CHAPTER 7: Windows 7 Security Features

Question 1

A collection of settings, such as lockout duration, that control account lockouts.

Answer 1

account lockout policy

Question 2

An XML fi le that describes the structure of an application, including required DLL fi les and privilege requirements.

Answer 2

application manifest

Question 3

A new feature in Windows 7 that is used to defi ne which programs are allowed to run. This is a replacement for the software restriction policies found in Windows XP and Windows Vista.

Answer 3

AppLocker

Question 4

An encryption algorithm that uses two keys to encrypt and decrypt data. Data encrypted with one key is decrypted by the other key.

Answer 4

asymmetric encryption algorithm

Question 5

The settings that defi ne which operating system events are audited.

Answer 5

audit policy

Question 6

The security process that records the occurrence of specifi c operating system events in the Security log.

Answer 6

auditing

Question 7

A feature in Windows 7 that can encrypt the operating system partition of a hard drive and protect system fi les from modifi cation. Other partitions can also be encrypted.

Answer 7

BitLocker Drive Encryption

Question 8

A new feature in Windows 7 that allows you to encrypt removable storage.

Answer 8

BitLocker To Go

Question 9

An encryption technology for individual fi les and folders that can be enabled by users

Answer 9

Encrypting File System (EFS)

Question 10

The key used to encrypt the VMK when BitLocker Drive Encryption is enabled.

Answer 10

Full Volume Encryption Key (FVEK)

Question 11

A one-way encryption algorithm that creates a unique identifi er that can be used to determine whether data has been changed.

Answer 11

hash encryption algorithm

Question 12

A set of security confi guration options in Windows 7. These options are used to control user rights, auditing, password settings, and more.

Answer 12

local security policy

Question 13

Malicious software designed to perform unauthorized acts on your computer. Malware includes viruses, worms, and spyware.

Answer 13

malware

Question 14

Free antivirus software that is available if your copy of Windows 7 is genuine.

Answer 14

Microsoft Security Essentials

Question 15

A computer authorization system for networks that prevents unhealthy computers from accessing the network.

Answer 15

Network Access Protection (NAP)

Question 16

A collection of settings to control password characteristics such as length and complexity

Answer 16

password policy

Question 17

A command-line tool that is used to apply, export, or analyze security templates.

Answer 17

Secedit

Question 18

An MMC snap-in that is used to apply, export, or analyze security templates.

Answer 18

Security Configuration and Analysis tool

Question 19

An .inf fi le that contains security settings that can be applied to a computer or analyzed against a computer?s existing confi guration.

Answer 19

security template

Question 20

An encryption algorithm that uses the same key to encrypt and decrypt data.

Answer 20

symmetric encryption algorithm

Question 21

A motherboard module that is used to store encryption keys and certifi cates.

Answer 21

Trusted Platform Module (TPM)

Question 22

A feature in Windows 7 that elevates user privileges only when required.

Answer 22

User Account Control (UAC)

Question 23

The key used to encrypt hard drive data when BitLocker Drive Encryption is enabled.

Answer 23

Volume Master Key (VMK)

Question 24

Anti-spyware software included with Windows 7.

Answer 24

Windows Defender

Question 25

A service that collects and distributes patches to Windows workstations by using the automatic updates process.

Answer 25

Windows Server Update Services (WSUS)