N2K - Flash Cards - General Security Concepts - Summarize Fundamental Security Concepts

Question 1

In the data plane, what term refers to entities requesting access to resources?

Answer 1

Subject/System

Question 2

Which type of security mechanism lures attackers by simulating valuable files?

Answer 2

Honeyfile

Question 3

What is the purpose of threat scope reduction?

Answer 3

To minimize the potential impact of security incidents

Question 4

What is a network of decoy systems designed to detect and observe malicious activity?

Answer 4

Honeynet

Question 5

Which control plane component evaluates and enforces security policies in real-time?

Answer 5

Policy Engine

Question 6

Which type of sensor detects motion by emitting microwave signals and analyzing reflections?

Answer 6

Microwave Sensors

Question 7

Which type of sensor triggers alarms upon detecting changes such as footsteps?

Answer 7

Pressure Sensors

Question 8

Which type of sensor detects heat signatures to identify potential threats?

Answer 8

Infrared Sensors

Question 9

Which access control method enforces rules based on predefined policies?

Answer 9

Policy-Driven Access Control

Question 10

In the control plane, who is responsible for creating and managing security policies within an organization?

Answer 10

Policy Administrator

Question 11

Which data plane component enforces access control policies at the network perimeter?

Answer 11

Policy Enforcement Point

Question 12

Which environmental security measure illuminates areas to deter intruders?

Answer 12

Lighting

Question 13

Which logical part of a network architecture processes and forwards user traffic?

Answer 13

Data Plane

Question 14

What is the purpose of a bollard?

Answer 14

A bollard is a physical security control that prevents cars from accessing certain areas. They are most often deployed in front of retail storefronts.

Question 15

Which logical component of a network architecture manages traffic forwarding decisions?

Answer 15

Control Plane

Question 16

What is a honeypot?

Answer 16

A decoy system in your network installed to lure potential intruders away from legitimate systems

Question 17

What is an access control vestibule?

Answer 17

Also called a mantrap, it is a door system that allows for someone to be physically identified prior to entering the facility.

Question 18

Which category of controls includes controlling access to different parts of a building, implementing locking systems, installing fencing, implementing environmental controls, and protecting the facility perimeter?

Answer 18

Physical Controls

Question 19

Which security model assumes no trust, even within internal networks?

Answer 19

Zero Trust

Question 20

Which security concept adjusts user privileges dynamically based ontheir behavior, their connecting devices, and/or their location?

Answer 20

Adaptive Identity

Question 21

Which physical credential grants entry to secure areas?

Answer 21

Access Badge

Question 22

Which security concept assumes all network traffic in a particular segment is trusted by default?

Answer 22

Implicit Trust Zones

Question 23

Which type of sensor uses high-frequency sound waves to detect movement or presence?

Answer 23

Ultrasonic Sensors

Question 24

Which security concept ensures that a sender cannot deny the authenticity or integrity of a message?

Answer 24

Non-Repudiation

Question 25

Which physical security measure involves human presence to monitor and respond to threats?

Answer 25

Security Guard

Question 26

What is the term for a server that has been configured specifically to distract an attacker from production systems?

Answer 26

Honeypot

Question 27

Which physical security measure uses cameras to monitor and record activities?

Answer 27

Video Surveillance

Question 28

What are the two planes of responsibility in zero trust?

Answer 28

Control plane and data plane

Question 29

Which assessment method identifies discrepancies between the current and the desired security states?

Answer 29

Gap Analysis

Question 30

Which concept provides the proof of origin of data, preventing the sender from claiming they were not the one who sent it?

Answer 30

Non-Repudiation

Question 31

What is a honeynet?

Answer 31

When two or more honeypots are implemented on a network