Chapter 10: Security in Network Design Flashcards
By far the most popular AAA service, what open-source service runs in the Application layer and can use UDP or TCP in the Transport layer?
RADIUS
TACACS+
Kerberos
Google Authenticator
RADIUS
Enforcing a virtual security perimeter using a client’s geographic location is known by what term?
geofencing
geolocating
geohashing
geolocking
geofencing
In Open System Authentication, how does authentication occur?
The client sends a pre-shared key along with the access point’s SSID.
The client requests an encrypted tunnel, after which, the client’s MAC serves as the authentication.
The access point forces the client to authenticate via a captive portal, after which all communication is encrypted.
The client “authenticates” using only the SSID name. In other words, no real authentication occurs.
The client “authenticates” using only the SSID name. In other words, no real authentication occurs.
In order to prevent ports that are serving network hosts from being considered as best paths, what should be enabled to block BPDUs?
BPDU guard
BPDU filter
root guard
BPDU drop
BPDU guard
On a Linux system, which command allows you to modify settings used by the built-in packet filtering firewall?
iptables
netwall
modfire
ipf
iptables
The Group Policy utility can be opened by typing what name into a Run box?
grppol.msc
secpol.msc
gpedit.msc
grouppol.msc
gpedit.msc
What IEEE standard includes an encryption key generation and management scheme known as TKIP?
802.11i
802.11j
802.1X
802.11h
802.11i
What aspect of AAA is responsible for determining what a user can and cannot do with network resources?
accounting
accessibility
authorization
authentication
authorization
What is NOT a variable that an network access control list can filter traffic with?
The Transport layer protocol used for the packet.
The Network layer protocol used for the packet.
The operating system used by the source or destination device.
The source or destination TCP/UDP port number in the packet.
The operating system used by the source or destination device.
What is a SIEM (Security Information and Event Management) system utilized for?
It is a system that monitors security device hardware availability.
It is an intellectual property protection software that prevents data links, and generates alerts.
It is an advanced intrusion protection system with a GUI-frontend.
It is a system used to evaluate data from security devices and generate alerts.
It is a system used to evaluate data from security devices and generate alerts.
What statement correctly describes a stateless firewall?
A stateless firewall filters packets based on source and destination IP addresses.
A stateless firewall inspects each incoming packet to determine whether it belongs to a currently active connection.
A stateless firewall manages each incoming packet as a stand-alone entity, without regard to currently active connections.
A stateless firewall blocks designated types of traffic based on application data contained within packets.
A stateless firewall manages each incoming packet as a stand-alone entity, without regard to currently active connections.
What scenario might be ideal for the use of root guard in configuring a switch?
You wish to prevent switches beyond a certain port from becoming the root bridge, but still wish to use STP.
You wish to disable STP on a port connected to a partnered company’s switch.
You wish to block BPDUs on an access port serving network hosts.
You Answered
You wish to prevent a rogue switch or computer from hijacking the network’s STP paths.
You wih to prevent switches beyon a certian port form becoing th root bridge, but still wish to use STP.
When using Kerberos, what is the purpose of a ticket?
It is a temporary set of credentials that a client uses to prove to other servers that its identity has been validated.
It is the event that is generated when auditing a resource and unauthorized access is attempted.
It is a key used by the client to gain access to services that are protected by the key on the network.
It is the name for a Kerberos client or user.
It is a temporary set of credentials that a client uses to prove to other servers that its identity has been validated.
When using Spanning Tree Protocol, what is the first step in selecting paths through a network?
STP must first select the root bridge, or master bridge.
STP examines the possible paths between all other bridges.
STP begins to block BPDUs on non-designated ports.
STP disables links that are not part of a shortest path.
STP must first select the root bridge, or master bridge.
When using a host-based intrusion detection system, what additional feature might be available to alert the system of any changes made to files that shouldn’t change?
file integrity monitoring (FIM)
file checksum watching (FCW)
file change management (FCM)
file access auditing (FAA)
file integrity monitoring (FIM)
