D430

Question 1

Software development vulnerabilities

(6)

Answer 1

• Authentication attacks
• Authorization attacks
• Buffer overflows
• Cryptographic attack
• Input validation attacks
• Race conditions

Question 2

Incident response cycle

Answer 2

1- preparation
2- detection and analysis
3- containment
4- eradication
5- recovery
6- post incident activity

Question 3

Types of attacks [4]

Answer 3

1. Interception: Unauthorized capturing of data, such as eavesdropping on network traffic.
2. Interruption: Disruption of services or communication, leading to loss of availability, such as in a Denial of Service (DoS) attack.
3. Modification: Unauthorized alteration of data, which can affect data integrity.
4. Fabrication: Creation of fictitious data or transactions, leading to unauthorized insertion of data into systems.

Together, they represent a broad spectrum of security threats that can compromise the confidentiality, integrity, and availability of information systems.

Question 4

Identification of critical information

Answer 4

1st step in the OPSEC process, arguably the most important: to identify the assets that most need protection and will cause us the most harm if exposed

Question 5

What step is analysis of vulnerabilities?

Answer 5

3rd step in the OPSEC process: to look at the weaknesses that can be used to harm us

Question 6

DES
(Encryption)

Answer 6

Data Encryption Standard (DES). While DES was once widely used and considered secure, advancements in computing power made its 56-bit key vulnerable to brute-force attacks. As a result, DES is now considered obsolete, and more robust encryption algorithms like AES are recommended for secure communication.

Question 7

Risk Mamagement Steps

(5)

Answer 7

A constant process as assets are purchased, used and retired. The general steps are
1- identify assets
2- identify threats
3- assess vulnerabilities
4- assess risk
5- mitigating risks

Question 8

Pretexting

Answer 8

a form of social engineering in which one individual lies to obtain confidential data about another individual

Question 9

exploit framework

Answer 9

A group of tools that can include network mapping tools, sniffers, and exploits

Question 10

man-in-the-middle attack

Answer 10

a hacker placing himself between a client and a host to intercept communications between them

Question 11

Executable Space Protection

Answer 11

A hardware and software-based technology that prevents certain portions of the memory used by the operating system and applications from being used to execute code.

Question 12

Acceptability

Answer 12

A measure of how acceptable the particular characteristic is to the users of the system

Question 13

uniqueness

Answer 13

In cybersecurity, “uniqueness” refers to the quality of being distinct or one-of-a-kind within a specific context or system.

Question 14

Cryptographic attacks

Answer 14

a method for circumventing the security of a cryptographic system by finding a weakness in a code, cipher, cryptographic protocol or key management scheme

Question 15

Rule-Based Access Control

Answer 15

A model that is based off of allowing or denying access based on a set of predetermined rules

Question 16

Packet sniffers

Answer 16

A network or protocol analyzer, is a tool that can intercept traffic on a network, commonly referred to as sniffing. Sniffing basically amounts to listening for any traffic that the network interface of our computer or device can see, whether it was intended to be received by us or not. Some examples might be Wireshark (GUI) or Tcpdump (command-line tool)

Question 17

Nmap

Answer 17

A network utility designed to scan a network and create a map. Frequently used as a vulnerability scanner. (Network mapper)

Question 18

Clean desk

Answer 18

A policy designed to ensure that all confidential or sensitive materials are removed from a user’s workspace and secured when the items are not in use or an employee leaves her workspace.

Question 19

VPN (Virtual Private Network)

Answer 19

A private network that is configured within a public network such as the Internet. A secure connection between two systems

Question 20

packet filtering

Answer 20

a process in which firewalls are configured so that they filter out packets sent to specific logical ports

Question 21

Operations Security

Answer 21

A process that we use to protect our information (encryption) OPSEC

Question 22

Performance

Answer 22

A set of metrics that judge how well a given system functions

Question 23

IPSEC

Answer 23

Internet Protocol security

A set of protocols developed to support the secure exchange of packets between hosts or networks.

Question 24

sandbox

Answer 24

A set of resources devoted to a program, process, or similar entity, outside of which the entity cannot operate

Question 25

AES

How many cyphers does it use? endorse by through?

Answer 25

A set of symmetrical block ciphers endorsed by the us government through NIST . Is used by a variety of organizations. It is the replacement for DES as the standard encryption for us government . Uses 3 different ciphers one a 128 bit key one 192-bit key and one 256- bit key

Question 26

Caesar cipher

Answer 26

A substitution cipher that shifts characters a certain number of positions in the alphabet usually 3 .

Question 27

ROT13

Answer 27

A substitution cipher that uses a key of 13. To encrypt a message, you would rotate each letter 13 spaces. To decrypt a message, you would rotate each letter 13 spaces.

Question 28

Firewalls

Answer 28

A system that acts as a control for network traffic, blocking unauthorized traffic while permitting acceptable use. It naturally creates network segmentation when installed

Question 29

Host Intrusion Detection System (HIDS)

Answer 29

A system used to analyze the activities on or directed at the network interface of a particular host

Question 30

hping3

Answer 30

A tool used to test the security of firewalls and map network topology.
- constructs specially crafted ICMP packets to evade measures to hide devices behind firewall
- scripting functionality to test firewall/IDS

Question 31

Authorization attack

Answer 31

An authorization attack is a cybersecurity threat that exploits vulnerabilities in the application’s authorization processes. This type of attack occurs when an application’s authorization mechanisms are not properly implemented or adhere to best practices, allowing attackers to gain unauthorized access to system functions, data, or resources they should not have access to.

Question 32

Confused deputy problem

Answer 32

A type of attack that is more common in systems that use ACLs rather than capabilities; when software has greater permissions than user, the user can trick the software into misusing authority

Question 33

ECC

cyber security

Answer 33

Elliptic Curve Cryptography (ECC) is a method for encrypting data and securing digital communications using the mathematics of elliptic curves. It offers high security with smaller key sizes compared to traditional systems like RSA, making it efficient for use in environments with limited resources.

Question 34

Race conditions

Answer 34

A type of software development vulnerability that occurs when multiple processes or multiple threads within a process control or share access to a particular resource, and the correct handling of that resource depends on the proper ordering or timing of transactions

Question 35

Wireshark

Answer 35

A widely used packet analyzer, network protocol analyzer, used for network troubleshooting, analysis, software and protocol development, and education.

Question 36

Netstumbler

Answer 36

A Windows tool used to detect wireless access points. Does not have as full feature set as kismet

Question 37

Network ACLs

Answer 37

Network Access Control Lists (ACLs) are a security measure used within a network to control the flow of traffic. Access controlled by the identifiers we use for network transactions such as ip address, MAC address and ports

Question 38

Brewer and Nash model

Answer 38

aka Chinese Wall; Access control model designed to prevent conflicts of interest. Commonly used in industries such as financial

Question 39

Confidential

Answer 39

Allowing only those authorized to access the data requested

Question 40

Read

Answer 40

Allowing us to access the contents of a file or directory

Question 41

authenticity

Answer 41

Allows us to talk about the proper attribution as to the owner or creator of the data in question

Question 42

Clickjacking Attack

Answer 42

also calles UI redress attack; typically uses an inline frame, or iframe.
In a clickjacking attack, an attacker wraps a trusted page in an iframe that places transparent image over legitimate links, graphics or form fields. Causes client to execute a command differing from what they think they are performing

Question 43

Symmetric Cryptography

Answer 43

Also known as private key. Utilizes a single key for both encryption of plain text and decryption of the cipher text

Question 44

Discretionary Access Control (DAC)
[access control model]

Answer 44

an access control model in which the subject has total control over any object that the subject owns along with the programs that are associated with those objects

Question 45

Role-Based Access Control (RBAC)

Answer 45

An access control model that bases the access control authorizations on the roles (or functions) that the user is assigned within an organization

Question 46

Privilege Escalation

Answer 46

An attack that exploits a vulnerability in software to gain access to resources that the user normally would be restricted from accessing.

Question 47

Phishing

Answer 47

An attack that sends an email or displays a Web announcement that falsely claims to be from a legitimate enterprise in an attempt to trick the user into surrendering private information

Question 48

Clickjacking

Answer 48

An attack that tricks users into clicking something other than what they think they’re clicking.

Question 49

XSRF

Answer 49

cross-site request forgery (XSRF)
An attack that uses the user’s Web browser settings to impersonate the user.

Question 50

Dual-factor authentication

Answer 50

An authentication method that includes multiple methods for a single authentication transaction. Often referred to as “something you have and something you know,” when the factors include a device such as a smart card and a secret such as a password or PIN.

Question 51

Digital signature

Answer 51

an encrypted code that a person, website, or organization attaches to an electronic message to verify the identity of the message sender

Question 52

Stream Cipher

Answer 52

An encryption method that encrypts data as a stream of bits or bytes. One bit at a time.

Question 53

Block Cipher

specify size

Answer 53

An encryption method that encrypts data in fixed-side blocks. Block size is 64 bits .

Question 54

Anomaly-based detection

Answer 54

Analyzes the current traffic against an established baseline and triggers an alert if outside the statistical average

Question 55

Mobile devices

Answer 55

Any device that communicate via a wireless network

Question 56

Threat

Answer 56

Any event being man-made, natural or environmental that could damage the assets

Question 57

The * property

Answer 57

Purpose: The Star Property is designed to maintain the confidentiality of information within the system.
Function: It restricts the ability of a subject to write information to a higher security level than the subject’s own level. This is known as “no write up.”
Objective: The primary aim is to prevent the flow of information from lower to higher security levels, ensuring that sensitive information is not inadvertently or maliciously leaked to levels that should not have access to it.

Simple Integrity Axiom (no write down, or “integrity property”)

Question 58

Anti-malware tools

Answer 58

applications detect threats in the same way as an IDS either by matching against a signature or by detecting anomalous activities taking place.

Question 59

Software tokens

Answer 59

Applications that generate OTP

Question 60

Deep Packet Inspection Firewall

Answer 60

Are capable of analyzing the actual content of the traffic that is flowing through them. Can resemble the contents of the traffic to look at what will be delivered to the application that it is destined for.

Question 61

Multilevel Access Control

Answer 61

Multilevel Access Control (MAC) is a security mechanism that classifies users and data into different levels of security. It restricts access to information based on the clearance level of users and the classification of the information, ensuring that users can access only the data for which they have authorization, thereby enhancing data security. They are used where the simpler access control models that we just discussed are considered to not be robust enough to protect the information to which we are controlling access. Such access controls are used extensively by military and government organizations, or those that often handle data of a very sensitive nature. We might see multilevel security models used to protect a variety of data, from nuclear secrets to protected health information (PHI).

Question 62

RAID

Answer 62

RAID (Redundant Array of Inexpensive Disks) is a technology used to protect against data loss due to hardware failures in individual disks. It involves configuring multiple disks in various setups to provide redundancy and improve data reliability. Additionally, data can be replicated from one machine to another over a network or backed up onto media such as DVDs or magnetic tapes for added security.

Question 63

Cross-Site Scripting (XSS)

Answer 63

Attack by placing code in the form of scripting language into a webpage, other media that is interpreted by a client browser including adobe flash and types of video files. When another person views the webpage or media they execute the code automatically and the attack is carried out

Question 64

Interception

Answer 64

Attacks allows unauthorized users to access our data, applications, or environments. Are primarily an attack against confidentiality

Question 65

Interruption

Answer 65

Attacks cause our assets to become unstable or unavailable for our use, on a temporary or permanent basis. This attack affects availability but can also attack integrity

Question 66

Fabrication

Answer 66

Attacks involve generating data, processes, communications, or other similar activities with a system. Attacks primarily affect integrity but can be considered an availability attack.

Question 67

Modification

Answer 67

Attacks involve tampering with our asset. Such attacks might primarily be considered an integrity attack, but could also be an availability attack.

Question 68

Server-side attacks

Answer 68

attacks that exploit vulnerabilities on the server.

Question 69

Biometrics

Answer 69

Authentication factors that use physical features ( something that you are )

Question 70

Network Segmentation

Answer 70

Breaking a network into pieces and putting various levels of security between those pieces. We can control the flow of traffic allowing or disallowing traffic

Question 71

Honeypots

Answer 71

can detect, monitor, and sometimes tamper with the activities of an attacker. are configured to deliberately display vulnerabilities or materials that would make the system attractive to an attacker.

Question 72

Proxy servers

Answer 72

Can serve as a choke point in order to allow us to filter traffic for attacks or undesirable content such as malware or traffic to Web sites hosting adult content.

Question 73

Intrusion Prevention System (IPS)

Answer 73

Can take action based on what is happening in the environment. In response to an attack over the network an ips might refuse traffic from the source of the attack

Question 74

Portscanners

Answer 74

check to see what ports are open
Nmap
Zenmap
Masscan
Netcat
Advanced IP Scanner
Angry IP Scanner

Question 75

Most common Wireless network security families

Answer 75

Chief method of protecting traffic is encryption. The encryption is used by 802.11 wireless devices. The most common wireless families are - wired equivalent privacy (wep) - Wi-Fi protected access ( wpa) - Wi-Fi protected access v2 (wpa2)

Question 76

COPPA

Answer 76

Children’s Online Privacy Protection Act: a law that intends to keep children under the age of 13 protected from the collection of private information and safety risks online.

Question 77

TCPDump

Answer 77

Command line packet sniffing tool . Runs on Linux and unx operating systems

Question 78

kismet

Answer 78

Commonly used to detect wireless access points and can find them even when attempts have been made to make doing so difficult

Question 79

CFAA

Answer 79

Computer fraud and abuse act of 1986. A law to reduce the hacking and cracking of government or other sensitive institutions computer systems

Question 80

Parkerian hexad model

Answer 80

Confidentiality, integrity, availability, possession/control, authenticity, utility

Question 81

compliance

Answer 81

Conforming to a rule, policy or law

Question 82

CAN-SPAM Act

Answer 82

Controlling the Assault of Non-Solicited Pornography and Marketing Act; protects consumers against unwanted email solicitations

Question 83

Attribute-based access control (ABAC)

Answer 83

Controls access based on attributes of the user, the resource to be accessed, and current environmental conditions

Question 84

Technical/ logical controls

Answer 84

Controls are devices and software that protect assets. Think of firewalls, av, ids, and ips

Question 85

Physical controls

Answer 85

Controls are physical items that protect assets. Think of locks, doors, guards and fences

Question 86

Administrative controls

Answer 86

Controls are the policies that organizations create for governance. Ex: email policies

Question 87

Detective

Answer 87

Controls serve to detect and report undesirable events that are taking place (ex. Bulgar alarms)

Question 88

preventitive

Answer 88

Controls used to physically prevent unauthorized entities from breaching our physical security

Question 89

CSRF

Answer 89

Cross-Site Request Forgery is an attack that causes an end user to execute unwanted actions on a web application in which he or she is currently authenticated. Unlike with XSS, in CSRF, the attacker exploits the website’s trust of the browser rather than the other way around. The website thinks that the request came from the user’s browser and was actually made by the user. However, the request was planted in the user’s browser

Question 90

Protecting data at rest

Answer 90

Data is at ready when it is on a storage device of some kind and is not moving over a network, or a protocol

Question 91

DMZ

Answer 91

Demilitarized zone. Combo of network design feature and a protective device such as a firewall.
Placing a server in the DMZ (Demilitarized Zone) means positioning it in a separate network segment that acts as a buffer zone between the public internet and the organization’s internal network. The DMZ is exposed to the public internet, making it more accessible from the outside but also more vulnerable to attacks.

Question 92

Physical concerns for data

Answer 92

Depending on the type of physical media on which our data is stored, any number of adverse physical conditions may be problematic or harmful to their integrity. Such media are often sensitive to temperature, humidity, magnetic fields, electricity, impact, and more, with each type of media having its particular strong and weak points.

Question 93

circumvention

Answer 93

Describes the ease with which a system can be tricked by a falsified biometric identifier

Question 94

Certificates

Answer 94

Digitally signed electronic documents that bind a public key with a user identity.

Question 95

Deterrence

Answer 95

discouraging criminal acts by threatening punishment

Question 96

Secure Protocols

Answer 96

Easiest way we can protect our data

Question 97

E-FOIA

Answer 97

Electronic Freedom of Information Act. Requires agencies to provide the public with electronic access to any of their reading room records that have been created by them since November 1996

Question 98

Auditing

Answer 98

Ensuring that we have accurate records of who did what and when. Primarily focused on compliance with relevant laws and policies, and access to and from systems and sometimes physical security

Question 99

Execute

Answer 99

Execute the contents of the file

Question 100

Cryptographic

Answer 100

Existed before the modern computer . Used to simplify the use of encryption and made more computer encryption possible.

Question 101

FERPA

Answer 101

Family Educational Rights and Privacy Act. Protects the privacy of students and parents

Question 102

FISMA

Answer 102

Federal Information Security Management Act provides a framework for ensuring the effectiveness of information security controls in government

Question 103

Identify assets

Answer 103

First and most important part or risk management. Identifying and categorizing the assets we are protecting

Question 104

GLBA

Answer 104

Gramm-Leach-Bliley Act. Protects the customers of financial institutions, any company offering financial products or services

Question 105

Protecting data in use

Answer 105

Hardest to protect. Data is in use when a user is accessing the data.

Question 106

HITECH

Answer 106

Health Information Technology for Economic and Clinical Health Act. Created to promote and expand the adoption of health information technology specifically the use of electronic health records.

Question 107

HIPAA

Answer 107

Health Insurance Portability and Accountability Act. Purpose is to improve the efficiency and effectiveness of the health care system. Requires privacy protections for individuals health information

Question 108

Utility

Answer 108

How useful the data is to us

Question 109

Input validation attacks

Answer 109

If we are not careful to validate the input to our applications, we may find ourselves on the bad side of a number of issues, depending on the particular environment and language being used. A good example of an input validation problem is the format string attack. Could be used to crash an application or cause the operating system to run a command and potentially compromise the system.

Question 110

Bell-LaPadula Model

Answer 110

implements a combination of DAC and MAC and is primarily concerned with the confidentiality of the resource in question. Generally, in cases where we see DAC and MAC implemented together, MAC takes precedence over DAC, and DAC works within the accesses allowed by the MAC permissions.

Question 111

Personally Identifiable Information (PII)

Answer 111

information about an individual that identifies, links, relates, or describes them.

Question 112

single-factor authentication

Answer 112

Involves the use of simply one of the three available factors solely in order to carry out the authentication process being requested

Question 113

integrity

Answer 113

Keeping data unaltered by accidental or malicious intent

Question 114

Information security

Answer 114

Keeping data, software, and hardware secure against unauthorized access, use, disclosure, disruption, modification, or destruction.

Question 115

hash function

Answer 115

Keyless cryptography. Do not use a key but instead create a unique and fixed length hash value based on the original message. (Like a fingerprint) a slight change to the message will change the hash

Question 116

Defense in depth

Answer 116

Layering of security controls is more effective and secure than relying on a single control

Question 117

Allowing access

Answer 117

Let’s us give a particular party or parties access to a given resource

Question 118

Assess Vulnerabilities

Answer 118

Look at potential threats. any given asset may have thousand or millions of threats that could impact it, but only a small fraction of the threats will be relevant

Question 119

Collectibility

Answer 119

Measures how easy it is to acquire a characteristic with which we can use later to authenticate a user

Question 120

Tools we need to defend our network

Answer 120

Network segmentation, firewalls, IDS/IPS , wireless secure protocols, VPNs, secure protocols, MDM, port scanners , packet sniffers, honeypots

Question 121

Buffer overflow

Answer 121

Occur when we do not properly account for the size of the data input into our applications

Question 122

arbitrary code execution

Answer 122

Occurs when an attacker is able to execute or run commands on a victim computer

Question 123

Vulnerability assessment tools

Answer 123

Often include some portion of the feature set we might find in a tool such as Nmap, are aimed specifically at the task of finding and reporting network services on hosts that have known vulnerabilities.

Question 124

Application of countermeasures

Answer 124

Once we have discovered what risks to our critical information might be present, we would then put measures in place to mitigate them. Such measures are referred to in operations security as countermeasures.

Question 125

Assess risks

Answer 125

Once we have identified the threats and vulnerabilities for a given asset we can access the overall risk

Question 126

Identify threats

Answer 126

Once we have our critical assets we can identify the threats that might effect them

Question 127

one time password

Answer 127

OTP passwords that expire after a time frame of after one time usage

Question 128

Improper or Inadequate Permissions

Answer 128

Particularly with Web applications and pages, there are often sensitive files and directories that will cause security issues if they are exposed to general users. One area that might cause us trouble is the exposure of configuration files due to improper or inadequate permissions.

Question 129

PCI DSS

Answer 129

Payment Card Industry Data Security Standard. Security standards designed to ensure all companies that accept , process, or transmit credit card information maintains a secure environment(not a law)

Question 130

Intrusion Detection System (IDS)

Answer 130

Performs strictly as a monitoring and alert tool, only notifying us that an attack or undesirable activity is taking place

Question 131

Hardware tokens

Answer 131

Physical devices that generate a one time password ( something you have )

Question 132

Intrusion Detection System (IDS)

Answer 132

Preforms strictly as a monitoring and alert toll. Only notifying us that an attack or undesirable activity is taking place

Question 133

The Biba model of access control

Answer 133

Primarily concerned with protecting the integrity of the data, even at the expense of confidentiality

Question 134

Password manager

Answer 134

Programs that store all of the users passwords with a master password

Question 135

Accountability

Answer 135

Provides us with the means to trace activists in our environment back to their source. Depends on identification, authentication, and access control being present so that we know who a given transaction is associated with, and what permissions were used to allow them to carry it out

Question 136

Asymmetrical Cryptography

Answer 136

Public key utilizes 2 keys. A public key and a private key. The public key is used to encrypt data sent from sender to receiver and is shared with everyone

Question 137

US Patriot Act

Answer 137

Purpose is to deter and punish terroists acts in the United States and around the world

Question 138

Mitigating risks

Answer 138

Putting measures in place to help ensure that a given type of threat is accounted for

Question 139

Stream cipher programs

Answer 139

RC4, ORXY, and SEAL

A stream cipher is a method of encrypting data where the plaintext is combined with a pseudorandom cipher digit stream (keystream), one bit or byte at a time. Unlike block ciphers, which encrypt data in fixed-size blocks, stream ciphers work with continuous streams of data, making them suitable for environments where data arrives in an unpredictable manner or where it’s impractical to implement block ciphers. Stream ciphers are known for their speed and simplicity in hardware or software implementations but require careful management of the keystream to maintain security.

Question 140

Recovery phase

Answer 140

Recover to a better state that we were prior to the incident or perhaps prior to when the issue started if we did not detect it immediately

Question 141

Nonrepudiation

Answer 141

Refers to a situation in which sufficient evidence exists to prevent an individual from denying that he or she has made a statement or taken action

Question 142

Limiting access

Answer 142

Refers to allowing some access to out resource, but only up to a certain point

Question 143

Possession/ control

Answer 143

Refers to the physical disposition of the media on which the data is stored

Question 144

Regulatory Compliance

Answer 144

Regulations mandated by law usually requiring regular audits and assessments

Question 145

Industry Compliance

Answer 145

Regulations or standards usually not mandated by law, it is designed for specific industries (e.g. PCI DSS)

Question 146

Residual Data

Answer 146

Rendering the data as inaccessible when it’s no longer required

Question 147

Incident response

Answer 147

Response to when risk management practices have failed and have cause an inconvenience to a disastrous event

Question 148

Our first concern when we plan physical security

Answer 148

Safety of people is our first concern when we plan physical security

Question 149

SOX

Answer 149

Sarbanes-Oxley Act. Regulates financial practices and governance corporations. Designed to protect investors and the general public by establishing requirements reporting and disclosure practices

Question 150

Gamification

Answer 150

Selective use of game design and game mechanics to drive employee engagement in non-gaming business scenarios.

Question 151

Denying access

Answer 151

Simply the opposite of granting access

Question 152

Protecting data itself

Answer 152

SLL&TLS are used to protect info sent over the network and over internet. The operate in conjunction with other protocols like internet message access protocol (IMAP) , post office protocol (POP) for email

Question 153

Malware

Answer 153

software that is intended to damage or disable computers and computer systems.

Question 154

Universality

Answer 154

Stipulates that we should be able to find our chosen biometric characteristics in the majority of people we expect to enroll in the system

Question 155

Lack of input validation

Answer 155

Structured Query Language (SQL) injection gives us a strong example of what might happen if we do not properly validate the input of our Web applications. SQL is the language we use to communicate with many of the common databases on the market today.

Question 156

Client side attacks

Answer 156

Take advantage of weaknesses in the software loaded on our clients , or those attacks that use social engineering to trick us into going along with the attack

Question 157

Revoking access

Answer 157

Takes access that was once allowed away from the user.

Question 158

Impact

Answer 158

taking into account the assets cost

Question 159

Containment phase

Answer 159

Taking steps to ensure that the situation does not cause any more damage than it already has, or to at least lessen any ongoing harm.

Question 160

Authentication attacks

Answer 160

Targets and attempts to exploit the authentication process a web site uses to verify the identity of a user, service, or application.

Question 161

Social Engineering

Answer 161

techniques that trick a person into disclosing confidential information

Question 162

Permanence

Answer 162

Tests show how well a particular characteristic resists change over time and with advancing age

Question 163

Availability

Answer 163

The ability to access data when needed

Question 164

Authentication

Answer 164

The act of proving who or what we claim to be (password)

Question 165

Cryptanalysis

Answer 165

The breaking and finding a weakness in the algorithm and gain access to the contents of encrypted messages, even if the cryptographic key is unknown.

Question 166

CIA

Answer 166

The core model of all information security. Confidential, integrity and availability

Question 167

Identity verification

Answer 167

The half step between identity and authentication (showing two forms of Id)

Question 168

Security awareness

Answer 168

the knowledge and attitude members of an organization possess regarding the protection of the physical, and especially informational, assets of that organization.

Question 169

privacy rights

Answer 169

The legal and ethical sources of protection for privacy in personal data.

Question 170

Simple Security Property

Answer 170

The level of access granted to an individual must be at least as high as the classification of the resource in order for the individual to be able to access it

Question 171

Simple integrity axiom

Answer 171

Purpose: Ensures integrity.
Principle: A subject at a certain security level cannot write data to a lower security level. This is known as “no write down.”
Objective: Prevents the corruption of data at lower integrity levels by ensuring that users can only write information at their own level of integrity or higher. This helps in maintaining the accuracy and trustworthiness of the data by preventing the insertion of false or misleading information from higher levels.

Bell-LaPadula Model

Question 172

Risk

Answer 172

The likelihood that a threat will occur. There must be a threat and vulnerability

Question 173

Principle of Least Privilege

Answer 173

The lowest level of authorization allowed to a user to preform duties

Question 174

ACLs (access control lists)

Answer 174

The means by which we implement authorization and deny or allow access to parties based on what resources we have determined they should be allowed access to .

Question 175

Mandatory Access Control (MAC)

Answer 175

Mandatory Access Control (MAC) is a security model that restricts the ability of subjects (like users or processes) to access objects (like files or system resources) based on the policies defined by a central authority. Unlike Discretionary Access Control (DAC), where the access control policies are set by the object’s owner, MAC policies are enforced by the operating system or security kernel, ensuring a higher level of control over access permissions.

Question 176

brute force attack

Answer 176

the password cracker tries every possible combination of characters to guess the password

Question 177

Preparation phase

Answer 177

The preparation phase consists of all of the activities that we can preform in advance of the incident itself in order to better enable us to handle it

Question 178

Protecting Data in Motion

Answer 178

The primary method of securing data from exposure on network media is encryption, and we may choose to apply it in one of two main ways: by encrypting the data itself to protect it or by protecting the entire connection.

Question 179

Data security

Answer 179

The process of keeping data, both in transit and at rest, safe from unauthorized access, alteration, or destruction

Question 180

mutual authentication

prevents what?

Answer 180

The process where the session is authenticated on both ends and just one end . Prevents man in the middle attacks

Question 181

Compliance

Answer 181

The requirements that are set forth by laws and industry regulations. Example : HIPPA/ HITECH- healthcare, PCI/DSS- payment card industry, FISMA- federal government agencies

Question 182

privacy

Answer 182

the state or condition of being free from being observed or disturbed by other people.

Question 183

Cryptology

Answer 183

The study of deciphering secret messages. Cryptographic algorithms

Question 184

Substitution

Answer 184

The substitution of one letter for another in a consistent fashion

Question 185

Capability-based security

Answer 185

The use of a token that controls our access. A capability is a communicable, unforgeable token of authority which provides the holder with the right to access a specific object in certain ways.

Question 186

Controls

Answer 186

The ways we protect assets. Physical, technical/ logical, and administrative

Question 187

Software firewall

Answer 187

This type of firewall generally contains a subset of the features on a large firewall appliance but is often capable of similar packet filtering and stateful packet inspection activities.
Unlike hardware firewalls, which are physical devices placed between a network and the gateway, software firewalls run on individual computers or servers to protect each device by filtering traffic and blocking unauthorized access from external threats.

Question 188

Vulnerability Assessment

Tool for

Answer 188

Tools such as Nessus . They work by scanning the target systems to discover which ports are open on them and then interrogating each open port to find out exactly which service is listening on the port in question

Question 189

3DES

Answer 189

Triple Digital Encryption Standard. A symmetric algorithm used to encrypt data and provide confidentiality. It was originally designed as a replacement for DES. It uses multiple keys and multiple passes and is not as efficient as AES, but is still used in some applications, such as when hardware doesn’t support AES.

Question 190

Symmetric block cipher programs

Answer 190

Two fish, serpent, blowfish , cat5, IDEA

Question 191

Extraneous files

Answer 191

unnecessary files that aren’t cleaned up when the application moves from development to production. Leaving extraneous files may be handing attackers materials they need to compromise the system.

Question 192

personal equipment

Answer 192

Use of personal equipment brings cost savings to a corporation but can open up certain risks like data leakage, malware, intellectual property viruses

Question 193

Multi-factor authentication

Answer 193

Use of several authentication techniques together, such as passwords and security tokens.

Question 194

stateful firewall

Answer 194

Uses a state table to keep track of the connection state and will only allow traffic through that is part of a new or already established connection. Unlike stateless firewalls, which only examine packet headers and enforce rules based on static criteria such as source and destination IP addresses, ports, and protocols, stateful firewalls keep track of the state of active connections and make decisions about packet flow based on the context of the traffic.

Question 195

VPN

Answer 195

Virtual Private Network. Can provide us with a solution for sending sensitive traffic over unsecured networks. VPN connection is often referred to as a tunnel. Is encrypted connection between two points

Question 196

Assessments

Answer 196

Vulnerability and penetration testing

Question 197

What underlying issues in protocol implementation commonly lead to vulnerabilities?

Answer 197

Vulnerabilities in protocol implementations frequently stem from pervasive software development oversights, including but not limited to buffer overflows. These issues arise when data exceeds the allocated storage capacity, potentially allowing attackers to execute arbitrary code or disrupt service operations.

Question 198

Post incident activity phase

Answer 198

We attempt to determine specifically what happened, why it happened, and what we can do to keep it from happening again.

Question 199

Scanners

Answer 199

We can look for ports and versions of service that are running, examine banners displayed by services for information. Examine the info our systems display over the network and similar tasks.
Nmap
Wireshark
Metasploit
Nessus
Netcat
OpenVAS
Masscan

Question 200

Penetration Testing

Answer 200

We conduct a test where we mimic as closely as possible the techniques an actual attacker would us

Question 201

Eradication phase

Answer 201

We will attempt to remove the effects of the issue from our environment

Question 202

Vulnerabilities

Answer 202

Weakness that a threat event or the threat can take advantage of.
Threat.

A threat is any potential cause of an unwanted impact to a system or organization.

Risk refers to the potential for loss, damage, or any other negative occurrence that is caused by external or internal vulnerabilities.

A vulnerability is a weakness in a system that can be exploited by a threat to gain unauthorized access or cause harm to the system.

Question 203

Authorization

Answer 203

What the user can access, modify, and delete

Question 204

Manual Password Synchronization

Answer 204

When a user synced passwords from different systems without a software application

Question 205

Unauthenticated access

Answer 205

When we give a user or process the opportunity to interact with our database without supplying a set of credentials.

Question 206

Admissibility of records

Answer 206

When we seek to introduce records in legal settings, it is often much easier to do so and have them accepted when they are produced from a regulated and consistent tracking system.

Question 207

Detection and analysis phase

Answer 207

Where the action begins to happen. We will detect the occurrence of an issue and decide whether or not it is actually an incident so that we can respond

Question 208

Identity

Answer 208

Who or what we claim to be ( username)

Question 209

WPA2

Answer 209

Wireless Protected Access 2. Wireless network encryption system. Offers the strongest security

Question 210

Signature-based detection

Answer 210

Works in a similar way to host antivirus systems

Question 211

Write

Answer 211

Write to a file or directory

Question 212

Phishing and Pretexting

Answer 212

While both phishing and pretexting aim to deceive and obtain confidential information, phishing typically occurs through electronic communication and relies on urgency, while pretexting involves creating a fabricated story to manipulate individuals in various contexts, including offline interactions.

Question 213

Compare Simple security property vs simple integrity axiom

Answer 213

Direction of Restriction: The Simple Security Property restricts read actions to prevent confidential information from moving to subjects with lower clearance, while the Simple Integrity Axiom restricts write actions to prevent the corruption or lowering of data integrity.
Security Objective: The Simple Security Property focuses on confidentiality, ensuring that sensitive information is not disclosed improperly. In contrast, the Simple Integrity Axiom is concerned with integrity, ensuring that information remains accurate and uncorrupted.