ch7 Beyond the Basic LAN

Question 1

Wireless Access Points are made with an identifying __, which can be __ in the case of a single WAP or ___ if the network has more than one of them

Answer 1

Service Set Identifier (SSID); Basic; Extended

Question 2

when a Client sends a request to a WAP, that client is added to the WAP’s ___

Answer 2

Associated List

Question 3

does the 802.11 standard contain any encryption of authentication?

Answer 3

no

Question 4

___ was the first system developed to give basic authorization and encryption to 802.11, using the ___ protocol

Answer 4

Wired Equivalency Privacy (WEP); RC4

Question 5

the 802.11i standard uses ___ for authentication and ___ for encryption

Answer 5

802.1x; AES

Question 6

because most network hardware initially couldn’t handle the 802.11i standard, the ___ was developed for the transition, but has since been renamed ___

Answer 6

Temporal Key Integrity Protocol (TKIP); Wireless Protected Access (WPA)

Question 7

it is sometimes possible to carry out a Replay Attack after someone logs into a wireless network by retrieving the ___ and extracting their password. This process is also known as ___

Answer 7

Session Key; SSL stripping

Question 8

___ is when a server requires that users use secure protocols for their entire session

Answer 8

HTTP Strict Transport Security (HSTS)

Question 9

if someone plugs their personal wireless access point into a LAN this is called a ___, but if they change its SSID to match yours, then it’s an ___

Answer 9

Rogue Access Point; Evil Twin

Question 10

to boot people off a wireless network (so they are forced to login to an evil twin) either an illegal device called a ___ is used, or the command ___

Answer 10

802.11 Jammer; deauth

Question 11

to harden a wireless network against attack, it is important to know all ___ and maintain ___

Answer 11

MAC and IP addresses for everything connected; patches and updates

Question 12

for good WiFi coverage across a large flat area, use a ___ antenna; for a more 3D area use a ___ antenna; for a narrow but long distance use a ___ antenna and for just one side of a wall use a ___ antenna

Answer 12

Dipole; OMNI; Directional; Patch Graphic

Question 13

to improve WiFi signal bandwidth, you could try changing the ___ from 2.4 GHz to 5 GHz, or adjust the ___

Answer 13

Band; Channel Width

Question 14

___ means mimicking a different set of hardware than exists on a machine, whereas ___ means creating a new computer with it’s own OS but the same hardware

Answer 14

emulation; virtualization

Question 15

three advantages of virtualization are:

Answer 15

consolidation of hardware; easier system recovery; convenience of IT research

Question 16

a ___ allows you to see the different virtual machines, and can be either Type ___, launched on boot and independent of the OS, or type ___, which runs on top of the OS

Answer 16

Hypervisor; 1; 2

Question 17

three threats to a virtualized network are:

Answer 17

Malware, VM Sprawl; VM Escape

Question 18

the following three steps should be taken to harden a virtualized network:

Answer 18

cleaning data remnants; good policies; keeping patches updated

Question 19

while not appropriate for wireless networks in general ___ is great for securing an HVAC system control

Answer 19

MAC Filtering

Question 20

a ___ holds an application and all the files it depends on, isolating them from the rest of the system

Answer 20

Container

Question 21

in ___, a 3rd party owns all the hardware, but makes it available through virtual machines

Answer 21

Infrastructure as a Service (IaaS)

Question 22

in ___, a 3rd party supplies everything needed for software development via virtual machines

Answer 22

Platform as a Service (PaaS)

Question 23

in ___, a 3rd party owns the software you need, making it available for use online via a subscription

Answer 23

Software as a Service (SaaS)

Question 24

a good practice for hardening wireless networks is to enable ___ so devices can’t see each other on the network

Answer 24

AP Isolation

Question 25

with WPA2 protected systems, it is particularly important to use ___

Answer 25

long complex passwords

Question 26

Client’s can notice and report ___ and ___ on a wireless network to help with security

Answer 26

unfamiliar SSID’s; unexpected requirements to login again

Question 27

virtual computers are often best deployed as ___

Answer 27

Virtual Desktop Integration (VDI)

Question 28

the Internet of Things is a collections of ___

Answer 28

Static Hosts

Question 29

a ___ system is used to control devices, usually over a WAN, spread out over a large geographic area

Answer 29

Secure Control and Data Acquisition (SCDA)

Question 30

___, although it doesn’t have encryption, tends to be secure because of the close proximity/contact between devices required

Answer 30

Near Field Communication (NFC)

Question 31

when a company issues cellphones to it’s employees that are not for personal use, this is a ___ deployment

Answer 31

Corporate Owned, Business Only (COBO)

Question 32

when a company issues cellphones, but employees have a degree of control over how they are configured this is a ___ deployment

Answer 32

Corporate Owned, Personally Enabled (COPE)

Question 33

when a company provides cellphones, but employees can choose from a list this is a ___ deployment

Answer 33

Choose Your Own Device (CYOD)

Question 34

when employees in a company can use their own phones with company software this is a ___ deployment

Answer 34

Bring Your Own Device (BYOD)

Question 35

when users load software onto a cellphone from an unofficial source, this is called ___

Answer 35

sideloading

Question 36

when a user is given a cellphone from a major carrier and changes to al alternative carrier to save money, this is called ___ and is a problem for companies because ___

Answer 36

carrier unlocking; the company may be unable to track the activity of the phone

Question 37

when a user gains administrative access and installs custom firmware on a cellphone, this is called ___, or on an iPhone ___, and makes the phone vulnerable to ___

Answer 37

rooting; jailbreaking; malware

Question 38

cellphone firmware ___ updates can become expensive due to data usage, and can be turned off

Answer 38

over the air

Question 39

the best way to secure data on a cellphone when it is lost is with ___

Answer 39

Remote wipe

Question 40

outside lighting, signage and security guards are examples of ___ physical security controls

Answer 40

deterrent

Question 41

fences and barricades are examples of ___ physical security controls

Answer 41

Preventative

Question 42

screen filters for desktop computers are examples of ___ physical security controls

Answer 42

Preventative

Question 43

alarms and cameras are examples of ___ physical security controls

Answer 43

Detective

Question 44

Infrared cameras are useful for protecting computer equipment because they ___

Answer 44

can detect heat spots

Question 45

securing an HVAC remote monitoring system would mean making sure vendors use ___ or ___ to connect

Answer 45

VPN; 802.1x

Question 46

always use ___ for fire suppression in server rooms

Answer 46

FM-200