Section 5

Question 1

firewalls

Answer 1

○ Maintain control over traffic that flows in and out of networks
○ Examine packets

Question 2

stateful packet inspection

Answer 2

Can watch traffic over a given connection

Question 3

Deep packet inspection

Answer 3

Analyze actual content of traffic that flows through

Question 4

Proxy servers

Answer 4

○ Special firewalls
○ Pertain to applications
○ Provide security and performance features

Question 5

Kismet

Answer 5

detect wireless access points

Question 6

Scanners

Answer 6

○ Tools that enable you to interrogate devices and networks for information

Question 7

Packet sniffer examples

Answer 7

tcpdump, wireshark

Question 8

What are two main methods of an IDS?

Answer 8

signature based, anomaly based

Question 9

Which set of policies and procedures outlines the steps an organization will take during a state of emergency to replace IT infrastructure?

Answer 9

disaster recovery

Question 10

Which network security tool deliberately configures a system with fabricated vulnerabilities to detect and monitor the activities of an attacker?

Answer 10

honeypot

Question 11

Which type of controls employ measures such as policies, procedures, and guidelines to protect people?

Answer 11

administrative controls