Security Technologies

Question 1

Virtual Network Computing (VNC) Port 5900

Answer 1

Designed for thin client architectures and things like Virtual Desktop
Infrastructure (VDI)

Question 2

Virtual Desktop Infrastructure (VDI)

Answer 2

▪ Hosts a desktop environment on a centralized server

▪ Desktop as a Service (DaaS)

Question 3

Virtual Private Networks (VPNs)

Answer 3

Extends a private network across a public network and enables sending and
receiving data across shared or public networks
▪ Site to site: corporate network and a branch office network
▪ Client to site: remote user to main office
▪ Clientless: creates secure remote access vpn tunnel with web browser / used for e-commerce

Question 4

Full Tunnel VPN

Answer 4

Routes and encrypts all network requests through the VPN connection
back to the headquarters

Question 5

Split Tunnel VPN

Answer 5

Routes and encrypts only the traffic bound for the headquarters over the
VPN, and sends the rest of the traffic to the regular Internet
● For best security, use a full tunnel
● For best performance, use a split tunnel

Question 6

Clientless VPN

Answer 6

Creates a secure, remote-access VPN tunnel using a web browser without
requiring a software or hardware client

Question 7

IP Security (IPSec)

Answer 7

Provides authentication and encryption of data packets to create an secure
encrypted communication path between two computers
Provides CIA and Antireplay
IKE and Diffie Hellman Key Exchange

Question 8

Granular

Answer 8

Sent trap messages get a unique objective identifier to distinguish each
message as a unique message being received

Question 9

Management Information Base (MIB)

Answer 9

The structure of the management data of a device subsystem using a
hierarchical namespace containing object identifiers

Question 10

SNMPv3

Answer 10

Provides three security enhancements which added integrity,
authentication, and confidentiality to the SNMP protocol
Integrity, Authentication, PoE 802.3at

Question 11

System Logging Protocol (Syslog)

Answer 11

Sends system log or event messages to a central server, called a syslog
server
Security Information Management (SIM)
Security Event Management (SEM)
Security Information and Event Management (SIEM)

Question 12

SIEM Security Level 0

Answer 12

Emergency

The system has become unstable

Question 13

SIEM Security Level 1

Answer 13

Alert

A condition should be corrected immediately

Question 14

SIEM Security Level 2

Answer 14

Critical

A failure in the systems primary application requires immediate attention

Question 15

SIEM Security Level 3

Answer 15

error

something is preventing proper system function

Question 16

SIEM Security Level 4

Answer 16

warning

an error will occur if action is not taken soon

Question 17

SIEM Security Level 5

Answer 17

notice

the events are unusual

Question 18

SIEM Security Level 6

Answer 18

information

normal operational message that requires no action

Question 19

SIEM Security Level 7

Answer 19

debugging

useful information for developers

Question 20

Security Information and Event Management (SIEM)

Answer 20

Provides real-time or near-real-time analysis of security alerts generated by
network hardware and applications
Gathers logs and data from all sorts of different systems

Question 21

Traffic Log

Answer 21

Contains information about the traffic flows on the network

Traffic logs allow for investigation of any abnormalities

Question 22

Audit Log/ Audit Trail

Answer 22

Contains a sequence of events for a particular activity

Question 23

System Log

Answer 23

Contains information about the operating system itself