LP - Security Goals and Controls

Question 1

CIA Triad stands for

Answer 1

Confidentiality, Integrity, Availability

Question 2

PII stands for

Answer 2

Personally identifiable information

Question 3

PHI stands for

Answer 3

Personal health information

Question 4

High availability is a

Answer 4

failover feature to ensure availability during interruptions

Question 5

AAA stands for

Answer 5

Authentication, Authorization, and Accounting (AAA)

Question 6

Character mode in AAA is

Answer 6

keystrokes and commands sent for configuration or administration

Question 7

Packet (or network) mode occures when the

Answer 7

network device serves as an authentication proxy on behalf of services in other networks eg web, FTP, DNS, etc

Question 8

In authentication the three way handshake should be done

Answer 8

after the authentication process

Question 9

Accounting is generally implement for two use cases they are

Answer 9

• Monitoring, visibility and reporting
• Billing, chargeback, and reporting

Question 10

RADIUS is used for accounting and is based on what service

Answer 10

AAA

Question 11

Endpoint (or device) Authentication is a security technique to ensure only

Answer 11

authorized devices can connect

Question 11

NPE’s are what?

Answer 11

Non-person entities

Question 12

Endpoint management is also used in

Answer 12

M2M (machine to machine)

Question 13

Some endpoint authentication methods (5) are

Answer 13

• shared secret key
• X.509 v3 device certificate
• cryptographic key, certificate or other credential stored on the hardware
• Hardware security module (HSM)
• Protected access file (PAC) in a Cisco system

Question 14

Authorization Model DAC stands for

Answer 14

Discretionary access control

Question 15

DAC has fine grained control over access but it can result in

Answer 15

inconsistent access control decisions

Question 16

Authorization Model DAC is prone to

Answer 16

privilege creep

Question 17

Authorization Model RBAC stands for

Answer 17

Role-based access control

Question 18

Authorization Model MAC stands for

Answer 18

Mandatory access control

Question 19

Mandatory access control (MAC) is a strict maths model where access is determined by the system based on

Answer 19

predefined security labels and rules

Question 20

Principals in the MAC model are assigned

Answer 20

Security clearences or classification levels

Question 21

Resource objects in the MAC model are labeled with

Answer 21

Sensitivity levels

Question 22

Access in the MAC model is granted or denied by

Answer 22

comparing the security clearences or classification levels with the sensitivity levels

Question 23

The MAC model discretionary or non-discretionary

Answer 23

non-discretionary

Question 24

Authorization Model ABAC stands for

Answer 24

Attribute-based access control

Question 25

Authorization Model ABDAC stand for

Answer 25

attribute-based dynamic access control

Question 26

UBA stands for

Answer 26

user behavioural analytics

Question 27

Authorization Model Rule-based access contol has the same acrynom as

Answer 27

role-based access control