Threats And Security Measures (Chapter 6)

Question 1

CIA

Answer 1

Confidentiality
Integrity
Availability

Question 2

Confidentiality

Answer 2

The fundamentals security goal of keeping information and communication private and protecting them from unauthorised access

Question 3

Integrity

Answer 3

The fundamental security goal of ensuring that electronic data is not altered or tampered with

Question 4

Availability

Answer 4

The fundamental security goal of ensuring that systems operate continuously and that authorized individuals can access data that they need

Question 5

Hardening

Answer 5

A security technique in which the default configuration of a system is altered to protect the system against attacks

Question 6

Security Policies

Answer 6

Covering all aspects of computer and network hardware from the purchase to disposal/change.

Question 7

Security Controls

Answer 7

A technology or procedure to mitigate vulnerability and risk, and to ensure CIA of information

Question 8

Logical security

Answer 8

Controls implemented in software to create an access control system (Firewall)

Question 9

ACL

Answer 9

Access Control List
- Any scenario where a objects on a list are given access or denied
- NTFS permission
- Share permission
- Firewall

Question 10

Triple A (AAA)

Answer 10

Authentication
Authorization
Accounting

Question 11

Authentication

Answer 11

A means for a user to prove their identity to a computer system

Question 12

Authorization

Answer 12

The process of determining what rights and privileges a particular entity has

Question 13

Accounting

Answer 13

The process of tracking and recording system activities and resource access.
Aka auditing

Question 14

Security Control Types

Answer 14

Physical Controls
- physical aspects
Procedural Controls
- procedure that needs to be followed
Logical Controls
- software implemented control
Legal, Regulatory, Compliance Control
- controls that need to be followed by law

Question 15

Implicit Deny

Answer 15

Unless something has explicitly been granted access it should be denied access

Question 16

Least Privilege

Answer 16

Something should be allocated the minimum necessary rights, privileges or information needed to perform it’s role

Question 17

Encryption

Answer 17

Scrambling the characters used in a message so that the message can be seen but not understood or modified unless it’s deciphered.
- takes processing time to encrypted and decrypt data

Question 18

Symmetric Encryption

Answer 18

• 1024-bit key encryption
• Single key used to encrypted and decrypt
• Copy of keys used to encrypted and decrypt need to be securely distributed and stored
• Faster and less intensive than asymptomatic encryption

Question 19

Asymmetric Encryption

Answer 19

• Private key to Decrypt
• Public key to Encrypt
• often used for digital signatures, digital certificate and key exchange
• Uses RSA Cipher

Question 20

Key Exchange

Answer 20

Two host need to know the same symmetric Encryption key without any other host finding out the key.

Question 21

RSA Cipher

Answer 21

The first successful algorithm to be designed for public key encryption

Question 22

Cryptographic Encryption

Answer 22

-A hashed value from which it is impossible to recover the original data.
- A one way cryptographic process
- Provides integrity function in most systems

Question 23

Hash

Answer 23

The value that results from hashing encryption as a short representation of data

Question 24

PKI

Answer 24

Public Key Infrastructure
Asymmetric Encryption for securekey distribution for symmetric Encryption

Question 25

Certificate Authority

Answer 25

A server that control the distribution of digital certificate and the associated public/private key pairs

Question 26

Digital certificate

Answer 26

• X.509 Certificate
• a guarantee that a key belongs to a given system

Question 27

Execution Control (Hardening)

Answer 27

Logical security technologies designed to prevent malicious software from running on a host and establish a security system that does not entirely depend on the good behaviour of individual uswrs

Question 28

Anti-Virus

Answer 28

Uses a database of know patterns (definitions and signature) to detect and prevents malware from executing

Question 29

Heuristic

Answer 29

Monitoring technique that allows dynamic pattern matching based on past experience rather than relying on pre-loaded signatures

Question 30

NAC

Answer 30

Network Access Control
A means of ensuring endpoint security

Question 31

Firewall

Answer 31

Hardware/software that filters traffic passing into or out of a network

Question 32

Defense in depth

Answer 32

Configuring security controls on hosts as well as providing network security, physical security and administrative controls.
- Multiple layers of security of different types

Question 33

Health Policy

Answer 33

Policies or profiles describing a minimum security configuration that devices must meet to be granted network access

Question 34

MAC filtering

Answer 34

Applying an access control list to a switch or access point so that only clients with approved MAC address can connect to it

Question 35

Port-based NAC

Answer 35

Aka: IEEE 802.1x
Standard in which the switch/router performs some sort of authentication of the attached device before activating the port

Question 36

Supplicant

Answer 36

A device requesting access from a Port-based NAC (IEEE 802.1X)

Question 37

EAPoL (over land)

Answer 37

Framework for negotiation authentication methods, supporting a range of authentication devices.

Question 38

MDM

Answer 38

Mobile device Manager
Software suits designed to manage use of smartphone and tablets within a company

Question 39

BYOD

Answer 39

Security framework and tools to facilitate use of personal devices to access a corporate network and data

Question 40

VPN

Answer 40

A secure tunnel created between two endpoints connect via an unsecured network.
- uses IPSec and encryption to create secure tunnel
- communicate are encrypted and packaged within another TCP/IP packet stream

Question 41

IPSec

Answer 41

Layer 3 protocol suite providing security for TCP/IP

Question 42

Vulnerability

Answer 42

Any weaknesses that could be triggered accidentally or exploited intentional to cause a security breach

Question 43

Threat

Answer 43

Any potential violation of security policies or procedures

Question 44

Threat agant

Answer 44

A person or event that triggers a vulnerability accidentally or exploits it intentionally

Question 45

Risk

Answer 45

The likelihood and impact (consequences) of a threat actor exercising a vulnerability

Question 46

Social Engineering

Answer 46

A hacking technique whereby the hacker gains useful information about an organisation by deceiving it’s user or by exploiting their insecure working practices
- Impersonation, phishing, spoofing,
Spear phishing, pharming, dumpster diving, shoulder surfing, tailgating

Question 47

Impersonation

Answer 47

A type of social engineering attack where the hack impersonates someone to exploit the user

Question 48

Phishing

Answer 48

A social engineering attack where fake emails are sent to individuals which are infected with malware, with the hope that one of the individuals will assume the email is legit and open it

Question 49

Spoofing

Answer 49

A social engineering attack that redirect an individual to a link that resembles a legitimate site but in reality is a malicious copy of the site

Question 50

Spear phishing

Answer 50

A social engineering attack that uses a personalised email with info about the person being targeted.

Question 51

Pharming

Answer 51

A social engineering attack that uses malicious code that redirect individual to spoofed website with the intent of steal personal information

Question 52

Dumpsters diving

Answer 52

Going through individual trash to gain personal information

Question 53

Footpringing

Answer 53

An information gathering threat, in which the attacker attempts to learn the configuration of the network and security systems through social engineering attacks or software-basex tools

Question 54

Network Mapping

Answer 54

Tools to gather information about the way the network is built and configured and the current status of hosts

Question 55

Port scanning

Answer 55

Software that emulates the status of TCP and UDP ports on a target system. Port scanning can be blocked by some firewalls and IDS

Question 56

Eavesdropping

Answer 56

Listening in to communicate sent over a media

Question 57

MAC flooding

Answer 57

Overloading the switch’s MAC cache to prevent genuine devices from connecting

Question 58

ARP poisoning

Answer 58

Maps IP address to NIC MAC address

Question 59

Replay attack

Answer 59

Attack intercepts some authentication data and reuses it to try to re-establish a session

Question 60

MITM

Answer 60

Man In The Middle attack
Attacker intercepts communication between two hosts

Question 61

Mutual Authentication

Answer 61

A client authenticates to the server and the server authenticates to the client

Question 62

Rainbow tables

Answer 62

Tool for speeding up attacks against windows password by precomputed possible hashes

Question 63

Denial of Services

Answer 63

An attack that causes services to fail or be unavailable to legitimate users

Question 64

Distributed Denial of Service

Answer 64

An attack with multiple computers attacking a service or weakness on a network

Question 65

Zombie

Answer 65

A machine that is unknowingly been effected with malicious software that is used to direct systems resources to launch an attack (DDoS)

Question 66

Botnet

Answer 66

A network of zombies machines that attack a services to disrupt, usually by overloading

Question 67

Cyber warfare

Answer 67

The uses of IT serviced and devices to disrupt national, state or organisation activities, especially when used for military purposes

Question 68

Hacker collectives

Answer 68

A group of hackers working together to target an organisation as part of a cyber warfare campaign

Question 69

Zero-day exploit

Answer 69

An attack that exploits a vulnerability in software that is unknown to the software vendor and users

Question 70

Cross-site Scripting Attacks

Answer 70

Web application vulnerability
Scripts are embedded in webpage URL and are executed by the browser

Question 71

SQL Injection Attacks

Answer 71

Using SQL statement to attack a database that have faulty input validation.

Question 72

Brute force

Answer 72

Attack are effective against short passwords

Question 73

Remnant Removal

Answer 73

Data on a harddrive that has been deleted by users have the pointers to the data deleted. Specialized software can remap the pointers to recover the deleted data.
- to ensure data can not be recovered is by randomly rewriting data over all writeable areas

Question 74

Data disposal

Answer 74

Disk wiping
- overwriting each disk location using zeros leaving the disk in a clean state
Low Level Format
- creates cylinder and escorts in the disk