SecPlusP3 Flashcards

Question

What are the concepts related to Port Security?

Answer 1

802.1x and EAP

Answer 2

VPNs, IPSec, TLS

Answer 3

To ensure secure communication

Answer 4

Software-Defined Wide Area Networks

Answer 5

Secure Access Service Edge

Answer 6

WAN connections with software-defined principles

Answer 7

Security and wide area networking

Answer 8

Device placement, security zones, screen subnets, attack surfaces

Answer 9

Active vs. passive, inline vs. taps or monitors

Answer 10

Fail-open or fail-closed

Answer 11

Choosing controls aligned with network needs

Answer 12

Ensuring robust security architecture

Answer 13

Logical communication endpoints on a computer or server

Answer 14

Inbound and outbound

Answer 15

Assigned by IANA, range: 0-1023

Answer 16

Vendor-specific, registered with IANA, range: 1024-49151

Answer 17

49152-65535

Answer 18

Data exchange

Answer 19

Port number, default protocol, TCP or UDP support, basic description

Answer 20

SSH, SCP, SFTP

Answer 21

Network security device or software that monitors and controls network traffic based on security rules

Answer 22

Protects networks from unauthorized access and potential threats

Answer 23

Create flashcards with protocol, port, and connection details Regularly test yourself to memorize ports and protocols

Answer 24

Minimal impact on network performance

Answer 25

Close to the system they protect

Answer 26

Application-aware

Answer 27

Conduct deep packet inspection

Answer 28

Signature-based

Answer 29

Operate fast, full-stack traffic visibility, can integrate with other security products

Answer 30

Dependency and limitations on one product line

Answer 31

Firewall, intrusion prevention, antivirus, and more

Answer 32

UTMs are a single point of failure

Answer 33

Inspecting HTTP traffic and preventing web application attacks

Answer 34

Cross-site scripting and SQL injections

Answer 35

In-line (live attack prevention) and out of band (detection)

Answer 36

Transport layer

Answer 37

Inspect, filter, and control traffic based on content and data characteristics

Answer 38

Securing networks from unwanted traffic

Answer 39

On firewalls, routers, and network infrastructure devices

Answer 40

Web-based interface or text-based command line interface

Answer 41

Order of actions taken on traffic (top-down)

Answer 42

First matching rule is executed and no other ACLs are checked

Answer 43

At the top

Answer 44

Add a 'deny all' rule at the end

Answer 45

Deny actions

Answer 46

Type of traffic, Source of traffic, Destination of traffic, Action to be taken against the traffic

Answer 47

Dedicated network security device that filters and controls network traffic at the hardware level

Answer 48

Firewall that runs as a software application on individual devices, such as workstations

Answer 49

By specifying permitted and denied actions through ACLs

Answer 50

IDS - Logs and alerts IPS - Logs, alerts, and takes action

Answer 51

Network-based IDS (NIDS), Host-based IDS (HIDS), Wireless IDS (WIDS)

Answer 52

Traffic coming in and out of a network

Answer 53

Suspicious network traffic going to or from a single endpoint

Answer 54

Attempts to cause a denial of service on a wireless network

Answer 55

Signature-based and anomaly-based

Answer 56

To recognize attacks based on previously identified attacks

Answer 57

To identify specific patterns of steps

Answer 58

NIDS, WIDS

Answer 59

To compare against a known system baseline

Answer 60

Analyzes traffic and compares it to a normal baseline of traffic to determine whether a threat is occurring

Answer 61

Statistical, Protocol, Traffic, Rule or Heuristic, Application-based

Answer 62

Logs, alerts, and takes action when it finds something suspicious or malicious

Answer 63

A dedicated hardware device with pre-installed software for specific networking services

Answer 64

Distribute network/application traffic

Answer 65

Enhance server efficiency and prevent overload

Answer 66

Redundancy and reliability

Answer 67

Advanced functionality

Answer 68

High-demand environments and high-traffic websites

Answer 69

Content caching, request filtering, login management, enhancing speed and reducing bandwidth usage, adding a security layer and enforcing policies

Answer 70

By filtering and controlling incoming traffic

Answer 71

Monitoring, detecting, analyzing network traffic and data flow

Answer 72

Secure gateways for system administrators to access devices in different security zones

Answer 73

By speeding up the incident response process

Answer 74

Restricts device access based on MAC addresses

Answer 75

Prevents unauthorized devices from connecting

Answer 76

Networking device that operates at Layer 2 of the OSI model

Answer 77

Using MAC addresses through transparent bridging

Answer 78

To remember connected devices based on MAC addresses

Answer 79

By broadcasting traffic only to intended receivers

Answer 80

Associate specific MAC addresses with interfaces to prevent unauthorized devices

Answer 81

Susceptible to MAC spoofing attacks

Answer 82

Provides port-based authentication for wired and wireless networks

Answer 83

Supplicant, Authenticator, Authentication server

Answer 84

RADIUS or TACACS+

Answer 85

RADIUS is cross-platform, while TACACS+ is Cisco proprietary

Answer 86

Offers additional security and independently handles authentication, authorization, and accounting

Answer 87

TACACS+ supports all network protocols, whereas RADIUS lacks support for some

Answer 88

A framework for various authentication methods

Answer 89

Challenge handshake authentication process

Answer 90

Doesn't provide mutual authentication

Answer 91

Uses public key infrastructure with a digital certificate installed on both client and server

Answer 92

Requires a digital certificate on the server, but not on the client

Answer 93

Uses protected access credential for mutual authentication

Answer 94

Supports mutual authentication using server certificates

Answer 95

To authenticate a password from the client

Answer 96

Cisco proprietary and limited to Cisco devices

Answer 97

Network security

Answer 98

Extend private networks across public networks

Answer 99

Site-to-site, client-to-site, and clientless

Answer 100

Connects two sites cost-effectively

Answer 101

Replaces expensive leased lines

Answer 102

Utilizes a VPN tunnel over the public internet

Answer 103

Encrypts and secures data between sites

Answer 104

Connects a single host (e.g., laptop) to the central office

Answer 105

Ideal for remote user access to the central network

Answer 106

Full tunnel and split tunnel configurations

Answer 107

Uses a web browser to establish secure, remote-access VPN

Answer 108

No need for dedicated software or hardware client

Answer 109

HTTPS and TLS

Answer 110

Full tunnel encrypts all network requests, split tunnel only encrypts specific requests

Answer 111

Provides high security, limits access to local resources

Answer 112

Remote access to central resources

Answer 113

Divides traffic, routing some through the VPN, some directly to the internet

Answer 114

Enhances performance by bypassing VPN for non-central traffic

Answer 115

Less secure; potential exposure to attackers

Answer 116

Requires caution on untrusted networks

Answer 117

Provides encryption and security for data in transit

Answer 118

Secure connections (HTTPS)

Answer 119

Transmission Control Protocol (TCP)

Answer 120

A faster UDP-based alternative for secure connections

Answer 121

Eavesdropping

Answer 122

Provides confidentiality, integrity, authentication, and anti-replay protection

Answer 123

Request to start IKE, Authentication (IKE Phase 1), Negotiation (IKE Phase 2), Data transfer, Tunnel termination

Answer 124

Transport Mode, Tunnel Mode

Answer 125

Encapsulates the entire packet

Answer 126

Confidentiality for payload and header, authentication, integrity, encryption

Answer 127

AH provides connectionless data integrity and data origin authentication, while ESP provides confidentiality, integrity, encryption, and replay protection

Answer 128

Balance between security and performance, full tunnel for higher security but reduced local access, split tunnel for better performance but potentially lower security

Answer 129

Efficiently routes traffic between remote sites, data centers, and cloud environments

Answer 130

Increased agility, security, and efficiency for geographically distributed workforces

Answer 131

Software-based architecture with control extracted from underlying hardware

Answer 132

MPLS, Cellular, Microwave links, Broadband internet

Answer 133

Utilizes centralized control function for intelligent traffic routing

Answer 134

Traditional WANs vs. SD-WAN

Answer 135

Enterprises with multiple branch offices moving towards cloud-based services

Answer 136

Secure Access Service Edge

Answer 137

Addresses challenges of securing and connecting users and data across distributed locations

Answer 138

Software-defined networking (SDN)

Answer 139

Firewalls, VPNs, Zero-trust network access, Cloud Access Security Brokers (CASBs)

Answer 140

Through a common set of policy and management platforms

Answer 141

AWS, Azure, Google Cloud

Answer 142

Google Cloud VPN

Answer 143

Enhanced security and successful migration to cloud-based environments

Answer 144

Proper placement of routers, switches, and access points

Answer 145

Isolate devices with similar security requirements

Answer 146

Act as buffer zones between internal and external networks

Answer 147

Hosts public-facing services, protecting core internal networks

Answer 148

Screened subnet

Answer 149

Points where unauthorized access or data extraction can occur

Answer 150

Increases the risk of vulnerabilities

Answer 151

Identify and mitigate vulnerabilities

Answer 152

Assess and minimize the attack surface

Answer 153

Scalability, speed, security, and budget constraints

Answer 154

Monitor and act on network traffic

Answer 155

Observe and report without altering traffic

Answer 156

Devices that are in the path of network traffic

Answer 157

Users and systems should have only necessary access rights

Answer 158

Utilize multiple layers of security

Answer 159

Prioritize controls based on potential risks and vulnerabilities

Answer 160

Regularly review, update, and retire controls

Answer 161

Ensure transparency and accountability through rigorous testing and scrutiny of controls.

Answer 162

Identify discrepancies between current and desired security postures.

Answer 163

Compare your organization's processes and security metrics with industry best practices.

Answer 164

Evaluate the balance between desired security level and required resources.

Answer 165

Ensure controls align with business operations.

Answer 166

Continuously adapt to evolving threats.

Answer 167

To assess threats and vulnerabilities specific to their organization.

Answer 168

To match your organization's risk profile and business operations

Answer 169

To include all relevant decision-makers

Answer 170

To keep the workforce updated on security controls and threats

Answer 171

To ensure that the right individuals have the right access to the right resources for the right reasons.

Answer 172

Password Management, Network Access Control, Digital Identity Management.

Answer 173

Identification, Authentication, Authorization, and Accounting (IAAA).

Answer 174

To claim identity, e.g., username, email address.

Answer 175

To verify user, device, or system identity.

Answer 176

To determine user permissions after authentication.

Answer 177

To track and record user activities.

Answer 178

Provisioning, Deprovisioning, Identity Proofing, Interoperability, Attestation

Answer 179

Something you know, Something you have, Something you are, Something you do, Somewhere you are

Answer 180

Biometrics, Hard tokens, Soft tokens, Security keys, Passkeys

Answer 181

Password policies, Password managers, Passwordless authentication

Answer 182

Spraying, Brute Force, Dictionary, Hybrid

Answer 183

User authentication service for multiple apps

Answer 184

LDAP, OAuth, SAML

Answer 185

Sharing identities across systems or organizations

Answer 186

JIT Permissions, Password Vaulting, Temporal Accounts

Answer 187

MAC, DAC, RBAC, RABC, ABAC

Answer 188

Critical component of enterprise security for managing access to information

Answer 189

Right individuals have access to the right resources at the right times for the right reasons

Answer 190

Identification, Authentication, Authorization, and Accountability

Answer 191

Verifying user identity

Answer 192

Passwords, biometrics, multi-factor authentication

Answer 193

Determining user permissions

Answer 194

Ensures users have appropriate access

Answer 195

Tracks and records user activities

Answer 196

Security incidents, vulnerabilities

Answer 197

Creating new user accounts, assigning permissions, providing system access

Answer 198

Removing access rights when no longer needed

Answer 199

Verifying a user's identity before creating their account

Answer 200

Systems working together and sharing information

Answer 201

SAML and OpenID Connect

Answer 202

Validating user accounts and access rights

Answer 203

Security system requiring multiple methods of authentication

Answer 204

Creates a layered defense against unauthorized access

Answer 205

Something You Know, Something You Have, Something You Are, Somewhere You Are, Something You Do

Answer 206

Hardware token

Answer 207

Hardware token

Answer 208

Inherence-Based Factor

Answer 209

Fingerprints, Facial recognition, Voice recognition

Answer 210

Location-Based Factor

Answer 211

IP address, GPS, or network connection

Answer 212

Restrictions based on user's location

Answer 213

Authenticating based on user behavior patterns

Answer 214

Keystroke patterns, device interaction

Answer 215

Using one authentication factor

Answer 216

Requiring two different authentication factors

Answer 217

Using two or more authentication factors

Answer 218

2, 3, 4, or 5 depending on configuration

Answer 219

Passwords and PINs

Answer 220

Generate long, strong, and complex passwords

Answer 221

Secure and user-friendly

Answer 222

Utilize public key cryptography

Answer 223

Effectiveness in resisting attacks

Answer 224

Create password policies

Answer 225

Users changing passwords after a specific period

Answer 226

Time a password has been in use

Answer 227

Password generation, auto-fill, secure sharing

Answer 228

Secure methods to share passwords

Answer 229

Cross-platform access

Answer 230

Password complexity, prevention of reuse, easy access to strong, unique passwords

Answer 231

Higher security and better user experience

Answer 232

Tries every possible character combination until the correct password is found

Answer 233

Brute force, Dictionary, Password spraying, Hybrid

Answer 234

Increasing password complexity and length, Limiting login attempts

Answer 235

Cracking passwords using a list of common passwords

Answer 236

Increase password complexity, limit login attempts, use multi-factor authentication

Answer 237

Trying a few common passwords against multiple usernames or accounts

Answer 238

Use unique passwords, implement multi-factor authentication

Answer 239

Combines brute force and dictionary attacks

Answer 240

Numbers or special characters added to passwords

Answer 241

Effective for discovering passwords following specific patterns

Answer 242

Single Sign-On simplifies the user experience and enhances productivity.

Answer 243

User logs into primary Identity Provider (IdP) and accesses secondary application configured for SSO.

Answer 244

Improved user experience, increased productivity, reduced IT support costs, enhanced security.

Answer 245

Accessing and maintaining distributed directory information, central repository for authentication and authorization.

Answer 246

Token-based authentication and authorization without exposing passwords.

Answer 247

Enhancing security and flexibility

Answer 248

Eliminates the need for services to authenticate users directly

Answer 249

Links electronic identities and attributes across multiple systems

Answer 250

Use the same credentials for login

Answer 251

Trust relationships between networks

Answer 252

Authenticate the user

Answer 253

Using stored credentials

Answer 254

An assertion (token) in a standardized format

Answer 255

Verifies the assertion and grants access

Answer 256

Simplified user experience, reduced administrative overhead, increased security

Answer 257

Preventing data breaches and ensuring least privileged access

Answer 258

Security model that grants administrative access only when needed

Answer 259

Securely storing and managing passwords

Answer 260

Multi-factor authentication

Answer 261

Temporary accounts for time-limited access

Answer 262

Automatically disabled or deleted

Answer 263

Uses security labels to authorize resource access

Answer 264

Assigning security labels to both users and resources

Answer 265

Resource owners specify which users can access their resources

Answer 266

Assigns users to roles and assigns permissions to roles

Answer 267

Uses security rules or access control lists

Answer 268

Considers various attributes like user's name, role, organization ID, or security clearance

Answer 269

Time of access, data location, and current organization's threat level

Answer 270

File creation date, resource owner, file name, and data sensitivity

Answer 271

Limits access based on specific time periods.

Answer 272

Users are granted the minimum access required to perform their job functions.

Answer 273

High level of access, allows administrator to change system settings, install softwares, and perform managerial tasks.

Answer 274

Can't change system settings, can store files in their designated area only.

Answer 275

A user should only have the minimum access rights needed to perform their job.

Answer 276

Free online account to sign in to Microsoft services

Answer 277

Mechanism to authorize administrative actions

Answer 278

Minimize risk of users gaining administrative privileges

Answer 279

Right-click on a file or folder, select 'Properties', navigate to the 'Security' tab

Answer 280

The permissions are applied to all files within that folder

Answer 281

Ensure security and minimize risks

Answer 282

Weaknesses or flaws in hardware, software, configurations, or processes

Answer 283

Unauthorized Access, Data Breaches, System Disruptions

Answer 284

Deliberate actions by threat actors to exploit vulnerabilities

Answer 285

Unauthorized Access, Data Theft, Malware Infections, DoS Attacks, Social Engineering

Answer 286

Firmware, end-of-life systems, missing patches, misconfigurations

Answer 287

Harden systems, patch, enforce baseline configurations, decommission old assets, isolation

Answer 288

Bluesnarfing, Bluejacking, Bluebugging, Bluesmark, Blueborne

Answer 289

Sideload, Jailbreaking, Insecure connections

Answer 290

Patch Management

Answer 291

Managing and securing mobile devices

Answer 292

To prevent the installation of unauthorized apps

Answer 293

Gaining administrative access to a mobile device

Answer 294

Newly discovered and exploited vulnerabilities with no known defenses

Answer 295

Unpatched systems, zero-days, misconfigurations

Answer 296

Patching, configuration management, encryption, endpoint protection, firewalls, IPS, access controls

Answer 297

Exploiting web app or database vulnerabilities

Answer 298

Injects malicious scripts into XML data processing.

Answer 299

XML data processing.

Answer 300

Injecting malicious scripts into web pages and triggering actions on different websites without user consent, respectively.

Answer 301

Software vulnerability when more data is written to a memory buffer than it can hold.

Answer 302

Multiple processes or threads accessing shared resources simultaneously.

Answer 303

Security flaws in physical components or design

Answer 304

Software on hardware devices that can grant attackers control

Answer 305

End-of-Life, Legacy, and Unsupported Systems

Answer 306

No updates or support from the manufacturer

Answer 307

Outdated and superseded by newer alternatives

Answer 308

No official support, security updates, or patches

Answer 309

Exposed to known exploits and attacks

Answer 310

Incorrect device settings or options

Answer 311

Tightening security measures

Answer 312

Closing unnecessary ports, disabling services, setting permissions

Answer 313

Regular updates to address vulnerabilities

Answer 314

Known vulnerabilities in software, firmware, and applications

Answer 315

Ensure devices adhere to secure configurations

Answer 316

Retire end-of-life or legacy systems posing security risks

Answer 317

Isolate vulnerable systems from the enterprise network

Answer 318

Divide the network into segments to limit the impact of breaches

Answer 319

Wireless technology for short-distance data exchange

Answer 320

Insecure pairing

Answer 321

Impersonating a device to trick a user

Answer 322

Intercepting and altering Bluetooth communications

Answer 323

Sending unsolicited messages to a Bluetooth device

Answer 324

Unauthorized access to a device to steal information

Answer 325

Allows attackers to take control of a device's Bluetooth functions

Answer 326

Denial-of-service attack by overwhelming a device with data

Answer 327

Spreads through the air to infect devices without user interaction

Answer 328

Turn off Bluetooth when not in use.

Answer 329

Unsolicited connection attempts.

Answer 330

Update firmware.

Answer 331

Only pair with known and trusted devices.

Answer 332

Use a unique PIN or passkey

Answer 333

To avoid accepting requests blindly

Answer 334

Scrambles data to prevent unauthorized access

Answer 335

Installing apps from unofficial sources

Answer 336

Download apps from official sources with strict review processes

Answer 337

Giving users escalated privileges

Answer 338

Potential security breaches

Answer 339

To attacks

Answer 340

Use cellular data for more secure connections and connect only to known devices

Answer 341

MDM solutions

Answer 342

Using long passwords, 802.1x authentication

Answer 343

Mobile Device Management

Answer 344

Patching, configuration management, best practice enforcement, zero-day vulnerability detection

Answer 345

Attacks that target previously unknown vulnerabilities

Answer 346

Refer to the vulnerability, exploit, or malware that exploits the vulnerability

Answer 347

They can be lucrative and are sold to government agencies, law enforcement, and criminals

Answer 348

Bug bounty hunters

Answer 349

To increase the chances of successful attacks

Answer 350

Known vulnerabilities' exploitation

Answer 351

They have known vulnerabilities

Answer 352

Regular system updates and patches

Answer 353

Detect and block suspicious activities

Answer 354

Improperly configured system settings

Answer 355

Standardize and automate configuration processes

Answer 356

Unauthorized data transfers from an organization to an external location

Answer 357

Encryption for data at rest and endpoint

Answer 358

Monitor and restrict unauthorized data transfers

Answer 359

Updates that appear legitimate but contain malware or exploits

Answer 360

By maintaining application allow lists and checking digital signatures and hashes

Answer 361

Sending malicious data to a system for unintended consequences

Answer 362

To insert code into systems

Answer 363

Interact with databases

Answer 364

Select, Insert, Delete, Update

Answer 365

Read data from the database

Answer 366

Write data into the database

Answer 367

Remove data from the database

Answer 368

Overwrite some data in the database

Answer 369

Consumes memory exponentially, acting like a denial-of-service attack

Answer 370

Attempts to read local resources, like password hashes in the shadow file

Answer 371

Implement proper input validation

Answer 372

Injects a malicious script into a trusted site to compromise the site’s visitors

Answer 373

To have visitors run a malicious script bypassing normal security mechanisms

Answer 374

1. Identify input validation vulnerability 2. Craft a URL for code injection 3. Inject malicious code into trusted site 4. Run malicious code in client's browser

Answer 375

Defacing the trusted website, stealing user's data, intercepting data or communications

Answer 376

A XSS attack that only occurs when launched and happens once

Answer 377

Allows an attacker to insert code into a backend database

Answer 378

Exploits the server to execute the attack

Answer 379

Exploits the client's web browser to modify web page content

Answer 380

Exploits the client's device to execute the attack

Answer 381

To change the DOM environment

Answer 382

Using the logged in user's privileges on the local system

Answer 383

Enables web applications to uniquely identify a user across actions and requests

Answer 384

A fundamental security component in modern web applications

Answer 385

A session cookie that is deleted at the end of the session.

Answer 386

A cookie that is stored in the browser cache until deleted or expired.

Answer 387

A type of spoofing attack where the attacker disconnects a host.

Answer 388

Type of spoofing attack where the attacker attempts to predict the session token in order to hijack the session

Answer 389

By using a non-predictable algorithm to generate session tokens

Answer 390

Malicious script used to exploit a session started on another site within the same web browser

Answer 391

Use user-specific tokens in all form submissions and add randomness and additional information prompts when resetting passwords

Answer 392

Increases security by adding an additional layer of verification.

Answer 393

Entering the current password.

Answer 394

85% of data breaches used buffer overflow.

Answer 395

Temporary storage areas for data

Answer 396

Data spills into adjacent memory locations

Answer 397

To store data during processing

Answer 398

By overwriting the return address with malicious code

Answer 399

Overwrite the return address with malicious code

Answer 400

By modifying the return address

Answer 401

Execute remote code on the victim's system

Answer 402

To create a slide for the return address

Answer 403

Slide the return address down to the attacker's code

Answer 404

Randomizes memory addresses used by well-known programs to make it harder to predict the location of the attacker's code.

Answer 405

Software vulnerabilities related to the order and timing of events in concurrent processes.

Answer 406

Allows attackers to disrupt intended program behavior and gain unauthorized access.

Answer 407

Removing the relationship between a pointer and the memory location it was pointing to

Answer 408

Unexpected conflicts and synchronization issues

Answer 409

Timing their actions with vulnerable code execution

Answer 410

Unauthorized access, data manipulation, and system crashes

Answer 411

Dirty COW Exploit

Answer 412

Time-of-Check (TOC), Time-of-Use (TOU), Time-of-Evaluation (TOE)

Answer 413

Locks and mutexes

Answer 414

Acts as a gatekeeper to a section of code so that only one thread can be processed at a time

Answer 415

To ensure only one thread or process can access a specific section of code at a time

Answer 416

Properly design and test locks

Answer 417

Lock remains in place after process completes

Answer 418

First step to effective prevention and mitigation

Answer 419

Denial of Service, Amplified DDoS, Reflected DDoS

Answer 420

DNS Cache Poisoning, DNS Amplification, DNS Tunneling

Answer 421

Unauthorized takeover of a domain name

Answer 422

A method of copying DNS records from a primary DNS server to a secondary DNS server

Answer 423

Exploiting insufficient security validation of user-supplied input file names

Answer 424

Exploiting system vulnerability to gain elevated access

Answer 425

Malicious or fraudulent repeat/delay of a valid data transmission

Answer 426

Introduction of harmful code into a program or system

Answer 427

Examples include account lockout, concurrent session usage, blocked content, etc.

Answer 428

Attack that tries to make resources unavailable

Answer 429

Attempt to make resources unavailable

Answer 430

Overloading server with ICMP echo requests

Answer 431

Initiating multiple TCP sessions but not completing handshake

Answer 432

Blocking echo replies

Answer 433

Flood guard

Answer 434

Exploits security flaws to break a networking device permanently by re-flashing its firmware

Answer 435

Creates a large number of processes, consuming processing power

Answer 436

Malicious attempt to disrupt the normal functioning of a network, service, or website by overwhelming it with a flood of internet traffic

Answer 437

DDoS attack using DNS requests to flood a website

Answer 438

Routes attacking IP traffic to a non-existent server

Answer 439

Web application filtering, content distribution, robust network defenses

Answer 440

Translating human-friendly domain names

Answer 441

Corrupts cache with false information

Answer 442

Use DNSSEC, secure network configurations and firewalls

SecPlusP3 Flashcards

(489 cards)