Key Concepts Flashcards
1
Q
If unencrypted files were intercepted, which arm of the CIA triad would be breached or violated?
A
Confidentiality, because the files weren’t
Encrypted.
2
Q
If the CIA triad is too restrictive to describe an entire situation, what model should you use?
A
Pakerian hexad
3
Q
What is symmetric cryptography?
(AKA: Symmetric key cryptography)
A
Uses a single key to both encrypt the plaintext and decrypt the ciphertext.
They key must be shared between the sender and receiver and anyone with the key can decipher the text.
4
Q
Name a chief weakness of symmetrical cryptography.
A
The key must be shared between sender and recipient. If an attacker gets the key, they can potentially compromise confidentiality and integrity.
5
Q
What is a block cypher?
A
Takes a predetermined number of bits (or binary digits which are either a 1 or a 0), known as a block, and encrypts that block. Blocks typically have 64 bits but can be higher or lower.
6
Q
What is a stream cipher?
A
Encrypts each bit in the plaintext message one bit at a time.
7
Q
What two types of ciphers does symmetric cryptography make use of?
A
Block and stream ciphers
8
Q
What type of cipher is most frequently used in symmetrical cryptography?
A
Block ciphers.
9
Q
What kind of encryption is DES?
A
Symmetric
10
Q
What kind of encryption is 3DES?
A
Symmetric
11
Q
What kind of encryption is AES?
A
Symmetric
12
Q
What is DES
A
Block cipher using a 56 bit key.
13
Q
What is AES
A
Symmetrical cipher using 3 different ciphers: one with a 128 bit key, one with a 192 bit key, and one with a 256 bit key. All of which encrypt blocks of 128 bits.
14
Q
What kind of encryption is Twofish?
A
Symmetric block cipher
15
Q
What kind of encryption is Serpent?
A
Symmetric block cipher
16
Q
What kind of encryption is Blowfish?
A
Symmetric block cipher
17
Q
What kind of encryption is Cast5?
A
Symmetric block cipher
18
Q
What kind of encryption is RC6?
A
Symmetric block cipher
19
Q
What kind of encryption is IDEA
A
Symmetric block cipher
20
Q
What kind of encryption is RC4
A
Symmetric stream cipher
21
Q
What kind of encryption is ORYX?
A
Symmetric stream cipher
22
Q
What kind of encryption is SEAL?
A
Symmetric stream cipher
23
Q
What is asymmetric key cryptography?
A
Uses two keys: a public key and a private key.
You use the public key to encrypt the data and the private key to decrypt the data. Anyone can access the public key, only the host can access the private key.
24
Q
What is the main advantage asymmetric cryptography has over symmetric cryptography?
A
You don’t need to distribute the key.
25
What kind of encryption is RSA?
Asymmetric
26
What kind of encryption is used in Secure Sockets Layer (SSL) protocol?
RSA asymmetric key algorhithm.
27
SSL
Secure sockets layer protocol
28
ECC
Elliptic curve cryptography
29
What is elliptic curve cryptography ECC?
A class of cryptographic algorithms. Can use short keys while maintaining a higher cryptographic strength than many other types of algorithms.
30
What kind of encryption does SHA-2 use
Elliptic curve cryptography (ECC) (Asymmetric)
31
SHA-2
Secure hash algorhithm 2
32
ECDSA
Elliptic curve digital signature algorhithm.
33
What kind of encryption is ElGamal?
Asymmetric algorithm
34
What kind of encryption is Diffie-Hellman?
Asymmetric algorithm
35
What kind of encryption is Digital signature standard (DSS)
Asymmetric algorithm
36
DSS
Digital signature standard
37
What kind of encryption does Pretty good privacy (PGP) use?
Asymmetric cryptography
38
What kind of encryption does Transport Layer Security TLS use?
Asymmetric cryptography
39
TLS
Transport Layer Security
40
ITAR
International traffic in arms regulations
41
What are the 3 types of modern cryptography?
Symmetrical
Asymmetrical
Hash
42
MD5
Message-direct 5
43
What kind of encryption is MD5
Hash
44
What kind of encryption is Sha-3
Hash
45
What is a digital signature?
Allows you to sign a message so that others can detect any changes to the message after you’ve sent it, ensure that the message was legitimately sent by the expected party, and prevent the sender from denying that they sent the message.
46
How would you digitally sign a message?
Sender generates a hash of the message then uses their private key to encrypt the hash. The sender then sends this digital signature along with the message, usually by appending it to the message itself.
When the message arrives at the receiving end, the receiver uses the public key corresponding to the senders private key to decrypt the digital signature thus restoring the original hash of the message. Receiver can then verify the message’s integrity by hashing the message again and comparing the two hashes.
47
What is a digital certificate?
Created by taking the public key and identifying information such as name and address and having them signed by a trusted entity that handles digital certificates called a certificate authority.
48
Name a well known certificate authority.
VeriSign
49
PKI
Public key infrastructure
50
Name 3 free or open source encryption products
VeraCrypt
BitLocker
dm-crypt (Linux only)
51
What are the two types of compliance?
Regulatory and industry compliance
52
What is regulatory compliance?
Adherence to the laws specific to the industry in which you’re operating.
53
What is industry compliance?
Adherence to the regulations that aren’t mandated by law but that can nonetheless have severe impacts on your ability to conduct business.
54
PCI DSS
Payment card industry data security standard
55
What are physical controls?
Mitigate risks to physical security.
56
What 3 kinds of controls will you use to achieve compliance with standards and regulatory requirements?
Physical
Administrative
Technical
57
What are administrative controls?
Mitigate risks by implementing certain processes and procedures.
58
What are technical controls?
Manage risk by using tehnical measures such as firewalls, access control lists ACL’s, Intrusion detection systems IDS, etc.
59
What are Key controls?
The primary controls used to manage risk in your environment
60
What are the 3 characteristics of key controls?
1. They provide a reasonable degree of assurance that the risk will be mitigated
2. If the control fails, it is unlikely that another control could take over for it.
3. The failure of this control will affect an entire process.
61
What are compensating controls?
Controls that replace impractical or unfeasible key controls.
62
What are the 4 steps to maintaining compliance? (In reference to regulations and controls)
1. Monitor
2. Review
3. Document
4. Report
63
FISMA
Federal information security management act
64
FedRAMP
Federal risk and authorization management program
65
What is the federal information security management act (FISMA)?
Applies to all US federal government agencies, all state agencies that administer federal programs, and all private companies that support, sell to, or receive grant money from the federal government.
Requires that an organization implement information security controls that use a risk-based approach—one that handles security by enumerating and compensating for specific risks.
66
ATO
Authority to operate
67
What is FedRAMP federal risk and authorization management program?
Defines rules for government agencies contracting with cloud providers.
FedRAMP certification consists of a single Authority to Operate ATO that allows an organization to do business with any number of federal agencies.
68
What is the Sarbanes—Oxley Act SOX?
Regulates financial data, operations, and assets fro publicly held companies.
Places specific requirements on an organizations electronic record keeping, including integrity of records, retention periods for certain kinds of information, and methods of storing electronic communications.
69
What is the Gramm-Leach-Blilley Act? GLBA
Protects information such as personally identifiable information PII, and financial data belonging to the customers of financial institutions.
You must secure every pertinent record against unauthorized access, track people’s access to these records, and notify customers when you share their information.
70
What is the children’s internet protection act CIPA?
Requires schools and libraries to prevent children from accessing obscene or harmful content over the internet.
Requires these institutions to have policies and technical protection measures in pace to block or filter such context.
71
CIPA
Children’s internet protection act
72
COPPA
Children’s online privacy protection act
73
what is children’s online privacy protection act COPPA?
Protects the privacy of minors younger than 13 by restricting organizations from collecting their personally identifiable information PII, requiring the organizations to post a privacy policy online, make reasonable efforts to obtain parental consent, and notify parents that information is being collected.
74
FERPA
Federal educational rights and privacy act
75
What is FERPA federal education rights and privacy act?
Protects students records, applies to students at all levels. Defines how institutions must handle student records to protect them and how people can view or share them.
76
GDPR
General data protection regulation
77
What is the general data protection regulation GDPR?
Covers data protection and privacy for all individuals in the European Union.
Requires that organizations get consent before collecting people’s data, report data breaches, give individuals the right to access and remove collected data, and set specific guidelines for privacy and privacy programs.
78
ISO
International organization for standardization
79
What port does IMAP use?
143
80
What port does File transfer protocol use?
20 and 21
81
what port does secure shell SSH use?
22
82
What port does HTTP use?
Port 80
83
What ports are known as well known ports?
0-1023
84
What is the Bell-LaPadula Model?
Combines Discretionary access control DAC and mandatory access control MAC.
No read up, no write down
85
No read up, no write down
Bell-LaPadula Model
86
Which aspect of the CIA triad is the Bell LaPadula model most concerned with?
Confidentiality.
87
In the Bell-LaPadula Model, does MAC or DAC take priority?
MAC takes priority, DAC works within MAC controls.
Mandatory access control and discretionary access control
88
What is the Biba Model?
No write up, no read down
89
What aspect of the CIA triad is the Biba model most concerned with?
Integrity, even at the expense of confidentiality.
90
No write up, no read down
Biba model
91
What is the brewer and Nash model?
Chinese Wall.
Prevents conflicts of interest.
Level of access changes dynamically based on materials previously accessed.
92
What is OPSEC?
Operations Security.
Process used to protect your information. Not only security measures in place but also identifying what you need to protect and what you need to protect it against.
93
What is application security?
Securing your applications
94
What is a sandbox?
An isolated environment containing a set of resources for a given purpose.
95
ACL
Access control list
96
What is access control?
A method of implementing authorization tools to allow/deny access.
97
ABAC
Attribute-based access control
98
What is attribute-based access control?
Based on specific attributes of a person, resource, or environment. Subject-attributes belong to individuals.
99
What is mandatory access control?
Owner of a resource doesn’t determine who gets access. A separate group/individual has authority to set access to resources.
100
What is discretionary access control?
Owner of the resource determines who gets access to it and exactly what level of access they have.
101
What is mutual authentication?
Authentication mechanism in which both parties in a transaction authenticate each other.
102
What is network segmentation?
Dividing network into smaller networks called subnets. Controls the flow of traffic between subnets.
103
What is a hardware token?
Small device, usually the size and shape of a credit card or keychain fob or usb. Contains a certificate or unique identifier.
104
What is a fuzzer?
A tool used to help find completely unexpected problems. Works by bombarding apps with all kinds of data and inputs from a variety of sources hoping to get the app to fail or do something unexpected.
105
Name two kinds of port scanners.
OpenVAS
NMAP
106
What kind of tool is wireshark?
A sniffer
107
What is a sniffer?
Also known as a packet sniffer.
Network/protocol analyzer
Intercepts (sniffs) traffic on a network.
108
What is a firewall?
Mechanism for maintaining control over traffic that flows in/out of networks. Placed where level of trust changes.
109
RAID
Redundant arrays of inexpensive disks.
110
What is deep packet inspection?
A type of firewall that can reassemble contents of traffic. Opens everything.
Privacy concerns.
111
What is a stateful firewall?
Functions on the same level/general principle as packet filtering firewalls.
They keep track of traffic at a granular level. Allows only traffic that is part of a new or existing connection and prevents some intentionally disruptive traffic (attacks)
112
What is a packet filter?
One of the simplest firewalls. Looks at content of each packet individually and allows or denies based on source IP and destination IP, port, and protocol being used.
113
What is a packet sniffer?
A network / protocol analyzer.
114
What kind of an attack is SQL injection?
Server side attack
115
What kind of attack is cross-site scripting?
Client-side attack
116
What kind of attack is cross-site request forgery?
Client side attack
117
What kind of an attack is clickjacking?
Client-side attack
118
What is SQL injection?
Privilege escalation. Input containing SQL commands is submitted to the app. Ex: “or 1=1” input for username. May cause system to automatically record you entered a valid username
119
What is cross-site scripting?
Attack carried out by placing code written in scripting language into a web page or other media like adobe flash displayed by client browser. When others view this media, it automatically executes the hidden code completing the attack.
120
What is cross-site request forgery?
Confused deputy. Misuses the browsers authority.
If attacker knows of or can guess a website that’s already authenticated a user, such as amazon, can embed a link in web page or HRML based email generally an image hosted by a site the attacker controls, when browser attempts to retrieve link, executes additional commands
121
3 types of magnetic media
Hard drives
Tapes
Floppy disks
122
What physical conditions can harm magnetic media?
Strong magnetic fields.
Jolting magnetic media while it’s in motion can render the media unusable.
123
Name two types of optical media
CDs DVDs
124
What physical conditions threaten optical media?
Scratches, temperature sensitive.
Very sensitive and easy to destroy in general.
125
What is a signature based IDS?
Works like most antivirus systems. Maintain a database of signatures that might signal an attack and compare incoming traffic to these signatures.
126
What is an anomaly based IDS?
Works by determining the normal kinds of traffic and activity taking place on the network. They then measure present traffic against this baseline in order to detect patterns that aren’t present in the traffic normally.
Can detect new attacks or attacks that have been deliberately designed to avoid IDS detection.
127
What is Kali?
A penetration testing tool for LINUX specifically.
128
What is Kismet?
One of the best-known tools for detecting rogue access points and devices.
Commonly used by penetration testers to detect wireless access points and can find them even when they’re well hidden.
129
Name two tools that can help break through different kinds of encryption in use on wireless networks.
Two more common ones for cracking WEP, WPA, and WPA2 include
CoWPAtty and Aircrack-NG.
130
What is Tcpdump?
A classic sniffer.
Command line tool.
Runs only on UNIX-like OS.
131
What is WinDump?
A windows equivalent of Tcpdump.
A packet sniffer.
132
What is OptiView Portable Network Analyzer from Fluke Networks?
A hardware packet sniffer.
133
What is Scapy?
Can map the topology of firewalls and help locate vulnerabilities in them.
Can construct specially crafted Internet control message protocol ICMP packets that evade some of the normal measures put in place to prevent you from seeing the devices that are behind a firewall and may allow you to enumerate some of them.
Can manipulate network traffic and test how firewalls and IDS respond.
134
What port does hypertext transfer protocol secure HTTPS use?
443
135
What is Rapid7’s Metasploit
An exploit framework / tool.
136
What is Immunity CANVAS?
An exploit framework / tool
137
What is Core Impact?
An exploit framework / tool.
