CISA Refresher 1

Question 1

It is possible to break LAN security through the dail in route. Without dail up access controls, a caller can dial in and try passwords until they gain acces

Answer 1

TRUE

Question 2

A dial back modem may be used to prevent access by guessing passwords.

Answer 2

TRUE

Question 3

Twin line dial back modems

Answer 3

Dial back modems are available that are connected to two individual telephones. one is used for incoming calls and the second is used to call back the user on the known telephone number.

Question 4

Router packet filtering firewalls

Answer 4

Packet header have information in them, including the IP address of the sender and receiver and the authorized port numbers allowed to use the information transmitted. Base onthat information the router know what kind of internet service, such as web based or FTP, is being used to send the date as well as the identitied of the sender and reciver of the data.

Question 5

Possible attacks in packet filtering firewalls

Answer 5

IP spoofing, Source routing specification and miniature fragment attack.

Question 6

Application firewall systems

Answer 6

Disadvantages are poor performance and scalability as internet usage grows

Question 7

Stateful inspection firewall

Answer 7

It keeps track of the destination IP address of each packet that leaves the organizations internal network. whenever the response to the packet is received its record is referenced to ascertain and ensure that the incoming message is in response to the request that went out from the organization.

Question 8

problem faced firewall

Answer 8

Most firewalls operate at network layer, therefore they do not stop any application base or input based attack

Question 9

example of such attacks in application layer

Answer 9

SQL injection, buffer overflow attacks.

Question 10

components of IDS

Answer 10

Sensors that are responsible for collecting data, Analyzer that receive input from sensors and determine intrusive activity, An administrative control, A user interface

Question 11

Types of IDS

Answer 11

Signature based, statistical based, and Neural based

Question 12

Neural based IDS

Answer 12

are similar to statistical model but with added self learning functionality

Question 13

IDS cannot help following weakness

Answer 13

weakness in policy definition, application level vulnerabilities, back door in the applications, weakness in identification and athentication schemes

Question 14

Two types of Honey pots

Answer 14

High interactionn , Low interaction

Question 15

Heuristic scanning tools

Answer 15

are a type of virus scanning used to indicate possible infected codes

Question 16

what is the most prevalent security risk when an organisation implements remote VPN access to its network

Answer 16

Malicious code could be spread across the network

Question 17

Establishing controls to handle concurrent access problems is a preventive control

Answer 17

TRUE

Question 18

Implementing data backup and recovery procedure is a corrective control, because backup and recovery procedure can be used to rollback database errors

Answer 18

TRUE

Question 19

An ITF is considered a useful audit tool because it uses the same programs to compare processing using independently calculated data

Answer 19

TRUE

Question 20

A benefit of open system architecture is that it

Answer 20

facilitates interoperatability

Question 21

Open system are those for which suppliers provied components whose interfaces aer defined by public standards, thus facilitating interoperability between systems made by different vendors

Answer 21

TRUE

Question 22

Prototyping is the development of a system through controlled trial and error

Answer 22

TRUE

Question 23

when using public key encryption to secure data being transmitted across a network

Answer 23

the key use to encrypt is public, but the key used to deycrypt the data is private

Question 24

symmetric key systems use single, secret, bidirectional keys

Answer 24

TRUE

Question 25

In asymetric encryption process, two keys ork together as pair. One key is ued to encrypt data and other is used to decrypt data. Either key can be used to encrypt or decrypt but once the key has been used to encrypt data, only its partner can be used to decrypt the data

Answer 25

TRUE

Question 26

If asymmetric keys were used to encrypt bulk data

Answer 26

the proces would be very slow, this is the reason they are used to encrypt short messages such as digest or signatures

Question 27

A common form of asymmetric encryption is RSA

Answer 27

TRUE

Question 28

common type of message digest algorithms are SHA1, MD2, MD4 and MD5

Answer 28

There algorithms are one way functions unlike private and public key encryption algoritms. This process of creating message digest cannot be reversed

Question 29

digital signature is a cryptographic method that ensures

Answer 29

Data integrity, Authentication and Non repudiation

Question 30

digital signatures and public\ Key encryption are vulnerable to man in the middle attacks wherein the senders digital signature private key and public key may be faked

Answer 30

TRUE

Question 31

To protect against Man in the middle attacks and independent authority has been designed

Answer 31

TRUE