Student Text

Question 1

What are the standard computer capabilities and characteristics?

Answer 1

• Speed
• Accuracy
• Diligence
• Versatility

Question 2

What is the fastest possible speed for information transmission?

Answer 2

Speed of light

Question 3

What is limited by the efficiency of the programmed algorithms being computer and system components?

Answer 3

Computer speed

Question 4

What is a personal computer that may of may not be connected to a network?

Answer 4

Workstation

Question 5

What are the different types of client workstations?

Answer 5

• Thin client
• Thick client

Question 6

What is a software program or actual computer relying heavily on another computer to do most of its work?

Answer 6

Thin client

Question 7

What operates on a network with client software or computer acting as an interface & the network doing all the processing work?

Answer 7

Thin client

Question 8

What is a workstation computer in a client server configuration functioning independent of the server?

Answer 8

Thick client

Question 9

What pulls some data from a central server and may run on its own without being connected to the server?

Answer 9

Thick client

Question 10

What is a computer on a network managing shared resources for other systems on the network?

Answer 10

A server

Question 11

What are some common types of servers?

Answer 11

• Application
• Catalog
• Database
• DHCP
• File
• Mail
• Proxy
• Web

Question 12

What is a computer system weakness that is open to exploitation?

Answer 12

Vulnerability

Question 13

What is a possible danger that may take advantage of a vulnerability?

Answer 13

Threat

Question 14

What is the likelihood that a threat will take advantage of a vulnerability?

Answer 14

Risk

Question 15

What are some types of malicious code?

Answer 15

• Viruses
• Worms
• Logic bombs
• Spyware
• Adware
• Rootkits
• Botnets

Question 16

What is code that spreads from one computer to another by attaching itself to other files?

Answer 16

A virus

Question 17

What is code that spreads from one computer to another on its own but not by attaching itself to another file?

Answer 17

A worm

Question 18

What is code that sits dormant on a target computer until it’s triggered by a specific event?

Answer 18

A logic bomb

Question 19

What stealthily installs malicious software intended to track and report data from a target system?

Answer 19

Spyware

Question 20

What is software that automatically displays or downloads advertisements?

Answer 20

Adware

Question 21

What is code intended to take full of partial control of a system at low levels?

Answer 21

A rootkit

Question 22

What is a collection of software robots run by a command & control (C2) program which in turn is controlled by a person?

Answer 22

A botnet

Question 23

What are some common causes of vulnerabilities?

Answer 23

• Configuration/familiarity
• Implementation
• Design

Question 24

What can a system or application misconfiguration cause?

Answer 24

A vulnerability

Question 25

What can using well known software increase?

Answer 25

The probability of an attacker finding a vulnerability to exploit

Question 26

What can lack of input validation cause?

Answer 26

A vulnerability

Question 27

Is there a possibility that there are vulnerabilities that are inherent in protocols, applications, or architecture used in the design?

Answer 27

Yes

Question 28

What are the primary threat categories?

Answer 28

• Unstructured threats
• Structured threats
• Internal threats
• External threats

Question 29

What are unfocused attacks on one or more network systems often by individuals with limited skill?

Answer 29

An unstructured threat

Question 30

What types of threats are focused by one or more individuals with high skills actively working to compromise a specific system?

Answer 30

A structured threat

Question 31

What threats originate from individuals who have (or had) authorized access to the network?

Answer 31

Internal threats

Question 32

What threats originate from individuals outside the organization?

Answer 32

External threats

Question 33

What are common vulnerability sources?

Answer 33

• Common Vulnerability and Exposure (CVE)
• US National Vulnerability Database (NVD)
• Exploit Database (DB)

Question 34

What was developed by MITRE in 1999 and has a list of vulnerability entries?

Answer 34

Common Vulnerability Sources (CVE)

Question 35

What contains an ID number, description, and at least one public reference?

Answer 35

A Common Vulnerability Source (CVE) entry

Question 36

What was launched by the US National Vulnerability Database (NVD) in 2005?

Answer 36

The US National Vulnerability Database (NVD)

Question 37

What is a vulnerability database built upon & fully synchronized with the CVE list?

Answer 37

The US National Vulnerability Database (NVD)

Question 38

What provides a Common Vulnerability Scoring System (CVSS)?

Answer 38

The US National Vulnerability Database (NVD)

Question 39

What is maintained by Offensive Security and is an archive of exploits, shell code, & security papers?

Answer 39

Exploit Database (DB)

Question 40

What is on the motherboard and controls the number of tasks the computer may accomplish at once and how quickly it can complete those tasks?

Answer 40

The Central Processing Unit (CPU)

Question 41

What is on the motherboard and is the circuitry responsible for managing specific hardware components?

Answer 41

Chipsets

Question 42

What is on the motherboard and is a small chip the CPU relies on to synchronize & control timing on all computer operations?

Answer 42

The system clock

Question 43

What is on the motherboard and is a small plastic slot used to install various devices?

Answer 43

Expansion slots

Question 44

What is on the motherboard, translates processor requests into instructions the component can understand and executes Power-On-Self-Test (POST)?

Answer 44

The BIOS

Question 45

What is on the motherboard, contains the computer’s inventory list & advanced setup options, and stores data read by the BIOS?

Answer 45

The CMOS

Question 46

What are the two types of memory?

Answer 46

RAM (Random Access Memory) and ROM (Read Only Memory)

Question 47

What is a memory chip on a computer responsible for storing temporary data and is volatile in nature?

Answer 47

RAM

Question 48

What is a chip with read-only data that are essential instructions when the system is turned on and is non-volatile in nature?

Answer 48

ROM

Question 49

What stores changing digital data in a relatively permanent form with the most popular being SCSI, SAS, and SATA?

Answer 49

Hard drives

Question 50

What are the two basic distributed system architectures?

Answer 50

• Client-server model (centralized environment)
• Peer-to-peer model (decentralized environment)

Question 51

What is an architecture where smart clients contact the server for data then format and displays it to the user?

Answer 51

The client-server model

Question 52

What is an architecture where there are no special machines that provide a server or manage the network resources and every node can serve as both client and server?

Answer 52

The peer-to-peer model

Question 53

What are the security basics?

Answer 53

• The CIA triad
• Enforce system policies & procedures
• The four A’s
• System hardening
• Vulnerability management
• Due care, due diligence, & due process
• Operations continuity & disaster recovery plans

Question 54

What is the CIA Triad?

Answer 54

Confidentiality, Integrity, and Availability

Question 55

What does a policy statement do?

Answer 55

Outlines a plan for the user security component

Question 56

What measures the level of adherence to the security policy?

Answer 56

Standards

Question 57

What are recommendations or best practices for how to meet the policy standard?

Answer 57

Guidelines

Question 58

What are step-by-step instructions that detail how to implement components of the policy?

Answer 58

Procedures

Question 59

What are the four A’s?

Answer 59

Authentication, authorization, access control, auditing/accounting

Question 60

What is the process of uniquely ID’ing a particular individual or entity?

Answer 60

Authentication

Question 61

What is the process of determining what rights & privileges a particular entity has?

Answer 61

Authorization

Question 62

What is the process of determining & assigning privileges to resources, objects, or data?

Answer 62

Access Control

Question 63

What is the process of tracking & recording system activities & resource access?

Answer 63

Auditing/accounting

Question 64

What is system hardening?

Answer 64

Eliminate as many security risks as possible

Question 65

What are some examples of system hardening?

Answer 65

• Disabling unnecessary services
• Protecting management interfaces & applications
• Disabling unnecessary accounts
• Password protection

Question 66

What is an ongoing comprehensive process or program that aims at managing an organization’s vulnerabilities in a holistic & continuous manner?

Answer 66

Vulnerability management

Question 67

What are some types of vulnerability management?

Answer 67

• Asset management
• Software management
• Vulnerability assessment
• Patch management
• Change management

Question 68

What is a policy describing how individuals should use & maintain organization issued hardware & software and includes both using the equipment safely & using it in an approved manner?

Answer 68

Due Care

Question 69

What is investing & researching all issues & options relating to a particular subject, ensuring security policies & practices are effective, and ensuring no violations in laws, statutes, or individual human rights?

Answer 69

Due diligence

Question 70

The organization does not assume an individual is guilty?

Answer 70

Due process

Question 71

What defines how an organization will maintain normal day-to-day Ops during a disruption or crisis?

Answer 71

Operations continuity plan

Question 72

What defines how people & resources will be protected in case of a natural or man-made disaster?

Answer 72

Disaster recovery plan

Question 73

What are the capabilities & benefits of websites?

Answer 73

• Reduces communication costs
• Enhances communication & coordination
• Accelerates the distribution of knowledge
• Improves the customer service & customer satisfaction

Question 74

What are some capabilities & benefits of databases?

Answer 74

• Data sharing is improved in the organization
• Improvement in data security
• Effective data integration
• DBMS minimizes data inconsistency
• Better access to data
• Increase in productivity of the end user
• Quick decision making

Question 75

What are the 10 most critical security risks?

Answer 75

• Injection
• Broken authentication
• Sensitive data exposure
• XML External Entities (XXE)
• Broken access control
• Security misconfiguration
• Cross-site scripting (XSS)
• Insecure deserialization
• Using components with known vulnerabilities
• Insufficient logging & monitoring

Question 76

What is it called when untrusted data is sent to an interpreter as part of a command or query and tricks it into accessing data without proper authorization?

Answer 76

Injection

Question 77

What is it called when issues with application functions related to authentication & session management allow someone to assume another users’ identity temporarily or permanently?

Answer 77

Broken authentication

Question 78

What is it called when lack of encryption for data at rest or in transit leads to the release of PII, healthcare, etc?

Answer 78

Sensitive data exposure

Question 79

What is it called when someone fails to enforce authenticated user restrictions?

Answer 79

Broken access control

Question 80

What allows someone to exploit unpatched flaws or default configurations?

Answer 80

Security misconfigurations

Question 81

What is it called when theirs insufficient input validation and attackers are able to add malicious content to a website & content executed on other victim’s browser?

Answer 81

Cross-Site Scripting (XSS)

Question 82

What is it called when existing data structures are used but content is changed?

Answer 82

Insecure deserialization

Question 83

When you use preconfigured client/server-side components but you don’t understand the component patch state what are you possibly doing?

Answer 83

Using components with known vulnerabilities

Question 84

When you are not validating logging & monitoring capabilities what are you setting yourself up for?

Answer 84

Insufficient logging and monitoring

Question 85

What are the various website components?

Answer 85

• Web page
• Web content
• Websites
• Web browser
• Web applications
• Browser engine

Question 86

What is a computer file that is suitable for the World Wide Web & a web browser?

Answer 86

Web page

Question 87

What are the two types of web pages?

Answer 87

Static and dynamic

Question 88

What is a flat/stationary web page called?

Answer 88

Static web pages

Question 89

What web page is controlled by application server processing server-side scripts and client web browser processing client-side scripts?

Answer 89

Dynamic web pages

Question 90

What is the textual, visual or aural content that is encountered as part of the user experience on a website?

Answer 90

Web content

Question 91

What is a collection of related web pages ID’d by a common domain name, published on at least one web server and accessible by IP networks or private LAN by URL?

Answer 91

Websites

Question 92

What is an application for accessing information on WWW by retrieving web page & content by distinct URLs onto the user’s device?

Answer 92

Web browser

Question 93

What is a client-server program which the client runs in a web browser?

Answer 93

Web application

Question 94

What is the core software component of every major web browser?

Answer 94

Browser engine

Question 95

What are some common database terms?

Answer 95

• Data
• Database
• Database system (Schema)
• Database Management System (DBMS)

Question 96

What are recorded facts & figures called?

Answer 96

Data

Question 97

What is a collection of meaningful information organized for searching & retrieving that information?

Answer 97

Database

Question 98

What is the logical layout for the database?

Answer 98

Database system (Schema)

Question 99

What is a set of programs & utilities executed on a computer to create, process, & administer a database?

Answer 99

Database management system (DBMS)

Question 100

What are the four major components?

Answer 100

Data, hardware, users, software

Question 101

What is known facts recorded & implicit meaning?

Answer 101

Data

Question 102

What are data characteristics?

Answer 102

Persistent, integrated, shared

Question 103

What is computing equipment needed to use & maintain the database?

Answer 103

Hardware

Question 104

What are individuals manipulating or maintaining aspects of the database?

Answer 104

Users

Question 105

What are the four broad classes of users?

Answer 105

• End-user
• Database designers
• Database administrators (DBA)
• Applications programmers

Question 106

What are the DBMS key components?

Answer 106

• Data dictionary
• Data security
• Performance management
• Data recovery
• Data integrity
• Data interface

Question 107

What are the four web language types?

Answer 107

• Markup languages
• Style sheets
• Client-side scripting languages
• Server-side scripting languages

Question 108

What is a modern system for annotating a document in a way syntactically distinguishable from text?

Answer 108

Markup languages

Question 109

What are the general categories of markup languages?

Answer 109

• Presentational
• Procedural
• Descriptive

Question 110

What are the most common markup languages?

Answer 110

• HyperText Markup Language (HTML)
• Extensible HyperText Markup Language (XHTML)
• Extensible Markup Language (XML)

Question 111

What is a form of separation of presentation & content for web design?

Answer 111

Style sheets

Question 112

What are some examples of style sheets?

Answer 112

• Cascading Style Sheets (CSS)
• Extensible Stylesheet Language (XSLT)

Question 113

What is a class of computer programs on the web executed client-side instead of server-side (on the Web Server)?

Answer 113

Client-side scripting languages

Question 114

What is executed by the web server when the user requests a document?

Answer 114

Server-side scripting languages

Question 115

What are embedded in server-side scripts to retrieve data from databases?

Answer 115

Database Management System Languages

Question 116

What are the two major categories of database design?

Answer 116

Flat file databases and relational databases

Question 117

What consists of only one large table, records no structured relationships, and has tables found in Microsoft Excel & Apple Numbers?

Answer 117

Flat file databases

Question 118

What consists of numerous tables containing rows & columns of data where tables are associated with each other through shared data values?

Answer 118

Relational databases

Question 119

What is a characteristic or property of the entity that will be stored?

Answer 119

Attribute (Column Name)

Question 120

What refers to storing information about an object?

Answer 120

Entity (Table Name)

Question 121

What are the top ten proactive controls?

Answer 121

• Define security requirements
• Leverage security frameworks and libraries
• Secure database access
• Encode and escape data
• Validate all inputs
• Implement digital identity
• Enforce access controls
• Protect data everywhere
• Implement security logging and monitoring
• Handle all errors and exceptions

Question 122

What is derived from industry standards, applicable laws, & vulnerability history?

Answer 122

Security requirements

Question 123

What is guarding against security-related design & implementation flaws?

Answer 123

Leveraging security frameworks and libraries

Question 124

What is securing data stores including queries, configuration, authentication, & communication?

Answer 124

Securing database access

Question 125

What are defensive techniques meant to stop injection attacks?

Answer 125

Encode and escape data

Question 126

What is a programming technique that ensures only properly formatted data may enter a software system component?

Answer 126

Input validation

Question 127

What is a name for using authentication and session management?

Answer 127

Implementing digital identity

Question 128

What is a name for granting or denying specific requests from a user, program or process?

Answer 128

Enforcing access controls

Question 129

What is another name for protecting sensitive data?

Answer 129

Protect data everywhere

Question 130

What are the two parts of security logging?

Answer 130

Log and monitor the logs

Question 131

What is a name for allowing an application to respond to errors correctly?

Answer 131

Handle all errors and exception

Question 132

What are the six AF cyber weapon systems?

Answer 132

• Cyber Command & Control Mission System (C3MS)
• AF Cyber Security and Control System (CSCS)
• AF Intranet Control (AFINC)
• AF Cyberspace Defense (ACD)
• Cyberspace Defense Analysis
• Cyberspace Vulnerability Assessment/Hunter (CVA/H)

Question 133

What provides 24/7/365 awareness, management, & control of the AF domain?

Answer 133

Cyber Command & Control Mission System (C2MS)

Question 134

What provides 24/7/365 NetOps & management functions enabling enterprise services within AF unclassified & classified networks?

Answer 134

AF Cyber Security and Control System (CSCS)

Question 135

What manages top-level boundary & entry point into the AFIN and controls flow of all external & inter-base traffic through 16 gateways?

Answer 135

AF Intranet Control (AFINC)

Question 136

What prevents, detects, responds to, & provides forensics of intrusions intro unclassified & classified AF networks?

Answer 136

Af Cyberspace Defense (ACD)

Question 137

What executes vulnerability, compliance, pen-testing & Hunter missions on AF & DoD networks & systems and performs defensive sorties world-wide via remote or on-site access?

Answer 137

Cyberspace Vulnerability Assessment/Hunter (CVA/H)

Question 138

What characterizes and then eliminates threats for the purpose of mission assurance?

Answer 138

Hunter ops

Question 139

What are the delivery vector categories?

Answer 139

1. Reconnaissance
2. Authorized User
3. Social Engineering
4. Configuration Management
5. Software Flaw
6. Transitive Trust
7. Resource Exhaustion
8. Physical Access
9. Other
10. Unknown

Question 140

What are the sub categories of delivery vector category 1?

Answer 140

A. Information gathering & data mining
B. Network scan
C. System scan

Question 141

What are the sub categories of delivery vector category 2?

Answer 141

A. Purposeful
B. Accidental

Question 142

What are the sub categories of delivery vector category 3?

Answer 142

A. E-mail
B. Website
C. Other

Question 143

What are the sub categories of delivery vector category 4?

Answer 143

A. Network
B. OS
C. App

Question 144

What are the sub categories of delivery vector category 5?

Answer 144

A. Exploited new vulnerability
B. Exploited known vulnerability

Question 145

What are the sub categories of delivery vector category 6?

Answer 145

A. Other IS compromise
B. Masquerading

Question 146

What are the sub categories of delivery vector category 7?

Answer 146

A. Non-distributed network activity
B. Distributed network activity

Question 147

What are the sub categories of delivery vector category 8?

Answer 147

A. Mishandled or lost resource
B. Local access to system
C. Abuse of resources

Question 148

What are the sub categories of delivery vector category 9?

Answer 148

A. New delivery vector

Question 149

What are the sub categories of delivery vector category 10?

Answer 149

A. Unable to determine

Question 150

What provides operational level C2 & situational awareness of AF cyberspace forces, networks & mission systems?

Answer 150

Cyber Command & Control Mission System (C3MS)

Question 151

What are the major sub-components of C3MS?

Answer 151

1. Situational Awareness (SA)
2. Intelligence, Surveillance & Reconnaissance (ISR)
3. Planning
4. Execution
5. Integration

Question 152

What provides 24/7/365 network ops & management functions by enabling key enterprise services within AF unclassified & classified networks and supports DCO within those networks?

Answer 152

Cyberspace Security and Control System (CSCS)

Question 153

What are the major subcomponents of CSCS?

Answer 153

1. DoDIN Ops & Management
2. Enterprise Services

Question 154

What consists of two Integrated Management Suites (IMS)?

Answer 154

AF Intranet Control

Question 155

What are the sub discipline areas of AFINC?

Answer 155

1. Defense in depth
2. Situational awareness
3. Proactive defense
4. Network standardization

Question 156

What are the sub-discipline areas of ACF?

Answer 156

1. Incident prevention
2. Incident detection
3. Incident response
4. Computer forensics

Question 157

What are the sub-discipline areas of CDA?

Answer 157

1. Telephony
2. Radio frequency
3. Email
4. Internet based capabilities
5. Cyberspace op risk assessment
6. Web risk assessment

Question 158

What are the sub components of CVA/H?

Answer 158

1. Mobile Interceptor Platform (MIP)
2. Deployable Interceptor Platform (DIP)
3. Garrison Interceptor Platform (GIP)
4. Information Ops Platform (IOP) Flyaway Kit

Question 159

What is a collection of computing environments (includes personnel & physical security) connected by one or more internal networks under the control of a single authority?

Answer 159

Enclave

Question 160

What is the name for the AF network used to change unclassified information and provides users access to the Internet, email, file storage, etc?

Answer 160

NIPRNet

Question 161

What is the largest private network in the world, is comprised of routers and nodes owned by the US DoD, and is part of the Defense Information System Network (DISN)?

Answer 161

NIRPNet

Question 162

What is the name of the private US IP network used to exchange secret information and provides access to the DoDs classified intranet services?

Answer 162

SIPRNet

Question 163

What is comprised of routers and nodes owned by the US DoD but is also used by the US Department of State?

Answer 163

SIPRNet

Question 164

What are the DCO Tactical Mission Types?

Answer 164

• Surveillance
• Reconnaissance
• Access
• Strike
• Escort
• Strike Coordination and Reconnaissance (SCAR)
  -Secure
• Threat emulation

Question 165

What mission type has the object of collecting relevant data & information in/on the AO?

Answer 165

Surveillance

Question 166

What are some tasks that could be part of a surveillance mission?

Answer 166

• Collect/monitor network infrastructure status, changes, trends & events
• Collect/monitor network user characteristics & trends
• Collect/monitor data from individual system(s)

Question 167

What mission type has the objective of collecting relevant data & information on threats within the AO?

Answer 167

Reconnaissance

Question 168

What are some tasks that could be part of a reconnaissance mission?

Answer 168

• Find & track specified enemies, adversaries, & threats in the cyber
  terrain
• Understand & characterize specified enemies, adversaries, & threats in the assigned AO

Question 169

What mission type has the objective of providing sufficient access for support cyber forces?

Answer 169

Access

Question 170

What are some tasks that could be part of an access mission?

Answer 170

• Configuring firewall rules and/or policies
• Routing configuration changes
• Provisioning/configuring accounts
• Configuring permission(s)

Question 171

What mission type has the object of damaging or destroying an objective or a capability?

Answer 171

Strike

Question 172

What are some tasks that could be part of a strike mission?

Answer 172

• Destroying resident adversary/malicious code or other artifacts in
  assigned AO
• Quarantining malicious code and/or preventing code execution
• Manipulating, denying, degrading, or disrupting adversary network traffic

Question 173

What mission type has an objective of providing defensive support to cyber weapon systems or mission partners conducting primary missions in the AO?

Answer 173

Escort

Question 174

What are some tasks that could be part of an escort mission?

Answer 174

• Deploying countermeasures
• Ensuring all required forces have the necessary level of access to assigned AO during the mission vulnerability window

Question 175

What mission type has an objective of conducting strike coordination and reconnaissance in response to adversary activity within the AO?

Answer 175

SCAR

Question 176

What are some tasks that could be part of a SCAR mission?

Answer 176

• Patrolling the AO, or a portion of the AO
• Conduct or support strike and/or follow-on Intelligence Preparation of the Environment (IPOE) missions

Question 177

What mission type has an objective of enhancing the defenses of the assigned AO in response to active threats?

Answer 177

Secure

Question 178

What are some tasks that could be part of a secure mission?

Answer 178

• Enhancing the defenses of cyber key terrain
• Reconfiguring network appliances to a more secure configuration in response to active threats

Question 179

What mission type has an objective of replicating realistic TTPs of specific cyber threats to evaluate cyber defenses?

Answer 179

Threat emulation

Question 180

What are some tasks that could be part of a threat emulation mission?

Answer 180

• Emulate known adversary TTP
• Identify unmitigated vulnerabilities
• Assesses defensive posture and processes

Question 181

What units operate the CDA?

Answer 181

• 68th Network Warfare Sq out of JBSA, TX
• 860th Network Warfare Flt out of Offutt AFB, NE

Question 182

What units operate the ACD?

Answer 182

33rd Network Warfare Sq out of JBSA, TX

Question 183

What units operate the AFINC?

Answer 183

26th Network Ops Sq out of Gunter Annex, AL

Question 184

What units operate the CSCS?

Answer 184

• 83rd Network Ops Sq out of JBLE, VA
• 561st Network Ops Sq out of Peterson AFB, CO
• 690 Cyberspace Ops Sq out of JBPHH, HI
• 691st Cyberspace Ops Sq out of Ramstein Air Base, Germany

Question 185

What units operate C3MS?

Answer 185

616th Ops Center out of JBSA, TX

Question 186

What is a worldwide collection of interconnected public telephone networks that are circuit switched to allow users to make landline calls?

Answer 186

Public Switch Telephone Networks (PSTN)

Question 187

What are able to deliver voice communications & multimedia over the internet and are packet-switched networks allowing users to make calls?

Answer 187

Voice over Internet Protocol (VoIP)

Question 188

What is world wide non-secure voice, secure voice, data, facsimile, & video teleconferencing services for DoD C2 elements and assures non-blocking services for users with flash & flash override precedence capabilities?

Answer 188

Defense Switched Network (DSN)

Question 189

What are communication networks with last link being wireless and able to connect to PSTN & Internet?

Answer 189

Cellular Networks

Question 190

What are some vulnerabilities of Public Switched Telephone Networks (PSTN)?

Answer 190

• Phreaking
• War dialing
• Dialup modems

Question 191

What are some vulnerabilities of Voice over Internet Protocol (VoIP)?

Answer 191

• Registration hijacking
• Session initiation protocol attack vectors

Question 192

What are some vulnerabilities of cellular networks?

Answer 192

• Tower hijacking
• Generic computer exploits

Question 193

What is reverse engineering the system tones used to route long-distance calls for free calls?

Answer 193

Phreaking

Question 194

What is a technique to automatically scan a list of telephone number to search for modems?

Answer 194

War dialing

Question 195

What is an overlooked “backdoor” through a
PSTN into another IT network used by admins to remote into Control System equipment?

Answer 195

Dialup modems

Question 196

What is rogue device which registers as the registration server by impersonating a valid user?

Answer 196

Registration server hijacking

Question 197

What are Session Initiation Protocol (SIP) attack vectors?

Answer 197

• Enumeration
• Fuzzing
• Man-in-the-Middle

Question 198

What is enumeration?

Answer 198

Means to ID SIP systems

Question 199

What is a type of DoS attack used to send malformed data packets to crash the SIP system?

Answer 199

Fuzzing

Question 200

What is it called when an attacked intercepts SIP call-signaling traffic, masquerades as the calling & the called parties, and hijacks calls via redirection server?

Answer 200

Man-in-the-middle

Question 201

What is it called when an attacker ID’s bug in base transceiver station software services, exploits vulnerabilities and takes over the tower transceiver

Answer 201

Tower Hijacking

Question 202

What is it called when incorrect system permission settings grant great access to other areas in the device or there are exposed internal communication protocols that pass messages internally within the device to itself or to other apps?

Answer 202

Mobile device software?

Question 203

What connects to multiple class 4 and 5 offices and a class 1 (regional center) office?

Answer 203

Class 4 (toll office)

Question 204

What connects to class 4 and 5 offices and is the only office that connects to individual or business subscribers?

Answer 204

Class 5 (end office)

Question 205

What is the physical connection between a carrier’s class 5 and the subscribers’ premises?

Answer 205

Local loop (“Last Mile”)

Question 206

What is the telephone exchange, typically owned by the customer, where calls are made at no cost?

Answer 206

Private Branch Exchange (PBX)

Question 207

What uses VoIP technologies allowing telephone calls to be made over an IP network?

Answer 207

IP phone/softphone (Skype)

Question 208

What is the entity that receives registrations from a UAC (User Client Access/User Agent Client) and extracts info about current location and stores it?

Answer 208

Registration server

Question 209

What forwards requests on behalf of the endpoint by consulting the register and handles the Session Initiation Protocol (SIP) requests of the user agent?

Answer 209

Proxy Server

Question 210

What accepts a request, maps the address of the called party or more addresses & returns to the client but does not pass the request on to other servers?

Answer 210

Redirect server

Question 211

What provides consolidated services and sets up & monitors calls, maintains the dial plan, and performs phone number translations?

Answer 211

Call manager

Question 212

What is the interfacing IP network based voice communications w/ traditional circuit-switched networks?

Answer 212

Media gateway

Question 213

What routes calls to other nodal switches and is a multifunction switch?

Answer 213

DSN backbone switches

Question 214

What is the name for switches at bases, posts, camps & stations?

Answer 214

Installation switches

Question 215

What is the primary switch for long distance services for either an installation or group of installations in a geographic area?

Answer 215

End Office (EO)

Question 216

What switch serves as the primary switch, is used at smaller DoD installations and will not service installation with critical missions?

Answer 216

Small End Office (SMEO)

Question 217

What are switches with Multilevel Precendences & Preemption (MLPP) capabilities?

Answer 217

Private Base Exchange 1 (PBX-1)

Question 218

Which type of Private Branch Exchange does not have MLPP capabilities?

Answer 218

PBX-2

Question 219

What has a switching capability that is connected to a host as a remote and is dependent on the host switch for software control?

Answer 219

Remote Switch Unit (RSU)

Question 220

What is considered the “Radio Tower” with “RF”?

Answer 220

Base Transceiver Station (BTS)

Question 221

What controls one or more BTS (“Radio Towers”) and can be thought of as a cell?

Answer 221

Base Station Controller (BSC)

Question 222

What acts like a PTSN Local Loop for cellular networks and combines the BTS & BSC?

Answer 222

Base Station System (BSS)

Question 223

What is considered the PTSN Central Office but for cellular networks and each carrier in each city runs one office?

Answer 223

Mobile Telephone Switching Office (MTSO)

Question 224

What represents an area within which a diverted Regional Bell Operating Company (RBOC) is permitted to offer exchange telecommunications & exchange access services?

Answer 224

Local Access & Transport (LATA)

Question 225

What is a system used to direct telephone calls to a particular region and provides a telephone numbering scheme?

Answer 225

North American Numbering Plan (NANP)

Question 226

What is used for call set up (INVITE) & terminate/call transfer (BYE), uses two types of messages (requests & responses), leverages port 5060, and is similar to the TCP three-way handshake except with more steps?

Answer 226

SIP

Question 227

What is a media protocol that describes the packet format for the actual data?

Answer 227

Realtime Transport Protocol (RTP)

Question 228

What is the workload standard for cellular networks and uses subscriber Id module (SIM) cards for different service providers in different countries?

Answer 228

Global System for Mobile Communication (GSM)

Question 229

What is an American standard which assigns each call a certain portion of time on a designated frequency?

Answer 229

Time Division Multiplexing (TDMA)

Question 230

Which is an American standard which gives a unique code to each call and spreads it over the available frequencies?

Answer 230

Code Division Multiple Access (CDMA)

Question 231

What are the different network data technologies?

Answer 231

• 1G
• 2G
• 3G
• 4G
• 5G

Question 232

What are the different types of Public Switched Telephone Networks (PSTN) security?

Answer 232

• Physical security
• Network security

Question 233

What are the different types of Voice over Internet Protocol (VoIP) security?

Answer 233

• Physical security
• Layer-2 network segregation
• Layer-3 address segregation

Question 234

What are the different methods to encrypt VoIP?

Answer 234

• Voice over Secure IP (VoSIP)
• Secure VoIP (SVoIP)
• Secure Voice over Secure IP (SVoSIP)

Question 235

What are the different types of cellular network security?

Answer 235

• Physical security
• Mobile device
  
  • Patch Management
  • Treat it like a computer
  • Encryption
  • Two-factor Authentication

Question 236

What is a general term that encompasses several types of control systems?

Answer 236

Industrial Control System (ICS)

Question 237

What is a computerized system that is capable of gathering & processing data & applying operational controls over long distances?

Answer 237

Supervisory Control & Data Acquisition (SCADA)

Question 238

What is it called when control is achieved by intelligence that is distributed about the process to be controlled?

Answer 238

Distributed Control System (DCS)

Question 239

What are the ICS industrial sectors?

Answer 239

Manufacturing and distribution industries

Question 240

What are the different ways the manufacturing industry can be divided?

Answer 240

Process based and discrete based

Question 241

What are the different ways a process based industry can be divided?

Answer 241

A continuous manufacturing process or a batch manufacturing process

Question 242

What is run continuously, often w/ transitions for different grades of a product?

Answer 242

A continuous manufacturing process

Question 243

What manufacturing process is divided into distinct processing steps?

Answer 243

A batch manufacturing process

Question 244

What process is a series of steps on a single device to create an end product?

Answer 244

Discrete based

Question 245

What is used to control geographically dispersed assets?

Answer 245

A distribution industry

Question 246

What is similar between manufacturing and distribution systems?

Answer 246

Control systems

Question 247

What systems are usually located within a confined area?

Answer 247

Manufacturing systems

Question 248

What systems are spread over large areas?

Answer 248

Distribution systems

Question 249

What are multiple, independent systems combined to form larger more complex systems called?

Answer 249

System of systems

Question 250

What are some features of critical infrastructure?

Answer 250

• System of systems
• Interconnected and mutually dependent in complex ways

Question 251

What uses sensors, actuators, and controllers to manipulate some controlled process?

Answer 251

Control loops

Question 252

How does the control loop process work?

Answer 252

• Sensors measure a physical property and sends info to controllers
• Controllers interprets the signals and generates corresponding variables based on algorithms and target set points
  Actuators (e.g. valves, switches, and motors) directly manipulate the controlled process based on commands sent by the controller

Question 253

What is used by operators/engineers to monitor & configure elements of the controllers & actuators and displays process status information & historical information?

Answer 253

Human-machine Interface (HMI)

Question 254

What are used to prevent, identify, & recover from abnormal operation or failures?

Answer 254

Remote diagnostics

Question 255

What are the different design considerations?

Answer 255

• Control Timing Requirements
• Geographic Distribution
  ‐ Hierarchy
  ‐ Control Complexity
  ‐ Availability
  ‐ Impact of Failures
  ‐ Safety

Question 256

What has a wide range of requirements, humans might not be reliable or consistent enough, and systems might require computation to take place as close to the sensor as possible?

Answer 256

Control timing requirements

Question 257

What has varying degrees of distribution?

Answer 257

Geographic distribution

Question 258

What allows human operators to have a comprehensive view?

Answer 258

Hierarchy

Question 259

What drives some systems to require more than just controllers and preset algorithms?

Answer 259

Control complexity

Question 260

What requires more redundancy?

Answer 260

Systems with high availability requirements and high impact of failure

Question 261

What are some safety considerations?

Answer 261

• Systems need ability to detect unsafe conditions
• Take actions to reduce those conditions
• Human oversight in safety critical operations

Question 262

What is used to control dispersed assets where centralized data acquisition is as important as control, is designed to collect field information, transfer it to a central computer facility & display the information to the operator so they can monitor or control an entire system?

Answer 262

Supervisory Control and Data Acquisition (SCADA)

Question 263

What is the typical hardware in a SCADA system?

Answer 263

• Control center
• Communications equipment
• Remote terminal units (RTUs)
• Programmable Logic Controllers (PLC)

Question 264

What is used to control production systems within the same geographic region and is usually process control or discrete part control systems?

Answer 264

Distributed Control Systems (DCS)

Question 265

What is implemented as the primary controller in smaller control system configurations to provide operational control of a discrete process and generally lacks a central control server & HMI?

Answer 265

Programmable Logic Controller (PLC)

Question 266

What controls the physical world?

Answer 266

ICS systems

Question 267

What manages data?

Answer 267

IT systems

Question 268

What are the similarities and differences between ICS systems and IT systems?

Answer 268

• Different risks & priorities
  
  • Risk to health & safety, damage to environment, financial loss
    ‐ Different performance & reliability requirements
    ‐ May use OSs & Apps that may be considered unconventional in a typical IT network

Question 269

What are some different components of Security Architecture?

Answer 269

‐ Network Segmentation & Segregation
‐ BoundaryProtection
‐ Firewalls
‐ Logically Separated Control Network
‐ NetworkSegregation
‐ Recommended Defense-in-Depth Architecture
‐ General Firewall Policies for ICS
‐ Recommended Firewall Rules
‐ Specific ICS Firewall Issues

Question 270

What is one of the most effective architectural concepts to protect ICS?

Answer 270

Network segmentation & segregation

Question 271

What are the different methods for network segmentation & segregation?

Answer 271

• Logical network separation (VLANs, VPNs, unidirectional gateways)
• Physical network separation
• Network traffic filtering (IP/route based, restrict based on function, port/protocol filtering, application filtering)

Question 272

What are key to enforcement of security policies, can be used to isolate ICS & enterprise components, and includes gateways, routers, firewalls, IDS, etc?

Answer 272

Boundary protection

Question 273

What controls flow of traffic between networks employing differing security postures and is most often deployed between ICS and enterprise networks?

Answer 273

Firewalls

Question 274

What are some special considerations with firewalls?

Answer 274

• Possible addition of delay to control system communications
• Lack of experience in the design of rule sets suitable for ICS

Question 275

At a minimum how should ICS be separated from enterprise networks?

Answer 275

Logically separated

Question 276

What can enhance security using different architectures and lead to the rule that no system should be dual-NIC’d?

Answer 276

Network segregation

Question 277

What is it called when overlapping security mechanisms are used?

Answer 277

Defense in depth

Question 278

What are the best practices for general firewall policies?

Answer 278

‐ The base rule set should be deny all, permit none
‐ All “permit” rules should be both IP address and TCP/UDP port specific
‐ All rules should restrict traffic to a specific IP address or range of addresses

Question 279

What are some recommended firewall rules?

Answer 279

• In most cases there is little reason to allow DNS requests out of the control network to the corporate network and no reason to allow DNS requests into the control network
• HTTP should not be allowed to cross from the public/corporate to the control network
• All TFTP communications should be blocked, while FTP communications should be allowed for outbound sessions only
• Use SSH over Telnet

Question 280

What are specific ICS firewall issues?

Answer 280

• Data Historians
• Remote Support Access
• Multicast Traffic
• Unidirectional Gateways
• Single Points of Failure
• Redundancy and Fault Tolerance
• Preventing Man-in-the-Middle Attacks
• Authentication & Authorization
• Monitoring, Logging, and Auditing
• Incident Detection, Response, & System Recovery

Question 281

What was introduced because of incomplete, inappropriate, or nonexistent security policy?

Answer 281

Policy & procedure and predisposing conditions

Question 282

What can occur in hardware, firmware, software, and large complex systems and networks?

Answer 282

System and predisposing conditions

Question 283

What are some possible sources for system and predisposing conditions?

Answer 283

• Design Flaws
• Development Flaws
• Misconfigurations
• Poor Maintenance
• Poor Administration
• Connections with other systems & networks

Question 284

What are some examples of adversarial incidents?

Answer 284

‐ Denial of Control Action
‐ Control Devices Reprogrammed
‐ Spoofed System Status Information
‐ Control Logic Manipulation
‐ Safety Systems Modified
‐ Malware on Control Systems