K04 - Network Device Security Concepts

Question 1

The three principles of network device security concepts are confidentiality, integrity, and availability. What model is used to illustrate and explain these principles?

Answer 1

cia triad model

Question 2

True/False Disabling DP on non-management interfaces is a way to avoid CDP manipulation.

Answer 2

true

Question 3

True/False Spoofing (DHCP / ARP) attacks and STP Attacks are types of brute force attacks.

Answer 3

false

Question 4

When a station is able to access VLAN other than its own; this is known as:

Question 5

__________ involves scanning a network for a list of ports that may identify devices responsible for routing.

• Routing
• Reconnaissance
• Detection
• Packet logging

Answer 5

Reconnaissance

Question 6

___________ exploitation is taking advantage of a vulnerability within a router or causing it to perform in a manner not intended by the owner.

Answer 6

router

Question 7

What is it called when an attacker floods the Content Addressable Memory (CAM) table with more MAC addresses than the switch can store?

Answer 7

MAC Flood

Question 8

List the two modes associated with Unidirectional Link Detection (UDLD):

Answer 8

normal, agressive

Question 9

A firewall can be identified by all of the following techniques EXCEPT:

• port scanning
• banner grabbing
• moonlighting
• firewalking

Answer 9

moonlighting

Question 10

__________ is the process of identifying firewall devices through the analysis of data obtained by sniffing and scanning.

Answer 10

firewall enumeration

Question 11

True/ False Since traceroute is 100% accurate, it is not necessary to use the Hping tool to help identify firewalls.

Answer 11

false

Question 12

Firewall and Router Enumeration Countermeasures include all of the following EXCEPT:

• Dynamic ARP inspection
• Multi-factor authentication
• Promiscuous mode detection
• Using higher-end switches

Answer 12

Multi-factor authentication

Question 13

True/ False Loop insulation prevents the switch from getting out of the blocking state to forwarding.

Answer 13

false

Question 14

___________ is defined as a process which establishes an active connection to the target hosts to discover potential attack vectors in the system.

Answer 14

enumeration

Question 15

Information gathering and enumeration can lead to all of the following EXCEPT:

• Implemented Security levels
• Routing policies and rules
• Data integrity
• Network addressing topologies

Answer 15

Data integrity

Question 16

True / False It is not necessary to block further attempts after a certain number of failed attempts if the user has a strong password.

Answer 16

false

Question 17

True / False It is not necessary to block further attempts after a certain number of failed attempts if the user has a strong password.

Answer 17

False

Question 18

___________ exploitation involves taking advantage of vulnerabilities within a switch.

Answer 18

switch

Question 19

Since both SSH versions 1 and 2 share the same set of vulnerabilities, both versions provide the same level of security.

Answer 19

false

Question 20

True/False If the VTY lines have telnet enabled; an attacker is able to sniff the traffic due to data being sent clear text.

Answer 20

true

Question 21

True / False Strong passwords can help deter successful brute force attacks.

Answer 21

true

Question 22

True/False If an attacker discovers the physical address of a router, they can spoof routing information to the targets.

Answer 22

false

Question 23

List the network security principle that matches the following definition: prevention of unauthorized access to sensitive information.

Answer 23

confidentiality

Question 24

Which network security principle matches the following description: Obtained through maintaining hardware and software, adequate communication connections (bandwidth and balancers), backups.

Answer 24

availability

Question 25

Which network security principle matches the following description: Can be obtained by training personnel on cyber security, strong passwords, encryption, two-factor authentication, biometrics, and security tokens.

Answer 25

confidentiality

Question 26

List the network security principle that matches the following definition: authorized access to information is consistent and readily accessible.

Answer 26

availability

Question 27

List the network security principle that matches the following definition: maintaining accuracy, consistency, and trustworthiness of the data’s life cycle.

Answer 27

integrity

Question 28

Which network security principle matches the following description: Examples include file permissions, user access controls (UAC), backups, checksums, and digital signatures.

Answer 28

integrity

Question 29

List the Firewall enumeration method that best matches the following description: enumerating the type of firewall being utilized by port numbers

Answer 29

port scanning

Question 30

List the Firewall enumeration method that best matches the following description: a method to discover metadata about a device.

Answer 30

banner grabbing

Question 31

List the Firewall enumeration method that best matches the following description: method of determining the movement of a data packet from an untrusted external host to a protected internal host through a firewall. A common technique is to craft packets with a TTL value set to expire one hop past a firewall.

Answer 31

firewalking

Question 32

List the Firewall enumeration method that best matches the following description: potential firewalls and routers are revealed by “request timed out” status.

Answer 32

traceroute