Card #1 - 50

Question 1

Grayware

Answer 1

not classified as viruses but can harm the performance of computers on your network

Question 2

Cisco PIX

Answer 2

helps network security administrators and IT managers for bandwidth monitoring, and Firewall internet security events monitoring efficiently

Question 3

Spamtrap

Answer 3

a DNS technique used by botnets to hide phising and malware delivery sites behind an ever-changing network of compromised hots acting as proxies

Question 4

Non-repudiation

Answer 4

provides definitive proof of a sender’s identity and can be used to prevent a party from denying that they took a specific action

Question 5

Authentication

Answer 5

proving the person is who they say they are

Question 6

Data Recovery

Answer 6

salvaging data from damaged, failed, corrupted, or inaccessible secondary storage media the not CANNOT be accessed normally

Question 7

Timing

Answer 7

process of verifying a user’s identity

Question 8

Networking

Answer 8

science of writing in secret code and is an ancient art

Question 9

Secret Key Cryptography (SKC)

Answer 9

use for privacy and confidentiality. One key for encryption and another for decryption

Question 10

Botnets

Answer 10

number of hijacked Internet-connected devices, each of which runs one or more bots, remotely controlled by hackers

Question 11

3 Factors of Authentication

Answer 11

1. Something you know (username/password)
2. Something you have (smart cards)
3. Something you are (fingerprint, biometrics)

Question 12

Data Warehouse

Answer 12

a duplicate of some or all of the main database’s data stored on a separate computer from the main database

Question 13

Cold Site

Answer 13

least expensive type of backup site for an organization to operate

Question 14

Risk mitigation controls to ensure employee safety

Answer 14

Emergency lighting, drills, escape plans

Question 15

A denial service attack has occurred. Which questions should be answered during the incident identification phase?

Answer 15

What servers have been compromised?

AND

What is the impact to the business?

Question 16

Public Key Cryptography

Answer 16

a pair of keys to encrypt and decrypt data to protect it against unauthorized access or use

Question 17

Surge

Answer 17

a prolong increase in the voltage level

Question 18

sandbox

Answer 18

a security mechanism for separating running programs

Question 19

Authorization

Answer 19

a security system validates whether or not a user has permission to complete an action

Question 20

Exception Handling

Answer 20

implements into application to respond more appropriately to errors and generate an error message when they occur.

Question 21

Algorithm

Answer 21

a set of instructions normally implemented on a computer system as a procedure to manipulate data

Question 22

Spim

Answer 22

spam sent over instant message

Question 23

AAA

Answer 23

Authentication, Authorization, and Accounting

Question 24

Access control

Answer 24

a security measure that defines who can access a computer, device, or network, when they can access it, and what actions they can take while accessing it

Question 25

Access Creep

Answer 25

slow accumulation of unnecessary permissions, access rights, and outright privileges by individual users

Question 26

Internal Employee

Answer 26

What causes most information security breaches

Question 27

Active Response IDS

Answer 27

Automatically taking action in response to a detected intrusion

Question 28

ActiveX

Answer 28

A Microsoft technology that allows reusable software components to interact with each other in networks. Popular with viruses, Trojan Horses, spyware, and other malicious code due to lack of security.

Question 29

ActiveX controls

Answer 29

used to add Windows functionality and interactivity to web pages.

Question 30

Address Resolution Protocol (ARP)

Answer 30

A protocol form the TCP/IP suite that is used to discover the MAC address of a destination IP address

Question 31

Adware

Answer 31

Any software application that displays advertisement banners while the program’s running
Software that automatically displays or downloads advertising material (often unwanted) when a user is online

Question 32

Alert

Answer 32

notification that a specific attack has been directed at the information system of an organization

Question 33

Full Disk Encryption

Answer 33

Type of data encryption most often uses keys generated from the TPM

Question 34

Public Key Infrastructure (PKI)

Answer 34

combination of software, encryption technologies, and services that enables entities to protect the security of their communications and business transactions on networks

Question 35

TOTP (Time-based One-time Password Algorithm)

Answer 35

provides one-time password in an application that needs a two-factor authentication

Question 36

Fingerprint

Answer 36

unique to all individuals

Question 37

Integrity

Answer 37

implemented to verity that data has not been modified, tampered, or corrupted

Question 38

What does the recipient need to decrypt the message?

Answer 38

the recipient’s private key

Question 39

Anonymous access

Answer 39

user will be able to login without providing a password, or by using any email address as the password

Question 40

Antivirus software

Answer 40

a class of programs that searches your hard drive and floppy disks for any known or potential viruses

Question 41

Application and device control

Answer 41

protects the system’s resources form applications and manages the peripheral devices that can attach to computers

Question 42

Application backdoor

Answer 42

hidden access that provides some level of control of the program

Question 43

Application layer firewalls

Answer 43

Inspects traffic all the way up to layer 7 of the OSI model.

Question 44

Armored Viruses

Answer 44

designed to be difficult to detect and remove

Question 45

ARP spoofing

Answer 45

forging a MAC address in ARP messages

Question 46

Asset identification

Answer 46

first step towards a secure organization. identifying what you need to protect

Question 47

Asymmetric Key

Answer 47

algorithms are used to create a mathematically related key pair (a secret private key and a published public key

Question 48

Attack

Answer 48

intentional act of attempting to bypass one or more computer security controls

Question 49

Attributable data should be :

Answer 49

always traced to individuals responsible for observing and recovering the data

Question 50

Audit Trail

Answer 50

a record showing who has accessed a computer system and what operations he or she has performed during a given period of time (for maintaining security and for recovering lost transactions)