Bucket List 2 Flashcards by Robby Bayless

What are the four cloud architecture types?

Private, Public, Community, Hybrid

How well did you know this?

Not at all

Perfectly

What is 802.1P

qos/priority

How well did you know this?

Not at all

Perfectly

What are the steps to the penetration testing methodology?

Plan, Discover, Attack, Report

How well did you know this?

Not at all

Perfectly

What is quality control?

The focus is on the quality of the product after it has been created, it is reactive.

How well did you know this?

Not at all

Perfectly

In forensics, what is the order of volatility mean?

Capture most volatile, short term memory first?

How well did you know this?

Not at all

Perfectly

Which layer is TCP/UDP at?

Layer 4, Transport

How well did you know this?

Not at all

Perfectly

What filters network traffic?

Firewall

How well did you know this?

Not at all

Perfectly

Which layer is best for encryption, https?

Layer 7, Applcation

How well did you know this?

Not at all

Perfectly

What is the difference between HMAC and a Digital Signature?

HMAC - both parties need the same key, Digial Sig is public/private key

How well did you know this?

Not at all

Perfectly

What are the types of cloud offerings?

PaaS
IaaS
NaaS
SaaS
IDaaS
SecaaS

How well did you know this?

Not at all

Perfectly

What are the characteristics of cloud?

BRROMM - 
Broad network access
Rapid elasticity
Resource pooling
On demand self service
Measured service
Multi-tenancy

How well did you know this?

Not at all

Perfectly

Which security model is focused on creation, ownership, and the 8 basic rights?

Graham-Denning

How well did you know this?

Not at all

Perfectly

What is quality assurance?

The big picture of process involving quality, it is proactive.
Ensure the process of making a product has high quality.

How well did you know this?

Not at all

Perfectly

Which security model is write up / read down?

Bell-LaPadula

How well did you know this?

Not at all

Perfectly

What does does Radius authentication make use of?

Certificates

How well did you know this?

Not at all

Perfectly

Which layer contains hubs?

Layer 1, Physical

How well did you know this?

Not at all

Perfectly

What is a smurf attack?

Directed broadcast using PING / ICMP

How well did you know this?

Not at all

Perfectly

Which layer contains IP

Layer 3, Network

How well did you know this?

Not at all

Perfectly

What are the steps to incident management?

DR MRRRL
Detection
Response
Mitigation
Reporting
Recovery
Remediation
Lessons Learned

How well did you know this?

Not at all

Perfectly

What is Kerkhoff’s Principle?

That any cryptographic system should be secure if every part of it is public except for the key.

How well did you know this?

Not at all

Perfectly

Which part of CIA is threatened by DDOS or ransomware?

Availability

How well did you know this?

Not at all

Perfectly

What are the three keys of biometric accuracy?

Type 1 - FRR - False Rejection Rate
Type 2 - FAR - False Acceptance Rate
CER - Crossover Error Rate

How well did you know this?

Not at all

Perfectly

What is the A in ACID and what does it mean?

Atomicity - that a transaction must fully complete or not go through at all

How well did you know this?

Not at all

Perfectly

What is the least effective type of media sanitation?

Clearing

How well did you know this?

Not at all

Perfectly

Which access control is based on rules?

RBAC

Which security model focuses on subject-program-rights?

Clark-Wilson

Which access control is the least strict?

DAC

What helps achieve the A in CIA

Redundancy

Which part of CIA is threatened by unintended data change?

Integrity

What access control is based upon tags on records?

ABAC

What is Linus' law?

Sufficient eyeballs looking at code will make all bugs become apparent.

Which is proactive, QA or QC?

What are four types of VPN?

IPSec, L2TP, PPTP, HTTPS

Which security model is focused on constraining data?

Clark-Wilson

Which IP version contains Anycast?

IPv6

Which layer contains bits?

Layer 1, Physical

What is a documented method of media destruction?

Defensible destruction

What is an HMAC?

Hashed Message Authentication Code, it provides authentication and integrity, it is fast, both parties need a key.

Which layer contains switches?

Layer 2, Data link

What are the layers of the OSI model?

``` Physical Data Network Transport Session Presentation Application ```

What type of media sanitation removes data without hope of recovery, but the media remains usable?

Purging

What type of controls do Firewalls vs Routers impose?

Firewall - rules, Router - ACLs

What's the best way to protect applications?

WAF / Application Proxy

List memory in the order of volatility.

``` Cache Level 1 Cache Level 2 RAM SSD / USB HDD TAPE ```

Which is a EU version of an authentication server?

Diameter

Which access control is the most strict?

MAC

Which part of CIA is threatened by information leakage, sniffing, or protocol analysis?

Confidentiality

What is 802.3

ethernet

Which layer contains routers?

Layer 3 , Network

What helps achieve the I in CIA

Hashing

Which is the most accurate biometric?

Iris

What is 802.1Q

VLANs

Which layer contains VLANS?

Layer 2, Data Link

What are 4 authentication servers

Kerberos, Radius, Diameter, TACACS

What are the characteristics of IPv6?

Unicast, Multicast, Anycast, 128 bit address, ipsec on by default

What are the characteristics of IPv4?

Unicast, Multicast, Broadcast, 32 bit address

What form of authentication does Kerberos use?

Tickets

Which authentication server is best?

Kerberos

What form of authentication does TACACS use?

Acces list, ACL

Which layer contains packets?

Layer 3, Network

What is the port security standard?

802.1x

What function of IPv4 is stopped by routers?

Broadcast

How many bits is IPv4 and IPv6?

32 and 128

Which security model is read up / write down?

Biba

What is the difference in verification and validation?

Verification means that it meets specifications. Validation means that the specifications are correct.

Which security model is based on object, subject, and rights?

Grahm-Denning

What are three types of media sanitization?

Overwrite, degauss, encryption

What is the QOS / priority protocol?

802.1P

What are some outdated routing protocols?

RIP, RIPv2

Which is reactive, QA or QC?

What is the spanning tree protocol standasrd?

802.1D

Which layer contains segments?

Layer 4, Transport

What is the vlan protocol?

802.1Q

Which security model requires transactions to be signed off by a third party?

Clark-Wilson

What are the types of fire extinguishers?

``` ACBDK Ash - paper Current - electric Boiling - flammable liquid Dynamite - explosive Kitchen - grease ```

What are the requirements for forensic evidence have?

COAA - Comprehensive, Objective, Accurate, Admissible

What is 802.1D

spanning tree / loops

Which access control is based on roles?

RBAC

What is defensible destruction?

Documented proof that you've destroyed something.

What does ACID mean?

Atomicity Consistency Integrity Durability

Which authentication service involves tickets?

Kerberos

Which authentication service involves certificates?

Radius

What is the ethernet protocol?

802.3

What are Cisco specific routing protocols?

IGRP, EIGRP

What are the current routing protocols?

BGP, OSPF

Which layer contains frames?

Layer 2, Data Link

What is 802.1x

Port security

What does CIA stand for?

Confidentiality, Integrity, Availability

What helps achieve the C in CIA

Encryption

Which security model helps prevent conflict of interest?

Brewer-Nash

Which security model is based on preventing a subject from seeing certain objects?

HRU, Harrison, Ruzzo, Ullman