Day 5: Windows Security

Question 1

Which Windows OS should I use?

Answer 1

TBD

Question 2

What is a workgroup?

Answer 2

TBD

Question 3

What are local users and groups?

Answer 3

TBD

Question 4

What is a Security ID (SID) number?

Answer 4

TBD

Question 5

What is a Security Access Token (SAT)?

Answer 5

TBD

Question 6

What is Active Directory?

Answer 6

TBD

Question 7

What is a forest or trust?

Answer 7

TBD

Question 8

What is Group Policy and why is it so important?

Answer 8

TBD

Question 9

What are the three classes of operating systems?

Answer 9

• Client
• Server
• Embedded

Question 10

What type of Windows operating systems are intended for devices such as phones, tablets, laptops, PC workstations and gaming consoles?

Answer 10

Client Operating Systems

Question 11

What type of Windows operating system do users directly interact with by touch, voice, gesture, keyboard and mouse?

Answer 11

Client Operating Systems

Question 12

Often personally owned, what type of Windows operating system are designed for ease of use, graphical applications, and backward compatibility?

Answer 12

Client Operating Systems

Question 13

Windows 7, Windows 10, Windows Phone, and Xbox One are examples of what type of Windows Operating Systems?

Answer 13

Client Operating Systems

Question 14

What type of Windows operating systems are intended for devices such as rack-mounted computers that often have RAID storage, a lot of memory, and multiple network interfaces?

Answer 14

Server Operating Systems

Question 15

What type of Windows operating systems do users normally interact with physically or virtually over the network?

Answer 15

Server Operating Systems

Question 16

What type of Windows operating systems are not directly touched or seen?

Answer 16

Server Operating Systems

Question 17

What type of Windows operating systems are designed for web servers, email gateways, VPN gateways, file and print servers, VM hosting, DNS, DHCP, etc.?

Answer 17

Server Operating Systems

Question 18

Windows Server 2012 R2 and Windows Hyper-V are examples of what type of Windows operating system?

Answer 18

Server Operating Systems

Question 19

What type of Windows operating systems are intended for devices such as point of sale terminals, automobile dashboards, electronic signs, industrial controllers, robotics, and all myriad IOT?

Answer 19

Embedded Operating Systems

Question 20

What type of Windows operating systems are usually customized by equipment manufacturers to suit just their hardware?

Answer 20

Embedded Operating Systems

Question 21

What are the primary Windows Client Operating Systems?

Answer 21

• Windows XP
• Windows Vista
• Windows 7
• Windows 8
• Windows RT
• Windows 10

Question 22

(T/F) Windows Client OS is normally released in a single edition to make it easy for security, management and license control.

Answer 22

False.

Each Windows Client OS is normally released in multiple editions.

Question 23

What Windows Client OS editions are intended for personal use, have fewer features, cannot be joined to AD and cost less?

Answer 23

Starter or Home editions

Question 24

What class of Windows Client OS editions are intended for business use?

Answer 24

Business, Professionals or Enterprise

Question 25

What category of Windows Client OS edition is intended for enthusiasts and often cost the most?

Answer 25

Ultimate

Question 26

If you want features, such as BitLocker, AppLocker, Kerberos, Group Policy, Encrypting File System and AD membership, what category of Windows Client OS would you use?

Answer 26

Enterprise or Ultimate

Question 27

(T/F) Windows for ARM editions do not have the same features and cannot run all the same applications as Windows for x86/x4 systems.

Answer 27

True

Question 28

What type of Windows operating systems are usually purchased and licensed one at a time?

Answer 28

Starter, Home, Business, Professional and Ultimate Client OS’s.

Question 29

(T/F) It is imperative to update Windows OS’s before they become obsolete because of the critical importance of keeping up-to-date with security patches.

Answer 29

True

Question 30

Unless your environment is small or uses Virtual Desktop Infrastructure (VDI) technologies, how far in advance should your project to do mass client upgrades?

Answer 30

2 years prior to end of life

Question 31

What is VDI?

Answer 31

Virtual Desktop Infrastructure

Question 32

What is it called when the product is no longer sold to retailers or OEMs?

Answer 32

End of Sales

Question 33

What is one of the problems associated with “End of Sales”?

Answer 33

Resellers might stockpile licenses to extend their product lines

Question 34

What is it called when warranties expire for the product, the product will no longer be improved, free incident support ends, and non-security hot fixes become unavailable unless specifically purchased during the Extended Support phase?

Answer 34

End of Mainstream Support

Question 35

What is it called when security hot fixes and paid support can no longer be purchased, except in special cases with Custom Support?

Answer 35

End of Extended Support

Question 36

What is it called when there will be no further hot fix or support options whatsoever unless they are negotiated with Microsoft?

Answer 36

End of Custom Support

Question 37

(T/F) If Windows cannot be upgraded before it expires, then threats to the system will remain constant moving forward.

Answer 37

False.

If a Windows computer cannot be upgraded before it expires, then every month that it continues to run increases the probability it will become compromised or infected with malware.

Question 38

What are some stop-gaps to use if Windows cannot be upgraded before it expires?

Answer 38

• Block all network connectivity to/from expired computers
• Switch from IE or Edge to another browser
• Keep all applications up-to-date with patches
• Install a HIPS or IDS
• Backup more frequently

Question 39

(T/F) Beware, there may be websites that sell unofficial Windows hotfixes for expired OSs. Be especially wary of any hot fixes circulating for free on file-sharing sites or that are advertised through spam.

Answer 39

True

Question 40

Should you trust underground market hotfixes?

Answer 40

no

Question 41

Windows security is not just for traditional PCs, Laptops and tablets. What are some of the other Microsoft Client devices?

Answer 41

• Windows phone
• Xbox One
• HoloLens
• Surface Hum

Question 42

What Windows Client device has UEFI firmware, a TPM chip, whole disk encryption, supports VPNs, authenticates with Windows Azure accounts for SSO?

Answer 42

Windows Phone

Question 43

(T/F) The good thing about Windows Phone is that it runs a “real” operating system, so it has no potential exploits and malware.

Answer 43

False

The good thing about Windows Phone is that it runs a “real” operating system, but the bad thing is that it runs a real OS with all the potential exploits and malware.

Question 44

What are the SECURITY BEST PRACTICES that apply to Windows Phones

Answer 44

• Keep updated with the latest OS
• Use centralized MDM management (MobileIron)
• Require PIN or Iris scan
• Train users not to store sensitive data on their mobile devices
• Backup on a regular basis
• Use app whitelisting rules to block/allow apps based upon your policies
• Use PIN-protected TPM virtual smart card to authenticate to LOB apps and VPN gateways
• Revoke compromised certificates
• Configure device so that after too many failed attempts, it should either wipe or it should encrypt

Question 45

Why would we care about Xbox and security?

Answer 45

Because, your users’ Xbox console will eventually become BYOD computers that they expect to use for work