Objective 2

Question 1

Based on military principle more difficult for enemy to defeat complex and multi-layered defense system than to penetrate single barrier

Answer 1

Defense-In-Depth

Question 2

Attempts to stop attacks before they happen

Answer 2

Protect

Question 3

Assists in detecting ongoing attack

Answer 3

Detect

Question 4

Helps successfully stop or deter attack

Answer 4

React

Question 5

What are the Defense-In-Depth categories?

Answer 5

Protect, Detect, and React

Question 6

What does Defense-In-Depth need to balance?

Answer 6

People, Technology, and Operations

Question 7

Focuses on all elements required to sustain organization’s security posture a day-to-day basis

Answer 7

Operations

Question 8

Includes traffic analysis, monitoring unprotected communications, decrypting weakly encrypted traffic, and the capture of authentication information (e.g., passwords)

Answer 8

Passive Attack

Question 9

Includes attempts to circumvent or break protection features, introduce malicious code, or steal or modify information

Answer 9

Active Attacks

Question 10

Consists of regular individuals attaining close physical proximity to networks, systems, or facilities for purpose of modifying, gathering, or denying access to information

Answer 10

Close-in Attacks

Question 11

Intentionally eavesdrop, steal or damage information, use information in fraudulent manner, or deny access to other authorized users

Answer 11

Malicious Insider Attack

Question 12

Attacks typically result from carelessness, lack of knowledge, or intentional circumvention of security for such reasons as “getting the job done’’

Answer 12

Non-Malicious Insider Attack

Question 13

Focuses on malicious modification of hardware or software at factory or during distribution

Answer 13

Distribution Attacks

Question 14

Software or hardware-based network security system controlling incoming and outgoing traffic

Answer 14

Firewalls

Question 15

Technique used to control network access by monitoring outgoing and incoming packets and either allowing or blocking them

Answer 15

Packet Filtering

Question 16

Network device or software acting on behalf of clients to retrieve requested content from an origin content server

Answer 16

Proxy Services

Question 17

An Internet standard, enabling a LAN to use one set of IP addresses for internal traffic and a second set for external traffic

Answer 17

Network Address Translation

Question 18

Process of monitoring network and computer systems for signs of incidents in violation of computer security policies

Answer 18

Intrusion Detection

Question 19

System scanning, auditing, and monitoring the security infrastructure for signs of attacks in progress

Answer 19

Intrusion Detection Systems

Question 20

Used to control, prevent, identify, and report vulnerabilities at host and network level

Answer 20

Internal Control

Question 21

Allows user to log into specific machine and allows access to resources on that machine only

Answer 21

Local User Account

Question 22

Valid on any computer in domain for which account was created

Answer 22

Domain User Account

Question 23

Controls access to object such as file or folder

Answer 23

Permissions

Question 24

Enables user account or group to perform predefined tasks

Answer 24

Rights

Question 25

Activities conducted to protect and defend friendly information and information systems

Answer 25

Defense Counter Information

Question 26

Measures and controls taken to deny unauthorized persons information derived from information systems of U.S. Government related to national security and to ensure authenticity of such information systems

Answer 26

Communications Security

Question 27

Protects information technology, its operating system,

peripherals, applications, and information contained against loss, misuse, unauthorized access, or modification

Answer 27

Computer Security

Question 28

Deny interception and exploitation of information by containing compromising emanations within an inspect-able space

Answer 28

Emissions Security

Question 29

Ensures only authorized users can gain access to workstations, applications, and networks

Answer 29

Access Control