Network Security

Question 1

Why is network security important? (3)

Answer 1

• Business success
• Privacy
• Financial (e.g. new products)

Question 2

List 4 physical security measures

Answer 2

• Locked access doors
• Biometric security
• Swipe cards
• CCTV
• Burglar alarms
• Chains and locks

Question 3

What does a firewall do?

Answer 3

Software or hardware that protects a network connected to a LAN. Montors incoming and outgoing data and can be configured to allow only certain data in and out of the network.

Question 4

How is eavesdropping done?

Answer 4

• Directly listening to digital or analogue audio communication
• Intercepting data by using packet analysers and decoding it

Question 5

State two checks that are carried out during a code review

Answer 5

• Code vulnerabilities (does what’s intended but may create security issues)
• Bad coding practice (poor-quality code where to programmer hasn’t considered security)

Question 6

Name 4 technical weaknesses that could allow a cyberattack to take place

Answer 6

• Unpatched software
• USB devices
• Smart devices
• Eavesdropping

Question 7

What’s penetration testing?

Answer 7

Used to test a system in order to find vulnerabilities that an attacker could exploit. Testers try to gain unauthorised access and assess the security awareness of users and policies.

Question 8

What should network security policies set out? (4)

Answer 8

• What users can and can’t do on the network e.g USB devices, internet downloads
• When and where backups are made
• When and who is responsible for software patches and OS updates
• What should be done if there is a security breach

Question 9

What’s modular testing?

Answer 9

Testing independent blocks of code implementing a small number of routines, making problems easier to fix.