Lesson 8B Configure Browser Security

Question 1

Browser Selection and Installation

Question 2

Trusted Sources

Answer 2

Installer package that can be verified by a Digital Certificate or Cryptographic Hash.
Ex. Apple Store, Google Play Store

Question 3

Untrusted Sources

Answer 3

Installer package that can’t be verified by a Digital Certificate or Cryptographic Hash.

Question 4

Browser Extensions and Plug-Ins

Answer 4

A browser add-in is some type of code that adds to the basic functionality of the software.

Question 5

Extensions

Answer 5

add or change a browser feature via its application programming interface (API).

Question 6

Plug-ins

Answer 6

play or show some sort of content embedded in a web page, such as Flash, Silverlight, or another video/multimedia format.

Question 7

Apps

Answer 7

support document editing in the context of the browser

Question 8

Default Search Providers

Answer 8

sets the site used to perform web searches directly from the address bar.
Principle Risk is that the malicious provider could redirect results through a spoofed site.

Question 9

Themes

Answer 9

change the appearance of the browser using custom images and color schemes.
Exposes the browser to coding vulnerabilities via specially crafted image files.

Question 10

Browser Settings

Answer 10

Each browser maintains it’s own settings via it’s Meatball (…) or Hamburger (☰) menu button.
open the internal URL, such as chrome://settings, edge://settings , or about:preferences (Firefox).

Question 11

Sign-in and Browser Data Synchronization

Answer 11

A browser sign-in allows the user to synchronize between instances of the browser software on different devices.
Browser Settings, items that can be synced include bookmarks, history, saved autofill entries, and passwords.

Question 12

Password Manager

Answer 12

Suggest a strong password at each new account sign-up or credential reset and autofill this value when the user needs to authenticate to the site.

Question 13

Secure Connections and Valid Certificates

Answer 13

Transport Layer Security and Digital Certificates are used in web browsers to implement a secure connection.

Question 14

Secure Connection

Answer 14

Validates the identity of the host running a site and encrypts communication to protect against snooping.

Question 15

Browser Privacy Settings

Answer 15

The main function of privacy controls is to govern sites’ use of these tracking tools, such as cookies .A cookie is a text file used to store session data.

Question 16

Pop-up Blockers

Answer 16

Prevents a website from creating dialogs or additional windows. Pop-ups are used to show fake AV alerts or, nuisance ads.

Question 17

Ad Blocker

Answer 17

Browser feature or add-in that prevents third-party content from being displayed when visiting a site.

Question 18

Clearing cache and browsing data options

Answer 18

Used in order to delete browsing history.

Question 19

Private/incognito browsing mode

Answer 19

Disables the caching features of the browser so that no cookies, browsing history, form fields, passwords, or temp files will be stored when the session is closed.