Domain 4

Question 1

two or more
computers linked together to share
data, information or resources

Answer 1

A network

Question 2

A local area network (LAN) is

Answer 2

a network
typically spanning a single floor or
building. This is commonly a limited
geographical area

Question 3

Wide area network (WAN) is

Answer 3

the long-distance connections between geographicallyremote networks

Question 4

used to connect multiple devices in a network. They are wired devices and are not as smart as switches or routers

Answer 4

Hubs are

Question 5

a network device
used to filter traffic

Answer 5

A firewall

Question 6

wired devices that know the addresses of the devices connected to them and route traffic to that port/device rather than retransmitting to all devices. They are smarter than hubs, but not as smart as routers

Answer 6

Switches are

Question 7

A server is

Answer 7

a computer that provides
information to other computers on a
network

Question 8

Routers are used to

Answer 8

control traffic flow on
networks and are often used to connect
similar networks and control traffic low
between them. They determine the most efficient “route” for the traffic to flow across the network

Question 9

Endpoints are

Answer 9

the ends of a network
communication link. One end is often at a
server where a resource resides, and the other end is often a client making a request to use a network resource

Question 10

Ethernet is

Answer 10

a standard
that defines wired connections of
networked devices. This standard defines the way data is
formatted over the wire to ensure
disparate devices can communicate
over the same cables

Question 11

Every network device is assigned a

Answer 11

a Media
Access Control (MAC) address

Question 12

What connects all devices behind the firewall in a small business network?

Question 13

What is a potential drawback associated with the freedom provided by wireless networking?

Answer 13

Additional vulnerabilities

Question 14

What does micro-segmentation aid in protecting against?

Answer 14

Polymorphic tool sets

Question 15

An intrusion occurs

Answer 15

when an attacker
is able to bypass or thwart security
mechanisms and gain access to an organization’s resources

Question 16

Intrusion detection is

Answer 16

a specific form
of monitoring that monitors recorded
information and real-time events to detect
abnormal activity indicating a potential
incident or intrusion

Question 17

What term describes a portion of the organization’s network that interfaces directly with the outside world and typically has more security controls and restrictions compared to the rest of the internal IT environment?

Answer 17

Demilitarized zone (DMZ)

Question 18

What is a potential alternative to expensive dedicated point-to-point connections?

Question 19

How does a Web Application Firewall (WAF) function in a network?

Answer 19

It monitors all traffic from the outside for malicious behavior before passing commands to a web server

Question 20

What is the primary purpose of Virtual Local Area Networks (VLANs)?

Answer 20

Consolidate traffic across multiple switch ports

VLANs allow network administrators to use switches to create software-based LAN segments, consolidating traffic across multiple switch ports.

Question 21

Which of the following tools can be used to grant remote users access to the internal IT environment?

Answer 21

VPN (virtual private network)

A VPN allows external users to gain access to the internal environment securely.

Question 22

What might a user typically need to acknowledge before being allowed to access the internet in a hotel network?

Answer 22

Acceptable use policy

Question 23

How are VLANs used in Network Access Control (NAC) systems?

Answer 23

VLANs control whether devices connect to the corporate network or a guest network

Question 24

What is the function of transfer switches or transformers in a redundant power system?

Answer 24

Enable seamless transition between power sources

Question 25

In a scenario requiring full redundancy, what should devices have in terms of power supplies?

Answer 25

Two power supplies connected to diverse sources

Question 26

Why is an abnormal system shutdown in a data center a concern?

Answer 26

It may result in the loss or corruption of data

Question 27

What is network monitoring or sniffing?

Answer 27

Monitoring traffic patterns to obtain information about a network

Question 28

What is the purpose of the three-way handshake in networking?

Answer 28

Synchronizing and acknowledging requests

Question 29

What is the three-way handshake?

Answer 29

SYN, SYN-ACK, ACK

request to establish connection, acknowledgment, acknowledge the connection

Question 30

Well-known ports

Answer 30

Ports 0-1023, related to the common protocols that
are at the core of the Transport Control
Protocol/Internet Protocol (TCP/IP) model, Domain Name Service (DNS), Simple Mail Transfer Protocol (SMTP), etc.

Question 31

Registered ports

Answer 31

Ports 1024-49151, often associated with
proprietary applications from vendors and developers. While they are officially
approved by the Internet Assigned
Numbers Authority (IANA), in practice
many vendors simply implement a port of
their choosing. Examples include Remote Authentication Dial-In User Service (RADIUS) authentication (1812), Microsoft SQL Server (1433/1434) and the Docker REST API (2375/2376)

Question 32

Dynamic or private ports

Answer 32

Ports 49151 - 65535, Whenever a service is requested that is
associated with well-known or registered
ports, those services will respond with a
dynamic port that is used for that session
and then released.

Question 33

What are well-known ports (0-1023) associated with?

Answer 33

Common protocols at the core of TCP/IP

Question 34

What is resource pooling in the context of cloud computing?

Question 35

What is a cloud arrangement in which the provider owns and manages the hardware, operating system, and applications in the cloud, while the customer retains ownership of the data?

Question 36

What is one of the services offered by many MSPs, where they monitor firewalls and other security tools to provide expertise in triaging events?

Answer 36

Managed Detection and Response (MDR) Service

Question 37

Which cloud computing model allows an enterprise to scale up new software or data-based services/solutions quickly without massive hardware installation?

Question 38

Which organization’s definition of cloud computing is commonly used globally?

Answer 38

National Institute of Standards and Technology (NIST)

Question 39

What is the main purpose of an SLA?

Answer 39

To document specific parameters and minimum service levels

Question 40

What distinguishes Memoranda of Understanding (MOU) or Memoranda of Agreement (MOA) from Service Level Agreements (SLA)?

Answer 40

MOUs/MOAs are more directly related to what can be done with a system or information, while SLAs specify more intricate aspects of services

Question 41

Application programming interface (API)

Answer 41

A set of routines, standards, protocols, and tools for building software applications to access a web-based software application or web tool.

Question 42

Byte

Answer 42

The byte is a unit of digital information that most commonly consists of eight bits.

Question 43

Encapsulation

Answer 43

Encapsulation
Enforcement of data hiding and code hiding during all phases of software development and operational use. Bundling together data and methods is the process of encapsulation; its opposite process may be called unpacking, revealing, or using other terms. Also used to refer to taking any set of data and packaging it or hiding it in another data structure, as is common in network protocols and encryption.

Question 43

Domain Name Service (DNS)

Answer 43

Domain Name Service (DNS)
This acronym can be applied to three interrelated elements: a service, a physical server and a network protocol.

Question 43

File Transfer Protocol (FTP)

Answer 43

File Transfer Protocol (FTP)
The internet protocol (and program) used to transfer files between hosts.

Question 44

Fragment attack

Answer 44

In a fragment attack, an attacker fragments traffic in such a way that a system is unable to put data packets back together.

Question 45

Infrastructure as a Service (IaaS)

Answer 45

The provider of the core computing, storage and network hardware and software that is the foundation upon which organizations can build and then deploy applications. IaaS is popular in the data center where software and servers are purchased as a fully outsourced service and usually billed on usage and how much of the resource is used.

Question 46

Internet Control Message Protocol (ICMP)

Question 47

Internet Protocol (IPv4)

Answer 47

Standard protocol for transmission of data from source to destinations in packet-switched communications networks and interconnected systems of such networks

Question 48

Man-in-the-Middle

Answer 48

An attack where the adversary positions himself in between the user and the system so that he can intercept and alter data traveling between them.

Question 49

Microsegmentation

Answer 49

Microsegmentation
Part of a zero-trust strategy that breaks LANs into very small, highly localized zones using firewalls or similar technologies. At the limit, this places firewall at every connection point.

Question 50

Packet

Answer 50

Representation of data at Layer 3 of the Open Systems Interconnection (OSI) model.

Question 51

Payload

Answer 51

The primary action of a malicious code attack.

Question 52

Platform as a Service (PaaS)

Answer 52

The web-authoring or application development middleware environment that allows applications to be built in the cloud before they’re deployed as SaaS assets.

Question 53

Payment Card Industry Data Security Standard (PCI DSS)

Answer 53

An information security standard administered by the Payment Card Industry Security Standards Council that applies to merchants and service providers who process credit or debit card transactions.

Question 54

Simple Mail Transport Protocol (SMTP)

Answer 54

Simple Mail Transport Protocol (SMTP)
The standard communication protocol for sending and receiving emails between senders and receivers.

Question 54

Software as a Service (SaaS)

Answer 54

The cloud customer uses the cloud provider’s applications running within a cloud infrastructure. The applications are accessible from various client devices through either a thin client interface, such as a web browser or a program interface. The consumer does not manage or control the underlying cloud infrastructure including network, servers, operating systems, storage, or even individual application capabilities, with the possible exception of limited user-specific application configuration settings

Question 54

Spoofing

Answer 54

Faking the sending address of a transmission to gain illegal entry into a secure system

Question 54

VLAN

Answer 54

VLAN
A virtual local area network (VLAN) is a logical group of workstations, servers, and network devices that appear to be on the same LAN despite their geographical distribution.

Question 54

Transport Control Protocol/Internet Protocol (TCP/IP) Model

Answer 54

Internetworking protocol model created by the IETF, which specifies four layers of functionality: Link layer (physical communications), Internet Layer (network-to-network communication), Transport Layer (basic channels for connections and connectionless exchange of data between hosts), and Application Layer, where other protocols and user applications programs make use of network services.

Question 54

VPN

Answer 54

A virtual private network (VPN), built on top of existing networks, that can provide a secure communications mechanism for transmission between networks.

Question 54

Zenmap

Answer 54

The graphical user interface (GUI) for the Nmap Security Scanner, an open-source application that scans networks to determine everything that is connected as well as other information.

Question 54

WLAN

Answer 54

A wireless area network (WLAN) is a group of computers and devices that are located in the same vicinity, forming a network based on radio transmissions rather than wired connections. A Wi-Fi network is a type of WLAN.

Question 54

Zero Trust

Answer 54

Removing the design belief that the network has any trusted space. Security is managed at each possible level, representing the most granular asset. Microsegmentation of workloads is a tool of the model.

Question 55

Network model upper layer

Answer 55

Application, layers 5-7

Question 56

Network model lower layer

Answer 56

Data transport, layers 1-4

Question 57

Network model layer 1

Answer 57

Physical layer

Question 58

Network model layer 2

Answer 58

Data link

Question 59

Network model layer 3

Answer 59

Network

Question 60

Network model layer 4

Answer 60

Transport

Question 61

Network model layer 5

Answer 61

Session

Question 62

Network model layer 6

Answer 62

Presentation

Question 63

Network model layer 7

Answer 63

Application

Question 64

What is the primary responsibility of the upper layer (host or application layer) in a network model?

Answer 64

Transforming data into a format that any system can understand

Question 65

Which layer of the OSI model corresponds to the Internet Layer in the TCP/IP protocol architecture?

Answer 65

Network Layer

Question 66

What protocol is often used by embedded systems when connected to a corporate network?

Answer 66

TCP/IP