Security Technologies

Question 1

Honeypots

Answer 1

Honeypots → Decoy systems designed to attract attackers and study their behavior. Example: a fake Secure Shell (SSH) server that logs intrusion attempts.

Question 2

Honeynets

Answer 2

Honeynets → A network of multiple honeypots that simulate an entire environment to lure and analyze attacker activity. Example: a fake enterprise subnet with bogus credentials.

Question 3

Risks

Answer 3

Risks → The potential for loss or damage when a threat exploits a vulnerability.

Question 4

Vulnerabilities

Answer 4

Vulnerabilities → Weaknesses in hardware, software, or procedures that can be exploited by a threat.

Question 5

Exploits

Answer 5

Exploits → Specific methods or tools used by attackers to take advantage of vulnerabilities.

Question 6

Threats

Answer 6

Threats → Any event or actor with the potential to cause harm to systems or data.

Question 7

CIA Triad

Answer 7

Confidentiality, Integrity, Availability (CIA) Triad → A foundational security model that ensures data is protected, accurate, and accessible.

Question 8

Confidentiality in CIA Triad

Answer 8

Confidentiality → Ensures that information is only accessible to authorized users; maintained through encryption and access controls.

Question 9

Integrity in CIA Triad

Answer 9

Integrity → Ensures that data is accurate and unaltered through hashing and version control.

Question 10

Availability in CIA Triad

Answer 10

Availability → Ensures systems and data are accessible when needed, maintained through redundancy, backups, and failover systems.