Module 3

Question 1

What is Checkpoint.com?

Answer 1

Shows a live cyber threat map.

Question 2

What are switches in a network?

Answer 2

Switches: help connect network segments together to allow for device connectivity.

Question 3

What are Servers/Clients in regards to networking?

Answer 3

Servers/Clients: are devices that transfer messages over the network.

Question 4

What is Transmission Medium?

Answer 4

Transmission Medium: is the medium used to transmit data over the network. This could be
ethernet, fiber, wireless, or various other mediums.

Question 5

What is router?

Answer 5

Router: connect different networks by forwarding data packets between them.

Question 6

What is a modem?

Answer 6

Modem: (stands for modulator/demodulator) are responsible for converting signals between
different mediums. For example, converting fiber to ethernet.

Question 7

What is an Endpoint Device?

Answer 7

Endpoint devices: Where messages on a network originated from and are received.

Question 8

What is a server?

Answer 8

Server: Devices that transfer messages over the network and facilitate communication
between end devices.

Question 9

What is a network?

Answer 9

Network: A group of devices connected to allow the sharing of data and resources

Question 10

What is a packet?

Answer 10

Packet: Pieces of information (data) sent across a network.

Question 11

What is a protocol?

Answer 11

Protocol: Predefined sets of rules describing how something should work or behave

Question 12

What is a LAN?

Answer 12

Local Area Network (LAN): A type of network infrastructure which connects users and end devices located in a small geographical area.

Question 13

What is a MAN?

Answer 13

Metropolitan Area Network (MAN): A type of network infrastructure that spans across a city or a metropolitan area.

Question 14

What is a WAN?

Answer 14

Wide Area Network (WAN): A collection of LANs spread over a large geographical area.

Question 15

Why is there a PAN?

Answer 15

Personal Area Network (PAN): A small network of two personal devices using wireless technology.

Question 16

What is Defense in Depth?

Answer 16

Defense in Depth: cybersecurity strategy that involves implementing multiple layers of security controls to protect against various types of threats.

Question 17

What is the CIA Triad?

Answer 17

The CIA triad represents the three pillars of information security: confidentiality, integrity, and availability, as follows:

Confidentiality – preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information

Integrity — guarding against improper information modification or destruction and ensuring information non-repudiation and authenticity

Availability – ensuring timely and reliable access to and use of information

Question 18

What is the NIST cybersecurity framework?

Answer 18

Identify – develop an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities

Protect – develop and implement appropriate safeguards to ensure delivery of critical services

Detect – develop and implement appropriate activities to identify the occurrence of a cybersecurity event

Respond – develop and implement appropriate activities to take action regarding a detected cybersecurity incident

Recover – develop and implement appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident

Question 19

What is ARP poisoning?

Answer 19

ARP Poisoning: An attack that compromises the address resolution process of a local
machine

Question 19

What is a network attack?

Answer 19

Network attacks: are malicious activities aimed at disrupting or gaining unauthorized access to computer networks.

Question 19

What is DoS? (Denial of Service)

Answer 19

Denial-of-Service (DoS): An attack that causes a service to fail by flooding the target with traffic or sending information that triggers a service crash

Question 20

What is Distributed DoS?

Answer 20

Distributed DoS: A DoS attack that is distributed among multiple sources to create a more
considerable amount of traffic.

Question 21

What is Exploit?

Answer 21

Exploit: techniques or code blocks designed to take advantage of software vulnerabilities

Question 22

What is Data in Transit?

Answer 22

Data in transit: Data moving from one location to another.

Question 23

What is Data at rest?

Answer 23

Data at rest: Data that is being stored or archived.

Question 24

What is data in use?

Answer 24

Data at rest: Data that is being stored or archived.

Question 25

What is data encryption?

Answer 25

Data encryption is the process of converting information into a secret code (or cipher) to hide its meaning. Using a specialized encryption algorithm, companies can encode their data so it becomes indecipherable to anyone but the intended recipient, who relies on another encryption algorithm on their end to decode the information.

The practice of encryption goes back to 4000 BC, when the ancient Egyptians used hieroglyphics to communicate with each other in a way only they would understand. Today, encryption has been adopted by businesses, governments and consumers to protect data stored on their computing systems, as well as information that flows in and out of their organizations.

This latter point is especially relevant for global organizations, with the EU laying out new guidelines on compliance for data exchanged between the United States and EU member states.[1] Data security and compliance requirements will only become more stringent and complex, requiring an equally sophisticated security approach.

Question 26

What are the 3 states of data?

Answer 26

ike oil, data can exist in multiple states, and it can quickly change states based on a company’s needs – for instance, when a finance controller needs to access sensitive revenue data that would otherwise be stored on a static database.

The first step in choosing the right encryption strategy is to understand the differences between three different states of data – in transit, at rest and in use – and the security challenges posed by each

Question 27

How do you protect data in motion?

Answer 27

Identify critical assets and their vulnerabilities
Define your organization’s framework for data security
Implement the necessary technologies and processes to protect your data in motion

Question 28

How do you protect data at rest?

Answer 28

Use security software
Implement firewalls
Use encryption
Deploy data loss prevention solutions

Question 29

How does the role of encryption in protecting the 3 data types?

Answer 29

While the risk profile for data in transit and data in use is higher than when it’s at rest, attackers regularly target information in all three states. As opportunists, they will look for any assets or intellectual property that are easy to breach. Encryption plays an integral role in a company’s defenses across all three states of data, be it protecting sensitive information while it’s being accessed or moved or encrypting files before storing them for an added layer of security against attacks on its internal servers.

Question 30

Why is encryption important?

Answer 30

Encrypting data turns your actual data into ciphertext and protects it from being read. Even if cyber criminals intercept your data, they won’t be able to view it. Data encryption is a surefire way to enhance security and protect your organization’s valuable data.

Question 31

What is segmentation?

Answer 31

Segmentation: Dividing networks into multiple segments or zones

Question 32

What is segregation?

Answer 32

Segregation: The process of isolating parts of a network from each other

Question 33

What is a firewall?

Answer 33

Firewall: A hardware or software entity designed to protect one network from another

Question 34

What is the zero Trust strategy?

Answer 34

Zero Trust assumes nobody is trustworthy by default, even those already inside the network perimeter. Zero Trust works on the principle of a “protect surface” built around the organization’s most critical and valuable DAAS. Because it contains only what’s most critical to business operations, the protect surface is orders of magnitude smaller than the attack surface of the full network perimeter.

This is where network segmentation comes in. Using segmentation, network architects can construct a microperimeter around the protect surface, essentially forming a second line of defense. In some instances, virtual firewalls can automate security provisioning to simplify segmenting tasks. However it is accomplished, authorized users can access assets within the protect surface while all others are barred by default.

Segmentation is bad news for attackers because, unlike in the days of assumed trust, simply penetrating the perimeter isn’t enough to gain access to sensitive information. Microperimeters, whether physical or virtual, prevent threats from moving laterally within the network, essentially negating much of the work that went into creating the initial breach (see figure 2).