Domain 3: System vuln, threats, countermeasures | Web Architecture

Question 1

Emanations

Answer 1

energy that escapes electrical systems. Can be used to reverse engineer processes/data.

Question 2

Covert Channel

Answer 2

any comms that violate sec. policy.

Question 3

covert storage channels

Answer 3

Use shared storage, to allow two subjects to signal each other. can be coded or not.

Question 4

Covert timing channels

Answer 4

Uses system clock to infer sensitive infor.

Question 5

Backdoor

Answer 5

shortuct into a system allowing auser to bypass security.

Question 6

Maintenance hook

Answer 6

intentional backdoor installed typically in the prototyping process. should always be removed.

Question 7

Virus

Answer 7

Doesn’t spread automatically. Requires a carrier (usually human).

Question 8

Macro virus

Answer 8

Written in macro language - such as Word or Excel

Question 9

Boot sector virus

Answer 9

Infets the boot sector so that the virus starts on pc start up.

Question 10

Stealth virus

Answer 10

hides itself from OS and antivirus software

Question 11

Polymorphic virus

Answer 11

Changes its’ signature every time it enters a new system.

Question 12

Multipartite virus

Answer 12

spreads via multiple vectors

Question 13

Worm

Answer 13

malware that Spreads automatically

Question 14

Trojan

Answer 14

Malware that hides itself as a benign app - like a game.

Question 15

rootkit

Answer 15

replaces portions of the kernel and/or os.

Kernel rootkit -operates in ring 0
OS rootkin - operates in ring 3

Question 16

Packers

Answer 16

utility that provides compression of executables. Can be used to avoid signature based detection.

Question 17

Logic bomb

Answer 17

malicious program that triggers when a logical condition is met. i.e time, number of transactions, number of cpu cycles, etc.

Question 18

Antivirus software

Answer 18

signature based or heuristic based

Question 19

server side attacks

Answer 19

Launched from an attacker to a server.

Question 20

client side attack

Answer 20

when a victim/user downloads malicious content.

Question 21

WEb architecture and attacks

Answer 21

As the web becomes more complex - the attack surface also gets larger.

Question 22

Applets

Answer 22

small pieces of mobile code that are embedded in other software like web browsers.

Question 23

Java

Answer 23

Applet form sun microsystems.

runs in sandbox increases functionality of web browser

Question 24

ActiveX

Answer 24

microsoft version of java

Question 25

OWASP

Answer 25

open web app security project

Question 26

XML

Answer 26

extensible markup language

Question 27

SOA

Answer 27

service oriented architecture.

Intends to reduce application architecture down to a functional unit of service.

Question 28

polyinstantiation

Answer 28

allows two different objects to have the same name in a database.

Question 29

Inference and aggregation

Answer 29

attacker uses lower level access to learn restricted info.

Question 30

data mining

Answer 30

searches large sets of data to look for patterns.

Question 31

Data analytics.

Answer 31

Used by sec professionals to understand normal operations.

Question 32

countermeasures

Answer 32

defense in depth. multiple overlapping controls

Question 33

mobile device attacks

Answer 33

used to carry malware into a secure area.

Question 34

mobile device defense

Answer 34

clearly defined byod policies.

Question 35

remote wipe

Answer 35

ability to remotely wipe a company device