Security, Compliance and Identity concepts

Question 1

What is Zero-based trust?

Answer 1

A methodology that removes trust for your network.

Question 2

What are the three principles of zero-based trust?

Answer 2

Verify explicitly, least privileged access, assume breach.

Question 3

What are the zero-based trust pillars?

Answer 3

Identities, devices, applications, networks, infrastructure, data

Question 4

What is defence in depth?

Answer 4

A security methodology that promotes having multiple layers of defence against attack so if a layer is penetrated, there’s another to slow the attacker.

Question 5

What is encryption?

Answer 5

A method of making data unreadable and unusable to unauthorized persons through encryption at rest and encryption in transit.

Two types of encryption:

• Symmetric uses the same key on both sides. Weakness is key exchange being compromised by man in the middle who can steal the key during exchange.
• Asymmetric uses a public and private key pair

Question 6

What is hashing?

Answer 6

Uses an algorithm to convert the original text to a unique fixed length hash value. Hash functions are:

• Deterministic, same input produces same output
• Unique identifier of its associated data
• Different to encryption in that the hashed value unable to be decrypted back to the original. Theoretically one-way.
• Used to store passwords. Passwords usually salted to prevent brute force rainbow attacks.

Question 7

What is the Cloud Adoption Framework?

Answer 7

A whitepaper that helps organizations migrate their workloads to Azure.

Question 8

What are the CAF steps?

Answer 8

Define Strategy, Plan, Ready, Adopt, and throughout those steps - Govern and Manage

Question 9

What is CIA?

Answer 9

Confidentiality - Encryption so that data is not understandable
Integrity - Checksums to ensure data remains untampered
Accessibility - Ensuring data is available to the right users

Question 10

What is the shared responsibility model?

Answer 10

Responsibilities on customer reduces as hosting model expands:
- SaaS least responsibility on customer as Azure has the greatest responsibility
- PaaS
- IaaS
-

Question 11

What are common threats?

Answer 11

Data breach - Phishing, tech support cams, SQL injection
Dictionary attack - Type of identify attack by brute force attack using a large number of known passwords
Ransomware - Type of malware that encrypts and folders and to extort money from victims
Disruptive attacks - Object is to disrupt the endpoint by exhausting endpoint resources.

Question 12

What are common identity attacks?

Answer 12

• password based attacks
• phishing tricks someone to send their credentials.
• spear phishing tricks someone by providing some of the credentials to look more real

Question 13

Identity as the primary security perimeter. What does this mean?

Answer 13

Identity is how someone/something can be verified and authenticated, can be a user, app, device, etc.
Four pillars of identity
- Administration - Create identity
- Authentication - Verify the identity is legitimate
- Authorization - What can the identity access
- Auditing - Observe and monitor what the identity is doing