Chapter 3: Architecture and Design2

Question 1

Departmental isolation uses a _______, whereas a computer isolation uses _________.

Answer 1

VLAN, airgaps

Question 2

A ______ is a boundary layer between the LAN and the ______. The website situated there is called an ___________ and is normally accessed using a username and a password.

Answer 2

DMZ, WAN, extranet

Question 3

System _________ is where a virtual machine is running out of resources.

Answer 3

Sprawl

Question 4

The best way to prevent a SQL injection attack is by using _________ ____________. Another method is to use _______ validation.

Answer 4

Store procedures, input

Question 5

A _____ is used is to hide the internal network, whereas _____ is multiple internal connections to one external connection.

Answer 5

NAT, PAT

Question 6

_______ code is source code that is never used by the application.

Answer 6

Dead

Question 7

A network intrusion detection system relies on __________ and _____________ to sense changes to the local network.

Answer 7

Sensors, collectors

Question 8

An _______________ switch can be used to connect multiple switches together and prevents looping.

Answer 8

Aggregation

Question 9

The cloud model ___________ as a Service is where you lease a bespoke application that cannot be _____________ and is normally accessed via a web browser.

Answer 9

Software, modified

Question 10

If a company has the account lockout set to a maximum of three attempts, an attacker can log in twice to all of the computer systems without being detected. However, if the company installs a _______ system that uses a _____________ engine, once the third attempt is made, the attacker is locked out.

Answer 10

SIEM, correlation

Question 10

VM _________ is where an attacker gains access to a virtual machine and then attacks the host.

Answer 10

Escape

Question 11

A company uses a lease line to connect two sites, London and Paris. Due to budget constraints, they are going to replace the lease line with a _____-__-_____ VPN using ________ __ mode.

Answer 11

Site-to-site, always on

Question 12

_____________ _______ is where companies in the same industry share the cost of creating and hosting a cloud-based application.

Answer 12

Community cloud

Question 13

When a SIEM system produces a ________ positive, it could be that the wrong _______ filter is being used.

Answer 13

False, input

Question 14

Group policy enforces policies for on-premise computers and ________ ________ _____________ __________ enforces policies for cloud-based computers.

Answer 14

Cloud access security broker

Question 15

A waterworks and an oil __________ and both examples of _________ networks.

Answer 15

Refinery, SCADA

Question 16

________________ can be used to mask data or code, whereas ________________ is used to embed data inside other data.

Answer 16

Obfuscation, steganography

Question 16

___ ________ is where an unmanaged virtual machine has been placed on a virtual network. The administrator doesn’t know about it, so it will not be patched and end up as a vulnerability on the network.

Answer 16

VM sprawl

Question 17

A company is building a new data center in Galway and is using ___________ to control access to the data center and using a ______ system to help provide availability of the computer systems and prevent them from _____________ and crashing.

Answer 17

Mantraps, HVAC, overheating

Question 17

____________ __________ is the cloud model that has more control, whereas _________________ as a Service is the cloud service that has most control as you have to install, ___________, and patch the operating system.

Answer 17

Private cloud, infrastructure, configure

Question 18

A company has moved the desktops in the customer services departments so that people walking past the outside windows cannot ___________ surf and has installed ________ ________ as an additional precaution.

Answer 18

Shoulder, screen filters

Question 19

__________ is the process of testing a new application with production _______. This can be carried out by using _____________ to isolate them from the corporate network.

Answer 19

Staging, data, sandboxing

Question 20

Using a master __________ to roll out desktop computers ensures that they have a consistent security __________.

Answer 20

Image, baseline

Question 21

Different occupations can be regulated by __________ ____________ frameworks. An example of this would be PCI DSS for __________ ______ handling.

Answer 21

Industry frameworks, credit card

Question 22

A high volume of web traffic can be controlled by using a ______ ___________, whereas a high volume of DDoS traffic can be controlled by using a ______ ___________ or a stateful ___________.

Answer 22

Load balancer, DDoS mitigator, firewall

Question 23

A ________ box penetration tester can use a technique called __________ to carry out dynamic analysis of the ________ of a newly created application so that any _______________ can be addressed.

Answer 23

White, fuzzing, code, vulnerabilities

Question 24

PowerShell is an example of infrastructure as _______ where automation is paramount.

Answer 24

Code

Question 25

To protect data at rest on a laptop, full disk encryption can be used. However, this will require a _____ chip to be built into the laptop’s motherboard.

Answer 25

TPM

Question 26

The IT director is writing a new policy for the use of a new system and the technical lead is designing technical controls for this system. What they are both participating in is called _________ __________.

Answer 26

Control diversity

Question 27

Using a mobile phone to provide internet access to a laptop is called ____________.

Answer 27

Tethering

Question 28

____________ ___________ is derived from legislation and ensures compliance.

Answer 28

Regulatory framework

Question 29

The cybersecurity incident response team has launched a new ____________ so that they can discover the new web-based attack methods being used.

Answer 29

Honeypot

Question 30

A __________ __ _______ model is where the security team uses multiple layers of protection so that if one layer fails, the _______ layer should prevent the attack.

Answer 30

Defence in depth, next

Question 31

In a BYOD environment, inserting an SD card to keep business data separate from your personal data is an example of ___________ _____________, also known as _________________.

Answer 31

Storage segmentation, containerization

Question 32

____-_____________ configuration can be used to roll back to a previous state, should any unforeseen problems occur. In a virtual environment, a __________ can be used.

Answer 32

Non-persistent, snapshot

Question 33

PGP uses a _____ __ _________, FDE uses a _________ _____ __ ________, and two separate ______ use a bridge of trust model, commonly known as a _______ _________.

Answer 33

Web of trust, hardware root of trust, CAs, trust model

Question 34

A company has leased a SaaS application for its sales team, but they have complained about the interface and want customization to be carried out. The IT director has informed the sales team that these proposed changes _________ be made.

Answer 34

Cannot

Question 35

RAID 5 uses ________ parity and can lose ______ disk, whereas RAID 6 uses _________ parity and can afford to lose ______ disks. RAID __ is more resilient.

Answer 35

Single, one, double, two, 6

Question 36

To secure a mobile phone, you should use ________ passwords, ________ ______, and full disk _____________.

Answer 36

Strong, screen locks, encryption

Question 37

Vendor-specific _________ are rolled out with each piece of equipment to show you how they should be set up.

Answer 37

Guides

Question 38

If a company wishes to move its bespoke applications to the cloud but still maintain them, it will adopt the cloud model ___________ as a Service.

Answer 38

Platform

Question 39

A refrigerator is an example of an _____ device, whereas a life support system is an example of ______.

Answer 39

IoT, SoC

Question 40

____________ is a development life cycle model that requires the whole stage to complete before we move on to the next stage. ________ can start multiple stages at one time and its aim is customer satisfaction. It is similar to scrum.

Answer 40

Waterfall, agile

Question 41

The ______ ______ protocol is used for voice traffic over IP networks and the secure version is called _______.

Answer 41

Real time, SRTP

Question 42

___________ as a Service can provide identity management using _______ tokens.

Answer 42

Security, SAML

Question 43

Should a SIEM system find a false __________ on a known ____________ operating system, it may be using ________ input filters.

Answer 43

Positive, hardened, wrong

Question 44

Kerberos authentication and SIEM systems are both reliant on ______
_______________.

Answer 44

Time synchronization

Question 45

To mitigate attacks on household IoT devices, ensure that the default _____________ ____ ___________ are changed ________________ and that they cannot ___________ access the internet.

Answer 45

Username and passwords, immediately, directly

Question 46

A cybersecurity response team can capture all of the traffic going to one port on a switch using a ______ _________ or _____.

Answer 46

Port mirror, tap

Question 47

Containers are __________ virtual machines, whereas containerization is __________ _______________ on a mobile device.

Answer 47

Isolated, storage segmentation

Question 48

A boundary layer between the LAN and the WAN.

Answer 48

DMZ

Question 49

Taking a list of applications on a laptop two months apart.

Answer 49

Baseline

Question 50

Prevents a SQL injection attack.

Answer 50

Stored procedure

Question 51

A control that helps you rekey an ID badge.

Answer 51

Administrative

Question 52

Testing an application with real data prior to going into production.

Answer 52

Staging

Question 53

Attack a virtual host from a guest virtual machine.

Answer 53

VM escape

Question 54

Type of switch that connects multiple switches together.

Answer 54

Aggregation

Question 55

Used to isolate applications for patching, isolation, or testing.

Answer 55

Sandboxing

Question 56

Wireless network for visitors or employees at lunchtime.

Answer 56

Guest

Question 57

The attack vector for visitors or employees.

Answer 57

Network interface

Question 58

A life support machine is an example of this.

Answer 58

SoC

Question 59

Leasing a software package on the cloud.

Answer 59

SaaS

Question 60

A control that mitigates risk.

Answer 60

Technical

Question 61

Putting an unmanaged VM onto a virtual network.

Answer 61

VM sprawl

Question 62

To prevent an attack on a home IoT device, turn off the…

Answer 62

Internet connection