Random (too lazy to put in categories)

Question 1

What is MFD?

Answer 1

Multifunction Device

(like all-in-one printers)

Question 2

ISO 27001

Answer 2

ISO 27001 standard is the foundational standard for Information Security Management Systems (ISMS)

Question 3

IOS 27701

Answer 3

ISO 27701 stand extends the ISO 27001 and 27002 standards to include detailed management of PII and data privacy

Question 4

ISO 31000

Answer 4

ISO 31000 satnds sets internation standards for risk management practices

Question 5

ISO 27002

Answer 5

ISO 27002 focus on information security controls

Question 6

A user connects to a third-party website and receives this message:

Your connection is not private.
NET::ERR_CERT_INVALID

What attack would be the MOST likely reason for this message?

Answer 6

On-path

The entity in the middle would not be able to provide a valid SSL certificate for a third-party website, and this error would appear in the browser as a warning.

Question 7

MTBF

Answer 7

Mean Time Between Failures

Question 8

MTTF

Answer 8

Mean Time to Failure

expected lifetime of a non-repairable product or system

Question 9

EAP-TTLS

Answer 9

Extensible Authentication Protocol - Tunneled Transport Layer Security

allows the use of multiple authentication protocols transported inside of an encrypted TLS tunnel

Question 10

Preventative

Answer 10

physcially limits access to a device or area

Question 11

Corrective

Answer 11

can actively work to mitigate any damage

Question 12

Detective

Answer 12

may not prevent access, but it can identify and record and intrusion attempts

Question 13

Compensating

Answer 13

doesn’t prevent an attack, but it does restore from an attack using other means

Question 14

Physical Control

Answer 14

real-world security, such as a fence or door lock

Question 15

Deterrent

Answer 15

does not directly stop an attack, but it may discourage an action

Question 16

USB Data Blocker

Answer 16

physical USB cables that allow power connections but prevent data connections

Question 17

SED

Answer 17

Self-Encrypting Drive

provides data protection of a storage device using fully-disk encryption in the drive hardware

Question 18

TLS VPN

Answer 18

frequently chosen when ease of use is important, and web applications are the primary usage mode

Question 19

IPSec VPN

Answer 19

are used for site-to-site VPNs and for purposes where other protocols may be needed because they make the enpoint system appear to be on the remote network

Question 20

DMZ

Demilitarized zone

Answer 20

a separate subnet coming off the separate router interface

public traffic may be allowed to pass from the external public interface to the DMZ, but won’t be allowed to pass to the interface that connectes to the internal private network

Question 21

VLAN

Answer 21

think of PARTITIONING!!

emulates physical partitioning
most often used to segment the internal network

Question 22

IPv6

Answer 22

includes IPsec built into the protocol by default

also provides an extended IP address range for networks, eliminating the need for using NAT

Question 23

Wireshark

Answer 23

free and open-source packet analyzer

used for network troubleshooting, analysis, software and communications protocol development, and education

Question 24

Containerization

Answer 24

the logical isolation of enterprise data from personal data while co-existing in the same device

major benefit of containerization is that adminstrators can only work profiles that are kept separate from the user’s personals accounts, apps, and data

creates a secure vault for your coporate information

Question 25

What should you place at the end of your ACL rules?

Answer 25

An implicit deny statement

Question 26

What easily detects buffer overflows?

Answer 26

Static code analysis

Question 27

SPI

Sensitive Personal Information

Answer 27

information about a subject’s opinions, beliefs, and nature afforded specially protected status by privacy legislation

Question 28

Load balancer

Answer 28

allows for high availability and the ability to serve increased demand by splitting the workload across multiple servers

Question 29

DaaS

Desktop as a Service

Answer 29

provides a full virtualized desktop enviroment from within a cloud-based service

also known as VDI (Virtualizaed Desktop Infrastructure)

like Stadia or NVIDIA GeForce Now :D