Connect and Protect: Networks and Network Security Flashcards
Bandwidth
The maximum data transmission capacity over a network, measured by bits per second.
Cloud computing
The practice of using remote servers, application, and network services that are hosted on the internet instead of on local physical devices.
Cloud network
A collection of servers or computers that stores resources and data in remote data centers that can be accessed via the internet.
Data packet
A basic unit of information that travels from one device to another within a network.
Hub
A network device that broadcasts information to every device on the network.
Internet Protocol (IP)
A set of standards used for routing and addressing data packets as they travel between devices on a network.
Internet Protocol (IP) address
A unique string of characters that identifies the location of a device on the internet.
Local Area Network (LAN)
A network that spans small areas like an office building, a school, or a home.
Media Access Control (MAC) address
A unique alphanumeric identifier that is assigned to each physical device on a network.
Modem
A device that connects your router to the internet and brings internet access to the LAN.
Network
A group of connected devices.
Open systems interconnection (OSI) model
A standardized concept that describes the seven layers computers use to communicate and send data over the network.
Packet sniffing
The practice of capturing and inspecting data packets across a network.
Port
A software-based location that organizes the sending and receiving of data between devices on a network.
Router
A network device that connects multiple networks together.
Speed
The rate at which a device sends and receives data, measured by bits per second.
Switch
A device that makes connections between specific devices on a network by sending and receiving data between them.
TCP/IP model
A framework used to visualize how data is organized and transmitted across a network.
Transmission Control Protocol (TCP)
An internet communication protocol that allows two devices to form a connection and stream data.
User Datagram Protocol (UDP)
A connectionless protocol that does not establish a connection between devices before transmissions.
Wide Area Network (WAN)
A network that spans a large geographic area like a city, state, or country.
Internet protocol
What does IP stand for?
What does LAN stand for?
Local Area Network
What does MAC stand for?
Media Access Control
What does OSI stand for?
Open Systems Interconnection
What does TCP stand for?
Transmission Control Protocol
What does UDP stand for?
User Datagram Protocol
What does WAN stand for?
Wide Area Network
Firewall
A network security device that monitors traffic to or from your network.
What do servers provide?
They provide information and services for devices like computers, smart home devices, and smartphones on the network.
Wireless access point
Sends and receives digital signals over radio waves creating a wireless network.
Network diagrams
Maps that show the devices on the network and how they connect.
What are the 3 services that CSPs provide?
Software as a service (SaaS), Infrastructure as a service (IaaS), and Platform as a service (PaaS)
Software as a service (SaaS)
Refers to software suites operated by the CSP that a company can use remotely without hosting the software.
Infrastructure as a service (IaaS)
Refers to the use of virtual computer components offered by the CSP.
Platform as a service (PaaS)
Refers to tools that application developers can use to design custom applications for their company.
What are the 4 layers of the TCP/IP models?
Network Access, Transport, Internet, and Application layers.
What are the 7 layers of the OSI model?
Physical, Data Link, Network, Transport, Session, Presentation, and Application layers
Address Resolution Protocol (ARP)
A network protocol used to determine the MAC address of the next router or device on the path.
Cloud-based firewalls
Software firewalls that are hosted by the cloud service provider.
Controlled zone
A subnet that protects the internal network from the uncontrolled zone.
Domain Name System (DNS)
A networking protocol that translates internet domain names into IP addresses.
Encapsulation
A process performed by a VPN service that protects your data by wrapping sensitive data in other data packets.
Firewall
A network security device that monitors traffic to or from your network.
Forward proxy server
A server that regulates and restricts a person’s access to the internet.
Hypertext Transfer Protocol (HTTP)
An application layer protocol that provides a method of communication between clients and website servers.
Hypertext Transfer Protocol Secure (HTTPS)
A network protocol that provides a secure method of communication between clients and servers.
IEEE 802.11 (Wi-Fi)
A set of standards that define communication for wireless LANs.
Network protocols
A set of rules used by two or more devices on a network to describe the order of delivery of data and the structure of data.
Network segmentation
A set of rules used by two or more devices on a network to describe the order of delivery of data and the structure of data.
Port filtering
A firewall function that blocks or allows certain port numbers to limit unwanted communication.
Proxy server
A server that fulfills the requests of its clients by forwarding them to other servers.
Reverse proxy server
A server that regulates and restricts the internet’s access to an internal server.
Secure File Transfer Protocol (SFTP)
A secure protocol used to transfer files from one device to another over a network.
Secure shell (SSH)
A security protocol used to create a shell with a remote system.
Security zone
A segment of a company’s network that protects the internal network from the internet.
Simple Network Management Protocol (SNMP)
A network protocol used for monitoring and managing devices on a network.
Stateful
A class of firewall that keeps track of information passing through it and proactively filters out threats.
Stateless
A class of firewall that operates based on predefined rules and does not keep track of information from data packets.
Subnetting
The subdivision of a network into logical groups called subnets.
Transmission Control Protocol (TCP)
An internet communication protocol that allows two devices to form a connection and stream data.
Uncontrolled zone
The portion of the network outside the organization.
Virtual private network (VPN)
A network security service that changes your public IP address and masks your virtual location so that you can keep your data private when you are using a public network like the internet.
User Datagram Protocol (UDP)
A connectionless protocol that does not establish a connection between devices before a transmission.
Internet Control Message Protocol (ICMP)
An internet protocol used by devices to tell each other about data transmission errors across the network.
What does ARP stand for?
Address Resolution Protocol
What does DNS stand for?
Domain Name System
What does HTTP and HTTPS stand for?
Hypertext Transfer Protocol and Hypertext Transfer Protocol Secure
What does SFTP stand for?
Secure File Transfer Protocol
What does SNMP stand for?
Simple Network Management Protocol
What does TCP stand for?
Transmission Control Protocol
What does VPN stand for?
Virtual private network
What does WPA stand for?
Wi-Fi Protected Access
What does UDP stand for?
User Datagram Protocol
What does ICMP stand for?
Internet Control Message Protocol
Baseline configuration (baseline image)
A documented set of specifications within a system that is used as a basis for future builds, releases, and updates.
Hardware
The physical components of a computer.
Multi-factor authentication (MFA)
A security measure which requires a user to verify their identity in two or more ways to access a system or network.
Network log analysis
The process of examining network logs to identify events of interest.
Patch update
A software and operating system update that addresses security vulnerabilities within a program or product.
Operating system (OS)
The interface between computer hardware and the user.
Penetration testing (pen test)
A simulated attack that helps identify vulnerabilities in systems, networks, websites, applications, and processes.
World-writable file
A file that can be altered by anyone in the world.
Security hardening
The process of strengthening a system to reduce its vulnerabilities and attack surface.
Brute force attack
A trial-and-error process of discovering private information.
What are the 2 types of brute force attacks?
Simple brute force attacks and Dictionary attacks
Simple brute force attacks
When attackers try to guess a user’s login credentials. They might do this by entering any combination of usernames and passwords that they can think of until they find the one that works.
Dictionary attacks
When attackers use a list of commonly used passwords and stolen credentials from previous breaches to access a system. These are called “dictionary” attacks because attackers originally used a list of words from the dictionary to guess the passwords, before complex password rules became a common security practice.
What are some common measures organizations use to prevent brute force attacks and similar attacks?
Salting and hashing, MFA, CAPTCHA and reCAPTCHA, and password policies.
Intrusion detection system (IDS)
An application that monitors system activity and alerts on possible intrusions.
Intrusion prevention system (IPS)
An application that monitors system activity for intrusive activity and takes action to stop the activity.
Identity access management (IAM)
A collection of processes and technologies that helps organizations manage digital identities in their environment.
Zero-day
An exploit that was previously unknown.
Shared responsibility model
A model that states that the Cloud Share Provider (CSP) must take responsibility for security involving the cloud infrastructure, including physical data centers, hypervisors, and host operating systems.
What does IAM stand for?
Identity access management
What does IDS stand for?
Intrusion detection system
What does IPS stand for?
Intrusion prevention system
Cloud computing
A model for allowing convenient and on-demand network access to a shared pool of configurable computing resources.
What does CSP stand for?
Cloud service providers
