Chapter 9 Flashcards
Which of the following is NOT a reason why supply chain infections are considered especially dangerous?
If the malware is planted in the ROM firmware of the device this can make it difficult or sometimes even impossible to clean an infected device.
Users are receiving infected devices at the point of purchase and are completely unaware that a brand new device may be infected.
It is virtually impossible to closely monitor every step in the supply chain.
Supply chains take advantage of the trusted “chain of trust” concept.
If the malware is planted in the ROM firmware of the device this can make it difficult or sometimes even impossible to clean an infected device.
Which type of operating system runs on a firewall, router, or switch?
Server OS
Network OS
Device OS
Resource OS
Network OS
Which of the following is NOT designed to prevent individuals from entering sensitive areas but instead is intended to direct traffic flow?
Barricade
Fencing
Roller barrier
Type V controls
Barricade
Which of the following is NOT a motion detection method?
Magnetism
Radio frequency
Moisture
Infrared
Moisture
Which type of residential lock is most often used for keeping out intruders?
Encrypted key lock
Keyed entry lock
Privacy lock
Passage lock
Encrypted key lock
Which of these is a list of approved email senders?
Blacklist
Whitelist
Bluelist
Yellowlist
Whitelist
Which of the following is NOT a typical OS security configuration?
Employing least functionality
Restricting patch management
Disabling default accounts/passwords
Disabling unnecessary ports and services
Restricting patch management
Which of the following is NOT a characteristic of an alarmed carrier PDS?
Requires periodic visual inspections
Uses continuous monitoring
Carrier can be hidden above the ceiling
Eliminates the need to seal connections
Requires periodic visual inspections
Which stage is a “quality assurance” test that verifies the code functions as intended?
Production stage
Testing stage
Staging stage
Development stage
Staging stage
Which model uses a sequential design process?
Waterfall model
Rigid model
Agile model
Secure model
Waterfall model
What allows for a single configuration to be set and then deployed to many or all users?
Snap-In Replication (SIR)
Active Directory
Group Policy
Command Configuration
Group Policy
Which of the following is a cumulative package of all patches?
Rollup
Service pack
Patch
Hotfix
Service pack
Which of the following is NOT an advantage to an automated patch update service?
Administrators can approve or decline updates for client systems, force updates to install by a specific date, and obtain reports on what updates each computer needs.
Downloading patches from a local server instead of using the vendor’s online update service can save bandwidth and time because each computer does not have to connect to an external server.
Users can disable or circumvent updates just as they can if their computer is configured to use the vendor’s online update service.
Specific types of updates that the organization does not test, such as hotfixes, can be automatically installed whenever they become available.
Users can disable or circumvent updates just as they can if their computer is configured to use the vendor’s online update service. (?)
How can an SDIO card be made secure?
Using the security mechanisms on a standard Wi-Fi network.
Turning on patch updates to the SDIO card.
Requiring a username before accessing the SDIO card.
SDIO cards are natively secure and no security settings are needed.
Using the security mechanisms on a standard Wi-Fi network.
How does heuristic detection detect a virus?
A virtualized environment is created and the code is executed in it.
A string of bytes from the virus is compared against the suspected file.
The bytes of a virus are placed in different “piles” and then used to create a profile.
The virus signature file is placed in a suspended chamber before streaming to the CPU.
A virtualized environment is created and the code is executed in it.
