Security Architecture

Question 1

Identity and Access Management (IAM)

Answer 1

Frameworks and processes to control and manage user identities and access to resources

Question 2

Endpoint Detection and Response (EDR)

Answer 2

A solution to monitor and respond to threats on endpoint devices

Question 3

Network Access Control (NAC)

Answer 3

A solution to enforce security policies on devices trying to access the network

Question 4

Cloud Access Security Broker (CASB)

Answer 4

A tool for monitoring and enforcing security policies for cloud-based applications and data

Question 5

Shared Responsibility Model

Answer 5

A framework where cloud providers and customers share security responsibilities

Question 6

Container Security

Answer 6

Protecting containerized applications and their environments from vulnerabilities and threats

Question 7

Identity Federation

Answer 7

Linking a user’s identity across multiple systems, often used in cloud services

Question 8

Serverless Security

Answer 8

Securing applications that run on serverless computing platforms by addressing unique risks

Question 9

Security Incident and Event Management (SIEM)

Answer 9

A tool for aggregating and analyzing security event data in real-time.

Question 10

Blockchain Security

Answer 10

Protecting data integrity and transactions within a blockchain network

Question 11

802.1X

Answer 11

A network access control protocol used for port-based authentication on wired and wireless networks

Question 12

DNS Security Extensions (DNSSEC)

Answer 12

A protocol to secure DNS by adding digital signatures to DNS records

Question 13

Proxy Servers

Answer 13

Devices that act as intermediaries for requests between clients and servers to enhance security and performance

Question 14

Perfect Forward Secrecy (PFS)

Answer 14

A feature ensuring that a session key cannot be compromised even if the private key is exposed.

Question 15

Cipher Suite

Answer 15

A set of cryptographic algorithms used to secure network communications

Question 16

HMAC (Hash-based Message Authentication Code)

Answer 16

A cryptographic algorithm for verifying data integrity and authenticity

Question 17

Ephemeral Keys

Answer 17

Temporary encryption keys used for a single session to enhance security

Question 18

Threat Avoidance

Answer 18

Anticipating and addressing potential security issues during the design phase of a system

Question 19

Software Defined Perimeter (SDP)

Answer 19

A security approach that creates dynamic and user-specific perimeters for network access

Question 20

Federated Identity

Answer 20

A single identity across multiple systems or organizations, allowing seamless access

Question 21

Trusted Platform Module (TPM)

Answer 21

Provides hardware-based cryptographic functions for secure key storage and system integrity

Question 22

Secure Enclave

Answer 22

A trusted execution environment for isolating sensitive processes and data

Question 23

Software-Defined Networking (SDN)

Answer 23

Centralized control of network traffic allows for dynamic security policies.

Question 24

Privileged Access Management (PAM)

Answer 24

Securely manages and audits privileged user accounts