Security Tehcnologies

Question 1

Firewall

Answer 1

Uses a set of rules defining the types of traffic permitted or denied through the device

Question 2

Packet-Filtering Firewall

Answer 2

• Permits or denies traffic based on packet header

Question 3

Stateful Firewall

Answer 3

Inspects traffic as part of a session and recognizes where the traffic originated

Question 4

NextGen Firewall (NGFW)

Answer 4

• Third-generation firewall that conducts deep packet inspection and packet filtering

Question 5

Access Control List(ACL)

Answer 5

Set of rules applied to router interfaces that permit or deny certain traffic

Question 6

Firewall Zone

Answer 6

• Firewall interface in which you can set up rules

Question 7

Inside

Answer 7

• Connects to corporate LAN

Question 8

Outside

Answer 8

Connects to the Internet

Question 9

Demilitarized Zone (DMZ)

Answer 9

• Connects to devices that should have restricted access from the outside zone (like web servers)

Question 10

Unified Threat Management (UTM) Device

Answer 10

Combines firewall, router, intrusion detection/preventions system, anti-malware, and other features into a single device

Question 11

Signature-Based Detection

Answer 11

Signature contains strings of bytes (a pattern) that triggers detection

Question 12

Policy-Based Detections

Answer 12

Relies on specific declaration of the security policy

Question 13

Statistical Anomaly-Based Detection

Answer 13

Watches traffic patterns to build baseline

Question 14

Non-Statistical Anomaly-Based Detections

Answer 14

Administrator defines the patterns/baseline

Question 15

Network-based (NIDS/NIPS)

Answer 15

• A network device protects entire network

Question 16

Host-based (HIDS/HIPS)

Answer 16

Software-based and installed on servers and clients