Confidentiality

Question 1

Technology that supports confidentiality

Answer 1

Firewall, encryption

Question 2

DES

Answer 2

Data Encryption Standard

Symmetric, Weak, 56-bit key

Question 3

3DES

Answer 3

Tripe DES

Symmetric, Strong, three 56-bit (168-bit) keys

Question 4

AES

Answer 4

Advanced Encryption Standard

Symmetric, Preferred, 128/192/256-bit key options

Question 5

Symmetric Encryption

Answer 5

Same key used by sender and receiver. Faster than asymmetric encryption

Question 6

Asymmetric Encryption

Answer 6

Better security/slower than symmetric encryption. Not used for large quantities of real-time data.

Question 7

RSA

Answer 7

Invented by Rivest, Shami, and Adleman

Assymmetric, used with PKI

Question 8

PKI

Answer 8

Public Key Infrastructure

uses digital certificates and CA

Question 9

CA

Answer 9

Certificate Authority

Question 10

Packet Capture

Answer 10

Packets captured using NIC placed in promiscuous mode. Protocols that send plan text are vulnerable (Telnet, HTTP)

Question 11

Ping sweep / port scan

Answer 11

Reconnaissance Attacks Ping sweep finds network resources that are reachable. Range of ports scanned to find which services are available.

Question 12

Dumpster Diving

Answer 12

Rummaging through dumpsters to find confidential information that wasn’t properly shredded

Question 13

EMI

Answer 13

Electromagnetic Interference
Attackers intercept EMI emissions (emanations).
Tempest rooms keep emanations contained.

Question 14

Wiretapping

Answer 14

Eavesdropping on a physical cable

Question 15

MitM

Answer 15

Man-in-the-Middle

Attacker in between two devices communicating. Used with spoofing.

Question 16

Social Engineering

Answer 16

Social techniques used to get information.