Network Security Basics

Question 1

Protection of computer systems and networks from theft / damage to hardware / software or electronic data

Answer 1

Computer Security / Cybersecurity

Question 2

Protection of networks and underlying infrastructure

Answer 2

Network Security

Question 3

Assurance that network performs critical functions correctly

Answer 3

Network Security

Question 4

Protection of network devices such as routers and switches, and end systems

Answer 4

Device Security

Question 5

Hardware / software to limit access between network and device attached to network, according to policy

Answer 5

Firewall

Question 6

Hardware / software to gather analyze info from various areas within computer or network

Answer 6

Intrusion detection

Question 7

• Requires constant monitoring
• All potential attacks need to be considered
• Often an afterthought

Answer 7

Security Challenges

Question 8

Eavesdropping on, or monitoring of, transmissions

Answer 8

Passive attack

Question 9

Goal of opponent is to obtain information being transmitted

Answer 9

Passive attack

Question 10

• Release of message contents
• Traffic analysis

Answer 10

Passive attack types

Question 11

Modifying the data stream or creation of a false stream

Answer 11

Active attack

Question 12

Difficult to prevent because of large attack surface

Answer 12

Active attack

Question 13

Goal is to detect attacks and recover

Answer 13

Active attack

Question 14

One entity pretending to be another entity

Answer 14

Masquerade

Question 15

Passive capture of a data unit and subsequent retransmission to produce unauthorized effect

Answer 15

Replay

Question 16

Parts of message are altered or delayed to produce unauthorized effect

Answer 16

Data modification

Question 17

Prevent or inhibit normal use or management of communication facilities

Answer 17

Denial of service

Question 18

Protection of transmitted data from passive attack

Answer 18

Data confidentiality

Question 19

Protection of traffic flow from analysis

Answer 19

Data confidentiality

Question 20

Applicable to stream of messages, single message, or selected fields in a message

Answer 20

Data integrity

Question 21

Connection-oriented: no messages sent with duplication, insertion, etc.

Connection-less: protect again message modification alone

Answer 21

Data integrity

Question 22

Protect a system to ensure availability

Answer 22

Availability service

Question 23

Service addresses concerns raised by DoS

Answer 23

Availability service

Question 24

Concerns with assuring a communication is authentic

Answer 24

Authentication

Question 25

Single message: assure recipient that message from source is who it claims to be from

Ongoing interaction: assure two entities are authentic and connection has no masquerading

Answer 25

Authentication

Question 26

Ability to limit and control access to host systems

Answer 26

Access control

Question 27

Prevent sender or receiver from denying a transmitted message

Answer 27

Nonrepudiation