Security Basics

Question 1

Define Authorized Users.

Answer 1

People who are meant to have access to a certain system

Question 2

Define Hackers.

Answer 2

People who attempt to gain access to a computer system in a way not intended by the system’s owner.

Question 3

Define Malware.

Answer 3

Malicious software created or used by hackers that does something the owner of the system does not want.

Question 4

Define Severtiy.

Answer 4

The seriousness of a crime from the perspective of the victim and from the perspective of the law.

Question 5

Define Secure Systems.

Answer 5

Systems that are secure against known threats and potential ones (to an extent).

Question 6

What are White Hat Hackers?

Answer 6

Security professionals brought in and paid specifically to test the security of a system.

Question 7

What are Black Hat Hackers?

Answer 7

People who gain access to a system without permission and steal/alter data. Not always for personal profit, sometimes it is an act of civil disobedience.

Question 8

What are grey hat hackers?

Answer 8

People who gain access to a system without permission but with no malicious intent. Often used to inform a company about vulnerabilities of their system.

Question 9

How is severity judged?

Answer 9

It is judged by the stemming from the connection to further crimes. The act itself is not the only thing looked at, it is the intentions of the hacker, and how accessing a system could cause further crimes in the future.

Question 10

Define Computer Viruses.

Answer 10

Unwanted, self-replication embedded code with a debilitation effect on a computer system. Different to ‘bugs’ which are unintended errors. Come in a variety of different flavours. Virus detection relies on recognizing the code in viruses.

Question 11

Define Trojan horse.

Answer 11

Software that masquerades as something else that does something malicious when executed. Typically delivered in downloadable files from websites or emails.

Question 12

Define worms.

Answer 12

A network propagated virus, meaning it spreads system, to system.

Question 13

Define Zombies.

Answer 13

A software program that is used to control your computer remotely without your knowledge.

Question 14

Define key loggers.

Answer 14

Software that sits on the computer and logs the keys you press. It can also come in the form of hardware, for example inserting a USB into the back of a computer and then using the USB to see the stream f inputs a user has entered.

Question 15

Define rootkits.

Answer 15

Hides software’s presence from a user by gaining root access toa system. When a computing system (OS) software is running, rootkit lies and hides the software. Can only be removed by re-installing the OS unless you know where the root kit is, or the type involved.

Question 16

Define BIOS rootkits.

Answer 16

The evolution of rootkits. Can only be removed by reformatting the BIOS.

Question 17

What are passwords?

Answer 17

Passwords authenticate you as an authorized user based on a shared secret between you and the system. We know it is each other as we know the shared secret

Question 18

How are passwords stored?

Answer 18

Passwords are stored in a single, hashed, and slated file typically called a password file. Every website has a file like this as does your computer. Access to this file should be strictly controlled and not even the company should be able to see it.

Question 19

Define Hashing.

Answer 19

A mathematical process that takes data of an arbitrary size and maps it to a fixed size hash value. In password storage the hash function is hard to reverse so you cannot guess the password from the hash.

Question 20

Define Salting.

Answer 20

Another method of increasing the security for storing passwords. A salt is a string of characters added to a password, and then it is hashed.

Question 21

What is a Brute Force Attack?

Answer 21

A program that submits many passwords/passphrases with the hope it is eventually guess correct (A systematic process).

Question 22

What is a dictionary attack?

Answer 22

Similar to a brute force attack but uses words from the dictionary or uses the list of common broken passwords in attempt to guess a password.

Question 23

What is a Rainbow Table Attack?

Answer 23

Using pre-computer encrypted passwords and using the high processing power of a high-end computer and waiting for a data leak to find which passwords/account they can get into.

Question 24

What are biometrics?

Answer 24

Unique measures of yourself.

Question 25

What is zero day?

Answer 25

Unknown exploits not yet disclosed. Makes it difficult to know if a computer system is ever secure.

Question 26

What are Bug Bounties?

Answer 26

Companies offering payments for finding bugs. Prevents/discourages people selling exploits.

Question 26

What are Bug Bounties?

Answer 26

Companies offering payments for finding bugs. Prevents/discourages people selling exploits.

Question 27

What is a DDOS Attack?

Answer 27

Distributed Denial of service attacks destroy utility of a network or resource, usually by means of a flood attack. Submitting more requests than a web page server can handle causing it inaccessible to other users trying to access the same website as the server would be slow or crash.

Question 28

What is Phishing?

Answer 28

Phishing originally was an email pointing AOL (American web portal) users to a fake AOL login screen to capture login details. It has then moved to other online services, especially online banking.

Question 29

What is Pharming?

Answer 29

Pharming uses cracked DNS servers. A cracked DNS is where a URL’s matching IP has been changed unintentionally by a hacker and therefore the URL redirects to the wrong IP.

Question 30

What is Ransomware?

Answer 30

It’s a malicious application of encryption technology. Once installed on a targets computer it will encrypt the users hard drive locking all the information stored. The only way to get it hack is via the decryption key. The data is in effect destroyed as it becomes completely inaccessible.

Question 30

What is the most powerful technique available to hackers?

Answer 30

Humans. Social engineering and the idea that people want to help people, we are our own weakness.

Question 31

What is Spear Phishing?

Answer 31

Sending customized emails to a single person so they will be more likely to open it, sometimes contains customized Trojans. It can exploit the fact that spam filters and anti-virus needs to know about an email/trojan.

Question 32

What is baiting?

Answer 32

Getting malicious software onto a users’ machine physically by leaving a USB lying around.

Question 33

What is the man in the middle?

Answer 33

When two users send private information to each other over a network there is a chance that people other than the recipient will read the data. We assume that a man in the middle attacker exists.

Question 34

What do we assume the man in the middle can do?

Answer 34

View - see communications
Intercept - stop messages from reaching the sender
Repeat - do it again to attempt access to a system

Question 35

Define Cryptography:

Answer 35

A form of secret writing, any technique to disguise the meaning of a word to those who don’t know how to interpret it.

Question 36

How do transition ciphers work?

Answer 36

Swap the ordering of letters in a fixed pattern. Hello world = eHlol owrdl

Question 37

How do substitution ciphers work?

Answer 37

Take a letter and replace it with another letter. Hello world = Ifmmp xpsmc

Question 38

What are the drawbacks of cipher approaches?

Answer 38

Once the cipher is know, messages are reversible. Ciphers can be solved via brute force attacks.

Question 39

What are frequency attacks?

Answer 39

Man in the middles views all our messages and know that letters do not get used randomly, in any long message this histogram will reveal links between code letters and message letters.

Question 40

What is Kerkhof’s principle?

Answer 40

The security of a key alone must be sufficient to guarantee the security of a message using the system.

Question 41

What is symmetric encryption?

Answer 41

A form of encryption where on (secret) is used to both encrypt and decrypt data. There are still issues of vulnerability when first sharing the key.

Question 42

What is asymmetric encryption?

Answer 42

A form of encryption where you use the recipients public key to encrypt the data and have it so that only recipients private key can decrypt the data.

Question 43

What is Diffie-Hellman?

Answer 43

Establishing a shared secret between two parties where communication can’t be seen by an eavesdropper.