Chapter 1 - Networking Security Concepts

Question 1

Which security term refers to a person, property, or data of value to a company

Answer 1

Asset

Question 2

Which asset characteristic refers to risk that results from a threat and lack of a countermeasure?

Answer 2

Vulnerability

Question 3

Which three items are the primary network security objectives for a company?

Answer 3

• Confidentiality
• Integrity
• Availablity

Question 4

What is an example of a physical control?

Answer 4

Electronic Lock

Question 5

What is the primary motivation for most attacks against networks today?

Answer 5

Financial

Question 6

What type of an attack involves lying about the source address of a frame or packet?

Answer 6

Spoofing Attack

Question 7

Which two approaches to security provide the most secure results on day one?

Answer 7

• Defense in Depth
• Least Privilege

Question 8

Which of the following might you find in a network that is based on a defense-in-depth security implementation?

Answer 8

• Firewall
• IPS (Intrusion Prevention System)
• Access Lists
• Current Patches on Servers

Question 9

In relation to production networks, what are viable options when dealing with risk?

Answer 9

• Transfer it
• Mitigate it
• Remove it

(NOT ignore it)

Question 10

What is an Asset?

Answer 10

It is anything valuable to an organization. (computers, people, intellectual propery, contact lists, etc.)

Question 11

What is a vulnerability?

Answer 11

it is an exploitable weakness in a system or its design.

Question 12

What is a threat?

Answer 12

A threat is any potential danger to an asset.

“Latent” threats are not yet realized. An active attack launched on an organization is “realized”

Question 13

What is a countermeasure?

Answer 13

A countermeasure is a safeguard that somehow mitigates a potential risk.

Question 14

When it comes to network security, what is risk?

Answer 14

Risk is the potential for unauthorized access to, compromise, destruction, or damage to an asset.

Question 15

What is an Administrative Countermeasure?

Answer 15

These are things like written policies, procedures, guidelines, and standard. Acceptable Use Policies (AUP) would be an example.

Question 16

What is a logical countermeasure?

Answer 16

Logical controls are things like passwords, firewalls, IPS, access lists, and VPN tunnels.

Question 17

Why is a Social Engineering attack so dangerous?

Answer 17

Because it leverages users to gain information to compromise security. Users can be misdirected to phishing / pharming sites to give up username / password information, etc.

Question 18

What is ARP Poisoning?

Answer 18

An attacker spoofs a Layer 2 MAC address to make devices on the LAN believe that the layer 2 address of the attacker is the L2 address of their default gateway. The attacker than then sniff / capture all data attempting to leave the network. (They may even forward the packet along so that no one suspects anything is wrong. Can be mitigated by Dynamic Address Resolution Protocol Inspection (DAI)

Question 19

What are governmental asset classifications?

Answer 19

• Unclassified
• Sensitive but unclassified (SBU)
• Confidential
• Secret
• Top Secret

Question 20

What are private sector asset classifications?

Answer 20

• Public
• Sensitive
• Private
• Confidential

Question 21

What are asset classification criteria?

Answer 21

• Value
• Age
• Replacement Cost
• Useful Lifetime

Question 22

What are asset classification roles?

Answer 22

• Owner (the group ultimately responsible for the data)
• Custodian (the group responsible for implementing the policy as dictated by the owner)
• User (those who access the data and abide by the rules of use for the data)