Network Security

Question 1

The physical layout of the network hardware

Answer 1

Physical topology

Question 2

The arrangement of data and how it flows across the network

Answer 2

Logical topology

Question 3

Main network zones include?

Answer 3

Private intranet
Limited-access extranet
Public internet

Question 4

Local network protected by a single firewall
Often referred to as a SOHO DMZ
Uses a single firewall to protect a local network

Answer 4

Screened Host

Question 5

Network Segmentation

Answer 5

To monitor and control how data moves between different parts of the network

Question 6

Uses proxies to handle traffic and keep DMZ hosts (bastion hosts) minimal and secure.
They keep external-facing servers separate from the internal network to reduce exposure to attacks

Answer 6

Demilitarized Zones (DMZs)

Question 7

This model continuously verifying all users and devices, not just trusting them based on their location

Answer 7

Zero Trust model

Question 8

Monitors network to detect and alert on potential security threats. It uses sensors to capture and analyze traffic and can alert you if something is detected

Answer 8

Intrusion Detection System (IDS)

Question 9

Actively responds to and mitigates threats in real-time

Answer 9

Intrusion Prevention System (IPS)

Question 10

Divides the network into smaller, isolated segments ( single host zones) to enhance/ boost security

Answer 10

Microsegmentation

Question 11

Combines multiple data streams into a single stream for analysis

Answer 11

Aggregation TAP

Question 12

VLAN

Answer 12

Virtual local area network

Question 13

Types of network design vulnerabilities

Answer 13

Single point of failure
Complex dependencies
Availability versus confidentiality integrity
Overdependence on parameter security

Question 14

Solution for a single point of failure

Answer 14

Implement redundancy systems and fail logical things are over mechanisms

Question 15

Solutions for complex dependencies

Answer 15

Simplified dependencies and enhance tolerance

Question 16

To address vulnerability, such as availability versus confidentiality and integrity, you would?

Answer 16

Balance, all aspect of security, keeping things, private , safe and unchanging
Change control

Question 17

How can you deal with overdependence on parameter defenses and security?

Answer 17

Regularly assess parameter defenses and avoid over reliance on parameter security by integrating, internal protections and follow best practices

Question 18

Traffic filtering uses _____ between zones to prevent unauthorized access?

Answer 18

Firewalls

Question 19

_________ traffic entering your network/receiving

Answer 19

southbound traffic

Question 20

________ traffic leaving your work. Send it.

Answer 20

Northbound

Question 21

Traffic happening between devices in the network

Answer 21

East west traffic

Question 22

These zones are designed to isolate Internet facing hose from the internal network

Answer 22

Demilitarize Zones (DMZ)

Question 23

These hosts in the DMZ are not fully trusted and run minimum services

Answer 23

Bastion hosts

Question 24

Network zone segment the network into areas with similar?

Answer 24

Security needs clarification

Question 25

______ captures network traffic data

Answer 25

Network sensor

Question 26

Detection engine

Answer 26

Analyze traffic in real time to identify indicators of compromise

Question 27

Components of intrusion detection systems

Answer 27

Network sensors
Detection engine
Passive logging / alerting

Question 28

Does not rely solely on perimeter security it implements continuous in context based authentication. Verifies all users and devices

Answer 28

Zero trust model to

Question 29

______ are used to capture an analyze traffic and can alert you as something suspicious as de

Answer 29

Sensors

Question 30

Mirrors traffic from a switch port for analysis

Answer 30

Switch port analyzer (SPAN) great
Mirror port

Question 31

Provide a copy of network traffic without affecting the network. If the machine works, but the tab structure stops working it will continue.

Answer 31

Passive test access point (TAP)

Question 32

Allows for interaction with network traffic, potentially in introducing delays like a firewall

Answer 32

Active TAP

Question 33

Identifies threats by matching patterns and network traffic against a database of known attack signatures

Answer 33

Signature based detection

Question 34

Identifies anomalous by establishing a baseline of normal behavior and detecting deviation from this baseline

Answer 34

Behavior-based detection (NBAD)
Heuristic based anti attack structure

Question 35

Learning from experience

Answer 35

Heuristic

Question 36

Analyzes user and entity behavior to detect anomalies

Answer 36

User and entity behavior analytics (UEBA)

Question 37

Monitors network traffic to identify irregularities

Answer 37

Network traffic analysis (NTA)

Question 38

Includes application-aware filtering, user-base filtering, integrated IPS, and cloud inspection

Answer 38

Next-generation firewall

Question 39

Combines various security controls to a single platform, including firewall, Auntie, Mauer, network, confusion, prevention, spam filter, content, filtering, data, loss prevention, VPN, cloud access gateway

Answer 39

Unified threat management (UTM) things here and there DLP prevention tools that will catch when you’re sending something you shouldn’t be sending out of the office hours. We’re gonna block it.

Question 40

Focus on outgoing user traffic content, block list, and allow us

Answer 40

Content filter

Question 41

DLP

Answer 41

Data loss prevention

Question 42

Inspects and protects web applications by analyzing HTTP packets

Answer 42

Web application firewalls (WAFs)

Question 43

DMZs

Answer 43

Demilitarized Zones

Question 44

SOHO DMZ

Answer 44

Screened Host

Question 45

IDS

Answer 45

Intrusion detection system

Question 46

SPAN

Answer 46

Switched port analyzer

Question 47

TAP

Answer 47

Test access point

Question 48

IPS

Answer 48

Intrusion prevention system

Question 49

NBAD

Answer 49

Network behavior and anomaly detection

Question 50

WAP

Answer 50

Wireless access point

Question 51

SSID

Answer 51

Service set identifier

Question 52

BSSID

Answer 52

Basic service set identifier

Question 53

NTA

Answer 53

Network traffic analysis

Question 54

UEBA

Answer 54

User and entity behavior analytics

Question 55

NGFW

Answer 55

Next generation firewall

Question 56

UTM

Answer 56

Unified threat management

Question 57

WAFs

Answer 57

Web Application firewall

Question 58

SIEM

Answer 58

Security information and Event Management

Question 59

Visualize signal strength from high (red) to low (green/blue)

Answer 59

Heat map

Question 60

The action of assessing signal strength, and channel usage

Answer 60

Site surveys

Question 61

SSID

Answer 61

Service set identifier

Question 62

BSSID

Answer 62

Basic service set identifier

Question 63

ACI

Answer 63

Adjacent channel interference

Question 64

WPA

Answer 64

Wi-Fi protected access

Question 65

AES

Answer 65

Advance encryption standard

Question 66

TKIP

Answer 66

Temporal key integrity protocol

Question 67

SAE

Answer 67

Simultaneous authentication of equals

Question 68

What WiFi protected access uses AES

Answer 68

WPA2

Question 69

What WiFi protected access uses TKIP

Answer 69

WPA1

Question 70

What WiFi protected access uses SAE

Answer 70

WPA3

Question 71

WPS

Answer 71

Wi-Fi protected set up

Question 72

Provides enhanced security

Answer 72

Simultaneous authentication of equals (SAE)

Question 73

PSK

Answer 73

Pre-shared key authentication

Question 74

QoS

Answer 74

Quality of service

Question 75

VPN

Answer 75

Virtual private network

Question 76

This requires users to authenticate through a webpage before accessing the network

Answer 76

Captive portals

Question 77

Control of traffic, flow and insurance compliance with policies

Answer 77

Traffic policing

Question 78

TLS

Answer 78

Transport layer security

Question 79

PKI

Answer 79

Public key infrastructure

Question 80

TCP

Answer 80

Transmission control protocol

Question 81

UDP

Answer 81

User datagram protocol

Question 82

IPSec

Answer 82

Internet Protocol Security

Question 83

AH

Answer 83

Authentication Header

Question 84

ESP

Answer 84

Encapsulation Security Paylod

Question 85

RDP

Answer 85

Remote desktop protocol

Question 86

SSH

Answer 86

Secure shell

Question 87

Collect logs from various sources, using agents, collectors, standard protocols, like Syslog, or sensory to gather data

Answer 87

SIEM

Question 88

_______ Identifies the network

Answer 88

Service set identifier (SSID)

Question 89

______WAPs handle most network functions independently

Answer 89

Fat WAPs

Question 90

____ WAPs rely on a central controller for management

Answer 90

Thin WAPs

Question 91

Enhanced security protocol

Answer 91

Simultaneous Authentication of Equals (SAE)

Question 92

Secure communication between gateways across unrested network

Answer 92

Tunnel mode

Question 93

Secure connections between individual hosts on a private network

Answer 93

Transport mode

Question 94

All traffic is encrypted and protective by the network. Routes all Internet traffic through the VPN.

Answer 94

Full tunnel

Question 95

Provide secure authentication with tickets

Answer 95

Kerberos