Designs Secure Network Architecture Flashcards
All-in-one security appliances and agents that combine the functions of a firewall, malware scanner, intrusion detection, vulnerability scanner, data loss prevention, content filtering, and so on.
unified threat management (UTM)
Security appliance or software that uses passive hardware sensors to monitor traffic on a specific segment of the network.
Network intrusion detection system (NIDS)
An inline security device that monitors suspicious network and/or system traffic and reacts in real time to block it.
network intrusion prevention system (NIPS)
A sign that an asset or network has been attacked or is currently under attack.
Indicator of compromise (IOC)
Describe a solution designed to validate the health of an endpoint prior to allowing access.
Network Access Control (NAC)
Security framework and tools to facilitate use of personally-owned devices to access corporate networks and data.
Bring your own device (BYOD)
A logically separate network, created by using switching technology. Even though hosts on two VLANs may be physically connected to the same cabling, local traffic is isolated to each VLAN so they must use a router to communicate.
virtual local area networks (VLAN)
Enterprise management software designed to mediate access to cloud services by users across all types of devices.
cloud access security broker (CASB)
Identify some practical DLP example use-cases.
Blocking use of external media, print blocking, Remote Desktop Protocol (RDP) blocking, clipboard privacy controls, restricted virtual desktop infrastructure (VDI) implementation, data classification blocking.
A ______________________________________ leverages the global footprint of cloud platforms by distributing and replicating the components of a service to improve performance to all the key service areas needing access to the content.
Content Delivery Network (CDN)
The process of applying confidentiality and privacy labels to information.
Data classification
_____________________________ is assigned to cloud resources through the use of tags and is frequently exploited to expose configuration parameters which may reveal misconfigured settings.
Metadata
What is the name of the data obfuscation method that replaces sensitive data with an irreversible value?
Tokenization
What data obfuscation method is designed to protect personally identifiable information so that data can be shared?
Anonymization
A type of software that reviews system files to ensure that they have not been tampered with.
File Integrity Monitoring (FIM)
The process an organization uses to maintain the existence of and control over certain data in order to comply with business policies and/or applicable laws and regulations.
Data retention
This generally defines the amount of data that can be lost without irreparable harm to the operation of the business.
Recovery Point Objective
This VM exploit gives an attacker access to the underlying host operating systems and thereby access to all other VMs running on that host machine.
VM Escape
A guest operating system installed on a host computer using virtualization software (a hypervisor), such as Microsoft Hyper-V or VMware.
virtual machines (VM)
Type of industrial control system that manages large-scale, multiple-site devices and equipment spread over geographically large areas from a host computer.
supervisory control and data acquisition (SCADA)
Which cloud service type represents the lowest amount of responsibility for the customer?
SaaS
Cloud service model that provisions application and database services as a platform for development of apps.
Platform as a Service (PaaS)
Cloud service model that provisions virtual machines and network infrastructure.
Infrastructure as a Service (IaaS)
