Sec +

Question 1

Wi-Fi Protected Setup

Answer 1

WPS

Question 2

WPS

Answer 2

Wi-Fi Protected Setup

Question 3

PIN recovery

Answer 3

Wi-Fi Protected Setup (WPS) exploit?

Question 4

Wi-Fi Protected Setup (WPS) exploit?

Answer 4

PIN recovery

Question 5

WPS PIN feature, which most recent models have enabled by ________

Answer 5

default

Question 6

WPS PIN feature

Answer 6

This flaw allows a remote attacker to recover the WPS PIN in a few hours with a brute-force attack and, with the WPS PIN, the network’s WPA/WPA2 pre-shared key.[2] Users have been urged to turn off the WPS PIN feature,[3] although this may not be possible on some router models.[4]

Question 7

_________ a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. It may be used by attackers to bypass access controls such as the same-origin policy.

Answer 7

Cross-site scripting

Question 8

Encapsulating Security Payload (ESP) is a member of the IPsec protocol suite. It provides origin authenticity through source authentication, data integrity through hash functions and confidentiality through encryption protection for __________.

Answer 8

IP packets

Question 9

Radio-frequency identification (______) uses electromagnetic fields to automatically identify and track tags attached to objects. The tags contain electronically-stored information. Passive tags collect energy from a nearby ______ reader’s interrogating radio waves.

Answer 9

RFID

RFID

Question 10

RFID

Answer 10

Radio-frequency identification

Question 11

Wi-Fi Protected Setup

Answer 11

WPS

Question 12

WPS

Answer 12

Wi-Fi Protected Setup

Question 13

contents of a rainbow table entry

Answer 13

Hash/Password

Question 14

EOL

Answer 14

End of Life

Question 15

POODLE (Padding Oracle on Downgraded Legacy Encryption)

Answer 15

cryptographic downgrade attack

Question 16

three authentication protocols that offer countermeasures against replay attacks?

Answer 16

IPsec
Kerberos
CHAP

Question 17

Which of the following cryptographic hash functions is the least vulnerable to attacks?
   SHA-1
   RIPEMD	
   SHA-512	
   MD5

Answer 17

SHA-512

Question 18

Active reconnaissance techniques

Answer 18

port scanning….. (add to later)

Question 19

Applies to a situation where an Ethernet switch acts as an authenticator for devices that intend to connect to a network through one of its ports? IEEE 802.___?

Answer 19

IEEE 802.1X

Question 20

forward proxy

Answer 20

Acts on behalf of a client

Hides the identity of a client

Question 21

reverse proxy

Answer 21

Acts on behalf of a server

Hides the identity of a server

Question 22

A common example of channel overlapping in wireless networking could be the 2.4 GHz band used in 802.11 networks, where the 2.401 - 2.473 GHz frequency range is used for allocating 11 channels, each taking up a 22-MHz portion of the available spectrum. Setting up a wireless network to operate on a non-overlapping channel (_____________) allows multiple networks to coexist in the same area without causing interference.

Answer 22

1, 6, and 11 in this case

Question 23

The underlying principles of every ________ system is to aggregate relevant data from multiple sources, identify deviations from the norm and take appropriate action. For example, when a potential issue is detected, a _________ might log additional information, generate an alert and instruct other security controls to stop an activity’s progress.

Answer 23

SIEM

SIEM

Question 24

Write once read many (__________) describes a data storage device in which information, once written, cannot be modified.

Answer 24

WORM

Question 25

Data loss prevention (DLP) is a strategy for making sure that end users do not send sensitive or critical information outside the corporate network. The term is also used to describe software products that help a network administrator control what data end users can ____________.

Answer 25

transfer

Question 26

Data loss prevention

Answer 26

(DLP)

Question 27

(DLP)

Answer 27

Data loss prevention (DLP)

Question 28

TLS is a cryptographic protocol that provides end-to-end communications security

Answer 28

Transport Level Security

Question 29

The Rogue AP Detection page displays information about all access points detected by the AP541N in the vicinity of the _________.

Answer 29

network

Question 30

Rogue AP Detection page

Answer 30

displays information about all access points detected by the AP541N in the vicinity of the network.

Question 31

Which are two that refer to the implementations of NAC?

Answer 31

MAC filter

802.1X

Question 32

DLP

Answer 32

Data loss prevention software detects potential data breaches/data ex-filtration transmissions and prevents them by monitoring, detecting and blocking sensitive data while in-use, in-motion, and at-rest.

Question 33

Transport Layer Security, and its now-deprecated predecessor, Secure Sockets Layer, are _____
________ designed to provide communications security over a computer network. Several versions of the protocols find widespread use in applications such as web browsing, email, instant messaging, and voice over IP.

Answer 33

cryptographic protocols

Question 34

TLS

Answer 34

Transport Layer Security

Question 35

SSL

Answer 35

Secure Sockets Layer