MS-09-P1 Microsoft Endpoint Security

Question 1

Scrambles computer information

Answer 1

Encryption

Question 2

Used to encrypt (scramble) and decrypt (unscramble) data

Answer 2

Keys

Question 3

Utilizes many available algorithms and methods

Answer 3

Symmetric (shared key) and asymmetric (public/private key)

Question 4

Pre installed in windows 10 and provides disk encryption method for OS, uses key lengths of 128 and 256, provides pre-boot protection, network unlock, GUI and Powershell managment

Answer 4

BitLocker

Question 5

used for bitlocker key protection

Answer 5

TPM - Trusted Platform Module

Question 6

A microcontroller embedded in the system and generates cryptographic keys

Answer 6

TPM - Trust Platform Module

Question 7

An application that allows restricting multiple apps with a single rule. helps administrators control which apps and files users can run, including executable files, scripts, dynamic-link libraries (DLLs),and others.

Answer 7

AppLocker

Question 8

Is a policy used to identify applications

Answer 8

Application Identify

Question 9

T or F: Policy should be set to automatic for any AppLocker usage

Answer 9

True

Question 10

.exe

Answer 10

Executable

Question 11

.msi, .msp, .mst

Answer 11

Windows Installer

Question 12

.ps1, .bat, .cmd, .vbs, .js

Answer 12

Script

Question 13

Make sure files function properly

Answer 13

AppLocker Default Rules

Question 14

Uses the app’s digital signature for identification

Answer 14

Publisher

Question 15

Uses the app’s location in the file system for identification

Answer 15

Path

Question 16

Identifies a file by a generated hash

Answer 16

File Hash

Question 17

Ptovides network traffic protection and enables program integration

Answer 17

Windows Firewall

Question 18

Enabls exception configuration

Answer 18

Windows Firewall

Question 19

Rules that manage incoming traffic`

Answer 19

Inbound rules

Question 20

manage traffic generated in the system and sent out of the system

Answer 20

Outbound Rules

Question 21

This section focuses on file sharing in the Windows environment

Answer 21

Server Message Block (SMB)

Question 22

a shared resource over the network requires authentication and permission-based authorization.

Answer 22

Access Process

Question 23

permissions(or authorization)determine the type of access users have to the shared folder across the network.

Answer 23

Sharing-level

Question 24

Security permissions are used to manage access to files and folders stored in the local NTFS file system.

Answer 24

security permissions(or simply permissions) and share permissions

Question 25

s another advanced feature of NTFS. NTFS maintains a detailed log of disk changes, failures, and errors.

Answer 25

Fault tolerance

Question 26

File or folder access can be denied by explicitly adjusting settings to deny certain users. Deny permission overrides granted permissions.

Answer 26

Deny Permission

Question 27

is the process of scrambling data in order to convert it into a non-human-readable format.

Answer 27

Host Encryption

Question 28

employ the use of one key for both the encryption and decryption of data.

Answer 28

Symmetric ciphers