Day 5: Windows Security Flashcards
Which Windows OS should I use?
TBD
What is a workgroup?
TBD
What are local users and groups?
TBD
What is a Security ID (SID) number?
TBD
What is a Security Access Token (SAT)?
TBD
What is Active Directory?
TBD
What is a forest or trust?
TBD
What is Group Policy and why is it so important?
TBD
What are the three classes of operating systems?
- Client
- Server
- Embedded
What type of Windows operating systems are intended for devices such as phones, tablets, laptops, PC workstations and gaming consoles?
Client Operating Systems
What type of Windows operating system do users directly interact with by touch, voice, gesture, keyboard and mouse?
Client Operating Systems
Often personally owned, what type of Windows operating system are designed for ease of use, graphical applications, and backward compatibility?
Client Operating Systems
Windows 7, Windows 10, Windows Phone, and Xbox One are examples of what type of Windows Operating Systems?
Client Operating Systems
What type of Windows operating systems are intended for devices such as rack-mounted computers that often have RAID storage, a lot of memory, and multiple network interfaces?
Server Operating Systems
What type of Windows operating systems do users normally interact with physically or virtually over the network?
Server Operating Systems
What type of Windows operating systems are not directly touched or seen?
Server Operating Systems
What type of Windows operating systems are designed for web servers, email gateways, VPN gateways, file and print servers, VM hosting, DNS, DHCP, etc.?
Server Operating Systems
Windows Server 2012 R2 and Windows Hyper-V are examples of what type of Windows operating system?
Server Operating Systems
What type of Windows operating systems are intended for devices such as point of sale terminals, automobile dashboards, electronic signs, industrial controllers, robotics, and all myriad IOT?
Embedded Operating Systems
What type of Windows operating systems are usually customized by equipment manufacturers to suit just their hardware?
Embedded Operating Systems
What are the primary Windows Client Operating Systems?
- Windows XP
- Windows Vista
- Windows 7
- Windows 8
- Windows RT
- Windows 10
(T/F) Windows Client OS is normally released in a single edition to make it easy for security, management and license control.
False.
Each Windows Client OS is normally released in multiple editions.
What Windows Client OS editions are intended for personal use, have fewer features, cannot be joined to AD and cost less?
Starter or Home editions
What class of Windows Client OS editions are intended for business use?
Business, Professionals or Enterprise
What category of Windows Client OS edition is intended for enthusiasts and often cost the most?
Ultimate
If you want features, such as BitLocker, AppLocker, Kerberos, Group Policy, Encrypting File System and AD membership, what category of Windows Client OS would you use?
Enterprise or Ultimate
(T/F) Windows for ARM editions do not have the same features and cannot run all the same applications as Windows for x86/x4 systems.
True
What type of Windows operating systems are usually purchased and licensed one at a time?
Starter, Home, Business, Professional and Ultimate Client OS’s.
(T/F) It is imperative to update Windows OS’s before they become obsolete because of the critical importance of keeping up-to-date with security patches.
True
Unless your environment is small or uses Virtual Desktop Infrastructure (VDI) technologies, how far in advance should your project to do mass client upgrades?
2 years prior to end of life
What is VDI?
Virtual Desktop Infrastructure
What is it called when the product is no longer sold to retailers or OEMs?
End of Sales
What is one of the problems associated with “End of Sales”?
Resellers might stockpile licenses to extend their product lines
What is it called when warranties expire for the product, the product will no longer be improved, free incident support ends, and non-security hot fixes become unavailable unless specifically purchased during the Extended Support phase?
End of Mainstream Support
What is it called when security hot fixes and paid support can no longer be purchased, except in special cases with Custom Support?
End of Extended Support
What is it called when there will be no further hot fix or support options whatsoever unless they are negotiated with Microsoft?
End of Custom Support
(T/F) If Windows cannot be upgraded before it expires, then threats to the system will remain constant moving forward.
False.
If a Windows computer cannot be upgraded before it expires, then every month that it continues to run increases the probability it will become compromised or infected with malware.
What are some stop-gaps to use if Windows cannot be upgraded before it expires?
- Block all network connectivity to/from expired computers
- Switch from IE or Edge to another browser
- Keep all applications up-to-date with patches
- Install a HIPS or IDS
- Backup more frequently
(T/F) Beware, there may be websites that sell unofficial Windows hotfixes for expired OSs. Be especially wary of any hot fixes circulating for free on file-sharing sites or that are advertised through spam.
True
Should you trust underground market hotfixes?
no
Windows security is not just for traditional PCs, Laptops and tablets. What are some of the other Microsoft Client devices?
- Windows phone
- Xbox One
- HoloLens
- Surface Hum
What Windows Client device has UEFI firmware, a TPM chip, whole disk encryption, supports VPNs, authenticates with Windows Azure accounts for SSO?
Windows Phone
(T/F) The good thing about Windows Phone is that it runs a “real” operating system, so it has no potential exploits and malware.
False
The good thing about Windows Phone is that it runs a “real” operating system, but the bad thing is that it runs a real OS with all the potential exploits and malware.
What are the SECURITY BEST PRACTICES that apply to Windows Phones
- Keep updated with the latest OS
- Use centralized MDM management (MobileIron)
- Require PIN or Iris scan
- Train users not to store sensitive data on their mobile devices
- Backup on a regular basis
- Use app whitelisting rules to block/allow apps based upon your policies
- Use PIN-protected TPM virtual smart card to authenticate to LOB apps and VPN gateways
- Revoke compromised certificates
- Configure device so that after too many failed attempts, it should either wipe or it should encrypt
Why would we care about Xbox and security?
Because, your users’ Xbox console will eventually become BYOD computers that they expect to use for work