ch 7

Question 1

• Most common protocol used for LANs

Answer 1

(TCP/IP) transmission Control protocol/ Internet protocol

Question 2

• TCP/IP uses a four layer architecture what are they?

Answer 2

network interface, internet, transport, application

Question 3

(SNMP)

Answer 3

Simple Network Management Protocol (basic TCP/IP protocols)

Question 4

(DNS)

Answer 4

Domain Name System

basic TCP/IP protocols

Question 5

(FTP)

Answer 5

File transfer protocol

basic TCP/IP protocols

Question 6

Manages network equipment
Allows administrator to remotely manage, monitor, and configure network devices
Exchanges management information

Answer 6

• (SNMP) Simple Network Management Protocol

Question 7

• Agents are password protected also known as

Answer 7

common String.

Question 8

A TCP/IP protocol that maps IP addresses to their symbolic name.

Answer 8

• (DNS) Domain name system

Question 9

used for transferring files.

Answer 9

• TCP/IP protocol

Question 10

(FTPS) secure sockets layer encrypts commands- uses ?

Answer 10

SSL or TLS to encrypt commands

Question 11

•(S/M I M E)

Answer 11

Secure/Multipurpose Internet Mail Extensions

Question 12

A protocol for securing email messages

Answer 12

• (S/M I M E) Secure/Multipurpose Internet Mail Extensions

Question 13

what to use to secure voice and video

Answer 13

(SRTP) Secure Real-Time Transport Protocol

Question 14

what to use to secure time synchronization

Answer 14

(NTP) Network time protocol

Question 15

what to use to secure email

Answer 15

(S/MIME) Secure/ multipurpose internet mail extensions

Question 16

what to use to secure web browsing

Answer 16

(HTTPS) Hypertext transport protocol secure

Question 17

what to use to secure file transfer

Answer 17

secure FTP(SFTP)

Question 18

what to use to secure remote access

Answer 18

(VPN) Virtual private network

Question 19

what to use to secure domain name resolution

Answer 19

(DNSSEC) DNS security extensions

Question 20

what to use to secure routing and switching

Answer 20

(IPSEC) ip security

Question 21

what to use to secure network address translation

Answer 21

(IPSEC) ip security

Question 22

what to use to secure subscription services

Answer 22

(IPSEC) IP security

Question 23

• a separate hardware card that inserts into a web server that contains co-processors to handle S S L/T L S processing

Answer 23

• S S L/T L S accelerator

Question 24

allows the administrator to configure a switch to copy traffic that occurs on some or all ports to a designated port on the switch

Answer 24

• Port mirrors

Question 25

- a device that can monitor traffic

Answer 25

• Network tap (test access point)

Question 26

– monitor traffic for network intrusion detection and prevention devices

Answer 26

Sensors

Question 27

gather traffic for S I E M devices

Answer 27

Collectors

Question 28

block traffic for Internet content filters

Answer 28

Filters

Question 29

used to combine multiple network connections into a single link Should be located between routers and servers where they can detect and stop attacks directed at a server or application

Answer 29

• Aggregation switch

Question 30

aggregates and correlates content from different sources to uncover an attack

Answer 30

• Correlation engine

Question 31

- a hardware device that identifies and blocks real-time distributed denial of service (D D o S) attacks

Answer 31

• DDoS mitigator

Question 32

A Microsoft Windows feature that prevents attackers from using buffer overflow to execute malware

Answer 32

• (D E P) Data Execution Prevention

Question 33

- A service that can monitor any changes made to computer files, such as O S files

Answer 33

• (F I C) File integrity check

Question 34

A means of managing and presenting computer resources without regard to physical layout or location

Answer 34

• Virtualization

Question 35

a simulated software-based emulation of a computer | The host system runs a hypervisor that manages the virtual operating systems and supports one or more guest systems

Answer 35

• Virtual machine

Question 36

- The VM monitor program

Answer 36

• Hypervisor

Question 37

The process of running a user desktop inside a V M that resides on a server

Answer 37

• (V D I) Virtual Desktop Infrastructure

Question 38

An Ethernet-compliant virtual network that can connect physical computers and/or virtual machines together

Answer 38

• (V D E) Virtual Distributed Ethernet

Question 39

which allows a virtual machine to be moved to a different physical computer with no impact to users

Answer 39

• live migration

Question 40

- of a particular state of a virtual machine can be saved for later use

Answer 40

• snapshot

Question 41

Testing the existing security configuration, can be performed using a simulated network environment

Answer 41

• security control testing

Question 42

suspicious program can be loaded into an isolated virtual machine and executed

Answer 42

• sandboxing

Question 43

VMs may be able to “escape” from the contained environment and directly interact with the host O S

Answer 43

• virtual machine escape protection

Question 44

The widespread proliferation of V M s without proper oversight or management

Answer 44

• Virtual machine sprawl

Question 45

Enterprises in the past purchased all the hardware and software necessary to run the organization

Answer 45

• On-premises model

Question 46

- Servers, storage, and the supporting networking infrastructure are shared by multiple enterprises over a remote network connection

Answer 46

• Hosted services

Question 47

A model for enabling convenient, on-demand network access to a shared pool of configurable computing resources

Answer 47

• Cloud computing

Question 48

Vendor provides access to the vendor’s software applications running on a cloud infrastructure

Answer 48

• Software as a Service (S a a S)

Question 49

Consumers install and run their own specialized applications on the cloud computing network

Answer 49

• Platform as a Service (P a a S)

Question 50

Vendor allows customers to deploy and run their own software, including O S s and applications

Answer 50

• Infrastructure as a Service (I a a S)

Question 51

All security services are delivered from the cloud to the enterprise

Answer 51

• Security as a Service (SEC a a S)

Question 52

* A set of software tools or services that resides between the enterprises’ on-premises infrastructure and the cloud provider’s infrastructure * Acts as a “gatekeeper”

Answer 52

• (C A S B) Cloud access security broker

Question 53

- Virtualizes parts of the physical network so that it can be more quickly and easily reconfigured

Answer 53

• (S D N) Software defined network