Securing a Network

Question 1

What is the device/application that controls the flow of traffic by preventing unauthorized network traffic from entering or leaving a particular segment of a network called?

Answer 1

Firewall

Question 2

What type of firewall compares received traffic with a set of rules that define which traffic it will permit to pass through the firewall, and has no memory of packets it has encountered in the past?

Answer 2

Packet filtering firewall

Question 3

What type of firewall remembers information about the status of a network communication, once the firewall receives the first packet in a communication, the firewall remembers that communication session until it is closed, only needs to check rules when a new communication session starts?

Answer 3

Stateful inspection firewall

Question 4

What type of firewall inspects the contents of packets, specifically designed to monitor and control traffic based on the applications or services generating data, can enforce more granular policies by inspecting application-specific commands or data payloads?

Answer 4

Application layer firewall

Question 5

What type of firewall does not allow packets to travel directly between systems on opposite sides of the firewall. It opens separate connections with each of the communicating systems and then acts as a broker (or proxy) between the two, which allows for an added degree of protection b/c the firewall can analyze info about the application in use when making the decision to allow or deny traffic?

Answer 5

Proxy firewall

Question 6

What security measure passively listens and monitors the network, alerting the admin of any detected suspicious behavior, available as virtual and host-based application that can be configured to operate in tap mode, identifying malicious traffic when detected?

Answer 6

Intrusion Detection System (IDS)

Question 7

What security measure has cables physically routed through devices to create choke points blocking threats when they are intercepted, available as virtual and host-based application that can be configured to operate in tap mode, identifying and blocking malicious traffic when detected?

Answer 7

Intrusion Prevention System (IPS)

Question 8

What scrambles data and has two ways to do it?

Answer 8

Encryption

Question 9

What are the two encryption types?

Answer 9

Symmetric and Asymmetric

Question 10

Which type of encryption is the strongest, widely used, fast, and the key that encrypts also decrypts?

Answer 10

Symmetric

Question 11

Which type of encryption is slower, can’t encrypt large amounts of data, has a public and private key, and when you use one key to encrypt you can only decrypt with the other key?

Answer 11

Asymmetric

Question 12

What is encrypted plaintext called?

Answer 12

Ciphertext

Question 13

What is the process by which we secure and lock down our software, systems, individual applications, or the entire organization?

Answer 13

Hardening

Question 14

What security measure uses several defensive security controls to protect the data, applications, and network and designed to slow down the attack?

Answer 14

Defense in depth

Question 15

What is a short written statement that the people in charge of an organization have set as a course of action or direction, comes from upper management, and applies to the entire organization?

Answer 15

Policy

Question 16

What is a detailed written definition for hardware and software and how they are to be used, ensure that consistent security controls are used throughout the IT system?

Answer 16

Standard

Question 17

What are written instructions for how to use policies and standards, may include a plan of action for installation, testing, and auditing of the security controls?

Answer 17

Procedures

Question 18

What is a suggested course of action for using the polices, standards, or procedures, and can be specific or flexible regarding use?

Answer 18

Guidelines