Unit 4:Network Security And System Software✔️ Flashcards
What are the goals of penetration testing - “pen” testing
-identify targest of potential attacks
-identify entry points
-attempt to break in
-report back findings
What does anti-malware software do?
Protects network /system agaist malware(trojans,virus,worms) Detects the malware reports it to anti-malware company -virus is confirmend and signature is created of the virus - added to database - users urged to update software
What is encryption?
A way of secuing data so it cannot be read without an ecryption key
Change plain text to cipher text
Encyrption of transmitted data?
Website use HTTPS(Secure Hypertext transfer protocol) encrypt the conection to the server
What is the purpose of encrypting drives ?
Prevents hackers from understanding the conent of the hard drive if removed or installed on a different computer.
What is a firewall
-seperates a trusted network from an untrusted network(normally the internet)
-packets entering are checked
-run on dedicated hardware or as software
-built into wifi routers
What is the job of the firewall?
Checks packets to see where they are coming from and going to for malcious content like viruse,trojans
Firewall features?
-Prevents attackers gaining access to computers on network
-block packets from a certain ip address
-block inappropiate or malcious software
Issues with firewall?
-software firewalls slow down a computer
-dedicated hardware firewalls are expensive
What are user access levels?
Controls which part of the network users can access and edit such as:internet,emails and software
What is password policy?
Organisation and computer systems will often have password policy which determine what features the password must include.
Eg,numbers,8 letters ling
What is Physical security?
Where hardware,software and network are protecte by physical methods.
Examples:CCTV,alarms,locks,fenses,guards,id cards
What is packet inspection?
When a firewall will look at data inside each packet to see if it contains mallicious content
What is malware?
Malware are executable programs that run on a compuer.
Example:virus
What do viruses do?
-replecate their code in other programs
-infect other computers
-delet,corrupt and modify files
-need to be opened by human(not self replicating)
What do worms do?
-normally do not cause damage to computer
-might slow down network and computers
-replicate without human intervention
What do trojans do?
Usually program,game or craked file user wants but contains code which causes damage,takes control or provides access to computer
What is ransomware?
-holds computer hostage-locks user out - encrypts access
-nearlly impossible to get data without backup
-once ransom paid access is restored
What is social ingineering?
Ability to obtain confidential information by appearing professional and secure/safe
What is shoulder surfing?
Ability to obtain information by observing someone as the type it it.
Eg:standing behind them,ussing cctv cameras
What is phishing?
-type of social engineering
-emails,text,phone calls send to user seem legit and try to get your password,usernames,credit card details
What is a denial of service attack(Dos)
-attacker sends many requests to server (known as a flood)
-sever can not respond fast enough so slow down or goes ofline
What is a distributed denial of sevice attack (DDoS) ?
Many computers are used to send requests and flood and server