Securing Hosts And Data

Question 1

Principle that states systems should be deployed with only the application, services, and protocols they need to meet their purpose

Answer 1

Least Functionality

Question 2

A type of OS that disappears when users turn off the computer

Answer 2

Non-persistent operating system

Question 3

A type of OS that meets predetermined requirements with a heavy emphasis on authentication and authorization

Answer 3

Trusted Operating System

Question 4

The two important benefits that imaging provides

Answer 4

• Secure Starting Point

- Reduced Costs

Question 5

These two strategies include automation, scripting, and templates to help deploy systems securely, and keep them in a secure state

Answer 5

Resiliency and automation strategies

Question 6

The three steps in baseline configuration

Answer 6

• Initial baseline configuration
• Integrity measurements for baseline deviation
• Remediation

Question 7

This ensures that systems and applications stay up to date with current updates

Answer 7

Patch Management. Usually combined with NAC technologies to identified unpatched devices.

Question 8

The process used to control changes and modifications done on systems and applications.

Answer 8

Change Management

Question 9

Process used to protect hosts to include mobile devices, workstations, and servers from unauthorized applications

Answer 9

Whitelisting & Blacklisting

Question 10

This technique refers to using an isolated area on a system to test software.

Answer 10

Sandboxing

Linux - chroot command or chroot jail

Question 11

The secure staging environments used to create software

Answer 11

Development
Test
Staging
Production

Question 12

These are associated with embedded systems and often have internal storage that might retain documents that they process.

Answer 12

Multi-Function Devices (MFD)

Question 13

The difference between EMI and EMP

Answer 13

EMI - Electronic Magnetic Interference. Associated with powerlines, microwaves, motors

EMP - Electronic Magnetic Pulse. Associated with Military tech, ESD, and lightning

Question 14

The difference between FDE and SED

Answer 14

Full Disk Encryption - Encrypts entire disk

Self Encrypting Device - Includes hardware and software to provide encryption to a drive.

Question 15

The difference between BIOS and UEFI

Answer 15

BIOS - referred as firmware.

UEFI - Does the same as BIOS but it can boot from larger disk and its CPU-independent.

Question 16

This is a hardware chip on the computer’s motherboard that stores cryptographic keys used for encryption.

Answer 16

TPM - Trusted Platform Module. Supports Secure Boot & Attestation. Provides a hardware root of trust or known secure starting point

Question 17

This is similar to a TPM but it is added to a system to manage and securely store cryptographic keys

Answer 17

HSM - Hardware Security Module

Question 18

The three most common type of cloud based technologies used

Answer 18

SAAS - Software as a Service. Web services
PAAS - Platform as a Service - Software is managed by the CSP.
IAAS - Infrastructure as a Service - Software is managed by the customer.

Question 19

Which Cloud model leaves the majority of the security responsibility to the customer

Answer 19

IAAS

Question 20

Which Cloud model leaves the least amount of security responsibility to the customer

Answer 20

SAAS

Question 21

This cloud service provides security services and considered a subset of the software as a Service model

Answer 21

Security as a Service

Question 22

This is a software tool or service deployed between an organization’s network and the cloud provider to monitory traffic and enforce security policies.

Answer 22

CASP - Cloud Access Security Broker

Question 23

The four categories of cloud deployment models

Answer 23

Public
Private
Community
Hybrid

Question 24

The 5 common deployment models for mobile devices

Answer 24

Corporate owned
COPE - Corporate owned, personally enabled
BYOD - Bring Your Own Device
CYOD - Choose Your Own Device
VDI - Virtual Desktop Interface

Question 25

This includes the technologies to manage mobile devices

Answer 25

MDM - Mobile Device Management

Question 26

This is an MDM application that isolates storage data.

Answer 26

Storage Segmentation

Question 27

This is an MDM application that ensures that the appropriate content is stored in the correct location or segmented storage

Answer 27

Content Management

Question 28

An MDM concept that describes the use of cell virtualization to isolate and protect an application.

Answer 28

Containerization

Question 29

Organization sometimes use GPS to create a virtual or geographical boundary

Answer 29

Geofencing

Question 30

An MDM concept that uses multiple elements to authenticate a user and mobile device

Answer 30

Context-aware

Question 31

This is the process of modifying an Android device to give the user full admin access

Answer 31

Rooting

Question 32

The process of copying an application package in the application packet kit (APK) format to the device and then activating it

Answer 32

Sideloading

Question 33

These cables allows you to connect just about any device to your mobile device

Answer 33

USB-OTG (On the Go)

Question 34

Allows the internet connection of a device to be shared with other devices.

Answer 34

Tethering

Question 35

Allows a device to connect without a wireless AP or wireless router

Answer 35

WI-FI Direct - Similar to an ad hoc network

Question 36

What is the difference between WI-FI Direct and Ad-hoc

Answer 36

Wi-fi Direct - uses single radio hop as opposed multi-hop wireless communications

Question 37

The name of a device that has a dedicated function and uses a computer system to perform that function

Answer 37

Imbedded System - Such as wearable tech, Home Automation, UAV, vehicles, and medical devices

Question 38

This is a type of operating system that react to input within a specific time

Answer 38

RTOS - Real Time Operating System

Question 39

What are the file system encryption technologies for Windows and Linux

Answer 39

Windows - EFS - Encrypting File System

Linux - GNU Privacy Guard

Question 40

Linux: Read / Write / Execute are represented by what numbers

Answer 40

Read - 4
Write - 2
Execute - 1

Question 41

What command is used in Linux to change permissions on files

Answer 41

chmod - changemode

Question 42

What techniques do organizations use to stop information from being taken from their infrastructure

Answer 42

DLP - Data Loss Prevention

Question 43

What is the term used to describe the unauthorized transfer of data outside an organization

Answer 43

Data Exfiltration