Ch. 4 - Network Security

Question 1

What port number does File Transfer Protocol (FTP) use?

Answer 1

21

Question 2

What port number does Telnet use?

Answer 2

23

Question 3

What port number for Secure Shell (SSH)?

Answer 3

22

Question 4

What port does Simple Mail Transfer Protocol (SMTP) use?

Answer 4

25

Question 5

What port does Time Protocol use?

Answer 5

123

Question 6

What port number does Domain Name Service use?

Answer 6

53

Question 7

What port number does HTTP and HTTPS use?

Answer 7

80 and 443

Question 8

What port number does LDAP and LDAPS use?

Answer 8

389 and 636

Question 9

Port 21?

Answer 9

FTP - File Transfer Protocol

Question 10

Port 22?

Answer 10

Secure Shell (SSH)

Question 11

Port 23?

Answer 11

Telnet

Question 12

Port 25?

Answer 12

SMTP - Simple Mail Transfer Protocol

Question 13

Port 53?

Answer 13

DNS - Domain Name System

Question 14

Port 80?

Answer 14

HTTP - Hypertext Transfer Protocol

Question 15

Port 123?

Answer 15

NTP - Network Time Protocol

Question 16

Port 389?

Answer 16

LDAP - Lightweight Directory Access Protocol

Question 17

Port 443?

Answer 17

HTTPS - Hypertext Transfer Protocol Secure

Question 18

Port 636?

Answer 18

LDAPS - Lightweight Directory Access Protocol Secure

Question 19

A model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services)
that can be rapidly provisioned and released with minimal management effort or service provider interaction.

A. Virtualization
B. On-Premises Computing
C. Cloud Computing
D. Virtual Desktop Interface (VDI)

Answer 19

C. Cloud Computing

Source: NIST 800-145

Question 20

A system in which the cloud infrastructure is provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns (e.g., mission, security requirements, policy and compliance considerations). It may be owned, managed and operated by one or more of the organizations in the community, a third party or some combination of them, and it may exist on or off premises.

A. Community Cloud
B. Public Cloud
C. Hybrid Cloud
D. Private Cloud

Answer 20

A. Community Cloud

Source: NIST 800-145

Question 21

The prevention of authorized access to resources or the delaying of time-critical operations. (Time-critical may be milliseconds or it may be hours, depending upon the service provided.) Typically, a one-to-one attack.

A. Denial-of-Service (DoS)
B. Phishing
C. Snarfing
D. Man-in-the-Middle

Answer 21

A. Denial-of-Service (DoS)

NIST SP 800-27 Rev A

Question 22

The process and act of converting the message from its plaintext to ciphertext.

A. Decryption
B. Decapsulation
C. Encapsulation
D. Encryption

Answer 22

D. Encryption

Question 23

The internet protocol (and program) used to transfer files between hosts.

Answer 23

File Transfer Protocol (FTP)
Port 21

Question 24

A combination of public cloud storage and private cloud storage where some critical data resides in the enterprise’s private cloud while other data is stored and accessible from a public cloud storage provider.

A. Community Cloud
B. Public Cloud
C. Hybrid Cloud
D. Private Cloud

Answer 24

C. Hybrid Cloud

Question 25

The provider of the core computing, storage and network hardware and software that is the foundation upon which organizations can build and then deploy applications. It’s popular in the data center where software and servers are purchased as a fully outsourced service and usually billed on usage and how much of the resource is used.

A. Platform as a Service (PaaS)
B. Infrastructure as a Service (IaaS)
C. Database as a Service (DaaS)
D. Software as a Service (SaaS)

Answer 25

B. Infrastructure as a Service (IaaS)

Question 26

An attack where the adversary positions himself in between the user and the system so that he can intercept and alter data traveling between them.

A. Mantrap
B. Piggybacking
C. Man-in-the-Middle
D. Mancave

Answer 26

C. Man-in-the-Middle

Question 27

Security standards that apply to merchants and service providers who process credit or debit card transactions.

A. PII
B. PCI DSS
C. HIPAA
D. DIA

Answer 27

B. Payment Card Industry Data Security Standard (PCI DSS)

Question 28

The web-authoring or application development middleware environment that allows applications to be built in the cloud.

A. Platform as a Service (PaaS)
B. Infrastructure as a Service (IaaS)
C. Database as a Service (DaaS)
D. Software as a Service (SaaS)

Answer 28

A. Platform as a Service (PaaS)

Question 29

The phrase used to describe a cloud computing platform that is implemented within the corporate firewall, under the control of the IT department. It’s designed to offer the same features and benefits of cloud systems, but removes a number of objections to the cloud computing model, including control over enterprise and customer data, worries about security, and issues connected to regulatory compliance.

A. Community Cloud
B. Public Cloud
C. Hybrid Cloud
D. Private Cloud

Answer 29

D. Private Cloud

Question 30

The cloud infrastructure is provisioned for open use by the general public. It may be owned, managed, and operated by a business, academic, or government organization, or some combination of them. It exists on the premises of the cloud provider.

A. Community Cloud
B. Public Cloud
C. Hybrid Cloud
D. Private Cloud

Answer 30

B. Public Cloud

Source: NIST SP 800-145

Question 31

The standard communication protocol for sending and receiving emails between senders and receivers.

Answer 31

Simple Mail Transport Protocol (SMTP)
Port 25

Question 32

The cloud customer uses the cloud provider’s applications running within a cloud infrastructure. The applications are accessible from various client devices through either a thin client interface, such as a web browser or a program interface. The consumer does not manage or control the underlying cloud infrastructure including network, servers, operating systems, storage, or even individual application capabilities, with the possible exception of limited user-specific application capabilities with the possible exception of limited user-specific application capabilities configuration settings.

A. Platform as a Service
B. Infrastructure as a Service
C. Database as a Service
D. Software as a Service

Answer 32

D. Software as a Service

Source: NIST SP 800-145

Question 33

Removing the design belief that the network has any trusted space. Security is managed at each possible level, representing the most granular asset.

A. Zero Trust
B. Zero Day
C. Zero Access
D. Zero Tolerance

Answer 33

A. Zero Trust