701 - Chapter 5

Question 1

What is the software that creates runs and manages VMs?

Answer 1

Hyper visor

Question 2

The physical system hosting the VM is called what? The operating systems running on the on the above system are called what

Answer 2

Host…Guest

Question 3

What is the term for the ability to resize the computing capacity of the VM?

Answer 3

Cloud scalability

Question 4

What refers to the ability to dynamically change resources assigned to the VM based on the load?

Answer 4

Cloud elasticity

Question 5

What is a computer with enough resources to boot and connect to a server to run specific applications or desktops called?

Answer 5

Thin client

Question 6

What hosts a users desktop operating system on a server?

Answer 6

Virtual desktop infrastructure, VDI

Question 7

What is a type of virtualization that run services or applications within isolated containers or application cells?

Answer 7

Containerization

Question 8

What is an advantage of containerization and a disadvantage?

Answer 8

It uses fear resources and can be more efficient, but the container must use the same operating system as the host

Question 9

What is an attack that allows an attacker to access the host system from within a virtual guest system? And what is the best way to prevent against it?

Answer 9

VM escape…keeping the system up to date with patches

Question 10

What is when an organization has many VMs that aren’t appropriately managed?

Answer 10

VM sprawl

Question 11

What refers to the potential for data or resources to remain on a shared infrastructure even after they are no longer needed, making them potentially accessible to other users?

Answer 11

Resource reuse

Question 12

What are four common categories of endpoint security software?

Answer 12

Antivirus software, end point detection and response EDR, extended detection and response XDR, host intrusion prevention systems HIPS

Question 13

What is the practice of making an operating system or application more secure from its default installation? It helps eliminate vulnerabilities from default configurations misconfiguration, and weak configurations.

Answer 13

Hardening

Question 14

These practices help organizations deploy systems with secure configurations and enforce requirements that those secure configurations remain in place?

Answer 14

Configuration management

Question 15

What are the three steps to using a baseline?

Answer 15

Establish an initial baseline configuration, deploy the baseline, maintain the baseline

Question 16

One of the most common methods of deploying systems is with images starting with what?

Answer 16

A Master image

Question 17

What are two important benefits of imaging?

Answer 17

Secure starting point and reduced cost

Question 18

What are the procedures that ensure operating systems, applications and firmware or up-to-date with current patches? And what does this do?

Answer 18

Patch management procedures… it protects systems against known vulnerabilities

Question 19

What defines the process and accounting structure for handling modification and upgrades? and what is the goal?

Answer 19

Change management… To reduce risks related to unintended outages and provide documentation for all changes

Question 20

What is a list of applications authorized to run on a system?

Answer 20

An application allow list sometimes called a white list

Question 21

This is a list of applications that the system will block from installing and executing?

Answer 21

Application block list or blacklist

Question 22

Which is more restrictive a whitelist or a blacklist?

Answer 22

A white list

Question 23

What protects all of the contents of a desk using encryption called? This may be done with specialized software or be done using specialized hardware known as what?

Answer 23

Full disk encryption, FDE… self encrypting drives SED

Question 24

What is it called when the operating system goes through enough of the boot process to verify the integrity of the operating system and boot loading systems? And what does it do if it identifies an issue?

Answer 24

A measured boot… the system will halt the process and not come up

Question 25

What is the hardware chip on a computers motherboard that stores cryptographic keys used for full disk encryption?

Answer 25

A trusted platform module TPM

Question 26

What is the name of the processes that TPM supports for secure boot? And how does it work?

Answer 26

Boot attestation… The TPM will capture signatures of key files used to boot the computer and stores a report of the signature securely within the TPM. when the system boots, the secure boot process will compare the files against what is stored in the TPM

Question 27

What is the name of the boot attestation process that occurs but not on the local system called?

Answer 27

Remote attestation

Question 28

The TPM has what burned into it? What is it called? And what does this key provide?

Answer 28

A unique encryption key… the endorsement key… It provides hardware root of trust otherwise known as a known secure starting point

Question 29

In addition to encryption, secure boot and remote attestation, what other services does TPM provide

Answer 29

It can generate store and protect other keys used for encrypting and decrypting discs

Question 30

What is a removable or external device that can generate, store and manage keys used in asymmetric encryption? And how do these differ from a TPM?

Answer 30

A hardware security module HSM.. one of the main differences is that the HSM is a removable or an external device

Question 31

What is a common platform and usage for an HSM?

Answer 31

A high performance server will use HSM to store and protect keys

Question 32

What is the name of the card that includes an HSM?

Answer 32

A microSD HSM

Question 33

What is the process of retiring and cleaning of hardware via established procedures, and guidelines called?

Answer 33

Decommissioning

Question 34

What is the unauthorized transfer of data outside an organization called? And what do organizations do to block and prevent this loss of data?

Answer 34

DATA X filtration… Data loss prevention, DLP techniques and technologies…

Question 35

what are some examples of DLP techniques?

Answer 35

Blocking the use of USB flash drives, controlling the use of removable media, and examining outgoing data transfers

Question 36

In addition to #DATA, what else can DLP Systems scan? Can DLP scan encrypted data.

Answer 36

Emails, FTP and HTTP traffic… no, but they can be configured to look out for outgoing encrypted data

Question 37

What are the two primary methods of protecting the confidentiality of data? What is used to encrypt individual fields within a database called?

Answer 37

Encryption and strong access control… database column encryption

Question 38

What are the two options for database encryption?

Answer 38

Full database encryption and column or row encryption

Question 39

What refers to data that is currently being processed or access by system or application?

Answer 39

DATA in use

Question 40

What is a type of security technology that provides a secure and isolated area within a system or application for processing sensitive data called?

Answer 40

Secure enclave, also known as trusted execution environment TEE

Question 41

What are the three main cloud delivery models?

Answer 41

Software as a service, platform as a service, infrastructure as a service

Question 42

Which cloud delivery model includes any software or application provided to us users over a network such as the Internet?

Answer 42

Software as a service

Question 43

Which cloud delivery model provides customers with a pre-configured computing platform they can use as needed? And what is another name for this?

Answer 43

Platform as a service… a managed hardware solution

Question 44

What are some of the features that platform as a service provides?

Answer 44

Installed operating system, a core software package for web servers, antivirus software and spam protection

Question 45

What is the cloud delivery model that allows an organization to outsource its equipment requirements, including the hardware and all support operations? What is another name for this?

Answer 45

Infrastructure as a service… a self managed platform

Question 46

What are the four cloud deployment models?

Answer 46

Public cloud, private cloud, community cloud, hybrid cloud

Question 47

Which of the cloud models make services available to any customer who wishes to use them?

Answer 47

Public cloud

Question 48

Which of the cloud models are available for only one organization?

Answer 48

Private cloud

Question 49

Which of the cloud models allows, two or more organizations with shared concerns to share the cloud?

Answer 49

Community cloud

Question 50

And what cloud model is a combination of two or more different cloud deployment models?

Answer 50

Hybrid cloud

Question 51

What cloud system combines the resources from two or more cloud service providers? What is it an advantage and what is a disadvantage of these?

Answer 51

Multi cloud system… an advantage is that it increases resiliency and redundancy…. He disadvantage is that it adds cost and increases the risk of mistakes.

Question 52

What is a software component that gives developers access to features or data within another application service or operating system called?

Answer 52

An application programming interface API

Question 53

True or false APIs are susceptible to attacks?

Answer 53

True

Question 54

What are three things that developers need to address in order to ensure that their API is not vulnerable to common exploits?

Answer 54

Authentication, authorization, transport level security

Question 55

What are code modules designed to do one thing very well? They are typically small code modules that receive values, process them, and respond with an output.

Answer 55

Micro services

Question 56

What is a difference between an API and a microservice?

Answer 56

An API is generally tied to a specific business whereas a micros service is not

Question 57

What is a third-party vendor that provides security services for smaller companies called?

Answer 57

A managed security service provider MSSP

Question 58

What is a vendor that provides any IT services needed by an organization called

Answer 58

A managed service provider MSP

Question 59

What is the entity that offers one or more cloud services via one or more cloud deployment models called?

Answer 59

A cloud service provider, CSP

Question 60

In a cloud environment, what is the software called that is added to an operating system to extend its basic capabilities called?

Answer 60

Middleware

Question 61

Within the cloud models, from least responsible to most responsible for customers, what are they?

Answer 61

Software as a service platform as a service, infrastructure as a service

Question 62

What are the six cloud security issues that an organization needs to consider when picking a CSP?

Answer 62

Availability, resilience, cost, responsiveness, scalability, segmentation

Question 63

Which of the cloud security issues indicates a system or service remaining operational with almost 0 downtime? And how is it typically achieved?

Answer 63

Availability… By using multiple load balancing notes

Question 64

Which of the cloud security issues refers to the ability of a system to maintain its functionality, even when faced with adverse conditions or unexpected events? And how is this achieved?

Answer 64

Resilience… By implementing redundancy and fail over mechanisms

Question 65

Which of the cloud security issues refers to the speed with which a cloud service can respond to request and perform tasks? And how is this typically achieved?

Answer 65

Responsiveness… By using cashing, load balancing and other techniques

Question 66

Which of the cloud security issues refers to the ability of a cloud service to handle increased amounts of data, traffic, and other user requests without degradation and performance, and how is this achieved?

Answer 66

Scale ability… It is achieved through the use of elastic computing resources and auto scaling mechanisms that can dynamically all allocate resources

Question 67

Which of the cloud security issues refers to the isolating of sensitive data and applications from other parts of the cloud network?

Answer 67

Segmentation

Question 68

In this type of cloud solution, the organization retains complete control over all the cloud-based resources, including any data stored?

Answer 68

On premises

Question 69

With this cloud security control,
This is a software solution or service deployed between an organizations network and the cloud provider, it provides security by monitoring traffic and enforcing security policies?

Answer 69

Cloud access security broker CASB

Question 70

With this cloud security control,
What can enforce security policies for data stored in the cloud such as ensuring that PII data is encrypted?

Answer 70

Cloud based DLP

Question 71

With this cloud security control, this is a combination of a proxy server and a stateless firewall and it filters traffic to prevent threats from infiltrating the network? what are some of the services provided by it?

Answer 71

Next generation secure web Gateway… URL filtering, packet filtering, malware, detection, DLP, sandboxing

Question 72

What offers you the ability to write cloud firewall rules that affect only your resources?

Answer 72

Security groups

Question 73

This refers to managing and provisioning data centers with code to define VM’s and virtual networks. It reduces complexity of creating virtual objects by allowing administrators to run a script to create them, which are also reusable?

Answer 73

Infrastructure as code IAC

Question 74

This is a cloud solution that uses virtualization technologies to route traffic instead of using hardware, routers and switches?

Answer 74

Software defined networking

Question 75

What is an SDN on a wide area network to connect different sites together called?

Answer 75

Software defined wide area network SD-WAN

Question 76

What is the practice of storing and processing data on a single node or device that is close to the device that generate and uses the data? And what is using a network close to that device that may have multiple node sensing and processing data within this network called

Answer 76

Edge computing…fog computing

Question 77

What is a knot for profit member-based organization that promotes best practices related to the cloud?

Answer 77

The cloud security alliance CSA

Question 78

What is it called when a corporation purchases and issues devices to employees but allows them to be used for personal activities. In addition to work?

Answer 78

Corporate owned personally enabled COPE

Question 79

What are the two own your own device policies that organizations use for employees connecting wireless devices to their network ? Which one is a bit more safer for the organization?

Answer 79

Bring your own device BYOD and choose your own device CYOD… CYOD

Question 80

What are the three methods that mobile devices used to connect to networks and other devices?

Answer 80

Cellular, Wi-Fi, Bluetooth

Question 81

What tool helps enforce security policies on mobile devices?

Answer 81

Mobile device management MD M

Question 82

What are four hardening techniques for mobile devices?

Answer 82

Storage segmentation, containerization, full device encryption, using strong encryption

Question 83

This MDM solution can restrict what applications can run on mobile devices?

Answer 83

Application management

Question 84

This MDM solution protects the device against loss of confidentiality?

Answer 84

Full device encryption

Question 85

This MDM solution Isolates data stored on the device?

Answer 85

Storage segmentation

Question 86

This MDM solution ensures that only appropriate stuff is stored In a segmented storage space?

Answer 86

Content management

Question 87

This MDM solution isolates and protects the application, including any of its data?

Answer 87

Containerization

Question 88

This MDM solution employees a something you know by the user?

Answer 88

Passwords and PINs

Question 89

This MDM solution send a signal to a lost or stolen device to race all of its data?

Answer 89

Remote wipe

Question 90

This MDM solution can help locate a lost or stolen device?

Answer 90

Geolocation

Question 91

This MDM solution create a virtual fence or geographic boundary and can be used to detect when a device is within an organizations property?

Answer 91

Geo fencing

Question 92

This MDM solution add geographical data to file such as pictures?

Answer 92

GPS tagging

Question 93

This MDM solution uses multiple elements to authenticate a user and a mobile device?

Answer 93

Context aware authentication

Question 94

What refers to removing all software restrictions from an iPhone device? And what is the process of modifying an android device to give the user root level access to the device?

Answer 94

Jailbreaking and rooting

Question 95

What is the firmware on a mobile device? and how is the firmware updated?

Answer 95

The onboard memory which stores the operating system, known as flash memory it retains data without power… it uses over the air update techniques OTA

Question 96

What is another way to overwrite a mobile devices firmware?

Answer 96

With custom firmware

Question 97

Another way to install application on android devices by copying an application package in the application packet kit format, and activating it?

Answer 97

Side loading

Question 98

A mobile device manager can limit these two pieces of hardware on a mobile device to eliminate the risk of spying via the device?

Answer 98

Disabling the camera and microphone

Question 99

What to methods allow devices to access the Internet and bypass network controls?

Answer 99

Tethering and mobile hotspots

Question 100

What is a standard that allows devices to connect without a wireless access point or wireless router?

Answer 100

Wi-Fi direct

Question 101

True or false MDM tools can block access to devices using tethering mobile hotspots or Wi-Fi direct to access the Internet

Answer 101

True

Question 102

What is any device that has a dedicated function and uses a computer system to perform that function? What are some examples of embedded systems?

Answer 102

An embedded system… medical devices, automobiles, aircraft, and unmanned aerial vehicles

Question 103

What is the wide assortment of technologies that interact with the physical world that commonly have embedded systems and typically connect to a central device or app and communicate via the Internet?

Answer 103

Internet of things IoT

Question 104

What refers to systems within large facilities such as power plants or water treatment facilities?

Answer 104

An industrial control system I see S

Question 105

What type of system has embedded systems that control an ICS?

Answer 105

A supervisory control and data acquisition system SCADA

Question 106

This key component of embedded systems integrates many components of a computer system onto a single chip, including the processor, memory input output, interfaces, and other components?

Answer 106

System on a chip SOC

Question 107

This key component of embedded systems is a specialized operating system design for embedded systems that requires precise timing, real time scheduling, and deterministic behavior?

Answer 107

Real time operating system RTOS

Question 108

What hardening technique is effective for embedded systems, Internet of thing devices and ICS/SCADA systems?

Answer 108

Placing them on a segmented network where they are tightly locked down and protected from external attack

Question 109

What are some of the constraints that limits the use of embedded systems?

Answer 109

Limited computing ability, cryptographic limitations, power, limitations, ease of deployment, cost, and ability to patch/patch availability