Mastering Security Basics

Question 1

What are the 3 definitions for MAC

Answer 1

Media Access Control
Mandatory Access Control
Message Authentication Code

Question 2

POSSIBILITY of a threat exploiting a vulnerability & resulting in a loss

Answer 2

Risk

Question 3

Any circumstance or event with potential to COMPROMISE CONFIDENTIALITY, INTEGRITY, OR AVAILABILITY

Answer 3

Threat

Question 4

Reducing chances that a threat will exploit a vulnerability

Answer 4

Risk mitigation

Question 5

Open source standards used to create one-time-use passwords

Answer 5

HOTP & TOTP

Question 6

PAP

Answer 6

Password Authentication Protocol (Passwords or PINs in CLEARTEXT)

Question 7

CHAP

Answer 7

Challenge Handshake Authentication Protocol - encrypted improvement on PAP. Uses CHALLENGE-RESPONSE authentication process.

Question 8

SAML

Answer 8

XML based authentication for web applications

Question 9

Radius

Answer 9

Authentication for remote access services. Uses shared secret passwords, and only encrypts during authentication. UDP only.

Question 10

Diameter

Answer 10

Encrypted improvement on Radius. Uses TCP.

Question 11

TACACS+

Answer 11

Totally encrypted authentication protocol. Uses TCP

Question 12

Name 3 AAA (Authentication, Authorization, Accounting) protocols

Answer 12

Radius, Diameter, TACACS+