Objective 2.0: Security Flashcards
What is the difference between a firewall and an antivirus?
A firewall controls incoming and outgoing network traffic based on security rules, while antivirus software detects, prevents, and removes malware.
What is a UAC (User Account Control) in Windows?
UAC helps prevent unauthorized changes to the operating system by prompting for administrative approval when making system changes.
What is the purpose of BitLocker in Windows?
BitLocker provides full disk encryption to protect data from unauthorized access if a device is lost or stolen.
Name three types of authentication factors.
Something you know (password), something you have (smart card), and something you are (fingerprint).
What is the principle of least privilege?
It means granting users only the permissions they need to perform their job functions, reducing the risk of accidental or malicious actions.
What is social engineering?
Social engineering is the manipulation of people into divulging confidential information or performing actions that compromise security.
What are two common methods of data encryption?
Symmetric encryption (same key for encryption and decryption) and asymmetric encryption (public and private keys).
How can you protect against phishing attacks?
Be cautious of unsolicited emails, verify the sender’s identity, avoid clicking on suspicious links, and use email filtering tools.
What is multi-factor authentication (MFA)?
MFA requires two or more independent authentication factors to verify a user’s identity.
What is the purpose of a security policy in an organization?
It defines the organization’s approach to securing its information systems, including rules and procedures for handling sensitive data.