Network Security

Question 1

What are the components of the Confidentiality, Integrity, Availability (CIA) triad?

Answer 1

The components of the Confidentiality, Integrity, Availability (CIA) triad are confidentiality, integrity, and availability, which are the three core principles of information security.

Question 2

What are internal threats?

Answer 2

Internal threats are security risks originating from within the organization, such as employees or contractors.

Question 3

What are external threats?

Answer 3

External threats are security risks originating from outside the organization, such as hackers or competitors.

Question 4

What are common vulnerabilities and exposures (CVE)?

Answer 4

Common vulnerabilities and exposures (CVE) are publicly disclosed security vulnerabilities in software and hardware.

Question 5

What is a zero-day vulnerability?

Answer 5

A zero-day vulnerability is a security flaw that is unknown to the vendor and has no available fix, making it highly exploitable.

Question 6

What are exploits?

Answer 6

Exploits are techniques or code used to take advantage of vulnerabilities in systems or applications.

Question 7

What is the principle of least privilege?

Answer 7

The principle of least privilege means granting users only the access necessary to perform their job functions, reducing the risk of unauthorized access.

Question 8

What is role-based access control?

Answer 8

Role-based access control is a method of restricting access to resources based on the roles of individual users within an organization.

Question 9

What is Zero Trust security?

Answer 9

Zero Trust security is a model that assumes no implicit trust and requires continuous verification of every user and device attempting to access resources.

Question 10

What is defense in depth?

Answer 10

Defense in depth is a layered security approach that uses multiple defenses to protect systems and data.

Question 11

What is network segmentation enforcement?

Answer 11

Network segmentation enforcement is the practice of dividing a network into segments to control traffic and limit access based on policy.

Question 12

What is a perimeter network (previously known as demilitarized zone or DMZ)?

Answer 12

A perimeter network, previously known as a demilitarized zone (DMZ), is a buffer zone between an internal network and the external internet, used to host public-facing services.

Question 13

What is the separation of duties?

Answer 13

Separation of duties is a security principle that divides responsibilities among different individuals to reduce the risk of fraud or error.

Question 14

What is network access control?

Answer 14

Network access control is a security technique used to restrict network access to authorized users and devices.

Question 15

What is a honeypot?

Answer 15

A honeypot is a decoy system or network set up to attract and analyze potential attackers.

Question 16

What is multifactor authentication?

Answer 16

Multifactor authentication is a security method that requires multiple forms of verification to access resources, such as a password and a fingerprint.

Question 17

What is Terminal Access Controller Access-Control System Plus (TACACS+)?

Answer 17

Terminal Access Controller Access-Control System Plus (TACACS+) is a protocol used for centralized authentication and authorization of network devices.

Question 18

What is single sign-on (SSO)?

Answer 18

Single sign-on (SSO) is an authentication process that allows users to access multiple applications with one set of login credentials.

Question 19

What is Remote Authentication Dial-in User Service (RADIUS)?

Answer 19

Remote Authentication Dial-in User Service (RADIUS) is a protocol used for remote user authentication and accounting.

Question 20

What is LDAP?

Answer 20

LDAP (Lightweight Directory Access Protocol) is a protocol used to access and manage directory information.

Question 21

What is Kerberos?

Answer 21

Kerberos is a network authentication protocol that uses secret-key cryptography to provide secure communication.

Question 22

What is local authentication?

Answer 22

Local authentication is the process of verifying a user’s identity through credentials stored locally on the device.

Question 23

What is 802.1X?

Answer 23

802.1X is a network access control protocol for securing wired and wireless networks.

Question 24

What is Extensible Authentication Protocol (EAP)?

Answer 24

Extensible Authentication Protocol (EAP) is a framework for transporting authentication protocols used in network access.

Question 25

What is a security risk assessment?

Answer 25

A security risk assessment is the process of identifying and evaluating potential security risks to an organization.

Question 26

What is a threat assessment?

Answer 26

A threat assessment is the process of identifying and evaluating potential threats to an organization.

Question 27

What is a vulnerability assessment?

Answer 27

A vulnerability assessment is the process of identifying and evaluating vulnerabilities in a system or network.

Question 28

What is penetration testing?

Answer 28

Penetration testing is the practice of testing a computer system or network to find security vulnerabilities that an attacker could exploit.

Question 29

What is posture assessment?

Answer 29

Posture assessment is the process of evaluating the security posture of a system or network, including compliance with policies and standards.

Question 30

What is a business risk assessment?

Answer 30

A business risk assessment is the process of identifying and evaluating risks that could impact the business operations of an organization.

Question 31

What is a process assessment?

Answer 31

A process assessment is the evaluation of business processes to identify potential security risks and inefficiencies.

Question 32

What is a vendor assessment?

Answer 32

A vendor assessment is the process of evaluating third-party vendors to ensure they meet security requirements and standards.

Question 33

What is security information and event management (SIEM)?

Answer 33

Security information and event management (SIEM) is a solution that provides real-time analysis of security alerts and logs generated by network hardware and applications.