Chapter 4 Difficult Concepts

Question 1

Bluejacking

Answer 1

sending prank unsolicited messages

Question 2

Bluesnarfing

Answer 2

unauthorized access to steal information like contacts, call logs etc on a device

Question 3

blue bugging

Answer 3

attackers gain full control of a device

Question 4

bluesmack

Answer 4

dos

Question 5

blueborne

Answer 5

spread through theair to infect devices

Question 6

enhanced open

Answer 6

aka opportunistic wireless encryption
provides individualized data encryption even in open networks
protects people in open wifi scenario
used by wpa3

Question 7

SAE

Answer 7

A
simultaneous authentication of equals
replaces the 4 way handshake with a diffie hellman key
protects against offline dictionary attacks

Question 8

Management Frame protection

Answer 8

ensures integrity of network management traffic
prevents eavesdropping, forging and tampering with management frames
used by wpa3

Question 9

RADIUS

Answer 9

remote authentication dial in user service
offers authentication, authorization and accounting services
widely used for secure access to network resources

Question 10

EAP

Answer 10

extensible authentication protocol
authentication frameowkr supporting multiple method

Question 11

EAP FAST

Answer 11

T (Extensible Authentication Protocol-Flexible Authentication via Secure
Tunneling)
● Developed by Cisco Systems for secure re-authentication

Question 12

Data Owner

Answer 12

a senior exec who labels info assets

Question 13

Data Controller

Answer 13

entity responsibly for storage,
collection and usage

Question 14

Data Processor

Answer 14

a group or individual hired by the data controller to assit with tasks like data collection and processing

Question 15

Data Custodian

Answer 15

manages systems where data is stored
, enforces encryption, access controls
etc

Question 16

Data Steward

Answer 16

A
focuses on data quality and metadata ensuring data is appropriately labeled and classifie

Question 17

Certification

Answer 17

acts as proof data was properly disposed of

Question 18

Degaussing

Answer 18

:
renders storage medium useless
uses magnetic fields to destroy storag

Question 19

storage erase

Answer 19

implemented in firmware
of storage devices, now deprecated in favor
of cryptographic erase

Question 20

NIST Special Publicaion 800-88

Answer 20

guidelines for media sanitization

Question 21

Threat intelligence feeds

Answer 21

collected and disseminated by security researchers

Question 22

EF

Answer 22

exposure factor A quantifiable metric to estimate the percentage of asset damageR

Question 23

OpenVAS and Nessus

Answer 23

vulnerability scanning tool

Question 24

SNMP/SNMP Manager Agent and Message Types

Answer 24

A
Simple Network Management Protocol (SNMP)
An Internet protocol used for collecting information from managed devices on IP
networks and modifying device behavior
Managed devices include the following
● Routers
● Switches
● Firewalls
● Printers
● Servers
● Client device

Question 25

TRAP Granular

Answer 25

Sent TRAP messages get a unique object identifier OID) to
distinguish each message as a unique message being
received

Question 26

OID

Answer 26

Unique object identifier used to identify variables
for reading or setting via SNMP
● Allows the manager to distinguish individual SNMP
trap messages

Question 27

MIB

Answer 27

A
management info base
A hierarchical namespace containing OIDs and their
descriptions
● Describes the structure of device subsystem
management data
● Stores consolidated information received through
SNMP trap

Question 28

Verbose TRAP

Answer 28

SNMP traps may be configured to contain all of the information about a given alert or event as a payload

Question 29

oval

Answer 29

An SCAP language

Question 30

ARF

Question 31

XCCD

Question 32

CCE

Question 33

CPE

Question 34

syslog

Question 35

netflox

Question 36

sflow

Question 37

ipfix

Question 38

MD5/SHA256 Checksum