Network Security Flashcards

1
Q

Network Security Fundamentals

A

▪ Networks are increasingly dependent on interconnecting with other
networks
▪ Risks exist not just on the untrusted Internet, but also inside our own
organization’s networks and must be minimized or eliminated
▪ Understanding the various threats facing our networks is important in
order to best defend the network against the onslaught of cyber-attacks
they are constantly facing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Network Security Goals

A

Commonly called the CIA Triad
● Confidentiality
● Integrity
● Availability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Symmetric Encryption (Confidentiality)

A

▪ Both sender and receiver use the same key
▪ DES (Data Encryption Standard)
● Developed in the mid-1970s
● 56-bit key
● Used by SNMPv3
3DES (Triple DES)
● Uses three 56-bit keys (168-bit total)
● Encrypt, decrypt, encrypt
▪ AES (Advanced Encryption Standard)
● Preferred symmetric encryption standard
● Used by WPA2
● Available in 128-bit, 192-bit, and 256-bit keys
▪ Sender and receiver use the same key to encrypt and decrypt the
messages

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Asymmetric Encryption (Confidentiality

A

▪ Uses different keys for sender and receiver
▪ RSA is the most popular implementation
▪ RSA algorithm is commonly used with a public key infrastructure (PKI)
▪ PKI is used to encrypt data between your web browser and a shopping
website
▪ Can be used to securely exchange emails
▪ Sender and receiver use different keys to encrypt and decrypt the
messages

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Integrity

A

▪ Ensures data has not been modified in transit
▪ Verifies the source that traffic originates from
▪ Integrity violations
● Defacing a corporate web page
● Altering an e-commerce transaction
● Modifying electronically stored financial records

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Hashing (Integrity)

A

▪ Sender runs string of data through algorithm
● Result is a hash or hash digest
▪ Data and its hash are sent to receiver
▪ Receiver runs data received through the same algorithm and obtains a
hash
▪ Two hashes are compared
● If the same, the data was not modified

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Hashing Algorithms (Integrity)

A

▪ Message digest 5 (MD5)
● 128-bit hash digest
▪ Secure Hash Algorithm 1 (SHA-1)
● 160-bit hash digest
▪ Secure Hash Algorithm 256 (SHA-256)
● 256-bit hash digest
▪ Challenge-Response Authentication Mechanism Message Digest 5
(CRAMMD5)
● Common variant often used in e-mail systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Availability

A

▪ Measures accessibility of the data
▪ Increased by designing redundant networks
▪ Compromised by
● Crashing a router or switch by sending improperly formatted data
● Flooding a network with so much traffic that legitimate requests
cannot be processed
o Denial of Service (DoS)
o Distributed Denial of Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Threat

A

▪ A person or event that has the potential for impacting a valuable
resource in a negative manner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Vulnerability

A

▪ A quality or characteristic within a given
resource or its environment that might
allow the threat to be realized
● Internal Threat
o Any threat that originates
within the organization
itself
● External Threat
o Any threat that could be
people, like a hacker, or it
can be an event or
environmental condition

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q
A

▪ Undesirable conditions or weaknesses that are in the general area
surrounding the building where a network is run

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Technical Vulnerabilities

A

▪ System-specific conditions that create security weaknesses
● Common Vulnerabilities and Exposures (CVE)
o A list of publicly disclosed computer security weaknesses
● Zero-Day Vulnerability
o Any weakness in the system design, implementation,
software code, or a lack of preventive mechanisms in place
▪ CVEs (Known vulnerabilities)
▪ Zero-Day (Brand new vulnerability)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Risk Management

A

The identification, evaluation, and prioritization of risks to minimize, monitor,
and control the vulnerability exploited by a threat

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Risk Assessment

A

▪ A process that identifies potential hazards and analyzes what could
happen if a hazard occurs
● Security
● Business

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Security Risk Assessment

A

Used to identify, assess, and implement key security controls within an
application, system, or network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

o Penetration Test

A

Evaluates the security of an IT infrastructure by safely trying to exploit
vulnerabilities within the systems or network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Posture Assessment

A

Assesses cyber risk posture and exposure to threats caused by
misconfigurations and patching delays
● Define mission-critical components
● Identify strengths, weaknesses, and security issues
● Stay in control
● Strengthen position

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Security Principles
o Least Privilege

A

Using the lowest level of permissions or privileges needed in order to
complete a job function or admin task

19
Q

Discretionary Access Control (DAC)

A

An access control method where access is determined by the
owner of the resource
o Every object in a system has to have an owner
o Each owner must determine the access rights and
permissions for each object

20
Q

Mandatory Access Control (MAC)

A

An access control policy where the computer system gets to
decide who gets access to what objects
o Unclassified
Confidential
o Secret
o Top secret

21
Q

Role-Based Access Control (RBAC)

A

An access model that is controlled by the system but focuses on a set of
permissions versus an individual’s permissions
▪ Creating groups makes it easy to control permissions based around actual
job functions

22
Q

Zero-Trus

A

▪ A security framework that requires users to be authenticated and
authorized before being granted access to applications and data
1. Reexamine all default access controls
2. Employ a variety of prevention
techniques and defense in depth
3. Enable real-time monitoring and
controls to identify and stop
malicious activity quickly
4. Ensure the network’s zero-trust
architecture aligns to a broader
security strategy

23
Q

DMZ

A

A perimeter network that protects an organization’s internal local area
network from untrusted traffic

24
Q

Screen Subnet

A

Subnet in the network architecture that uses a single firewall with three
interfaces to connect three dissimilar networks
● Triple-homed firewall

25
Q

Separation of Duties

A

Prevent frauds and abuse by distributing various tasks and approval
authorities across a number of different users

26
Q

Honeypot/ Honeynet

A

Attracts and traps potential attackers to counteract any attempts at
unauthorized access to a network
▪ Think vertical through the layers as well as horizontal or lateral across the
network using screen subnets

27
Q

Multifactor Authentication

A

o Authenticates or proves an identity using more than one method
▪ Something you know
▪ Something you have
▪ Something you are
▪ Something you do
▪ Somewhere you are

28
Q

Dictionary Attack

A

▪ Guesses the password by attempting to check every single word or
phrase contained within a word list, called a dictionary
● Do not use anything that looks like a regular word

29
Q

Brute Force Attack

A

Tries every possible combination until they figure out the password
● Use a longer and more complicated password
o Uppercase
o Lowercase
o Numbers
o Special characters
● For good security, use a minimum of 12 characters

30
Q

Local Authentication

A

Process of determining whether someone or something is who or what it
● Claims itself to be
● Simplified version of X.500

31
Q

Lightweight Directory Access Protocol (LDAP)

A

▪ Validates a username and password combination against an LDAP server
as a form of authentication
● Port 389 LDAP
● Port 636 LDAP Secure

32
Q

o Active Directory (AD)

A

Organizes and manages everything on the network, including clients,
servers, devices, and users

33
Q

Kerberos

A

▪ Focused on authentication and authorization within a Windows domain
environment
▪ Provides secure authentication over an insecure network

34
Q

Remote Authentication Dial-In User Service (RADIUS)

A

Provides centralized administration of dial-up, VPN, and wireless network
authentication
● Authentication
● Authorization
● Accounting
o Commonly uses:
▪ Port 1812 Authentication messages
▪ Port 1813 Accounting messages
o Proprietary versions of RADIUS may also use:
▪ Port 1645 Authentication messages
▪ Port 1646 Accounting message

35
Q

o Terminal Access Controller Access Control System Plus (TACACS+)

A

Used to perform the role of an authenticator in an 802.1x network
● RADIUS (UDP)
● TACACS+ (TCP)
● Ensure Port 49 is open
● Excellent if using Cisco devices

36
Q

802.1x

A

▪ A standardized framework that’s used for port-based authentication on
both wired and wireless networks
● Supplicant
● Authenticator
● Authentication server

37
Q

Extensible Authentication Protocol (EAP)

A

Allows for numerous different mechanisms of authentication
● EAP-MD5
o Utilizes simple passwords and the challenge handshake
authentication process to provide remote access
authentication
● EAP-TLS
o Uses public key infrastructure with a digital certificate
being installed on both the client and the server
● EAP-TTLS
o Requires a digital certificate on the server and a password
on the client for its authentication
● EAP Flexible Authentication via Secure Tunneling (EAP-FAST)
o Uses a protected access credential to establish mutual
authentication between devices
● Protected EAP (PEAP)
o Uses server certificates and Microsoft’s Active Directory
databases to authenticate a client’s password
● Lightweight EAP (LEAP)
o A proprietary protocol that only works on Cisco-based
devices

38
Q

● Network Access Control (NAC)

A

o Ensures a device is scanned to determine its current state of security prior to
being allowed network access

39
Q

o Persistent Agent

A

A piece of software installed on a device requesting access to the
network

40
Q

Non-Persistent Agent

A

Requires the users to connect to the network and go to a web-based
captive portal to download an agent onto their devices

41
Q

IEEE 802.1x

A

Used in port-based Network Access Control
● Time-based
o Defines access periods for given hosts on using a timebased schedule
● Location-based
o Evaluates the location of the endpoint requesting access
using IP or GPS geolocation
● Role-Based (Adaptive NAC)
o Reevaluates a device’s authentication when it’s being used
to do something
● Rule-based
o Uses a complex admission policy that might enforce a
series of rules with the use of logical statements

42
Q

Physical Security
o Detection Methods

A

▪ Security control used during an event to find out whether or not
something malicious may have happened
● Wired
o Allows the device to be physically cabled from its camera
all the way to a central monitoring station
● Wireless
o Easier to install, but they can interfere with other wireless
systems, like 802.11 wireless networks

43
Q

Network Security Attacks

A

▪ Our security goals (CIA) are subject to attack
▪ Confidentiality attack
● Attempts to make data viewable by an attacker
▪ Integrity attack
● Attempts to alter data
▪ Availability attack
● Attempts to limit network accessibility and usability

44
Q
A