Security

Question 1

PKI

Answer 1

Public Key Infrastructure

Question 2

CA

Answer 2

Certificate Authority

Digitally signs the certificate

Question 3

Self-Signed Certificate

Answer 3

If only used internally at an organization, no need for a public CA

Question 4

IAM

Answer 4

Identity and Access Management

Give right permissions to right users to prevent unauthorized access
- Identity Management
- Access Control
- Authentication
- Authorization

Question 5

MFA

Answer 5

Multi-Factor Authentication

Question 6

RBAC

Answer 6

Role Based Access Control

Question 7

SSO

Answer 7

Single Sign-On

Only need to sign in one time then have access all day to many resources

Question 8

RADIUS

Answer 8

Remote Authentication Dial-In User Service

Centralize authentication for users
- Routers, switches, firewalls, servers, VPN, 802.1X net access

Question 9

LDAP

Answer 9

Lightweight Directory Access Protocol

Read/write from directory on net
like phone book

Username, PW
Also other data to use in setting permissions
- CN = Common name - person or unit
- OU = Org Unit
- O = Org
- L = Location
- ST = State
- C = Country
- DC = Domain Component

Example:
CN=WIDGETWEB, OU=Marketing, O=Widget, L=London, C=GB, DC=widget, DC=com

Question 10

SAML

Answer 10

Security Assertion Markup Language

XML-based

Open standard for Authentication/Authorization
Can auth through 3rd party

Question 11

TACACS+

Answer 11

Terminal Access Controller Access Control System Plus

Remote authentication

Question 12

TOTP

Answer 12

Time-based One-Time Password

Use secret key and time of day to generate temp PW
Synch via NTP

Question 13

CIA

Answer 13

Confidentiality
Integrity
Availability

Question 14

Honeypot

Answer 14

Attract bad actors
Virtual world for attackers to explore

Question 15

Honeynet

Answer 15

Larger fake network to attract attackers

Question 16

Data Locality

Answer 16

Regulation that data gathered in country must remain in that country

Question 17

GDPR

Answer 17

General Data Protection Regulation

European regulation
- PII kept in EU
- Users decide and can request removal

Question 18

PCI DSS

Answer 18

Payment Card Industry Data Security Standard

Industry standard
Standard for protecting credit/debit card info/network

Question 19

IIOT

Answer 19

Industrial Internet of Things

Machine to machine comms

Question 20

SCADA

Answer 20

Supervisory Control and Data Acquisition

Question 21

ICS

Answer 21

Industrial Control System

Question 22

OT

Answer 22

Operational Technology

Tech that continued ops depend on - critical infrastructure

Question 23

Guest Network

Answer 23

Guests can access but no access to organizational resources

Question 24

VLAN Hopping

Answer 24

Switch Spoofing
- Pretend to be a switch
- Send trunk negotiation

Double Tagging
- Create a packet with two VLAN tags
- First tag is removed as it goes through a trunk, now second tag is visable and packet is forwarded to target
- One way trip, no response back out of network
- Change the native VLAN ID, Force tagging of all traffic on native VLAN

Question 25

MAC Flooding

Answer 25

Switch maintains a list of MACs on the network and interface to comm with the MAC

Attacker sends many frames with different MACs, fill up MAC table
If MAC not found on table, packet is forwarded to all interfaces on switch
Turns switch into hub

Prevent in switch’s port security settings

Question 26

ARP Poisoning

Answer 26

IP Spoofing

Attacker pretending to be another IP address

ARP: Who has 192.168.1.1
Device responds with its MAC
Client caches MAC
Client communicates assuming that MAC = 192.168.1.1

Question 27

DNS Poisoning

Answer 27

Same as DNS Spoofing

Question 28

Rogue DHCP server

Answer 28

IP addresses assigned by an unauthorized server
No security built into DHCP

Countermeasure:
- Enable DHCP snooping on switch
- Manage authorized DHCP servers in Active Directory
- Renew IP leases of devices on network

Question 29

Rogue Access Point

Answer 29

Unauthorized wireless access point
May be added by an employee or attacker
Creates vulnerable backdoor onto net

Countermeasure:
- Periodic survey of RF with tools like WiFi Pineapple
- Use 802.1X (Network Access Control)
– Must authenticate regardless of how you connected

Question 30

Evil Twin

Answer 30

Access Point set up to look identical to legitimate access point
May increase power output to overpower legitimate APs

Countermeasures:
- Always encrypted traffic/VPN

Question 31

On-Path network attack

Answer 31

Man in the Middle

Question 32

Rootkit

Answer 32

Malware that hides within your OS

Question 33

NAC

Answer 33

Network Access Control
Prompt for authentication any time a device plugs in
Username, PW

Question 34

Port Security

Answer 34

Prevent new device being plugged into interface
Based on MAC
Configure specific MACs, Number of MACs

Question 35

ACL

Answer 35

Access Control List

Control accesses by Source/Destination IP, Port Number, Time of Day, Application, etc

Question 36

Implicit Deny

Answer 36

Last firewall rule should be to deny any traffic that doesn’t match any of the previous rules

Question 37

DAC

Answer 37

Discretionary Access Control

give user access/admin on machine

Question 38

MAC

Answer 38

Mandatory Access Control

mostly used by gov agencies

Question 39

RBAC

Answer 39

Roll-Based Access Control

Question 40

ABAC

Answer 40

Attribute-Based Access Control

based on attributes like time of day, geo location, etc

Question 41

DLP

Answer 41

Data Loss Prevention

Monitor data at rest, in motion, in use
Analyze net traffic
Identify sensitive data, blocks transmission
Prevent sensitive data leakage

Question 42

OAuth

Answer 42

Open Authorization

Auth protocol to grant 3rd party apps access without sharing their password

Question 43

Kerberos

Answer 43

Authentication protocol developed in the 80s

Question 44

Which of the existing SNMP versions support(s) encryption? (Select all that apply)
SNMPv1
SNMPv2c
SNMPv3
SNMPv4

Answer 44

SNMPv3

There is no v4

Question 45

Which SNMP version(s) use(s) community strings for authentication? (Select all that apply)
SNMPv1
SNMPv2
SNMPv3
SNMPv4

Answer 45

SNMPv1
SNMPv2

Question 46

Which SNMP version(s) send(s) authentication data in an unencrypted form? (Select all that apply)
SNMPv1
SNMPv2c
SNMPv3
SNMPv4

Answer 46

SNMPv1
SNMPv2c

Question 47

Which of the following answers refer(s) to (a) dedicated software tool(s) designed to monitor and examine the contents of network traffic? (Select all that apply)
Port scanner
Network mapper
Protocol analyzer
Data flow controller
Packet sniffer

Answer 47

Protocol analyzer
Packet sniffer

Question 48

Which of the following answers refers to one of the core functionalities of SIEM?
Monitors bandwidth usage across the network
Conducts vulnerability assessments
Enforces security policies on endpoints
Collects, aggregates, and analyzes log data

Answer 48

Collects, aggregates, and analyzes log data

Question 49

Which of the following tools is used for evaluating network efficiency and identifying potential bottlenecks (network performance monitoring)?
SNMP
Ping
Nmap
Syslog

Answer 49

SNMP

Question 50

Which of the tools listed below is used to send echo requests to network devices and services to confirm their availability?
ICMP
Traceroute
RDP
SNMP

Answer 50

ICMP

ping is an ICMP message

Question 51

Examples of protocols specifically designed to provide confidentiality and privacy for DNS data include: (Select all that apply)
DNSSEC
DoH
DTLS
DoT
SSL/TLS

Answer 51

DoH
DoT