0
Q
What is WAP?
A
Wireless Application Protocol (WAP) is a security protocol for mobile devices (such as cell phones and PDAs) that employs Wireless Transport Layer Security (WTLS).
1
Q
What is discretionary access control (DAC)?
A
DAC is based on user identity. Users granted access through access control lists (ACLs) on objects at the discretion of the object’s owner or creator.
2
Q
What is WEP?
A
Wired Equivalent Privacy (WEP) was designed to provide security and encryption on wireless networks. WEP is a security protocol for 802.11b (wireless) networks that attempts to establish the same security for them as would be present in a wired network.
3
Q
What is network hardening?
A
Network hardening takes the concept of operating system hardening and applies it to the network.
4
Q
What is operating system hardening?
A
Operating system hardening is the process of reducing vulnerabilities, managing risk, and improving the security provided by or for an operating system.
5
Q
What is a multifactor authentication?
A
Multifactor authentication is the requirement that a user must provide two or more authentication factors in order to prove their identity.
6
Q
What is mutual authentication?
A
Mutual authentication is two-way authentication. The subject (user) authenticates to the object (server), and the object (server) authenticates back to the subject (user).
8
Q
What are certificates used for?
A
Certificates serve a single purpose: proving the identity of a user or the source of an object.
9
Q
What is a certificate?
A
A certificate is an electronic means of proving subject and object identity. Certificates are issued by certificate authorities (CAs).
10
Q
What is a digital signature?
A
A digital signature is an electronic mechanism to prove that a message was sent from a specific user (nonrepudiation) and that the message wasn’t changed while in transit (integrity).
11
Q
What is mandatory access control (MAC)?
A
MAC is based on hierarchical classification rules. Objects are assigned sensitivity labels, and subjects are assigned clearance labels.
11
Q
What is role-based access control (RBAC)?
A
Role-based access control (RBAC) is based on job description. Users are granted access based on their assigned work tasks. RBAC is most suitable in environments with a high rate of employee turnover.
12
Q
What is auditing?
A
Auditing is the process of recording information about various events between subjects and objects to check compliance with security policy and to discover security violations or system errors.
13
Q
What are tokens?
A
A token is a device that generates one-time-use passwords or that computes the response to an authentication server-issued challenge. Tokens are a “something you have” type of authentication.
14
Q
What are the common media/mandatory access control (MAC) hierarchies?
A
The government or military media/mandatory access control (MAC) hierarchy is unclassified, sensitive but unclassified, confidential, secret, and top secret.
The private sector MAC hierarchy is public, sensitive, private, and confidential.
14
Q
What is Kerberos?
A
Kerberos is a trusted third-party authentication protocol. It uses encryption keys as tickets with time stamps to prove identity and grant access to resources.
15
Q
What are the basic types of firewalls?
A
The three basic types of firewalls are packet filtering, circuit-level gateway, and application-level gateway. A fourth type combines features from these three and is called a stateful-inspection firewall.
16
Q
What is CHAP?
A
Challenge Handshake Authentication Protocol (CHAP) is an authentication protocol that uses a one-way hash to protect passwords and periodically reauthenticates clients.
17
Q
What are passwords?
A
A password is a string of characters that a user must memorize. Passwords are the most common form of authentication, but they’re also the weakest.
18
Q
What is biometrics?
A
Biometrics is the collection of physical attributes of the human body that can be used as authentication factors (“something you are”).
19
Q
What are the security risks of non-essential software?
A
Non-essential software increases the attack surface if your systems. Removing every element of software that isn’t required will improve the security of a system.
20
Q
What is a denial-of-service attack?
A
Denial-of-service (DoS) is a form of attack that has the primary goal of preventing the victimized system from performing legitimate activity or responding to legitimate traffic.
21
Q
What are some examples of DoS attacks?
A
Examples of denial-of-service (DoS) include Smurf, fraggle, SYN flood, teardrop, land, ping flood, ping of death, bonk, and boink.
22
Q
What is a backdoor?
A
The term “backdoor” can refer to a developer-installed access method that bypasses all security restrictions or a hacker-installed remote access client.
23
What is a spoofing attack?
Spoofing is the act of falsifying data. Usually the falsification changes the source address of network packets.
24
What is a man-in-the-middle attack?
A man-in-the-middle attack is a form of communications eavesdropping attack. Attackers position themselves in the communication stream between a client and a server.
25
What is a replay attack?
In a replay attack, an attacker captures network traffic and then replays the captured traffic in an attempt to gain unauthorized access to a system.
26
What is a TCP/IP hijacking attack?
Transmission Control Protocol/Internet Protocol (TCP/IP) hijacking is a form of attack in which the attacker takes over an existing communication session.
27
What is the issue of weak keys?
Weak keys imply that the cryptographic key selected to encrypt a file or a communication session is either too short or too easily guessed. Weak keys are generally anything less than 64 bits in length.
28
What is a mathematical attack?
A mathematical attack is directed against an algorithm in an attempt to exploit the arithmetic employed by it.
29
What is a birthday attack?
A birthday attack exploits a property that says that if the same function is performed on two values and the results is the same for each, then the original values are the same.
30
What is password guessing?
Password guessing is an attack aimed at discovering the passwords employed by user accounts. Password guessing is often called password cracking.
31
What is software exploitation?
Software exploitation attacks are directed toward known flaws, bugs, errors, oversights, or normal functions of the operating system, protocols, services, or installed applications.
32
What are viruses?
Viruses are programs that are designed to spread from one system to another through self-replication and to perform any of a wide range of malicious activities.
33
What is a Trojan horse?
A Trojan horse is a form of malicious software that is disguised as something useful or legitimate.
35
What is a logic bomb?
A logic bomb is a form of malicious code that remains dormant until a triggering event occurs.
36
What is a worm?
A worm is a type of program that is designed to exploit a single flaw or hole in a system (operating system, protocol, service, or application) and then use that flaw or hole to replicate itself to other systems with the same flaw.
37
What are countermeasures to malicious code?
The best countermeasure to viruses is an antivirus scanner that is updated regularly and that monitors all local activities. Whitelisting is another option where all executions are blocked except for those on a preapproved whitelist.
38
What is a social-engineering attack?
Social engineering is a unique type of attack that attempts to take advantage of human behavior. Social-engineering attacks can take many forms, from skillfully worded websites to over-the-phone or face-to-face acting.
39
What is system scanning?
System scanning evaluates the configuration of a system or network to determine if all known security weaknesses have been patched or addressed correctly.
40
What is a VPN?
A virtual private network (VPN) is a communication tunnel between two entities across an intermediary network.
41
What are some virtual private network (VPN) protocols?
Point-to-Point Tunneling Protocol (PPP), Layer 2 Tunneling Protocol (L2TP), and Internet Protocol Security (IPSec) are VPN protocols.
42
What is RADIUS?
Remote Authentication Dial-In User Service (RADIUS) is a centralized authentication system. It's often deployed to provide an additional layer of security for a network.
43
What is TACACS?
Terminal Access Controller Access Control System (TACACS) is a centralized remote access authentication solution similar to RADIUS. TACACS uses ports TCP 49 and UDP 49.
44
What is PPTP?
Point-to-Point Tunneling Protocol (PPTP) is based on Point-to-Point Protocol (PPP), is limited to Internet Protocol (IP) traffic, and uses TCP port 1723. PPTP supports Password Authentication Protocol (PAP), Shiva Password Authentication Protocol (SPAP), Challenge Handshake Authentication Protocol (CHAP), Extensible Authentication Protocol (EAP), and Microsoft CHAP (MS-CHAP) v1 and v2.
45
What is L2TP?
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol created by Microsoft and Cisco and is often used with virtual private networks (VPNs). L2TP is based on Point-to-Point Tunneling Protocol (PPTP) and Layer 2 Forwarding (L2F), supports any LAN protocol, uses UDP port 1701, and often uses Internet Protocol Security (IPSec) for encryption.
46
What is SSH?
Secure Shell (SSH) is a secure replacement for Telnet, rlogon, rsh, and rcp. SSH encrypts authentication and data traffic; it operates over TCP port 22.
47
What is IPSec?
Internet Protocol Security (IPSec) is a VPN protocol and can be used with Layer 2 Tunneling Protocol (L2TP). IPSec can be used in dial-up or network-to-network connections. It operates at OSI model layer 3 (the Network layer). IPSec provides encrypted communication tunnels between individual systems or entire networks.
48
What is spam?
Spam is undesired or unsolicited email. Some spam carries malicious code; some spam carries a social-engineering attack (also known as hoax email).
49
What is an email filter?
An email filter is a list of email addresses, domain names, or Internet Protocol (IP) addresses where spam is known to originate.
50
What is spoofed email?
A spoofed email is a message that has a fake source address. When an email server receives an email message, it should perform a reverse lookup on the message's source address.
51
What are hoax emails?
A hoax is an email message that includes incorrect or misleading information. It's a written form of social-engineering attack.
52
Over what protocol and port number does basic web traffic operate?
The Web uses Hypertext Transport Protocol (HTTP) over TCP port 80 to transmit Hypertext Markup Language (HTML) documents between a web server and a web browser.
52
What are cookies?
Cookies are text files that gather information about your identity, logon credentials, surfing habits, work habits, and much more. They're a common means of violating your privacy.
53
What are FTP vulnerabilities?
Because all FTP traffic is transmitted in the clear, it is vulnerable to packet sniffing and other forms of eavesdropping.
54
What is a site survey?
A site survey is the process of investigating the presence, strength, and reach of wireless access points deployed in an environment.
55
What is a firewall?
A firewall is a software or hardware product that provides protection by controlling traffic entering and leaving a network. Firewalls manage traffic using filters or rules.
57
What are removable media?
Removable media include the mobile forms of electronic, logical, and digital storage mechanisms as well as printed materials.
58
What is an intranet?
An intranet is any private local area network (LAN) that uses the same protocol and information services as the Internet.
59
What is a honeypot?
A honeypot is a fictitious environment designed to lure attackers and intruders away from the private secured network and to gather evidence.
60
What is network configuration security?
Proper configuration of systems connected to the network directly affects the security of the overall network.
60
What is confidentiality?
Confidentiality is the security service that protects the secrecy of data, information, or resources. It ensures that no one other than the intended recipient of a message receives it or is able to read it.
61
What is integrity?
Integrity is the security service that protects the reliability and correctness of data. Integrity protection prevents unauthorized alterations of data. It ensures that data remains correct, unaltered, and preserved.
62
What is a trust list?
A trust list is a form of trust model where a web browser, or similar application, is provided a list of root certificates of trusted certificate authorities (CAs).
63
What is privilege escalation?
Privilege escalation occurs when a user account obtains unauthorized access to higher levels of privileges. For example, a normal user account might be able to perform administrative functions.
64
What are AH and ESP?
Authentication Header (AH) provides authentication of the sender's data, and Encapsulating Security Payload (ESP) provides encryption of the transferred data as well as limited authentication. AH performs the functions of authentication and link establishment. The Internet a Protocol (IP) header protocol field value of AH is 51. ESP performs the function of encryption. The Internet Protocol (IP) header protocol field value of ESP is 50.
65
What are tunnel mode and transport mode?
In tunnel mode, both the payload and the message are encrypted, and a temporary link header is added. In transport mode, just the payload is encrypted, and the original message header is left intact.
66
What is IKE?
Internet Key Exchange (IKE) is a component of IPSec that manages the cryptography keys needed for secure authentication, hashing, and encryption. The components of IKE are Secure Key Exchange Mechanism (SKEME), Oakley, and Internet Security Association Key Management Protocol (ISAKMP). IKE ensures the secure exchange of secret keys between communication partners in order to establish an encrypted virtual private network (VPN) tunnel.
67
What is ISAKMP?
The Internet Security Association and Key Management Protocol (ISAKMP) is used to negotiate and provide authenticated keying material (a common method of authentication) for security associations.
68
What is SMTP?
Simple Mail Transport Protocol (SMTP) moves email messages across the Internet from sender to recipient. It doesn't include native encryption. SMTP operates over TCP port 25.
69
What are POP and IMAP?
Post Office Protocol (POP) and Internal Mail Access Protocol (IMAP) are used to pull email from an email server down to a client. POP operates over TCP port 110, and IMAP operates over TCP port 143.
70
What is S/MIME?
Secure/Multipurpose Internet Mail Extensions (S/MIME) is an Internet standard for encrypting and digitally signing email. It uses RSA (an asymmetric encryption scheme) to encrypt and protect email.
71
What is PGP?
Pretty Good Privacy (PGP) is used to encrypt and digitally sign email messages. It uses RSA or Diffie-Hellman asymmetric cryptography solutions.
72
What is the most common malicious-code delivery vehicle?
Email is the most prevalent delivery vehicle for malicious code such as viruses, logic bombs, and Trojan horses.
73
What is SSL?
Secure Sockets Layer (SSL) is a protocol used to encrypt traffic. It uses a six-step handshake process to establish a secure web session. SSL uses 40- or 128-bit symmetric session keys and operates over TCP port 443.
74
What is TLS?
Transport Layer Security (TLS) is a protocol used to encrypt traffic between a web server and a web browser in much the same way as SSL. TLS operates over TCP port 443 or 80. It isn't interoperable with SSL.
75
What is HTTPS?
HTTPS stands for Hypertext Transfer Protocol over SSL. The presence of HTTPS at the beginning of a URL indicates the use of SSL or TLS.
77
What is a buffer overflow?
A buffer overflow occurs when a program receives input that is larger than the program was designed to accept or process. The extra input can be interpreted as CPU instructions without any security restrictions.
78
What is IPv4?
Internet Protocol version 4 (IPv4) is in widespread use with a 32-bit addressing scheme and operates at the Network layer or Layer 3 of the OSI protocol stack.
79
What is PEAP?
Protected Extensible Authentication Protocol (PEAP) encapsulates Extensible Authentication Protocol (EAP) methods within a Transport Live Security (TLS) tunnel that provides authentication and, potentially, encryption.
80
What is a MAC filter?
A media/mandatory access control (MAC) filter is a list of authorized wireless client interface MAC addresses that is used by a wireless access point to block access to all non-authorized devices.
81
What are some common WiFi antenna types?
A wide variety of antenna types can be used for wireless clients and base stations. They include omnidirectional pole antennas as well as many directional antennas, such as Yagi, cantenna, panel, and parabolic.
82
What is access control?
Access control is the security service that restricts access to secured data to authorized users. Cryptographic access control is enforced through the possession of encryption keys.
83
What is IPv6?
Internet Protocol version 6 (IPv6) uses a 128-bit addressing scheme, eliminates broadcasts and fragmentation, and includes native communication encryption features.
84
What is bluesnarfing?
Bluesnarfing is the unauthorized accessing of data via Bluetooth connection. Successful bluesnarfing attacks against PDAs, cell phones, and notebooks have been able to extract calendars, contact lists, text messages, emails, pictures, videos, and more.
85
What is defense in depth?
Defense in depth or layered security is the use of multiple types of access controls in literal or concentric circles or layers.
86
What is single sign-on?
Single sign-on means that once a user (or other subject) is authenticated into the realm, they need not reauthenticate to access resources on any realm entity.
87
What is war driving?
War driving is the act of using a detection tool to look for wireless networking signals. Often, war driving is used to describe the process of someone looking for a wireless network they are not authorized to access.
88
What is "need to know"?
A "need to know" security policy restricts access by compartmentalizing resources. To gain access to those items, the subjects must prove the need to know based on assigned work tasks.
89
What is Fibre Channel?
Fibre Channel is a form of network data storage solution (storage area network [SAN] or network area storage [NAS]) that allows for high-speed file transfers.
90
What is cloud computing?
Cloud computing is the popular term referring to a concept of computing where processing and storage are performed elsewhere over a network connection rather than locally. Cloud computing is often thought of as Internet-based computing.
91
What are the four risk-assessment values or formulas?
The four risk-assessment formulas are exposure factor (EF), single loss expectancy (SLE), annualized rate of occurrence (ARO), and annual loss expectancy (ALE).
92
What is a switch?
A switch is like an intelligent multiport repeater. It receives signals in one port and transmits them out the port where the intended recipient is connected. Switches are often used to create virtual local area networks (VLANs).
93
What is 802.11?
802.11 is the IEEE standard for wireless network communications. Versions include 802.11a (54 Mbps), 802.11b (11 Mbps), and 802.11g (54 Mbps). This standard also defines Wired Equivalent Privacy (WEP).
94
What is a router?
A router is a device that enables traffic from one network segment to traverse into another network segment. However, the traffic must pass through the router's filters in order to make the transition.
95
What is a modem?
A modem is a device that creates a network communication link between two computers (or networks) over a telephone line. Modems are often secured with callback. They're often attacked using war dialing.
96
What is a smart card?
A smart card is a credit-card-sized ID, badge, or security pass with an embedded magnetic strip, bar code, or integrated circuit chip. A smart card can be used as an authentication factor ("something you have"). When used as such, the smart card hosts a memory chip that stores a password, PIN, certificate, private key, or digital signature.
97
What is a DMZ?
A demilitarized zone (DMZ) is an area of a network that is designed specifically for public users to access. The DMZ is a buffer between the Internet and the private trusted local area network (LAN).
98
What is an extranet?
An extranet is an intranet that functions as a demilitarized zone (DMZ) for business-to-business transactions. An extranet allows an organization to offer specialized services to business partners, suppliers, distributors, or customers.
99
What is a VLAN?
Switches are often used to create virtual local area networks (VLANs) out of a single physical network. VLANs logically segment a network without altering its physical topology.
100
What is a NAT?
Network address translation (NAT) is a proxy service that converts the Internet Protocol (IP) addresses of internal systems found in the header of network packets into public IP addresses. It allows the use of private IP addresses (RFC 1918).
101
What does RFC 1918 define?
RFC 1918 defines the ranges of private Internet Protocol (IP) addresses: 10.0.0.0-10.255.255.255 (10/8 prefix); 172.16.0.0-172.31.255.255 (172.16/12 prefix); & 192.168.0.0-192.168.255.255 (192.168/16 prefix).
102
What is an IDS?
An intrusion detection system (IDS) is an automated system that watches activity in real time or reviews the contents of audit logs in order to detect intrusions or security policy violations.
103
What is PKI?
Public Key Infrastructure (PKI) is a cryptography concept that proves the identity of partners, provides a means to securely exchange session-based symmetric encryption keys, and protects message integrity.
104
What is a mantrap?
A mantrap is a form of high-security barrier entrance device. It's a small room with two doors. A person must properly authenticate themselves to unlock the inner door to gain entry.
105
What is due care?
Due care is the display of proper security attention in an organization. By designing and implementing an organization-wide security policy, a business shows due care.
106
What is separation of duties?
Separation of duties occurs when all the administrative or sensitive operations of a computer, system, or network are divided among several people.
107
What is privacy?
Privacy is the level of confidentiality and isolation or seclusion protection that a user is given in a system. Most users falsely assume that they have privacy on company computers.
108
What is the chain of custody?
The chain of custody is a document that indicates various details about evidence across its lifecycle. It includes the time and place of discovery, and who discovered, secured transported, protected, and analyzed the evidence.
109
What is a security baseline?
A standardized minimum level of security that all systems in an organization must comply with. The security baseline is defined by the organization's security policy.
110
What is cross-certification?
Cross-certification occurs when a root certificate authority (CA) from one organization elects to trust a root CA from another organization.
Security + Certification Exam
flashcards
Decks in class (6)
# Cards
