Comptia App

Question 1

/etc/shadow file for Linux

Answer 1

Contain passwords and is a popular target for brute force attacks

Question 2

Air Gap

Answer 2

Physical Separation that will require manual transport of files, patches, and other data between 2 environments. Security measure that involves physically isolating a computer or network and preventing it from establishing an external connection

Question 3

Audio Steganography

Answer 3

Hiding a secret messages/data into an audio file

Question 4

Bytes/Bits

Answer 4

Used in traditional data exchanges

Question 5

CASB

Answer 5

Cloud Access Security Broker
Software tool/service. Acts as a gatekeeper allowing the organization to extend the reach of their security policies into the cloud

Question 6

CER

Answer 6

Cross Error Rate – The point where FAR & the FRR cross over. Provides a means of comparing biometric systems based on efficiently…Lower CER = More desirable

Question 7

Cryptographic Hashes

Answer 7

Used for integrity checking of files, network packets, and a variety of other applications

Question 8

CSRF/XSRF (A.K.A.- Session Riding, Sea Surf)

Answer 8

Cross Site Request Forgery – takes advantage of the cookies and URL parameters legitimate sites used to help track serve their visitors. Tricks a web browser into executing an unwanted action in an application to which a user is logged in

Question 9

DHCP

Answer 9

Dynamic Host Configuration Protocol
Sniffing or snooping can be enabled to prevent rouge DHCP servers as well as malicious DHCP traffic

Used to automatically assign an Internet Protocol (IP) address to any device on a network so they can communicate using IP

Assigns IP address to your laptop, phone, iPad etc. And when your use Wi-Fi at home the router is a DHCP server

Port 67 (server destination) 68 (client)

https://bluecatnetworks.com/glossary/what-is-dhcp/

Question 10

DMZ

Answer 10

Demilitarized Zone – Perimeter network that protects an organization’s internal local area network (LAN) from untrusted traffic

Question 11

ECC

Answer 11

Elliptic Curve Cryptography – key-based technique for encrypting data. Small key size but is still very secure
Used a lot in mobile devices. Asymmetric

Question 12

Extranet

Answer 12

Private networks that allow access to partners or customers but not to the general public

Question 13

FAR

Answer 13

False Acceptance Rate

Question 14

Faraday Cage

Answer 14

Placed around an area or device to block electromagnetic signals (EMI – Electromagnetic interference)

Question 15

Fileless Virus

Answer 15

Type of malicious activity that uses native, legitimate tools built into a system to execute an attack. Uses legitimate programs (PowerShell) to infect a computer

Question 16

FRR

Answer 16

False Rejection Rate

Question 17

HSM

Answer 17

Hardware Security Model - Physical device that acts as a secure crypto processor during the decryption process.

Tamper resistant hardware devices that secure cryptographic processes by generating, protecting, and managing keys used for encrypting and decrypting data and creating digital signatures and certificates

Cryptoprocessor - carries out cryptographic operations

Question 18

IaaS

Answer 18

Infrastructure as a Service – Provides essential compute, storage, and networking resources on demand.

Provides virtualized computing resources over the internet

Enables a consumer to outsource computing equipment purchases and running their own data center

Question 19

Intranet

Answer 19

Internal service. Part of a network or website only accessible to individuals and systems inside of specific company

Question 20

LDAP

Answer 20

Lightweight Directory Access Protocol

Protocol that facilitates directory creation, maintenance, and authentication

Open, vendor-neutral application protocol for accessing and maintaining that data

Client/server protocol used to access and manage directory information

Network repositories of network configuration information such as user accounts, groups…can use the TLS network security protocol.

Port 389…
Port 636 TLS/SSL…Provides encryption by default on this port (LDAPS)

Question 21

MSSP

Answer 21

Managed Security Service Provider – Outside company that handles security tasks

Provides SECurity as a Service (SECaaS)

Question 22

Network Load Balancers

Answer 22

Network Load Balancers
Distributes traffic among systems. Distributes network traffic across multiple WAN links, virtual machines, or servers to avoid overloading any single host without using complex routing protocols. Can also help monitor system performance, report on issues, and assure loads match the capabilities system

Question 23

PaaS

Answer 23

Platform as a Service – Cloud computing where the hardware and software platform is provided by a third party

Enables consumers to rent fully configured systems that are set up for specific purpose

Question 24

Private Cloud

Answer 24

On-Premises cloud computing

Question 25

Protected Cable Distribution

Answer 25

Wire line or fiber optic system that includes safeguards and countermeasures (e.g., acoustic, electric, electromagnetic, and physical) to permit its use for the transmission of unencrypted information through an area of lesser classification or control

Question 26

Qualitative Risk Assessment

Answer 26

Subjective and requires expertise on systems and infrastructure. Cheaper and faster

Question 27

Quantitative Risk Analysis

Answer 27

Requires detailed financial data, complex calculations and is time consuming.

Uses ALE (annual loss expectancy) values to prioritize risks

Question 28

Qubits

Answer 28

Encryption keys used for quantum key distribution are sent in the form of qubits

Question 29

RADIUS

Answer 29

Remote Authentication Dial-In User Service – Provides AAA…802.1x. Centralized authentication

Port 1645/1646 & 1812/1813 (Authentication & Authorization = 1645/1812, Accounting = 1646/1813)

Centralized network authentication server that can be used for network access control (NAC)

Provides centralized authentication services for devices such as Ethernet switches and wireless routers

Question 30

SAN Replication

Answer 30

Storage Area Network Replication
Copies the contents of one repository to another repository such as an organization’s central SAN environment to a remote SAN at the hardware or block level

Question 31

SDN

Answer 31

Software Defined Network - Usually integrated with your virtualization infrastructure. Enables you to deploy and manage virtual switches, routers, and firewalls virtually, through software

Question 32

SaaS

Answer 32

Software as a Service – Supplies a particular application

Question 33

SQL Injection

Answer 33

Exploits vulnerability in the code of websites and web apps that allows attackers to hijack back-end processes and access, extract, and delete confidential info from databases….1=1

Question 34

Stateful firewall/Dynamic packet filtering

Answer 34

Inspects traffic based on context or state of ALL traffic. Defends based on traffic patterns and flows

Question 35

Stateless firewall

Answer 35

Focuses on individual packets, using preset rules to filter traffic. Looks at every packet individually

Question 36

UAV

Answer 36

Unmanned Aerial Vehicles (Drones)

Question 37

VM Sprawl

Answer 37

Virtual Machine Sprawl – When network has more virtual machines than staff can manage

Question 38

Windows SAM

Answer 38

Windows Security Account Manager - Contain passwords and is a popular target for brute force attacks

Question 39

XSS

Answer 39

Cross Site Scripting – malicious scripts are injected into otherwise benign and trusted websites