Security Architecture and Engineering

Question 1

What are the types of security model

Answer 1

Mandatory Access Control (MAC)
Modes of Operation
Confidentiality: Bell-LaPadula
Integrity: Biba
Lattice
Commercial: Clark-Wilson

Question 2

What is Mandatory Access Control (MAC)

Answer 2

Read down, write up

can only access object if the subject clearance is equal to or greater than the object’s label (Top Secret, Secret, etc..)

Question 3

What are the four types of Modes of Operation

Answer 3

Dedicated
System High
Compartmented
Multilevel

Question 4

What is Dedicated mode of operation

Answer 4

only contains object of one classification label (e.g. Top Secret)
Need to have clearance of equal to or higher to access the object

Question 5

What is System High mode of operation

Answer 5

contains mixture of labels (confidential, secret, top secret)
Need to have clearance of the highest object

Question 6

What is Compartmented mode of operation

Answer 6

all subjects have necessary clearance but don’t have formal access approval or Need to Know

Uses technical control to enforce need to know vs policy basis need to know

Formal access approval for SOME information they will access on the system.

A valid need to know for SOME information on the system.

All users can access SOME data, based on their need to know and formal access approval.

Question 7

What is Multilevel mode of operation

Answer 7

stores objects at different labels

allow access by subject with different clearances

Question 8

What is Bell-Lapadula security model

Answer 8

Confidentiality
No Reads up
No Write Downs

Question 9

What is Bell-Lapadula - Strong

Answer 9

Stuck at level

Can only perform operations at that level

Question 10

What are the 2 types of Bell-Lapadula tranquillity

Answer 10

Weak Tranquility property - the label of the subject and the object can’t change to violate defined security policy

Strong Tranquility property - label never change during operations

Question 11

What is Biba security model

Answer 11

Integrity (think of time, isn’t confidential, but requires integrity)

No read downs, no write up

Question 12

Which security model deal with integrity

Answer 12

All the model contains the letter I

Biba
Clark-Wilson
Non-Interference

Question 13

What is Lattice security model

Answer 13

Confidentiality

Deals with data flow

No read up, no write down

Question 14

What is the Clark-Wilson model

Answer 14

internal/external consistency

Authorized users cannot make unauthorized changes

Separation of duties

Question 15

What is the State Machine model

Answer 15

Captures current security posture

Test all paths

Question 16

What is the Research model

Answer 16

used to research the best security posture

Information Flow Model, Bell-Lapadula is one of them

Non-interference - High level action does not determine low level user visibility (NSA and pizza story)

Question 17

What is the Chinese Wall model

Answer 17

No information flow is allowed that could cause information leakage that could lead to conflict of interest

Treat them as separate companies

aka Brewer Nash

Question 18

What is Trusted Computing Base (TCB)

Answer 18

all components are properly implemented and secure

Question 19

What is a Reference Monitor

Answer 19

Mediates all access between object and subjects

Checks to ensure they are authorized to view/access objects

Question 20

What is Domain Separation

Answer 20

group of object with same security requirement

e.g. Top Secret object, HR department

Question 21

What is COI

Answer 21

Conflict of Interest

Question 22

What are the 3 types of Domain Separation

Answer 22

Execution Rings

Base Address Registers

Segment Descriptors

Question 23

What are the 4 Orange Book classes

Answer 23

A. Verified Protection (MAC +
B. Mandatory Protection (Mandatory Access Control)
C. Discretionary Protection (Discretionary Access Control)
D. Minimal Protection (e.g your laptop)

Question 24

What are the key principles of The Orange Cook

Answer 24

Functionality - how well does it operate
Effectiveness - how secure is it
Assurance - can we prove it is secure
Lifecycle assurance -

Question 25

What is ITSEC F1-F5

Answer 25

Mirror functionality of The Orange Book

Question 26

What is ITSEC F6

Answer 26

High Integrity Requirement

Question 27

What is ITSEC F7

Answer 27

High Availability

Question 28

What is ITSEC F8

Answer 28

High integrity for communication

Question 29

What is ITSEC F9

Answer 29

High confidentiality

Question 30

What is ITSEC F10

Answer 30

High confidentiality and integrity for data network

Question 31

Target of Evaluation (TOE)

Answer 31

System or product being evaluated

Question 32

Security Target (ST)

Answer 32

documentation describing TOE, including security requirements and operational environment

Question 33

Protection Profile

Answer 33

independent set of security requirements for specific product or system

e.g. Fire, IDS

Question 34

Evaluation Assurance Level (EAL)

Answer 34

Evaluation score of the tested product

Question 35

EAL 1

Answer 35

Functionally tested

Question 36

EAL 2

Answer 36

Structurally tested

Question 37

EAL 3

Answer 37

Methodically tested and checked

Question 38

EAL 4

Answer 38

Methodically designed, tested, and checked

Question 39

EAL 5

Answer 39

Semi-formally designed and tested

Question 40

EAL 6

Answer 40

Semi-formally verified, designed, and tested

Question 41

EAL 7

Answer 41

Formally, verified, designed, and tested

Question 42

What are the 2 parts of the CPU

Answer 42

Arithmetic Logic Unit (ALU)

Control unit

Question 43

What is Fetch-Decode-Execute cycle

Answer 43

Fetch - retrieves information
Decode - understand the instructions
Execute - instructions executed and stored in a register

Question 44

Fetch-Decode-Execute (no pipeline)

Answer 44

Sequential

Book 3.3 slide #4

Question 45

Fetch-Decode-Execute (pipeline)

Answer 45

Pipeline is hardware

Instead of doing it one at a time, can do multiple

Book 3.3 slide #4

Question 46

Complex-Instruction-Set-Computer (CISC)

Answer 46

Long command

x86 CPU

Question 47

Reduced-Instruction-Set-Computer (RISC)

Answer 47

Short command

ARM CPU

Question 48

What is multitasking

Answer 48

Multiple tasks concurrently on one CPU

Heavy Weight - each has own copy of dll

Question 49

What is multithreading

Answer 49

multiple threads concurrently on one CPU

Light weight, point to a copy of the dll

Question 50

What is multiprocessing

Answer 50

multiple task at the same time with multiple CPU

Question 51

What are the 3 types of Memory Protection

Answer 51

Process Isolation

Address Space Layout Randomization (ASLR)

Non eXecutable (NX) Stack

Question 52

Process Isolation

Answer 52

prevents one process from affecting another

Question 53

Address Space Layout Randomization (ASLR)

Answer 53

randomizes address used by programs

Question 54

Non eXecutable (NX) Stack

Answer 54

marks pages of the stack non executable

Question 55

Virtual memory

Answer 55

swapping memory to disk

think disk paging (oldest on disk, newest in RAM)

doesn’t correspond directly to physical memory

Threads use virtual address

Question 56

Direct Addressing (memory addressing)

Answer 56

exact location in memory to execute

Question 57

Indirect Addressing (memory addressing)

Answer 57

pointer to location in memory to execute

Question 58

Register Direct Addressing (memory addressing)

Answer 58

refer directly to specific register that already contains the data.

Register are temp storage for the task teh CPU works on at that instant

Question 59

Register Indirect Addressing (memory addressing)

Answer 59

pointer - looks for specified register

Register are temp storage for the task teh CPU works on at that instant

Question 60

Index Addressing (memory addressing)

Answer 60

Memory location plus offset

Think of an array

Question 61

Layering (OS)

Answer 61

Think OSI model

Works with layer above and below it and work independently. If one layer fails, should not affect other other layer

Question 62

Abstraction (OS)

Answer 62

Think of saving file

reduce complexity and hide the inner working of the system

Question 63

What are the 4 layer of Ring Layers of CPU

Answer 63

Ring 3: Applications and utilities
Ring 2: I/O drivers and utlities
Ring 1: OS component not part of kernel
Ring 0: Kernel

All modern OS, only uses ring 0 and 3

Question 64

Trust Platform Module (TPM)

Answer 64

think of motherboard. TPM use to authenticate integrity of the BIOS

**Full disk encryption, if you don’t have TPM can’t decode to use it.

Question 65

Hypervisor

Answer 65

runs on the host, controlling the VM and their access to the hardware.

Question 66

What is full virtualization

Answer 66

run unmodified applications or OS designed to run directly on computer hardware

Question 67

What is Paravirtualization

Answer 67

runs specially modified applications or OS

Question 68

Unique requirements for VM

Answer 68

**Protect Hypervisor - Must remain secure!!!

Protect special host (such as drag and drop)

Question 69

What is a database

Answer 69

collection of related data intended for sharing

Question 70

What is Database Management System (DBMS)

Answer 70

Stores data and provides operation CRUD and search

Question 71

What are the 4 types of data model

Answer 71

Hierchial
Mesh
Object-Oriented
Relational

Question 72

Semantic Integrity

Answer 72

Wrong data type

Question 73

Entity Integrity

Answer 73

Primary key

Question 74

Referential Integrity

Answer 74

Foreign key

Question 75

Concurrency

Answer 75

locking so two users can’t update at the same time

Question 76

Commit

Answer 76

writes changes to DB

Question 77

2-Phase commit

Answer 77

distributed DB, if commit cannot happen on all db, rollback changes

Question 78

Checkpoint

Answer 78

snapshot of database

Question 79

Database Journal

Answer 79

log file of db changes in real time

Question 80

Data Warehouse

Answer 80

used for queries, does not affect current system

Question 81

Data Mining

Answer 81

looking for something wrong, fraud

Question 82

Aggregation

Answer 82

example - download the entire phone book

iterate through the entire collection to get all the info

Question 83

Inferences

Answer 83

able to find out information of high level from lower level

Question 84

What is Inference Controls

Answer 84

Enforced during query processing (think of CIA and pizza)

Content-Depended access rules (think of phone book and asking for more than 5 at a time)

Question 85

Shadow database

Answer 85

Active - Passive

2 database, 1 mirrors the other. Only one takes the transaction.

Question 86

What is active-active db

Answer 86

Two DB synch, both writing transactions

Question 87

What is active-passive

Answer 87

Two DB synch, one mirrors the other and only one writes transactions

Question 88

What is an applet

Answer 88

Functions w/o sending users request back to the server

Remote code exec on client, additional risk

Question 89

What is Active X

Answer 89

MS version of applet

*Code Signing

Question 90

What is same-origin policy

Answer 90

Protocol, host and port must be same

http(protocol) bank.example.com (host) port 80

Question 91

Whitelisting

Answer 91

only allows specific characters

Whitelisting superior to blacklisting

Question 92

Blacklisting

Answer 92

rejects specifics characters and allows all others

Question 93

Supervisory Control System

Answer 93

Gathers data

Sends command

Question 94

Remote Terminal Unit

Answer 94

aka Remote Telemetry Unity
Connects devices to SCADA Network
converts analog data to digital

Question 95

Human-Machine Interface (HMI)

Answer 95

Presents data to the operator

Question 96

What are the security issues in SCADA

Answer 96

Older & unpatched
Default credentials
Serial ModBu and Modbus TCP have no built in security
Relied on network separate for security (internet causing issues)
Easily accessible via simple tools like SHODAn

Question 97

Cryptology

Answer 97

study of secure communications

Contains both Cryptography and Cryptoanalysis

Question 98

Cryptography

Answer 98

study of rendering messages indecipherable except to the intended recipients

Question 99

Cryptoanalysis

Answer 99

study of breaking code

Question 100

Cryptosystem

Answer 100

System design to encrypt

Question 101

Definition of Cryptography

Answer 101

hidden writing

Question 102

Plaintext

Answer 102

message in original form

Question 103

Ciphertext

Answer 103

message in encrypted form

Question 104

Encryption

Answer 104

creating of ciphertext from plaintext

Question 105

Decryption

Answer 105

ciphertext back to plaintext

Question 106

Cipher

Answer 106

aka cryptographic algo

Question 107

Work Factor

Answer 107

how long it takes to break

Question 108

Entropy

Answer 108

amount of randomness

Question 109

Exclusive (XOR)

Answer 109

boolean - plaintext to encryption and then back example (pg 108 book 3)

1- true
0 false

Input same - 0
Input different - 1

Question 110

Confusion

Answer 110

destroy pattern key to ciphertext

Question 111

Diffusion

Answer 111

destroy pattern plaintext to ciphertext

Question 112

Rotation Substitution

Answer 112

shift number of characters a set number of spaces

ROT3/ROT13

Question 113

Arbitrary Substitution

Answer 113

Replace one letter for another

Question 114

Polyalphabetic Cipher

Answer 114

Multiple alphabets

Question 115

Permutation

Answer 115

Rearranges the order of the characters (think anagram)

Question 116

One-Time Pad

Answer 116

Cannot Be broken
Truly random
Pads are kept secure - not intercepted
Each key is used once and never used

Question 117

What are the Cryptography Lifecycle

Answer 117

Cryptographic limitations
Algorithm Selection
Protocol Governance
Key Managment

Question 118

What are the two ways to encrypt data

Answer 118

Block by block encryption

Encrypt the entire stream

Question 119

What are the goals of the cryptography

Answer 119

Contains at least one or more of the items below
Confidentiality - secrets remain secrets
Data Integrity - data not altered
Authentication - providing identity claim
Non-Repudiation - can’t deny you did it. - this is combines data integrity and authentication

Question 120

Non-Repudiation

Answer 120

combines data integrity and authentication

Can’t deny you did something

Question 121

Symmetric

Answer 121

single key encrypt/decrypt

Question 122

Asymmetric

Answer 122

two key to encrypt/decrypt

Question 123

Hashing

Answer 123

“integrity” & Fixed Length

one way encryption
using algorithm with no key encryption

Question 124

DES: Data Encryption Standard

Answer 124

Describes the data encryption algorithm (DEA) - cipher
64 bit block
56 bit key size

Question 125

What are types of cipher mode

Answer 125

Electronic Codebook (ECB)
Cipher Block Chaining (CBC)
Output Feedback (OFB)
Cipher Feedback (CFB)
Counter Mode (CTR)

Question 126

What is Electronic Codebook (ECB)

Answer 126

Does not destroy pattern
Weakest of modes
No chaining

Question 127

What is Cipher Block Chaining (CBC)

Answer 127

requires IV
ensures confidentiality for known text
Chaining - ciphertext use as input for next plaintext encryption

Question 128

Output Feedback Mode (OFB)

Answer 128

Streaming Cipher
1 bit
Requires IV
does not propagate errors

Question 129

Cipher Feedback Mode (CFB)

Answer 129

Similar to CBC, but streaming not block
1 bit
Feedback like chaining
Requires IV
Errors will propagate

Question 130

Counter Mode (CTR)

Answer 130

Streaming Cipher
Use counter as IV
Doesn’t propagate error

Question 131

What are DES Weaknesses

Answer 131

crackable short time

Small keyspace, brute force

Question 132

Triple DES

Answer 132

3DES
TDEA (remember this)
Three rounds of DES

Question 133

Double DES

Answer 133

Meeting the middle flaw issue

Question 134

How does Triple DES work

Answer 134

Encrypt, Decrypt, Encrypt
3 Different Key
Backward compatible with single DES

Question 135

International Data Encryption Algorithm (IDEA)

Answer 135

Key length - 128 bit
Block size - 64 bit
slower than AES

Question 136

Advance Encryption Standard (AES)

Answer 136

Underlying - Rijndael
Symmetric block ciper
Block size: 128 bits
Variable key length: 128, 192, 256 bits

Question 137

What are the 4 AES basic functions

Answer 137

SubBytes - Substitute bytes
ShiftRows - Shift rows (rotation)
MixColums - Mixes Columns
AddRoundKey - XOR (boolean) state with a subkey at the end of each round

Question 138

Blowfish

Answer 138

Symmetric block cipher
Block size - 64 bit
Key length - 32-448 bit

Question 139

Twofish

Answer 139

Symmetric block cipher
Block size - 128 bit
Key length - 128,192,56 bit

Question 140

RC5

Answer 140

Symmetric block cipher
Block size - 32,64, 128 bit
Key length - 0-2040 bit

Question 141

RC6

Answer 141

Symmetric block cipher
Block size - 128 bit
Key length - 128,192, 256 bit

Question 142

Tractable Problems

Answer 142

Easy problems

Think prime number times each other

Question 143

Intractable Problems

Answer 143

Hard problem, cannot be solved quickly

Example 391 is what number x what number

Question 144

Diffie-Helman Key Exchange

Answer 144

Does not provide confidentiality, not encryption

exchange symmetric key via public channel

Question 145

Exponentiation

Answer 145

9^13

Question 146

Logarightms

Answer 146

Opposite of Exponentiation

Question 147

Digital Signatures

Answer 147

Authentication and integrity
proves it was signed and not changed
Asymmetric encryption and hash (RSA & SHA-1)

Question 148

What are three steps to digital signatures

Answer 148

Plaintext -> Hash - > Asymmetric Encryption

Question 149

Digital Signature Creation

Answer 149

Encrypt Private Key

Question 150

Digital Signature Verification

Answer 150

Decrypt with Public key

Question 151

Hash Message Authentication Code (HMAC)

Answer 151

Symmetric

Authenticate holder of symmetric key and verifies integrity

Question 152

What is Public Key Infrastructure used for (PKI)

Answer 152

Creating certs
Maintaining Certs
Revoking Certs

Question 153

What are the 5 components of PKI

Answer 153

Certificate Authority - issues/revokes certs
Organizational Registration Authority (ORA) vouch for the binding between public key and cert holder
Cert holder - sign digital certs
Clients that can validate digital signature
Central Repo

Question 154

How does PKI work

Answer 154

User A trust PKI server A: Therefore User A trust
any server signed by Server A
Any cert signed by Server A
any cert or server trust by Server A

Question 155

What are the trust model for CA

Answer 155

Hierarchical - Tree/leaf
Bridge - joining two organization CA
Mesh - 3 or more AC to trust each CA w/Hierarchical
Hybrid - some combination of the three

Question 156

PKI Cert Lifecycle

Answer 156

Registration
Creation
Distribution
Validation
Key Recovery
Expiration
Revocation

Question 157

Certificate Revocation List (CRL)

Answer 157

Entire list must be downloaded
CRL download can be network intensive
No real time notification

Question 158

Key Escrow

Answer 158

Split key in half - Separation of duties

Question 159

Pretty Good Privacy (PGP)

Answer 159

Symmetric, asymmetric, and hash cipher
Digital Signatures
secure communication w/o pre-sharing keys
Decentralized

Question 160

Transport Encryption

Answer 160

End to end encryption
e.g VPN
Focus on confidentiality but properly configured provide confidentiality, integrity, authentication, and non-repudiation

Question 161

TLS & SSL

Answer 161

TLS 1.0 is SSl 3.1
backward compatibility with SSL
TLS current version 1.2

Question 162

SSL/TSL Warning

Answer 162

sign of man in the middle attack

DNS poisioning

Question 163

IPSEC

Answer 163

Authentication Header (authentication/integrity, digital signature)
*AH - does not provide confidentiality
Encapsulating Security Payload (ESP) - confidentiality, integrity, and authentication. 
ESP protects data, NOT the header

Question 164

IPSEC Security Association

Answer 164

One way (simplex)
Bidirectional communications requires 2 SA

Question 165

Perfect Forward Secrecy (PFS)

Answer 165

Key 1 generates key 2
If key 1 compromised
Key 2 still secure

Question 166

Secure Shell (SSH)

Answer 166

replaced telnet, fpt
provides secure network terminal access and file transfer
port 22
SSHv1 - man in the middle attack issue
SSHv2 is preferred over SSHv1

Question 167

Known plaintext

Answer 167

some of plaintext is known as well as portion of ciphertext

Used that to figure out the rest…thing uboat/enignma

Question 168

Chosen plaintext

Answer 168

choose what gets encrypted to get the outpout

Question 169

Adaptive chosen plaintext

Answer 169

chosen plaintext with iterations based on knowledge of the output

Question 170

Chosen Key Attack

Answer 170

know something about the key (e.g. numbers only, upper case)

reduce number of characters to try

Question 171

Analytical attacks

Answer 171

use algo and math to figure out key

reduce the portion to be searched

Question 172

Statistical attacks

Answer 172

use statistical character of language or weakness in key

Question 173

Differential attacks

Answer 173

analyze results difference based on plaintext using a crypto key

think of example of making every 10 character an upper case X

Question 174

Linear attack

Answer 174

linear analysis of pairs of plaintext and ciphertext

Question 175

Differential linear attack

Answer 175

applying differential analysis with linear analysis

Question 176

Side-Channel attack

Answer 176

Use physical data to break crypto system

monitor CPU

Question 177

Birthday Attack

Answer 177

deals with hash collision

Question 178

Steganography

Answer 178

Data hiding

Images, word document, text documents

Question 179

Contraband checks

Answer 179

x-ray, metal detectors

Question 180

What are the types of facility control

Answer 180

Fences
Landscape
Vehicle barriers
Guards
Dogs
Badges
Lights
Motion detectors, sensors, and alarms

Question 181

Fences

Answer 181

3-4 ft/ 1 meter - deter causal trespasser
6-7ft / 2 meters - too high to easily climb
8 ft / 2.4 meters + 3 strands of barb wire - prevents determined intruder

Question 182

Gates

Answer 182

Class I - residential
Class II - commercial (parking garage)
Class III - Industrial (loading dock/factory)
Class IV - restricted access (prison/airport)

Question 183

Mantraps

Answer 183

Think of bank processing facility
Physical preventive control
Entrance protected by 2 doors
Intruder confined between 2 doors

Question 184

Restricted Area

Answer 184

Establish restricted and non-restricted area to determine perimeter
Escort from restricted area (employee/guard)
Perimeter of restricted area (space/time)

Question 185

How to deter unauthorized access

Answer 185

Educate - Employees only sign

Discourage - Psuedo-guard (unarmed)/prosecuted sign)

Question 186

Security guards

Answer 186

Duties
Checking entrance credentials
Issue/removing visitor badge
Monitor CCTV
Guards be trained and have complete and clear orders
Guards are expensive

Question 187

Dogs

Answer 187

**Main issue - Liability
deployed for perimeter security in controlled/enclosed area
Better are hearing and seeing at night
cost incur beyond basic feed and care (e.g insurance and liability)

Question 188

What is required lighting

Answer 188

2 candle power

Install lighting at least 8 ft high (2.4 m) and illumination of 2-foot candles

Question 189

Types of motion detectors, sensors and alarms

Answer 189

Motion (sonic sounds, ultrasonic sounds, microwave (radio waves))
Photometric - IR
Acoustical-sesmic detection - microphone
Proximity - electronic field sense presense

Question 190

Site Selection

Answer 190

Visibility
Local consideration (hazards, crime rate)
Natural disaster (earthquake, flood, etc..)
Transportation (easy access to transit, high traffic area)
Shared tenancy (HVAC)

Question 191

Facility design

Answer 191

Slab to slab
Wall - Fire rating - 1 hr
Door- solid/hollow core

Question 192

Enclosed areas

Answer 192

Slab to Slab wall - so intruder can’t sneak underneath etc..

Question 193

Doors

Answer 193

make sure which way the door swings to make sure when it open not block critical exit point
Doors open out, not in!
Fire rating equal to walls

Question 194

Windows

Answer 194

Laminated glass
Wired glass
Solar window films
Security film
Glass Breakage
Bulletproof
Explosive resistant

Question 195

Locks

Answer 195

Preventive control

lock bumping - shave points down on key

Question 196

Combination lock

Answer 196

no accountability - don’t know who unlocked it.

Question 197

Physical Security

Answer 197

Overlooked because assume already in place
Should be:
Risk-based
Focused on critical intellectual property (IP)
Balance with safety

Question 198

Wiring closets

Answer 198

avoid spaghetti cable

don’t intermingle power and network cable

Question 199

Wiring closets

Answer 199

closets should be secure

Demarc should be secure

Question 200

Server room

Answer 200

all three dimension (floor, ceiling wall) should be secure
all walls, doors, windows, floors, ceilings - 1 hour fire rating
Slab to slab walls

Question 201

Media storage

Answer 201

Stored off site and encrypted
Strict procedures
use bonded and license company for off-site storage
Make sure not impacted by same disaster

Question 202

Earthquakes

Answer 202

Detective - structural assessment

Corrective - structural reinforcement, evacuation

Question 203

Floods

Answer 203

Detective - detectors (moisture, humidity)

Corrective - bilge pump, evacuation

Question 204

HVAC

Answer 204

Positive Pressure - bad stuff goes out
proper temp and humidity level
Design for computers, no human

Question 205

HVAC Temp & Humidity

Answer 205

Temp - 70-74 degrees / 21-23 celcius
Humidity -40-60 % (50 % + or - 10)

Low humidity - static
High humidity - moisture (rust)

Question 206

Humidity

Answer 206

Maintain proper humidity level
Anti-static spray
Anti-static flooring
Grounding buildings and computers properly
Anti-static table covering
Anti-static floor mats

Question 207

Electrical Power

Answer 207

Fault: momentary power loss
Sag: momentary low voltage
Brownout: prolonged low voltage
Blackout: loss of all power
Spike: momentary high voltage
Surge: prolonged high voltage
Transient: short duration noise interference

Question 208

Smoke & Fire

Answer 208

Detective: smoke detectors, heat sensors, flame
Suppressive: sprinkler, extinguishers

Question 209

Smoke detectors

Answer 209

change in ionization

change in light beam

Question 210

Fire Detectors

Answer 210

sense pulsation of flame

Need line of sight

Question 211

Fire Classes (A-D)

Answer 211

A: Think ash (wood) - Suppression - water
B: Liquid (Banana Suit) - Suppression - soda acid
C: Conductive (electrical) - Suppression - gas
D: Combustible Metal - dry powder

Question 212

Fire Suppression

Answer 212

CO2 & soda acid remove fuel and oxygen
Water reduces temperature
Gas (Halon/Halon Sub) interferes with chemical reactions between elements

Question 213

Fire Suppression Systems

Answer 213

Zones of coverage
Time-release
HVAC off before activation
Water and gas (Halon)
Gas best used in pre-action, time delayed mode: 
Halon <10% breathed in healthy person.

Question 214

Wet pipe

Answer 214

filled with water

activated once reaches 165 degrees, material melts

Question 215

Dry Pipe

Answer 215

not filled with water - held back

activated once reaches 165, valves open

Question 216

Pre-action

Answer 216

hybrid between wet & dry pipe

Question 217

Deluge

Answer 217

similar to dry pipe, larger amount of water

Question 218

Gas discharge

Answer 218

Halon

installed under the floor of computer area

Question 219

Portable extinguishers

Answer 219

50 feet of electrical equipment
At exits
clearly marked with unobstructed view
Easily reached and operated by average size person
inspected regularly

Question 220

Water (Fire)

Answer 220

fire protection and insurance support use of water are primary fire extinguishing agent for all business environment.

Question 221

CO2

Answer 221

Colorless, odorless and potentially lethal cause it removes oxygen
Gas mask - no protection
best use - unattended facilities
built in delay for manned areas

Question 222

Halon

Answer 222

Must be thoroughly mixed with air
1/1/94 - have to stop using it -releases ozone depleting substances
FM-200 - most effected replacement
FM-13 breathable up to 30% concentration