SecurityTechniques

Question 1

Extended Server Set (ESS)

Answer 1

Configuration involves multiple wireless access points working together to create a unified and extended coverage area

Question 2

Wireless Interference Types

Answer 2

Co-channel, Adjacent

Question 3

Co-Channel

Answer 3

Is two on the same channel frequency

Question 4

Adjacent

Answer 4

Is two or more different frequencies but the range collides

Question 5

Site Survey

Answer 5

Process of planning and designing a wireless network to provide a solution

Question 6

Heatmap

Answer 6

Graphical representation of the wireless coverage, signal strength, frequency utilization

Question 7

Wired Equivalent Privacy (WEP)

Answer 7

Outdated 1999 wireless security standard meant to match LAN security for wireless network. They use the same encryption key for all devices on the network to secure messages

Question 8

Wi-Fi Protected Access 2 (WPA2)

Answer 8

Improved data protection and network access control by addressing weaknesses in the WPA version; Use AES-CCMP to improve it

Question 9

Wi-Fi Protected Access (WPA)

Answer 9

Created as a temporary improvement to WEP using TKIP protocol for a random key for each device instead of a fixed one

Question 10

Wi-Fi Protected Access 3 (WPA3)

Answer 10

Latest version of WPA using AES, SAE, enhanced open, better protocols and management

Question 11

Simultaneous Authentication of Equals (SAE)

Answer 11

Enhanced security by offering a key established protocol to guard against offline dictionary attacks

Question 12

Enhanced Open/ Opportunistic Wireless Encryption (OWE)

Answer 12

Major advancement in wireless security, especially for networks using open authentication

Question 13

AES CCMP was replaced from WAP2 to use __ in WPA3

Answer 13

AES-GCNP

Question 14

Galoris Counter Protocol (GCNP)

Answer 14

Supports 128-bit AES for personal networks and 192-bit AES for enterprise networks with WPA3

Question 15

Management Frame Protection

Answer 15

Required to Protect Networks from Key Recovery Attacks

Question 16

WPA3 uses AAA techniques such as

Answer 16

Remote Authentication Dial-In User Service (RADIUS) for Client-Server Protocols and Terminal Access Controller Access-Control Plus (TACACS+) to allow separate control in the AAA types also using TCP

Question 17

Application Security

Answer 17

Software development focused on building applications that are secure by design

Question 18

Application Security Types

Answer 18

Input Validation, Secure Cookies, Static Code Analysis, Dynamic Code Analysis, Code Signing and Sandboxing

Question 19

Static Code Analysis (SAST)

Answer 19

Method for debugging an application by reviewing and examining its source code before the program is ever ran

Question 20

Dynamic Code Analysis Types

Answer 20

Fuzzing, Stress Testing

Question 21

Fuzzing

Answer 21

Finding software flaws by bombarding it with random data to trigger crashes and security vulnerabilities

Question 22

Code Signing

Answer 22

Used to confirm the identity of a software and integrity via digital signatures

Question 23

Network Access Control

Answer 23

Scans devices for security status before granting network access, safeguarding against both known and unknown devices

Question 24

Network access Control Types

Answer 24

Persistent / NonPersistent

Question 25

Persistent

Answer 25

Needs a software installed under the device requesting network access

Question 26

Non-Persistent

Answer 26

Needs you to sign in once connected to the network, or you receive no network

Question 27

Web Filtering

Answer 27

Technique used to restrict control of the content a user can access on the Internet

Question 28

DNS Filtering

Answer 28

Used to block access to certain websites by preventing the translation of domain names as specific addresses

Question 29

Web Filtering Types

Answer 29

Agent-based, Centralized Proxy, URL scanning, Content Categorization, Block Rules, Reputation-based

Question 30

Agent-Based Filtering

Answer 30

Installing a smallest piece of software known as the agent on each device that requires web filtering

Question 31

Centralized Proxies

Answer 31

Server that acts as a middleman between users and the Internet

Question 32

URL Scanning

Answer 32

Used to analyze a website's URL to determine if it's safe or not to access

Question 33

Content Categorization

Answer 33

Websites are categorized based on the content like social media, adult content, or gambling

Question 34

Block Rules

Answer 34

Specific guidelines set by an organization to prevent access to certain websites or categories of a website

Question 35

Reputation-based Filtering

Answer 35

Blocking or allowing a website is based on the reputation score

Question 36

Email Security Types

Answer 36

DKIM, SPF, DMARC, email gateway protocol, and spam filtering

Question 37

Domain Keys Identified Mail (DKIM)

Answer 37

Allows the receivers to check if the integrity of the data was tampered

Question 38

Sender Policy Framework (SPF)

Answer 38

Authentication method designed to prevent forging senders address during email delivery

Question 39

Domain-based Message Authentication, Reporting, and Conformance (DMARC)

Answer 39

An email validation system designed to detect/prevent email spoofing

Question 40

Endpoint Detection and Response (EDR)

Answer 40

Only endpoints; category of security tools that monitor endpoint and network events and record the info to a database

Question 41

Extended Detection and Response (XDR)

Answer 41

Security strategy that integrates multiple protection strategies into a single platform to improve detection and response rate

Question 42

User Behavior and Analytics (UBA)

Answer 42

Deploys big data and machine learning to analyze user's behavior for detected security threats