Chapter 17

Question 1

The for common prevention methods are?p799

Answer 1

physical security
digital security
user education
principle of least privilege

Question 2

bag of elements that can be added to an environment to aid in securing it.p799

Answer 2

Physical security

Question 3

being so close to someone when they enter a building that you are able to come in right behind them without needing to use a key, a card, or any other security device.p800

Answer 3

Tailgating

Question 4

include fingerprint/palm/hand scanners, retinal scanners, and soon, possibly, DNA scanners. p801

Answer 4

Biometrics

Question 5

any form of identification intended to differentiate the holder from everyone else. This can be as simple as a name badge or photo ID. p801

Answer 5

Badges

Question 6

They are security devices that you carry with you; they display a randomly generated code that you can then use for authentication.p801

Answer 6

Key Fobs

Question 7

type of badge or card that gives you access to resources, including buildings, parking lots, and computers. p801

Answer 7

RFID Badges

Question 8

are anything that a user must have on them to access network resources and are often associated with devices that enable the user to generate a one-time password authenticating their identity. p802

Answer 8

RSA Tokens

Question 9

r film or glass add-ons that are placed over a monitor or laptop screen to prevent the data on the screen from being readable when viewed from the sides.p802

Answer 9

Privacy Filters

Question 10

As the name implies, matches are made based upon identification of the blood vessels in an individual’s retina. p802

Answer 10

Retinal

Question 11

keeping harmful data and malware out as well as on authorization and permissions. p802

Answer 11

Digital Security

Question 12

application that is installed on a system to protect it and to scan for viruses as well as worms and Trojan horses.p802

Answer 12

Antivirus Software

Question 13

There are different types of firewalls, and they can be either stand-alone systems or included in devices such as what? p803

Answer 13

routers or servers.

Question 14

passes or blocks traffic to specific addresses based on the type of application and the port used. p804

Answer 14

Packet filter firewalls

Question 15

are used to process requests from an outside network; the proxy firewall examines the data and makes rule-based decisions about whether the request should be forwarded or refused. p804

Answer 15

Proxy firewalls

Question 16

referred to as stateful packet filtering. Most of the devices used in networks don’t keep track of how information is routed or used. After a packet is passed, the packet and path are forgotten. p805

Answer 16

Stateful inspection firewalls

Question 17

(UDP)stands for what? p806

Answer 17

User Datagram Protocol (UDP)

Question 18

(ICMP)stands for what? p806

Answer 18

Internet Control Message Protocol (ICMP)

Question 19

a process in which an attacker attempts to acquire information about your network and system by social means, such as talking to people in the organization. p809

Answer 19

Social Engineering

Question 20

these uninvited intruders may damage the data on your hard disk, destroy your operating system, and possibly spread to other systems. p810

Answer 20

Malware

Question 21

are software programs that have the ability to hide certain things from the operating system; they do so by obtaining (and retaining) administrative-level access.p810

Answer 21

Rootkits

Question 22

social engineering in which you simply ask someone for a piece of information that you are missing by making it look as if it is a legitimate request. p810

Answer 22

Phishing

Question 23

When you combine phishing with Voice over IP (VoIP), it becomes known as what?p811

Answer 23

vishing

Question 24

Two other forms of phishing to be aware of are. p811

Answer 24

spear phishing and whaling,

Question 25

They can see you entering a password, typing in a credit card number, or entering any other pertinent information. The best defense against this type of attack is simply to survey your environment before entering personal data.p811

Answer 25

Shoulder Surfing

Question 26

program monitors the user’s activity and responds by offering unsolicited pop-up advertisements (sometimes known as adware), gathers information about the user to pass on to marketers, or intercepts personal data such as credit card numbers.p811

Answer 26

Spyware

Question 27

classified as polymorphic, stealth, retrovirus, multipartite, armored, companion, phage, and macro viruses. p812

Answer 27

Viruses

Question 28

cover themselves with protective code that stops debuggers or disassemblers from examining critical elements of the virus.p814

Answer 28

Armored virus

Question 29

attaches itself to legitimate programs and then creates a program with a different filename extension.p815

Answer 29

Companion virus

Question 30

exploits the enhancements made to many application programs. Programmers can expand the capability of applications such as Microsoft Word and Excel.p815

Answer 30

Macro virus

Question 31

attacks your system in multiple ways. It may attempt to infect your boot sector, infect all of your executable files, and destroy your application files.p815

Answer 31

Multipartite virus

Question 32

alters other programs and databases. The virus infects all of these files. The only way to remove this virus is to reinstall the programs that are infected. p815

Answer 32

Phage virus

Question 33

change form to avoid detection. These types of viruses attack your system, display a message on your computer, and delete files on your system.p816

Answer 33

Polymorphic virus

Question 34

can directly attack your antivirus software and potentially destroy the virus definition database file. Destroying this information without your knowledge would leave you with a false sense of security.p816

Answer 34

Retrovirus

Question 35

attempts to avoid detection by masking itself from applications. It may attach itself to the boot sector of the hard drive. p816

Answer 35

Stealth virus

Question 36

different from a virus in that it can reproduce itself, it’s self-contained, and it doesn’t need a host application to be transported.p817

Answer 36

Worms

Question 37

are programs that enter a system or network under the guise of another program.p818

Answer 37

Trojans

Question 38

what are the seven workstation security best practices. p818

Answer 38

Set strong passwords
Require passwords
Restrict user permissions
Change default usernames
Disable the guest account
Make the screensaver require a password
Disable autorun functionality

Question 39

Most vendors recommend that you use nonalphabetic characters such as _________in your password, and some go so far as to require it .p819

Answer 39

, $, and %