IAS LESSON 3

Question 1

this is related to scientific methods of identifying the authors of a crime by examining objects or substances involved in the crime

Answer 1

forensic analysis

Question 2

this aims to explain the state of a computing system by extracting information and using it to reconstruct the series of actions undertaken by the attacker

Answer 2

forensic analysis

Question 3

refers to the explanation of a cybercrime, based on the analysis of information or traces led by the attacker in the computing systems attacked

Answer 3

forensic analysis in the context of cybersecurity

Question 4

explain forensic analysis in your own words

Answer 4

Forensic analysis is like being a digital detective, searching for clues on computers and phones to solve crimes. It involves recovering deleted files and hidden data, analyzing the information to understand what happened, and preserving the evidence for use in court.

Question 5

practices where governments or governmental organizations perform surveillance and data collection at a national state

Answer 5

mass dataveillance

Question 6

performs surveillance and data collection on an individual of interest

Answer 6

personal dataveillance

Question 7

observation attacks, perturbation attacks, and hardware-targeted software attacks are classified as

Answer 7

physical attacks

Question 8

the attacks can target the hardware, the network, the system, the applications, or the user themselves.

Answer 8

intrusion attacks

Question 9

these are physical attacks based on the observation of the circuit behavior during a computation

Answer 9

side-channel analysis (sca) or observation attacks

Question 10

attacks where a device undergoes modification of physical parameters in order to obtain an incorrect behavior

Answer 10

fault/perturbation attacks (i.e. power glitches, clock glitches, laser pulses, and electromagnetic pulses)

Question 11

an example of this is the rowhammer attack, flipping memory bits while reading and writing another cell; effective on SSD disks

Answer 11

hardware-targeted software attacks

Question 12

this refers to finding a path for each packet sent on the internet, no matter its source and its destination; this can isolate a whole country or redirect all traffic through a surveillance point

Answer 12

routing

Question 13

a hierarchical decentralized naming system for the internet, with scalability and flexibility as key design goals; used for address resolution

Answer 13

Domain name system (DNS)

Question 14

the server cannot handle the load and thus does not respond to legitimate queries

Answer 14

Denial of Service (DOS)

Question 15

IP datagram are also known as

Answer 15

packets

Question 16

what are the two types of routing protocols

Answer 16

autonomous systems (single organization) and interconnection level (internet backbone level)

Question 17

this is the protocol currently in use on the internet for the exchange of routing and reachability information among autonomous systems

Answer 17

Border Gateway Protocol

Question 18

Peeking is irresistible. If there is information visible in the packet,
there is no way to keep an intermediate node from looking at it. So the ultimate defense of the end to end mode is

Answer 18

end-to-end encryption

Question 19

advanced and leveraging higher social intelligence to make people confident in the legitimacy of the request they received

Answer 19

spear fishing

Question 20

who are the weakest link in the security chain

Answer 20

users who are unaware of security issues and therefore easily deceived by simple attacks

Question 21

this aims at convincing the user to perform an action/provide sensitive information by gaining their trust

Answer 21

social engineering

Question 22

emotions, memory, or beliefs are referred to as

Answer 22

cognitive biases

Question 23

why is the education and awareness of good practice and cyber hygiene strategy of every computer user crucial

Answer 23

possible answers:
- avoid fake news
- mitigating cyber threats