor

Answer 20

loss of value of business activity if the vulnerability is exploited.

Example: a small ddos may limit access to a service. -50% exposure factor

Question 21

secure enclave

Answer 21

the tpm of a mobile device

Question 22

exception

Answer 22

not dealing with a vulnerability because it has low severity score. usually needs formal process to approve

Question 23

risk tolerance

Answer 23

the amount of risk acceptable to an organization

Question 24

reporting

Answer 24

ongoing checks for vulnerabilities

Question 25

monitoring

Answer 25

Question 26

archiving

Answer 26

access to data is critical,collecting older data and moving it to a protected location so that it can be retrieved if needed

Question 27

alert tuning

Answer 27

a balancing act, prevent false positives and false neg

Question 28

SCAP

Answer 28

Security content automation protocol. allows tools to identify and act on the same criteria. language for all tools to use basically

Question 29

snmp

Answer 29

simple network management protocol uses mib managament information base that uses oid object identifiers to poll devices at fixed intervals over udp 161

Question 30

snmp traps

Answer 30

over udp 162