Chapter 9

Question 1

What describes where multiple concurrent tasks can operate under a single process?

Answer 1

Multithreading

Question 2

What ring has the highest level of privilege and usually the kernel resides on this level.

Answer 2

Ring 0

Question 3

What ring deals with the various tasks, operations performed, processes switched and so forth.

Answer 3

Ring 1

Question 4

What ring deals with I/O drivers and system utilities resides and can access peripheral devices and other special files.

Answer 4

Ring 3

Question 5

What ring runs in user mode ?

Answer 5

Ring 3

Question 6

What rings run in supervisory/privilege mode ?

Answer 6

Ring 0-2

Question 7

What processing state represents when a process can resume or begin processing as soon as it is schedule for execution.

Answer 7

Ready

Question 8

What processing state represents when a process executes on a CPU and keeps going until it finishes, its time splice expires, or is blocked.

Answer 8

Running

Question 9

What processing state represents when a process is ready for continued execution but is waiting for I/O to be serviced before it can continue processing.

Answer 9

Waiting

Question 10

What processing state represents when a process must perform an action that requires privileges that are greater than the problem state’s set of privileges.

Answer 10

Supervisory

Question 11

What is the most common type of flash memory ?

Answer 11

NAND

Question 12

How many registers does a typical CPU have?

Answer 12

8 to 32

Question 13

When the CPU needs information from one of its registers to complete an operation, what does it use ?

Answer 13

Register Address

Question 14

What is not a memory addressing scheme but rather a way of referring to data that is supplied to the CPU as part of its instruction.

Answer 14

Immediate Addressing

Question 15

What is more flexible than immediate addressing?

Answer 15

Direct Addressing

Question 16

What describes where the CPU is provided with an actual address of the memory location to access ?

Answer 16

Direct Addressing

Question 17

What uses a scheme similar to direct addressing?

Answer 17

Indirect Addressing

Question 18

What describes where the CPU reads one address and is then given the actual address where the data resides.

Answer 18

Indirect Addressing

Question 19

What uses a value stored in one of the CPUs’s registers or pointers as the base location from which to begin counting.

Answer 19

Base+Offset Addressing

Question 20

What is the most common type of virtual memory ?

Answer 20

Pagefile/Swapfile

Question 21

What contains data previously stored in real memory but not recently used ?

Answer 21

Pagefile/Swapfile

Question 22

What is a special type of secondary memory that is used to expand the addressable space of real memory?

Answer 22

Virtual Memory

Question 23

What term is commonly used to refer to magnetic, optical, or flash based media or other storage devices?

Answer 23

Secondary Storage

Question 24

What is the primary drawback with virtual memory ?

Answer 24

Paging operations that occur between primary and secondary memory is slow

Question 25

What is a common sequential storage device ?

Answer 25

Magnetic Tape Drive

Question 26

What attack freezes memory chips to delay the decay of resident data when the system is turned off.

Answer 26

Cold Boot Attack

Question 27

What is an effective safeguard against emanation attacks ?

Answer 27

TEMPEST

Question 28

What describes a box, mobile room, or entire building designed with external metal skin that surround the outside.

Answer 28

Faraday Cage

Question 29

What is a TEMPEST countermeasure that implements both a faraday cage and white noise to protect a specific area.

Answer 29

Control Zone

Question 30

What are all the techniques that can protect against emanation?

Answer 30

Shielding, TEMPEST countermeasures, and antenna management

Question 31

What replaced BIOS?

Answer 31

UEFI

Question 32

What provides support for larger hard drives, faster boot times, enhanced security features, and use a mouse during BIOS changes.

Answer 32

UEFI

Question 33

What describes the implementation of a malicious variation of official BIOS or firmware is installed?

Answer 33

Phlashing

Question 34

What ensures that only drivers and OSs that are pre approved by digital certificate is installed?

Answer 34

Boot Attestation/Secure Boot

Question 35

What protects against rootkits and backdoors when the system is booting ?

Answer 35

Boot Attestation/Secure Boot

Question 36

What is an optional feature of UEFI that takes a hash calculation of every element involved in the booting process?

Answer 36

Measured Boot

Question 37

What prohibits JavaScript code from accessing content from another origin?

Answer 37

Same-Origin Policy

Question 38

What are some ways to protect your website from JavaScript exploitation?

Answer 38

Keep browsers updated (client-side) Implement JavaScript subsets (ADsafe, Caja, Secure ECMAScript) (server-side) Use a content security policy

Question 39

What attempts to enforce same-origin restrictions for most browser side active technologies.

Answer 39

CSP

Question 40

What are some browser helper objects and extensions that help reduce JavaScript exploitation?

Answer 40

Firefox NoScript Edge and Chrome UBlock

Question 41

What describes where processors share not only a common OS, but also a common data bus and memory resources.

Answer 41

SMP

Question 42

What describes where processors operate independently and have their own OS, data bus, and memory resources.

Answer 42

AMP

Question 43

What describes where numerous AMP systems are linked together to complete one task?

Answer 43

MPP

Question 44

What is similar to grid computing but has no central management system and services are done in real time.

Answer 44

Peer to peer

Question 45

What are some security concerns with peer to peer computing?

Answer 45

Pirating copyright materials Eavesdropping on distributed content Lack of central control/oversight All services being consumed at once

Question 46

What are some industrial control systems?

Answer 46

DCS PLC SCADA

Question 47

What Industrial control system focuses on processes and is state driven?

Answer 47

DCS

Question 48

What industrial control system focuses on data-gathering and is event driven?

Answer 48

SCADA

Question 49

Which industrial control system is suitable for managing systems over large geographic areas?

Answer 49

SCADA

Question 50

What industrial control system is more suitable for large scale environments in a single location?

Answer 50

DCS

Question 51

What are some common security controls for DCS, PLC, and SCADA systems?

Answer 51

Isolating networks Limiting access logically and physically Code restrictions Logging activity

Question 52

What are some common DCE IDLs?

Answer 52

RPC CORBA DCOM

Question 53

What are some security concerns with DCEs?

Answer 53

Interconnectedness of components Access by unauthorized users Masquerading, impersonation, or spoofing attacks Security control bypass or disablement Communication eavesdropping Insufficient authentication Lack of monitoring, logging, and auditing Accountability issues

Question 54

What are two ways to secure DCEs?

Answer 54

Encryption Strong multi factor authentication

Question 55

What happens when a service is running on insufficient resources, has an unforeseen traffic spike, or when supporting systems fail.

Answer 55

Benign DoS

Question 56

When is a hard-real time solution for RTOS used?

Answer 56

Mission Critical Operations

Question 57

When is a soft real-time solution for RTOS used ?

Answer 57

Consumer electronics

Question 58

What type of RTOS system will switch between operations or tasks based on pre assigned priorities?

Answer 58

Event-driven RTOS

Question 59

What type of RTOS system will switch between operations or tasks based on clock interruptions or specific time intervals.

Answer 59

Time-sharing RTOS

Question 60

What are some security concerns with RTOS?

Answer 60

Use of custom code that could include bugs or flaws May process bogus datasets or requests by malware

Question 61

What are ways to secure RTOS systems?

Answer 61

Isolation Communication monitoring

Question 62

What are some ways to secure IoT devices ?

Answer 62

Deploy a separate network Keeping systems patched Limiting physical and logical access Monitoring all activity Implementing firewalls and filtering

Question 63

What are some examples of microcontrollers?

Answer 63

Raspberry Pi Arduino FPGA

Question 64

What describes the use of classification labels on data and packets?

Answer 64

Logical Isolation

Question 65

What describes the implementation of network segmentation or air gaps between networks of different security levels ?

Answer 65

Physical Isolation

Question 66

What occurs when an org deploys numerous VMs without an overarching IT management or security plan in place?

Answer 66

VM sprawl

Question 67

How can you prevent/avoid a VM sprawl?

Answer 67

Establishing a policy for developing and deploying VMs

Question 68

When occurs when software within a guest OS is able to breach isolation protection provided by the hypervisor to violate the container of other guest OSs?

Answer 68

VM Escape

Question 69

What are some ways to stop/mitigate VM escape ?

Answer 69

Keep sensitive systems and data on separate physical machines Keep all hypervisor softwares current with vendor patches Monitor attack, exposure, and abuse indexes

Question 70

What was intended to replace MDM and EMM and is a single management platform to support mobile devices, IoT, PC, wearables, and ICS.

Answer 70

UEM

Question 71

What prevents any and all software including malware from execution unless they’re on the pre approved list?

Answer 71

Application Allow Listing / Whitelisting

Question 72

What is the activity of of installing an app on a device by bringing the installer file to the device through a file transfer or USB?

Answer 72

Side loading

Question 73

What can prevent side loading ?

Answer 73

Enforcing all apps to be digitally signed

Question 74

What conveys information by altering the performance of a system in a predictable manner?

Answer 74

Covert Timing Channel

Question 75

What conveys information by writing data to a common storage area where another process can read it ?

Answer 75

Covert Storage Channel

Question 76

What malware can hid from detection, and prevent its files and processes from being viewed?

Answer 76

Rootkit

Question 77

What are two forms of incremental attacks ?

Answer 77

Salami Data Diddling

Question 78

What happens when an attacker gains access to a sys and makes small incremental changes to data during storage, processing input, and output ?

Answer 78

Data Diddling

Question 79

What are ways to protect against data diddling ?

Answer 79

Encrypting file systems File Monitoring integrity checking

Question 80

What attack represents where an attacker slowly steals away at assets or other records of financial value?

Answer 80

Salami

Question 81

What are ways to protect against salami attacks ?

Answer 81

Separation of duties Proper employee education Control over code

Question 82

What describes the change in how hardware management is viewed as another collection to be managed the same way software is managed.

Answer 82

IaC

Question 83

What is a framework to automate the processes of network monitoring and response?

Answer 83

SDV

Question 84

What is the concept of replacing physical elements with solutions provided virtually by a third party provider.

Answer 84

SDDC / VDC