9. Security Technology

Question 1

What is the purpose of virus scanners?

Answer 1

To prevent a virus from infecting the system

Virus scanners search for the signature of a known virus.

Question 2

Name the two methods by which virus scanners work.

Answer 2

• Signature matching
• Behavior matching

Signature matching uses a list of known virus definitions, while behavior matching looks for typical virus behaviors.

Question 3

What are the two types of virus scanners based on their operation?

Answer 3

• Ongoing virus scanners
• On-demand virus scanners

Ongoing scanners run constantly in the background, while on-demand scanners run only when launched.

Question 4

What does behavior matching in virus scanners attempt to detect?

Answer 4

• Writing to the boot sector
• Changing system files
• Automating e-mail software
• Self-multiplying

These behaviors are typical indicators of a virus.

Question 5

What is the role of a firewall?

Answer 5

A barrier between your network and the outside world

Firewalls filter packets based on size, source IP, protocol, and destination port.

Question 6

Name the types of firewalls mentioned.

Answer 6

• Packet Filter
• Stateful Packet Inspection
• Application

Each type serves different functions in network security.

Question 7

What is a dual-homed host in firewall configurations?

Answer 7

Installed on a server with at least two network interfaces

This setup allows communication between systems inside and outside the firewall without direct interaction.

Question 8

What does antispyware do?

Answer 8

Scans for spyware

Antispyware checks for known spyware files and maintains updated definitions.

Question 9

What is the function of intrusion-detection software (IDS)?

Answer 9

Inspects all inbound and outbound port activity

IDS scans for patterns that might indicate an attempted break-in.

Question 10

Differentiate between misuse detection and anomaly detection in IDS.

Answer 10

• Misuse detection: Analyzes known attack signatures
• Anomaly detection: Looks for unusual behaviors

Misuse detection relies on known patterns, while anomaly detection identifies deviations from normal access patterns.

Question 11

What are the two types of IDS systems based on their response?

Answer 11

• Passive systems
• Reactive systems

Passive systems log information, while reactive systems take action against suspicious activity.

Question 12

What is PAP in authentication protocols?

Answer 12

Password Authentication Protocol

PAP is the simplest form of authentication and is the least secure.

Question 13

What does VPN stand for?

Answer 13

Virtual Private Network

VPNs create a virtual connection through the Internet with encrypted packets.

Question 14

What is the purpose of WEP in WiFi security?

Answer 14

Uses the stream cipher RC4 to secure data

WEP employs a 40-bit key with a 24-bit initialization vector for encryption.

Question 15

What is the main feature of WPA2?

Answer 15

Uses the Advanced Encryption Standard (AES)

WPA2 provides data confidentiality, origin authentication, and integrity for wireless frames.

Question 16

True or false: WPA3 requires attackers to interact with your Wi-Fi for every password guess they attempt.

Answer 16

TRUE

This feature makes brute-force attacks less likely to succeed.