Chapter 11

Question 1

What is the addition of a header, and possibly a footer, to the data received by each layer from the layer above before it’s handed off to the layer below.

Answer 1

Encapsulation

Question 2

What is the container name for OSI layers 5-7?

Answer 2

PDU

Question 3

What is the container name for OSI layer 4?

Answer 3

Segment/Datagram

Question 4

What is the container name for OSI layer 3?

Answer 4

Packet

Question 5

What is the container name for OSI layer 2?

Answer 5

Frame

Question 6

What is the container name for OSI layer 1?

Answer 6

Bits

Question 7

What are the protocols for interior routing ?

Answer 7

RIP
IGRP
OSPF
IS-IS

Question 8

What are the protocols for exterior routing?

Answer 8

BGP

Question 9

What are attacks related to DNS poisoning ?

Answer 9

Rouge DNS Server
Pharming
Altering host file
Corrupting IP configuration
DNS query spoofing
Proxy Falsification

Question 10

What attack is the act of changing the registration of the domain name without the authorization of the owner ?

Answer 10

Domain Hijacking

Question 11

What are the drawbacks of using multilayer protocols ?

Answer 11

Covert Channels
Filter bypass
Violation of network segmentation boundaries

Question 12

What are the benefits of multilayer protocols?

Answer 12

Can be used at higher OSI layers
Encryptions
Flexibility
Resiliency

Question 13

What are some examples of network segmentation?

Answer 13

Intranet
Extranet
Screened Subnets

Question 14

What are the benefits of network segmentation?

Answer 14

Manage traffic
Improve performance
Enforce security

Question 15

What is the act of dividing up an internal network into numerous sub zones ?

Answer 15

Micro segmentation

Question 16

How are micro-segmentated zones separated ?

Answer 16

ISFWs
Subnets
VLANs

Question 17

What are some converged protocols ?

Answer 17

FCoE
MPLS
iSCSI
VPN
SDN
IaC

Question 18

What are the two authentication options supported by WPA2?

Answer 18

PSK/PER and 802.1x/ENT

Question 19

What encryption standard does WPA3 use ?

Answer 19

192-bit AES-CCMP

Question 20

What encryption standard does WPA3-PER use?

Answer 20

128-bit AES CCMP

Question 21

Which WPA3 method uses SAE?

Answer 21

WPA3 128-bit AES CCMP

Question 22

What performs a zero knowledge proof process known as dragonfly key exchange which is a derivative of Diffie-Hellman?

Answer 22

SAW

Question 23

What are some wireless attacks ?

Answer 23

Evil Twin
Rouge Access Points
Disassociation
Jamming
IV Abuse
War Driving
Replay

Question 24

What security mechanism seeks to detect, record, evaluate, and respond to suspicious activities?

Answer 24

EDR

Question 25

What is a combination of multiple technologies such as a SIEM, EDR, NTA, and IDS?

Answer 25

MDR

Question 26

What service monitors an IT environment in real time to quickly detect and resolve threats ?

Answer 26

MDR

Question 27

What service is not limited to endpoints and focuses on threat detection and mediation ?

Answer 27

MDR
Managed Detection and Response

Question 28

What is a variation of EDR?

Answer 28

EPP
Endpoint Protection Platform

Question 29

What are the four main security functions of EPP?

Answer 29

Predict
Prevent
Detect
Respond

Question 30

What often includes components of EDR, MDR, and EPP?

Answer 30

XDR
Extended Detection and Response

Question 31

What can be deployed fully on premises, in the cloud, or as a hybrid structure ?

Answer 31

MSSP
Managed Security Service Provider

Question 32

What can provide XDR solutions that are centrally controlled and managed ?

Answer 32

MSSP

Question 33

What is a remote access multilayer switch used to connect distant networks over WAN links ?

Answer 33

LAN Extender

Question 34

What is a remote access system used to make accessing a system or network easier or more securely.

Answer 34

Jumpbox / Jump server

Question 35

What is often deployed in extranets, screened subnets, or cloud networks where standard direct links or private channels is not available.

Answer 35

Jump box / Jump server

Question 36

What is based on SoC and collects and transmits information back to a central system for storage and analysis?

Answer 36

Sensors

Question 37

What enables the leveraging of an existing AAA service like RADIUS or TACACS+ for authentication?

Answer 37

ENT

Question 38

What is a mapping of signal strength measurements over a building’s blueprints?

Answer 38

Heat Map

Question 39

What are the concerns of IPV6?

Answer 39

More addresses for attackers
All security products must be upgraded
Loss/Lack for NAT

Question 40

What are three ways for IPV4 and IPV6 to coexist on the same network ?

Answer 40

Dual Stack
Tunneling
NAT-PT

Question 41

What means having the system run both IPV4 and IPV6 and using the correct protocol for each conversation?

Answer 41

Dual stack

Question 42

What allows most systems to operate a single stack of either IPV4 or IPV6 and use an encapsulation tunnel to access systems of the other protocol.

Answer 42

Tunneling

Question 43

What can be used to convert between IPv4 and IPv6 network segments?

Answer 43

NAT-PT

Question 44

What is the default subnet mask of Class A and CIDR equivalent?

Answer 44

255.0.0.0 or /8

Question 45

What is the default subnet mask of Class B and CIDR equivalent?

Answer 45

255.255.0.0 or /16

Question 46

What is the default subnet mask of Class C and CIDR equivalent?

Answer 46

255.255.255.0 or /24

Question 47

What is used to determine the health of a network or specific link?

Answer 47

ICMP

Question 48

What commands utilize ICMP?

Answer 48

Ping
Traceroute
Pathping

Question 49

What attacks are used against ICMP?

Answer 49

Ping of Death
Smurf
Ping Flood

Question 50

What protocol allows systems to support multicasting ?

Answer 50

IGMP

Question 51

What protocol is used to convert IP 32 bit addresses into MAC addresses?

Answer 51

ARP

Question 52

What attack is where an attacker send bogus information into the ARP cache?

Answer 52

ARP poisoning/spoofing

Question 53

What is the best defense against ARP poisoning?

Answer 53

Port Security

Question 54

What are all the ways to protect against ARP poisoning ?

Answer 54

Port Security
Endpoint security products
Static ARP entries

Question 55

What is an authentication service for cross-network service communications and is simply a means to prevent unauthorized execution of code on remote systems.

Answer 55

S-RPC

Question 56

What is a cryptographic protocol that provides end-to-end encryption for voice communications, videoconferencing, and text message services.

Answer 56

Signal protocol

Question 57

What is nonfederated and is a core element in the messaging app named Signal.

Answer 57

Signal Protocol

Question 58

What is an encryption protocol that operates at OSI layer 4 (by encrypting the payload of TCP communications).

Answer 58

TLS

Question 59

What are the drawbacks of multilayered protocols ?

Answer 59

Covert channels are allowed.

Filters can be bypassed.

Logically imposed network segment boundaries can be overstepped.

Question 60

What operate by encapsulating or converging data storage signals into TCP/IP communications in order to separate storage and proximity.

Answer 60

SAN

Question 61

What are often used to enhance networked storage devices such as hard drives, drive arrays, optical jukeboxes, and tape libraries

Answer 61

SAN

Question 62

What is a high-throughput high-performance network technology that directs data across a network based on short path labels rather than longer network addresses.

Answer 62

MPLS

Question 63

What is a networking storage standard based on IP that operates at layer 3.

Answer 63

ISCSI

Question 64

What technology can be used to enable location-independent file storage, transmission, and retrieval over LAN, WAN, or public internet connections ?

Answer 64

ISCSI

Question 65

What is often viewed as a low-cost alternative to Fibre Channel.

Answer 65

ISCSI

Question 66

What attacks are VOIP vulnerable to?

Answer 66

SPIT
Host OS and DoS attacks

Question 67

What aims to minimize the risk of DoS, on-path attacks, and other VoIP exploits through robust encryption and reliable authentication.

Answer 67

SRTP

Question 68

What refers to the traffic flow that occurs within a specific network, data center, or cloud environment.

Answer 68

East-West Traffic

Question 69

What refers to the traffic flow that occurs inbound or outbound between internal systems and external systems.

Answer 69

North-South Traffic

Question 70

What philosophy requires a system to meet all current security requirements (such as patch application and malware scanner updates) before it is allowed to communicate with the network.

Answer 70

Preadmission

Question 71

What philosophy allows and denies access based on user activity, which is based on a predefined authorization matrix.

Answer 71

Postadmission

Question 72

What common ingress filters and egress filters can be used to block spoofed packets that often relate to malware, botnets, and other unwanted activities.

Answer 72

Blocking inbound packets claiming to have an internal source address

Blocking outbound packets claiming to have an external source address

Blocking packets with source or destination addresses listed on a block list

Blocking packets that have source or destination addresses from the local area network (LAN) but haven’t been officially assigned to a host

Question 73

What is a standard or common proxy that acts as an intermediary for queries of external resources.

Answer 73

Forward Proxy

Question 74

What handles inbound requests from external systems to internally located services.

Answer 74

Reverse Proxy

Question 75

What is a type of security zone that can be positioned so that it operates as a buffer network between the secured private network and the internet and can host publicly accessible services.

Answer 75

Screened Subnet

Question 76

What is a set of rules and restrictions that define how data is transmitted over a network medium (e.g., twisted-pair cable, wireless transmission).

Answer 76

Protocol

Question 77

What is the addition of a header, and possibly a footer, to the data received by each layer from the layer above before it’s handed off to the layer below.

Answer 77

Encapsulation

Question 78

What layer is responsible for interfacing user applications, network services, or the operating system with the protocol stack.

Answer 78

Application Layer

Question 79

What layer is responsible for transforming data into a format that any system following the OSI model can understand.

Answer 79

Presentation

Question 80

What layer is responsible for managing the integrity of a connection and controlling the session.

Answer 80

Transport

Question 81

What protocol is a path vector ?

Answer 81

BGP

Question 82

What protocols make next hop decisions based on the entire remaining path (i.e., vector) to the destination.

Answer 82

Path Vector Protocols

Question 83

What is a 6-byte (48-bit) binary address written in hexadecimal notation?

Answer 83

MAC Address