6.7

Question 1

What defines the protection of the networks as a whole, individual devices, data, and even network users?

Answer 1

Network Security

Question 2

What type of deployment model is designated for use by the general public and exists on the cloud provider’s property?

Answer 2

Public Clouds

Question 3

What are electronic documents of credentials usually signed by a third party called a Certification Authority (CA)?

Answer 3

Certificate

Question 4

What is a form of one-way encryption where data of variable length is input to an algorithm and a value of fixed length results are output?

Answer 4

Hashing

Question 5

What are six types of malware discussed in class? (More info on pg. 107)

Answer 5

• Virus
• Worm
• Macro
• Trojan
• Rootkit
• Adware/Spyware

Question 6

What is defined as any program or code designed to perform an undesired function on a system?

Answer 6

Malicious Software (Malware)

Question 7

What protocol handles authentication services for IPsec and allows the recipient of a message to verify the identity of the sender?

Answer 7

Authentication Header (AH)

Question 8

What are the three types of access?

Answer 8

• Physical Access
• Logical Access
• Remote Access

Question 9

What type of service model defines the customer use of applications running from a cloud provider?

Answer 9

Software as a Service (SaaS) (Email distribution gmail, yahoo, hotmail)

Question 10

Type of encryption that uses a different key for encryption than is used for decryption.

Answer 10

Assymmetric Encryption

Question 11

What is defined as something that has the potential to damage the network, to include data, hosts, or users?

Answer 11

Threat

Question 12

What kind of deployment model defines one specific company or organization using the entire cloud infrastructure?

Answer 12

Private Cloud

Question 13

What is the analysis and practice of concealing information and securing sensitive data?

Answer 13

Cryptography

Question 14

What is created in order to allow remote connections from the Internet into the private network?

Answer 14

VPN Tunnel

Question 15

What is it called when additional processing can be handled outside of the normal cloud infrastructure and into another?

Answer 15

Cloud bursting

Question 16

What acts as a gateway into the network inside of RADIUS?

Answer 16

Network Access Server (NAS)

Question 17

Which mode of IPsec provides the most security by enabling the security functions between any two communicating devices or end-points?

Answer 17

Transport mode

Question 18

What AAA standard is used in supporting thousands of access points managed by Internet Service Providers (ISPs) and linking them to a single database?

Answer 18

Remote Authentication Dial-In User Service (RADIUS)

Question 19

What are two types of encryption?

Answer 19

Symmetric Encryption and Asymmetric Encryption

Question 20

What are the modes of protection provided by IPsec?

Answer 20

Transport Mode and Tunnel Mode

Question 21

What type of service model is providing the customer with processing, storage and networks?

Answer 21

Infrastructure as a Service (IaaS) (Hardware located in the cloud, Amazon Web Service)

Question 22

What is a technique of providing confidentiality by converting plaintext, or ordinary data, into ciphertext, which is unintelligible?

Answer 22

Encryption

Question 23

What is the framework of data protection for databases, which contain usernames and passwords?

Answer 23

Authentication, Authorization, and Accounting (AAA)

Question 24

What is hashing most often used to provide confidentiality for?

Answer 24

Password Authentication, and File Verification

Question 25

What type of **deployment model** consists of a combination of two or more cloud deployment model's?

Answer 25

**Hybrid Clouds**

Question 26

Type of encryption that uses a single key for both encrypting and decrypting the data.

Answer 26

*Symmetric Encryption*

Question 27

What gives commands to other compromised machines?

Answer 27

**Command and Control (C&C)**

Question 28

What is suite of protocols that allows for secure data transmissions over IP-based networks through authentication and encryption?

Answer 28

**Internet Protocol Security (IPsec)**

Question 29

What kind of attack overwhelms a system through multiple computer sources?

Answer 29

**Distributed Denial of Service (DDOS)**

Question 30

What is the process of tricking people to gain unauthorized access?

Answer 30

**Social Engineering**

Question 31

What **AAA** standard that separates authentication and authorization processes and includes access to routers and switches?

Answer 31

**Terminal Access Controller Access Controller System Plus (TACACS+)**

Question 32

What are the **five pillars of Information Assurance (IA)?**

Answer 32

* *Confidentiality* * *Integrity* * *Availability* * *Nonrepudiation* * *Authentication*

Question 33

A virus is a program that can do what?

Answer 33

**Replication** and **Activation**

Question 34

What type of **service model** defines when a client creates their own applications or software, but use programming languages and tools supported by the cloud provider?

Answer 34

**Platform as a Service (PaaS)** (hosting webpage, GODADDY.com, salesforce)

Question 35

What is the **CIA Triad?**

Answer 35

It is Information Security that is provided through *confidentiality, integrity,* and *availability.*

Question 36

What is the party that signs and verifies a **certificate?**

Answer 36

**Certification Authority (CA)**

Question 37

What utilizes hashing functions and appends the information to a message, associating a sender with the data?

Answer 37

**Digital Signature**

Question 38

In what two ways is **AAA** supported?

Answer 38

**Remote Authentication Dial-In User Service (RADIUS)** and **Terminal Access Controller Access Control System Plus (TACACS+)**

Question 39

What is defined as entry into an area, device, or the ability to retrieve data?

Answer 39

**Access**

Question 40

What is a group of computers under the control of an operator is called what?

Answer 40

**Botnet**

Question 41

What extends a LAN over an intermediate and usually unsecure infrastructure such as the Internet?

Answer 41

**Virtual Private Network (VPNs)**

Question 42

What are the most common of **threats?**

Answer 42

* *Hardware Failures* * *Access* * *Malware* * *Social Engineering* * *Denial of Service (DoS)*

Question 43

What mode of IPsec protects communication between routers and not the ends hosts?

Answer 43

**Tunnel Mode**

Question 44

What kind of attack involves an adversary flooding a network with enough traffic to overwhelm it?

Answer 44

**Denial of Service (DoS)**

Question 45

What are the two core protocols of IPsec?

Answer 45

**Authentication Header (AH)** and **Encapsulating Security Payload (ESP)**

Question 46

What is the idea by which people and businesses can use needed resources without actually having to purchase them?

Answer 46

**Cloud computing**

Question 47

What are each of the computers being controlled in a DDoS attack called?

Answer 47

**Zombie**

Question 48

What kind of **social engineering** consists of both reating a site, which seems trusted, and then soliticing people who visit is?

Answer 48

**Phishing**

Question 49

What type of network logically separates a single device into different resource groups?

Answer 49

**Virtual Local Area Networks (VLANs)**

Question 50

What protocol protects a datagram by encrypting its payload which ensures the privacy of a message?

Answer 50

**Encapsulating Security Payload (ESP)**

Question 51

What type of **deployment model** happens when multiple organizations share a common concern and occupy the same "area"?

Answer 51

**Community Cloud**