CF Domain 4 Flash Cards

Question 1

Address Resolution Protocol
(ARP)

Answer 1

Is used at the Media Access Control (MAC) Layer to provide for direct communication between two devices within the same LAN segment.

Question 2

ACK

Answer 2

an acknowledgment of a signal being received

Question 3

Active-active, active-passive clustering

Answer 3

a data resiliency architecture in which client workloads are distributed across two or more nodes in a cluster to keep your data safe and available in the event of an unexpected component failure; active-active can use the full throughput capability of both devices; active-passive can only handle throughput of a single device allowing the secondary device to remain ready (but not passing traffic) until needed

Question 4

Advanced Persistent Threat (APT)

Answer 4

is an agent/org that plans, organizes, and carries out highly sophisticated attacks against a target person, org, or industry over a period of time (months or even years); usually with a strategic goal in mind

Question 5

Application Programming Interface(API)

Answer 5

code mechanisms that provide ways for apps to share data, emthods, or functions over a network (usually implemented in XML or JavaScript Object Notation (JSON))

Question 6

Bit

Answer 6

Most essential representation of data (zero or one) at Layer 1 of the Open Systems Interconnection (OSI) model.

Question 7

Bluetooth (Wireless Personal
Area Network IEEE 802.15)

Answer 7

Bluetooth wireless technology is an open standard for short-range radio frequency communication used primarily to establish wireless personal area networks (WPANs), and it has been integrated into many types of business and consumer devices.

Question 8

Bridges

Answer 8

Layer 2 devices that filter traffic between segments based on Media Access Control (MAC) addresses.

Question 9

Bandwidth

Answer 9

mount of information transmitted over a period of time; can be applied to moving bits over a medium, or human processes like learning or education

Question 10

Bound networks

Answer 10

AKA wired/Ethernet networks, where devices are connected by physical cables

Question 11

Boundary routers

Answer 11

they advertise routes that external hosts can use to reach internal hosts

Question 12

Cellular network

Answer 12

A radio network distributed over land areas called cells, each served by at least one fixed-location transceiver, known as a cell site or base station.

Question 13

Code division multiple access
(CDMA)

Answer 13

Every call’s data is encoded with a unique key, then the calls are all transmitted at once. Developed to decrease the chances of collisions when 2 or more stations start sending their signals over the datalink layer. Requires that each station first check the state of the medium before sending.

Question 14

Concentrators

Answer 14

Multiplex connected devices into one signal to be transmitted on a network.
provides communication capability between many low-speed, usually asynchronous channels and one or more high-speed, usually synchronous channels. Usually different speeds, codes, and protocols can be accommodated on the low-speed side; multiplexed into one signal

Question 15

Content Distribution
Network (CDN)

Answer 15

Is a large distributed system of servers deployed in multiple data centers across the internet, often used to cache commonly accessed data, with a goal of Quality of Service (QoS) and availability requirements

Question 16

Challenge-Handshake Authentication Protocol (CHAP)

Answer 16

used by PPP servers to authenticate remote clients; encrypts both username and password, and performs periodic session reauthentication to prevent replay attacks

Question 17

CAM Table Flooding

Answer 17

attack where switches don’t know where to send traffic; prevented by enabling switch port security

Question 18

Carrier Sense Multiple Access with Collision Avoidance (CSMA/CA)

Answer 18

is a method of network flow control operating on layer 2; Attempts to avoid collisions by granting only a single permission to communicate at any given time. IEEE standard 802.11 Wireless because wireless tries to avoid collision

Question 19

Carrier Sense Multiple Access with Collision Detection(CSMA/CD)

Answer 19

is a method of network flow control, where if > 1 station accesses the network at the same time, other stations detect and re-try their transmission; reponds to collisions by having each member of the collision domain wait for a short but random period of time before starting the process over. Common in IEEE standard 802.3 ethernet protocol.

Question 20

Circuit-switched network

Answer 20

network that uses a dedicated circuit between endpoints

Question 21

Code-Division Multiple Access(CDMA)

Answer 21

a method of encoding several sources of data so they can all be transmitted over a single RF carrier by one transmitter, or by using a single RF carrier frequency with multiple transmitters; the data from each call is encoded with a unique key, and calls are transmitted at once

Question 22

Collision Domain

Answer 22

set of systems that can cause a collision if they transmitted at the same time; note that broadcast domain is the set of systems that can receive a broadcast from each other

Question 23

Control plane

Answer 23

part of a network that controls how data packets are forwarded — meaning how data is sent from one place to another; e.g. the process of creating a routing table is considered part of the control plane; control of network functionality and programmability is directly made to devices at this layer

Question 24

Converged protocol

Answer 24

combines/converges standard protcols (such as TCP/IP) with proprietary/non-standard ones; they can complicate enterprise-wide security engineering efforts requiring specialist knowledge

Question 25

Dynamic or Private Ports

Answer 25

Ports 49152-65535. Whenever a service is requested that associated with Well-Known or Registered Ports those services with response with a dynamic port

Question 26

Domain Name Service (DNS)

Answer 26

is three interrelated elements. A service, a physical server, and a network protocol. Hierarchical and distributed name service that provides a naming system for computers, services, and other resources on the Internet

Question 27

Dynamic Host Configuration Protocol (DHCP)

Answer 27

is an industry standard used to dynamically assign IP addresses to network devices.

Question 28

Fibre Channel over Ethernet (FCoE)

Answer 28

A lightweight encapsulation protocol and lacks the reliable data transport of the TCP layer

Question 29

Fiber Distributed Data Interface (FDDI)

Answer 29

is an ANSI X3T9.5 LAN Standard; 100Mbps, token-passing using fiber optic using fiber optic, up to 2 kilometers.

Question 30

Firewalls

Answer 30

Devices that enforce administrative security policies by filtering incoming traffic based on set of rules

Question 31

Frame

Answer 31

Data represented at Layer 2 of the open systems interconnection model (OSI)

Question 32

Global System of Mobiles (GSM)

Answer 32

Each call is transformed into digital data that is given a channel and a time slot

Question 33

Gateway Device

Answer 33

A firewall or other device that sits at the edge of the network to regulate traffic and enforce rules

Question 34

Internet Control Message Protocol (ICMP)

Answer 34

Provides a means to send error messages and a way to probe the network to determine network availability, ping and traceroute also use ICMP. Standardized by IETF via RFC 792 to determine if a particular host is available

Question 35

Internet Group Management Protocol (IGMP)

Answer 35

Used to manage multicasting groups that are a set of hosts anywhere on a network that are listening for a transmission

Question 36

Internerworking

Answer 36

two different sets of servers/communication elements using network protocol stacks to communicate and coordinate activities.

Question 37

Multiprotocol Lable Switching (MPLS)

Answer 37

Is a wide area networking protocol that operates at both Layer 2 and 3 and does label switching.

Question 38

Microsegmentation

Answer 38

part of a zero trust strategy, that breaks LANs into very small highly localized zones using firewalls or similar, note that at the limit this places a firewall at every connection point

Question 39

Northbound/Southbound interface

Answer 39

A northbound interface lets a specific component communicate with a higher level component in the same network. A southbound interface enables a specific component to communicate with a lower level component.

Question 40

East/West Traffic

Answer 40

network traffice that is within a data, control, or application plane, within a data center or between geo dispersed locations

Question 41

North/South Traffic

Answer 41

In software distributed network terms (SDN), data flowing up (northbound) and down (southbound) the stack of data/control/application planes. Data flowing from the organization to external distination (northbound) or into the org from external sources (southbound)

Question 42

Network Function Virtualization (NFV)

Answer 42

The objective of NFV is to decouple functions such as firewall management, intrusion detection, network address translation, or name service resolution away from specific hardware implementation into software solutions. The focus is to optimize distinct network services.

Question 43

Nonroutable IP address (Private Networks)

Answer 43

From RFC 1918; 10.0.0.0/8 (10.0.0.0 - 10.255.255.255), 172.16.0.0/12 (172.16.0.0-172.31.255.255), 192.168.0.0/16 (192.168.0.0 - 192.168.255.255)

Question 44

Internet Protocol (IPv4)

Answer 44

Is the dominant protocol that operates at the OSI Network Layer 3. IP is responsible for addressing packets so that they can be transmitted from the source to the destination hosts.

Question 45

Internet Protocol (IPv6)

Answer 45

Is a modernization of IPv4 that includes a much larger address field; IPv6 addresses are 128 bits that support 2^128 hosts

Question 46

Open Shortest Path First (OSPF)

Answer 46

An interior gateway routing protocol developed for IP networks based on the shortest path first or link state algorithm.

Question 47

Packet

Answer 47

Representation of data a Layer 3 of the OSI model

Question 48

Packet Loss

Answer 48

A system on a chip installed on the motherboard of modern computers that is dedicated to carrying out security functions involving the storage of cryptographic keys and digital certificates, symmetric and asymmetric encryption, and hashing.

Question 49

Point to Point Protocol (PPP)

Answer 49

Provides a standard method for transporting multiprotocol datagrams over point to point links

Question 50

Port Address Translation (PAT)

Answer 50

An extension to NAT to translate all addresses to one routable IP address and translate the source port number in the packet to a unique value

Question 51

Ping Scanning

Answer 51

Network mapping technique to detect if host replies to ping, then the attacker knows that a host exists at the address

Question 52

Packet Switched Network

Answer 52

A network that doesn’t use a dedicated connection between endpoints

Question 53

Packet Loss Concealment (PLC)

Answer 53

Used in VOIP communications to mask the effect of dropped packets

Question 54

Registered Ports

Answer 54

Ports 1024-49151. These ports typically accompany non system applications associated with vendors and developers.

Question 55

Remote Procedure Call

Answer 55

is a protocol that enables one system to execute instructions on other hosts across a network infrastructure.

Question 56

Root of Trust

Answer 56

A source that can always be trusted within a cryptographic system. Because cryptographic security is dependent on keys to encrypt and decrypt data and perform functions such as generating digital signatures and verifying signatures. RoT schemes generally include a hardened hardware module. RoT guarantees the integrity of the hardware prior to loading the OS of a computer

Question 57

Segment

Answer 57

Data representation at Layer 4 of the OSI model

Question 58

Session Initiation Protocol (SIP)

Answer 58

Is designed to manage multimedia connections.

Question 59

Smurf

Answer 59

ICMP Echo Request sent to the network broadcast address of a spoofed victim causing all nodes to respond to the victim with an echo reply

Question 60

Software Defined Networks (SDNs)

Answer 60

Separates network systems into 3 components: raw data, how the data is sent, and what purpose the data serves. This involves a focus on data, control, and application (management) functions or “planes”

Question 61

Switches

Answer 61

Operates at Layer 2. Establishes a collision domain per port

Question 62

Session Initialization Protocol Secure (SIPS)

Answer 62

Secure version of the Session Initialization Protocol for VoIP, adds TLS encryption to keep the session initialization process secure

Question 63

S/MIME

Answer 63

provides the following cryptographic security services for electronic messaging applications: Authentication, Message Integrity, Non repudiation of origin (using digital signatures), Privacy, Data Security (using encryption)

Question 64

Simple Network Management Protocol (SNMP)

Answer 64

Is a protocol for collecting and organizing info about managed devices on IP networks. It can be used to determine the health of devices such as routers, switches, servers, workstations, etc

Question 65

Service Provisioning Markup Language (SPML)

Answer 65

XML based and designed to allow platforms to generate and respond to provisioning request. Uses the concept of requesting authorities issue SPML requests to provision service point. Provisioning service targets are often user accounts and are required to be allowed unique identification of the data in its implementation

Question 66

Secure Real Time Transport Protocol (STRP)

Answer 66

is an extension of Real Time Transport Protocol that features encryption, confidentiality, message authentication, and replay protection to audio and video traffic

Question 67

Transmission Control Protocol (TCP)

Answer 67

Provides connection oriented data management and reliable data transfer

Question 68

Teardrop Attack

Answer 68

Exploits the reassembly of fragmented IP packet in the fragment offset field that indicates the starting position or offset of the data contained in a fragmented packet relative to the data of the original unfragmented packet

Question 69

Transport Control Protocol/Internet Protocol Model (TCP/IP)

Answer 69

Layering mode structured into 4 layers (network interface layer, internet layer, transport layer, host to host transport layer, application layer)

Question 70

Multi tiered firewall

Answer 70

tiers are not the number of firewalls but the number of zones protected by the firewall; 2-tier protects 2 zones

Question 71

Terminal Emulation Protocol

Answer 71

AKA Telnet, is command line protocol designed to provide access between host

Question 72

User Datagram Protocol (UDP)

Answer 72

provides connectionless data transfer without error detection and correction.

Question 73

Unbound (Wireless) Network

Answer 73

network where the physical layer interconnections are done using radio, light, or some other means; may or may not be mobile

Question 74

Virtual Local Area Networks (VLANs)

Answer 74

Allow network administrators to use switches to create software based LAN segments that can be defined based on factors other than physical location

Question 75

Voice over Internet Protocol (VoIP)

Answer 75

A technology that allows you to make voice calls using a broadband Internet connection instead of a regular ( or analog) phone line

Question 76

VLAN hopping

Answer 76

A method of attacking the network resources of a VLAN by sending packets to a port not usually accessible from an end system. The goal of this form of attack is to gain access to other VLANs on the same network

Question 77

Well Known Ports

Answer 77

Ports 0-1023 ports are related to the common protocols that are utilized in the underlying management of TCP/IP system, DNS, SMTP etc

Question 78

Whitelisting/Blacklisting

Answer 78

A whitelist is a list of email addresses and/or internet addresses that someone knows as “good senders”. A blacklist is a corresponding list of known “bad” senders.

Question 79

Wi-Fi (Wireless LAN IEEE 802.11x)

Answer 79

Primary associated with computer networking, Wi-Fi uses the IEEE 802.11x specification to create a wireless local area network either public or private

Question 80

WiMAX (Broadband Wireless Access IEEE 802.16)

Answer 80

One well known example of wireless broadband is WiMAX. WiMAX can potentially deliver data rates of more than 30 megabits per second.

Question 81

Web Application Firewall (WAF)

Answer 81

is a software based app monitors and filters exchanges between applications and a host; usually inspect and filter conversions like HTTP/S