Networks and Networks security Flashcards
module one
What is the primary function of a Security Information and Event Management (SIEM) tool?
To collect and analyze log data to monitor critical activities in an organization.
Describe the principle of defense-in-depth.
Implementing multiple layers of security measures to protect a network.
What does the confidentiality aspect of the CIA triad ensure?
Only authorized users can access specific assets or data.
How does an IDS differ from an IPS?
An IDS detects and alerts about possible intrusions, while an IPS takes action to stop them.
Define the role of a firewall in network security.
A firewall allows or blocks traffic based on a set of security rules.
What is an example of a physical security hardening measure?
Installing security cameras or hiring security guards
Explain the concept of network segmentation.
Dividing a network into segments to improve security and performance
What does the integrity aspect of the CIA triad ensure?
Data is correct, authentic, and reliable.
Describe the purpose of a baseline configuration.
A set of specifications used as a reference point for future builds, releases, and updates.
What is a common use of port filtering in network security?
To block or allow specific port numbers to control network traffic.
Define the term ‘attack surface.’
All the potential vulnerabilities that a threat actor could exploit in a system.
How does multi-factor authentication (MFA) enhance security?
By requiring users to verify their identity in two or more ways.
What is a key responsibility of a cloud service provider (CSP) under the shared responsibility model?
Managing the security of the cloud infrastructure, including physical data centers and hypervisors
What is the function of an intrusion detection system (IDS)?
To monitor system activity and alert administrators to possible intrusions.
How does cryptography help in cloud security?
By using encryption to ensure data integrity and confidentiality.