Block 4

Question 0

The segment format which is used as the Connectionless transport protocol in the TCP/IP stack?

Answer 0

(UDP) user datagram protocol

Question 1

What is the type of protocol that just sends out packets to the receiving system and do not check to see if it was received

Answer 1

Connectionless-Oriented

Question 2

Which protocol is best used to send small amounts of data

Answer 2

(UDP) user datagram protocol

Question 3

What layer is responsible for logical addressing and routing of data packets from from the source to destination

Answer 3

Network layer

Question 4

Network later protocols are divided into two categories.. What are they?

Answer 4

Routed and routing

Question 5

Which category in the network layer protocol provides enough info to allow a segment/packet/frame to be forwarded from one host to another based on the addressing scheme through the router.

Answer 5

Routed protocols

Question 6

Commonly routed protocol … It is Connectionless, unreliable, best effort delivery system protocol used on the internet

Answer 6

Internet Protocol (IP)

Question 7

Which network layer protocol provides mechanisms for sharing routing information?
Messages move between routers in this protocol.

Answer 7

Routing protocol

Question 8

What are the two classes of routing protocols?

Answer 8

Interior and Exterior Gateway Protocols.IGPs and EGPs

Question 9

Routed packets inside a local network.. Examples are RIP IGRP OSPF

Answer 9

Interior routing protocols

Question 10

Used to link several LANS /MANS together.

Example is a BGP

Answer 10

Exterior routing protocol

Question 11

What is a (BGP) Border Gateway Protocol?

Answer 11

Exchange information between autonomous systems while guaranteeing loop free path selection.

Question 12

Which layer controls the electrical impulse that enter and leave the network cable?

Answer 12

Data link layer

Question 13

Which layer is responsible for the link between two devices on the same network via MAC address and broken down into LLC and MAC

Answer 13

Data link layer

Question 14

Which later is responsible for transmitting bits from one computer to another

Answer 14

Physical Layer

Question 15

Two types of media access techniques

Answer 15

Centralized access control

Distributed access control

Question 16

Which media access technique is commonly found in mainframe-access apps where a front end communications controller polls terminals and gives each authority to transmit

Answer 16

Centralized access control

Question 17

Which method under distributed control access operates like a group discussion?

Answer 17

Random access methods

Question 18

Which method under distributed access control guarantees each station a turn at the transmission media even if they don’t have anything to transmit

Answer 18

Deterministic access methods

Question 19

What is the United Nations agency formed to develop and standardize communication around the world

Answer 19

international telecommunications union (ITU)

Question 20

What’s set standards for consumer products and electronic components?

Answer 20

EIA Electronics Industries Alliance

Question 21

Which organization is responsible for overseeing the development of internet standards and protocols

Answer 21

IAB Internet Architecture Board

Question 22

A standard developed by a company for that company’s product only

Answer 22

Proprietary or closed standard

Question 23

Widely accepted standard designed to apply to equipment and Software regardless of the manufacturer.

Answer 23

Non-proprietary or Open

Question 24

Product Is widely used and it becomes a standard without any formal path of implementation.

Answer 24

De Facto

Question 25

A standard that has been officially approved by a recognized standards committe

Answer 25

De jure

Question 26

What standards added enhancements to the open systems interconnection (OSI) model that all internet systems are based on

Answer 26

802

Question 27

Defines wireless network standards (LAN)

Answer 27

802.11

Question 28

Defines wireless personal are networks (WPAN)

Answer 28

802.15

Question 29

Defines broadband wireless standards

Answer 29

802.16

Question 30

Standard for mobile wireless

Answer 30

802.20

Question 31

Sometimes called media converters… Required when going from one type of media to another

Answer 31

Converters

Question 32

Both transmits and receives analog or digital signal

Answer 32

Transceiver

Question 33

A printed circuit board that enables a PC to be attached to some sort of network cabling by providing a physical connection point and electrical signal conversion.

Answer 33

Network interface card (NIC)

Question 34

Any digital device at the user end, which transmits and receives data and issues communication equipment for data transfer

Answer 34

DTE Data Terminal Equipment

Question 35

Devices connected to a comm line for the purpose of transferring data from one point to another.
They establish maintain and terminate the connection.

Answer 35

DCE data communications equipment

Question 36

Layer 1 device that does not manage any data that goes threw it. Any packet that enters a port is broadcast out on all other ports.

Answer 36

Hub

Question 37

Layer one device that is added to a network to extend the length of the cable. Used for digital signals.

Answer 37

Repeater

Question 38

Layer two device that connects two or more LAN segments to effectively make those segments one logical network. Switches in software.

Answer 38

Bridge

Question 39

Layer two device that switches in hardware and interconnect LANs of different bandwidth.
Maintain MAC address tables.

Answer 39

Switches

Question 40

Convert protocols languages and architecture to allow communications between different systems but do not alter the original data in any way.

Answer 40

Gateways

Question 41

Connects two or more network segments and support dynamic path assignment. Gateway for entry to and from a network

Answer 41

Routers

Question 42

Most advanced encryption and authentication available.

Answer 42

VPN Concentrators

Question 43

VPN concentrator creates a virtual private network by creating a secure connection across a TCP/IP network called?

Answer 43

Tunneling

Question 44

Creates more space for cables where there isn’t much floor space

Answer 44

Distribution racks and rack shelves

Question 45

Most accurate time and frequency standard known… Used as primary standards for international time distribution services

Answer 45

Atomic clock

Question 46

A space based positioning and time transfer system

Answer 46

GPS

Question 47

Measure of secrecy of information

Answer 47

Confidentiality

Question 48

Ensures that information is accurate and reliable. Ensures data is not tampered with.

Answer 48

Integrity

Question 49

Ability of the users to access the information.

Answer 49

Availability

Question 50

Process by which a subject professes and an identity and accountability is initiated.

Answer 50

Identification

Question 51

The process of verifying or testing that the identity claimed by a subject is valid or the procedure where the system verified the individual or network device has a right to access the system or system resource

Answer 51

Authentication

Question 52

What’s the most common method of identification and authentication

Answer 52

Username and password

Question 53

Weakest form of protection

Answer 53

Knowledge based (username and passwords)

Question 54

Password-generating devices that subjects must carry with them

Answer 54

Possession-based

Question 55

Physical means to provide identity. In the forms of a swipe card, smart card, floppy disk or simple as a key

Answer 55

Static token

Question 56

Generates passwords at a fixed time intervals.

Answer 56

Synchronous dynamic password token

Question 57

Generates passwords based on the occurrence of an event

Answer 57

Asynchronous dynamic password token

Question 58

Generates passwords or responses based on instructions from the authentication system.

Answer 58

Challenge-response token

Question 59

A behavioral or physiological characteristic that is unique to the subject

Answer 59

Biometric based

Question 60

Way to substantially increase the security of I&A is to use a combination of I&A

Answer 60

Combining methods

Question 61

A mechanism that employs a third-party entity to prove identification and provide authentication

Answer 61

Ticket authentication

Question 62

A mechanism that allows a subject to be authentication only once on a system and be able to access resource after resource unhindered by repeated authentication prompts

Answer 62

Singe sign on

Question 63

Residual representation of data that was previously erased in some way.

Answer 63

Remanence

Question 64

Use of prescribed safeguards and controls to prevent reconstruction or disclosure of sensitive or classified information to persons who do not have the proper clearance or need-to-know for information.

Answer 64

Remanence security

Question 65

Removes information to render the sensitive or classified information unrecoverable by normal system utilities or non-technical means while leaving the media usable.

Answer 65

Clearing media

Question 66

Removes classified and sensitive information from media to render the information unrecoverable by technical means.

Answer 66

Sanitizing media

Question 67

A process where the magnetic media is erased

Answer 67

Degaussing

Question 68

Ultimate form of sanitization

Answer 68

Physical destruction

Question 69

Occurrence that takes place during a certain period of time that appears suspicious

Answer 69

Event

Question 70

Event that has a negative outcome affecting the confidentiality, integrity, or availability of an organizations data

Answer 70

Incident

Question 71

Incidents that are reconnaissance attacks that usually precede another, more serious attack.

Answer 71

Scanning attacks

Question 72

Any unauthorized access to the system or information the system stores.

Answer 72

Compromise

Question 73

Think of virus or spyware

Answer 73

Malicious code

Question 74

Easiest to detect.

Normally when a user or automated tool reports that one or more services are unavailable

Answer 74

DOS Denial of Service

Question 75

Dedicated response team for investigating any computer security incidents that take place

Answer 75

CIRTS AND CSIRTS

Question 76

DODs practical strategy for achieving IA in today’s network dependent environments.

Answer 76

Defense in depth

Question 77

What are the 3 steps under Defense in Depth

Answer 77

People
Organization
Technology

Question 78

Air Force has further developed the defense in depth strategy and established a concept for boundary protection of the network called ?

Answer 78

Barrier Reed

Question 79

Barrier reef concept is the Air Forces spin on the defense-in-depth using a process known as

Answer 79

Layering

Question 80

What does a barrier reef concept consist of at a minimum

Answer 80

External router
Perimeter consisting of firewalls/servers
Internal router

Question 81

What protects the base the bases network perimeter in accordance with Air Force security policies

Answer 81

Boundary protection

Question 82

First line of defense for AF bases …. Serves as an entry/exit point to DISN
controlled by inosc

Answer 82

Air Force SDP router

Question 83

Second layer of defense for Air Force bases .

Acls on this router block address that have been explicitly identified as threat to base operations

Answer 83

External routers

Question 84

A piece of hardware or software program that examines data passing into your computer or network

Answer 84

Firewall

Question 85

Router that provides additional layer
Used to block high bandwidth or unauthorized traffic
Usually connected to one of the base backbone devices

Answer 85

Internal router

Question 86

A system that scans, audits, and monitors the security infrastructure for signs of unauthorized access or abuse in progress.

Answer 86

IDS

Question 87

Which IDS primarily used software

Analyzes encrypted data…

Answer 87

Host based IDS (HIDS)

Question 88

A system that primarily uses passive hardware sensors to monitor traffic on a specific segment on a network

Cannot analyze encrypted packets

Answer 88

Network based (IDS)

Question 89

Ability to identify and report vulnerabilities at the host and network level to protect resources directly managed by the NCC

Answer 89

Internal control

Question 90

Provides the capability to prioritize and guarantee access to traffic at various levels of mission criticality.

Answer 90

Access preservation

Question 91

Limits access to base systems based on roles or identification that reflects the degree of the users need to know and privileges

Answer 91

Access control

Question 92

Function that verifies the identity of users attempting to access the network or equipment and applications running on the network

Answer 92

Authentication

Question 93

Process of encoding information in an attempt to make it secure from in-authorized access, particularly during transmissions

Answer 93

Encryption

Question 94

Which type of encryption uses a shared key to encrypt and decrypt

Answer 94

Symmetric

Question 95

Uses two keys a public key and a private key

Answer 95

Asymmetric

Question 96

Monitor and detect intrusions, security holes and weaknesses in a base network

Answer 96

Security tool precautions

Question 97

First three sanctioned tools of the Air Force recommended security tools/methods is called

Answer 97

Combat information transport system (CITS)

Question 98

Performs automated, distributed or event driven proves of geographically dispersed network services, operating system, routers/switches

Answer 98

Internet security systems (ISS)

Question 99

Agent based intrusion detection tool used by INOSC and NCC.

Answer 99

Intruder alert

Question 100

Runs a management server and has agents installed on hosts to run checks based on vulnerabilities of a particular operating system.

Answer 100

Enterprise security manager (ESM)

Question 101

Software is used to prevent, detect, and audit and remove malware, including computer viruses

Answer 101

Anti-Virus

Question 102

The ability to have a single point of control to accomplish the activities required to manage a network

Answer 102

Network management

Question 103

Process of detecting, isolating bs correcting network problems

Answer 103

Fault management

Question 104

3 elements of fault management

Answer 104

Identify, isolate, fix the problem

Question 105

This occurs when a device sends info to a management device to be recorded or produce a warning

Answer 105

Logging

Question 106

When the network management software can send out a message to other devices asking them for their status.

Answer 106

Polling

Question 107

Process of obtaining data from the network and using that data to manage the setup of all managed devices.

Answer 107

Configuration management

Question 108

3 steps of configuration management

Answer 108

Gathering data
Using the data
Maintaining or storing

Question 109

A method of managing and controlling hardware configuration and software resources on the network

Answer 109

Control mechanism

Question 110

Measurement of network usage, costs, charges and access to resources

Answer 110

Accounting management

Question 111

The goal of this is to ensure all users have adequate users have adequate network resources and are regulated/distributed accordingly.

Answer 111

Accounting management

Question 112

It’s Goal is to measure and make available various aspects of network performance so that internet work performance can be maintained at an acceptable level.

Answer 112

Performance management

Question 113

It’s 3 steps are
Gathering data
Analyzing data
Establish thresholds

Answer 113

Performance management

Question 114

The purpose is to ensure the data and equipment on a network is only used by authorized users.

Answer 114

Security management

Question 115

Security management involves protecting sensitive information found on devices attached to a data network by?

Answer 115

Controlling access points

Question 116

What Stops packets or frames from unauthorized hosts before they reach an access point that may have sensitive information?

Answer 116

Packet filtering

Question 117

What filters network traffic by controlling whether routed packets are forwarded or blocked at the routers interfaces?

Answer 117

Access control lists

Question 118

What is another name for communication computer facility records

Answer 118

Commonly known as central office records

Question 119

What is designed to proactively manage small, medium and large scale enterprise networks from local, regional, and central locations simultaneously.

Answer 119

CAIRS

Question 120

What software modules was adopted by the Air Force as the standard application to maintain and generate central office records?

Answer 120

TMS modules

Question 121

What provides an automated system to open, close or modify service request?

Answer 121

Work order processor

Question 122

A client server software application development environment from BMC Software.

Answer 122

Remedy action request system

Question 123

Provides a common tool to automate and integrate service support processes among functional or regional groups, third-party resources and other parts of the enterprise

Answer 123

Remedy action request system

Question 124

Provides users a central point to receive help on various computer issues

Answer 124

Help desks

Question 125

Regulates how much information can be passed over a TCP connection before the receiving host must send an acknowledgement

Answer 125

Sliding windows

Question 126

Used to reference the location of a particular application or process on each machine.

Identifies the application to the transport layer.

Answer 126

Ports

Question 127

Combination of port numbers and IP address

Answer 127

Sockets

Question 128

Assigned port numbers are referred to as?

Also controlled and assigned by IANA

Answer 128

Well known ports

Question 129

It's four basic steps are 
Identifying the sensitive information
Identify the access points
Securing the access points 
Maintaining and/or monitoring

Answer 129

Security management