Features of A Strong Password

Question 1

Features of a strong password

Answer 1

• At least 8 characters
• Mix of lower case, upper case, numbers and symbols
• No guessable information such as names

Question 2

Purpose of a firewall

Answer 2

• A piece of software (or hardware) that monitors incoming and
  outgoing signals
• Can prevent unwanted incoming/outgoing signals
• Can block transmissions from unwanted/unknown IP address
• Can prevent hacking

Question 3

Description of user access levels

Answer 3

Giving people different permission, e.g. some people cannot read files, some people can read and not change files and some people have full access

Question 4

Description of encryption

Answer 4

• Jumbling up data … read without knowing the key to decrypt it, the data will not make sense
• Prevents people understanding data if they intercept it

Question 5

Description and purpose of network forensics

Answer 5

• Monitoring what is happening on a network,
  e. g what is being requested and transmitted
• Analysing the data to find problems, illegal
  activities etc.

Question 6

Examples of network policy

Answer 6

• Strong passwords
• Unable to download files from the Internet
• Unable to access external media, e.g USB pen drive
• Unable to Install software

Question 7

Definition of an SQL injection

Answer 7

• Entering SQL statements into a text book on a website
• When the form is submitted the query is executed by the database and
  returns data meeting the query

Question 8

Threats of a network

Answer 8

• Virus/malware
• Spyware
• Hacker
• People e.g shoulder surfing
• Brute force attack
• Data interception
• Poor network policy
• SQL injection

Question 9

Definition of a Virus

Answer 9

• A piece of software
• • that can replace itself

*- that can cause damage to a computer system or
the data

Question 10

How are people the ‘weak point’ in a system?

Answer 10

• People’s carelessness can cause problems,
  e.g leaving a computer logged on, using
  weak passwords
• People can perform malicious acts e.g shoulder
  surfing

Question 11

Definitions and examples of malware

Answer 11

• Software designed to cause damage to a
  computer system/data
• e.g virus (Trojan, worm spyware)

Question 12

Importance of keeping data secure

Answer 12

• Data is valuable and private; data needs
  protecting from being stolen and used for
  malicious needs

Question 13

Definition of a denial of service attack

Answer 13

• Sofware is designed to make lots and lots of
  requests to a web server
• The web server cannot take that many requests
  and the website goes down

Question 14

Purpose of network policies

Answer 14

• Rules of governing the use of the network
• Poor policy = rules for using the network that do
  not keep he data secure

Question 15

Description of penetration testing

Answer 15

Trying to gain unauthorised access into a system by all means in the order, to identify the weak points, so they can be fixed

Question 16

Purpose of anti-malware software

Answer 16

When run, it scans a computer to find malware and either removes it or quarantines it

Question 17

Definition of data interception

Answer 17

• A piece of software
• …downloaded without knowledge
• …that records keyboard presses
• …that sends the data o a third party to
  analyse

Question 18

Definition of a brute force attack

Answer 18

Someone (or a computer) methodically tries to gain access to a computer system, e.g. by trying all password combinations

Question 19

Definition of spyware

Answer 19

Data is being transmitted somewhere, and someone (other than the intended recipient) accesses the transmission and reads t he data

Question 20

Purpose of network policies

Answer 20

• Rules for governing the use of the network

* Poor policy=rules for using the network that do not keep the data secure

Question 21

Description of penetration testing

Answer 21

Trying to gain unauthorised access into a system by all means in order to identify the weak points so they can be fixed

Question 22

Purpose of anti-malware software

Answer 22

When run, it scans a computer to find malware and either removes it or quarantines it

Question 23

Definition of data interception

Answer 23

• A piece of software
• …downloaded without knowledge
• …that records keyboard presses
• …and sends the data to a third party to analyse

Question 24

Definition of a brute force attack

Answer 24

Someone(or a computer) methodically tries to gain access to a computer system, e.g. by trying all password combinations

Question 25

Definition of spyware

Answer 25

Data is being transmitted somewhere, and someone other than the intended recipient accesses the transmission and reads the data

Question 26

Purpose of antivirus software

Answer 26

• when run, it scans a computer to find viruses and either removes them or quarantines them
• Scans download files for viruses; warning the user of any present

Question 27

Definition of a hacker

Answer 27

A person who attempts to gain unauthorised access to a computer system

Question 28

Purpose of anti-virus spyware software

Answer 28

• When run, it scans a computer to find spyware and either removes it or quarantines them
• Scans downloaded files for spyware; warning the user of any present