Securing Hosts & Data Flashcards

1
Q

Trusted OS

A

Trusted OS

  • Meets set of requirements (Common Criteria) with emphasis on authentication/authorization
  • Ensures only authorized personnel can access/modify data based on permissions
  • Helps prevent malware infections
  • Uses MAC (Mandatory Access Control)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

chroot

A

chroot

  • linux command to create sandbox
  • Changes root directory for application, isolating it
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

FDE

A

FDE

Full Disk Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

SED

A

SED

Self Encrypting Drive

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

UEFI

A

UEFI

  • Replacement for BIOS on newer systems
  • Boot from larger disks
  • CPU independent
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

TPM

A

TPM
Trusted Platform Module
-HW chip that stores keys for encryption
-Many laptops ship with
-Cannot add later
-Provides full disk encryption
-Secure boot - checks key files against signatures stored in TPM; blocks boot if modified
-Remote attestation - like secure boot, but checks files and sends report to remote system, which verifies
-TPM ships with RSA private key burned into it - asymmetric encryption - hardware root of trust
-Bitlocker enables TPM
-Chip embedded into motherboard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

HSM

A
HSM
Hardware Security Module
-Device that can be added to system to manage, generate, securely store keys (for multiple devices)
-Provides hardware root of trust
-Secure boot
-Optional remote attestation
-Removable or external devices
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

SaaS

A

SaaS

  • Software as a Service
  • ie, gmail
  • Least customer maintenance or security responsibility
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

PaaS

A

PaaS

  • Platform as a Service
  • Fully managed platform, like host website on virtual server with OS installed and kept up to date by provider
  • Middle customer maintenance or security responsibility
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

IaaS

A

IaaS
Infrastructure as a Service
-Access to hardware in a self-managed platform
-Most customer maintenance or security responsibility

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

CASB

-List functions

A
CASB
Cloud Access Security Broker
-Security as a Service
-Monitors traffic between org's network and cloud provider
-Ensures security policies

Functions

  • Visibility into application use (list apps in use)
  • Data security (verify encrypted data transfers)
  • Verify compliance with standards
  • Monitoring and identification of threats
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

COPE

A
COPE
Corporate Owned, Personally Enabled
-Mobile device deployment model
-Device owned by org
-Can use for personal
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

BYOD

A

BYOD
Bring Your Own Device
-Mobile device deployment model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

CYOD

A

CYOD
Choose Your Own Device
-Mobile device deployment model
-List of approved devices that can connect to network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

VDI

A

VDI

  • Mobile device deployment model
  • Access virtual desktop from mobile device
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

MDM

A

MDM
Mobile Device Management
-Ensure devices have security controls
-Application management - restrict apps
-Full device encryption
-Storage segmentation - corporate data in encrypted segment
-Content management - ensure all content retrieved from organization source is stored in encrypted segment
-Containerization -encrypt container app run in
-Enforce strong authentication
-Block network access for jailbroken or rooted devices
-Disable camera and microphone
-Prevent use of external media and USB On-The-Go
-Block other internet connections like tethering, wifi direct
-Block cellular carrier unlocking

17
Q

Sideloading

A

Sideloading

  • Copy app package in APK format to device and activate
  • Device must be set to allow apps from unknown sources
  • Useful for developers testing apps, otherwise risky
18
Q

SCADA

A

SCADA

-Embedded systems that control industrial control systems (ICS)

19
Q

DLP

A
DLP
Data Loss Prevention
-Monitors outgoing data
-Block USB
-Prevent users from copying or printing files with specific contents
-Log events
-Alert admins