Week 3

Question 1

What are the 3 CND capabilities?

Answer 1

• protect
• monitor, detect, analyze
• respond

Question 2

Describe the purpose of NCDOC.

Answer 2

Navy’s CND provider

Question 3

Where does the U.S. Fleet send all of its network traffic?

Answer 3

1 of 4 NOCS

Question 4

Where are the 4 regional NOCS located?

Answer 4

• ECRNOC
• PRNOC
• UARNOC
• IORNOC

Question 5

What does the ACS provide?

Answer 5

Single management point for user credentials controlling verification, validation, and auditing for asset access.

Question 6

What is AAA?

Answer 6

Authentication
Authorization
Accounting

Question 7

What is authentication?

Answer 7

Confirming the ID of users

Question 8

What is authorization?

Answer 8

Determines what functions a user can have access to

Question 9

What are the 2 security protocols associated to ACS and which one is CISCO propriety?

Answer 9

RADIUS
TACAS +

TACAS + is CICSCO

Question 10

What command will show you the last several commands in EXEC mode?

Answer 10

Show history

Question 11

User exec mode sign
Privileged exec sign
Global config sign

Answer 11

> #
(Config)

Question 12

Where is the routers startup config file stored?

Answer 12

NVRAM

Question 13

What is he purpose of the spanning tree protocol?

Answer 13

Loop free topology and redundant paths

Question 14

What feature implements software to protect TCP servers from TCP SYN-flooding attacks?

Answer 14

TCP intercept

Question 15

What command will allow you to perform router system backup?

Answer 15

Copy startup-config tftp

Question 16

What can you view from the show environment command?

Answer 16

Hardware alarms, temps, power supply status

Question 17

What type of firewall inspects traffic aT the application layer?

Answer 17

Firewall proxy

Question 18

What type of filter inspects traffic at the network and transport layers?

Answer 18

Packet filters

Question 19

A ________ refers to the area of a network that contains the endpoint.

Answer 19

Burb

Question 20

How is the Mcafee Firewall Enterprise managed?

Answer 20

Firewall Enterprise Control Center

Question 21

What components does he Mcafee Firewall Cinteil Center consist of?

Answer 21

• control center client suite

- control center management server

Question 22

What are he 2 common designs of VPNs?

Answer 22

Site to site

Host to site

Question 23

Which VPN protocol can operate in transport and tunnel mode?

Answer 23

IPSec

Question 24

What are the 2 products that make up he CND-S IVS?

Answer 24

• fortimanager

- fortigate

Question 25

What is the purpose of having two in-line virus scanners?

Answer 25

• redundancy

- load balancing

Question 26

What port is DNS?

Answer 26

53

Question 27

What are the 2 DNS configuration commands and what do they do?

Answer 27

Chuser : changes root directory

Chroot: changes user roots

Question 28

What is AIDE used for?

Answer 28

• file integrity checker

- ensures DNS database are not corrupted

Question 29

What is a rogue access point?

Answer 29

Unauthorized and unknown access points that have been connected to the network

Question 30

Describe the two types of wireless LAN attacks

Answer 30

Passive: does not modify
Active: makes changes

Question 31

Eavesdropping/sniffing

Answer 31

Listening, monitors

Question 32

Traffic analysis

Answer 32

Gaining intel WITH INTENTION

Question 33

DOS

Answer 33

Floods one or more wireless devices

Question 34

Impersonation Attack

Answer 34

MAC Spoofing

Question 35

Evil Twin

Answer 35

Duplicating SSIDs and MAC addresses

Question 36

Man in the Middle Attack

Answer 36

Inserts themselves

Question 37

Authentication Attack

Answer 37

Passwords, authentication process

Question 38

Encryption cracking

Answer 38

Encrypted cracking software, encrypted packets

Question 39

Injection Attack

Answer 39

Generating beacon responses

Question 40

Peer-to-peer Attack

Answer 40

Ad-hoc mode

Question 41

Define WPA.

Answer 41

Standard created to address weakness of the WEP encryption by using dynamic encryption key generation

Question 42

What 3 categories does data fall into and explain.

Answer 42

• Data at rest: saved files
• Data in use: files being edited
• Data in motion: email, data being transmitted

Question 43

What 3 sections is metadata broken into and describe.

Answer 43

• Descriptive: titles, authors, key words
• Structural: pages, chapters
• Admin: permissions, file types

Question 44

What are some examples of hidden data?

Answer 44

• document properties and personal info
• headers/footers
• invisible content
• off slide content
• presentation notes
• hidden text

Question 45

5 pillars of IA and explain.

Answer 45

• confidentiality: restricted access
• integrity: can flex be edited or altered without encryption key
• availability: data can be accessed
• authentication: data coming from trusted source
• non-repudiation: you send it, no take backs

Question 46

What are the three main types of encryption?

Answer 46

• hash
• symmetric
• asymmetric

Question 47

What are the key terms associated to encryption and decryption?

Answer 47

• cleartext
• plaintext
• algorithm
• keys
• ciohertext

Question 48

What is cleartext

Answer 48

No encryption

Question 49

What is plaintext

Answer 49

Cleartext that is to be encrypted

Question 50

What is algorithm

Answer 50

Procedures or formulas

Question 51

What is key?

Answer 51

Mathematical values

Question 52

What is ciphertext?

Answer 52

Encrypted text

Question 53

What are the common hash types?

Answer 53

• MD5

- SHA

Question 54

What encryption algorithm allows he ability to both encrypt and decrypt data streams?

Answer 54

Symmetric

Question 55

Which keys are generated by the master secret key?

Answer 55

• client write MAC secret
• server write MAC secret
• client write key
• server write key

Question 56

What is a CA, RA, CRL?

Answer 56

CA: trusted third party
RA: handles and processes certificate requests
CRL: list of revokes certs

Question 57

What algorithm performs authentication in the Cipher Suite?

Answer 57

Key exchange algorithm

Question 58

Two asymmetric keys

Answer 58

• public

- private

Question 59

3 utilities of SSH

Answer 59

Slogin command
SSH
SCP