SecurityPlus_4.1-4.3_Flashcards

Question 1

Front

Answer 1

Back

Question 2

What is a secure baseline?

Answer 2

A defined, known-good configuration of an application or system that ensures consistent security across all instances.

Question 3

Why must all application instances follow the secure baseline?

Answer 3

To maintain consistent security settings like firewall rules, patch levels, and OS versions.

Question 4

What are integrity measurements?

Answer 4

Checks performed to verify that a system matches the secure baseline; deviations must be corrected immediately.

Question 5

Why are integrity measurements important?

Answer 5

They help detect unauthorized or accidental changes from the secure baseline.

Question 6

What is the purpose of establishing baselines?

Answer 6

To create foundational security policies that define the expected secure state of systems.

Question 7

Where can you find security baselines?

Answer 7

From manufacturers like OS vendors, application developers, or appliance makers.

Question 8

How many group policy settings are in Windows 10?

Answer 8

Over 3,000, but only some are security-related.

Question 9

How are baselines deployed in large environments?

Answer 9

Through centralized management tools like Active Directory Group Policy or Mobile Device Management (MDM).

Question 10

Why is automation key in baseline deployment?

Answer 10

It allows consistent deployment to hundreds or thousands of devices efficiently.

Question 11

Why do baselines need maintenance?

Answer 11

Because new vulnerabilities, updates, or software changes may require updates to the baseline.

Question 12

What must be tested when maintaining baselines?

Answer 12

Potential conflicts between different baselines or policies.

Question 13

What is system hardening?

Answer 13

The process of securing a system by reducing vulnerabilities through configuration and updates.

Question 14

Why are hardening guides important?

Answer 14

They provide vendor-specific or community-recommended security configurations.

Question 15

Why are updates critical for mobile devices?

Answer 15

They fix bugs and patch known vulnerabilities.

Question 16

How can segmentation protect mobile data?

Answer 16

By separating company and user data, often via MDM policies.

Question 17

What should be removed during workstation hardening?

Answer 17

Unnecessary software to reduce the attack surface.

Question 18

What tool helps manage workstation policies in Windows?

Answer 18

Active Directory Group Policy.

Question 19

Why must you change default credentials on network devices?

Answer 19

Default logins are easily exploited by attackers.

Question 20

How often should network device firmware be updated?

Answer 20

Infrequently, but updates are critical when released.

Question 21

What is the ‘keys to the kingdom’ in cloud environments?

Answer 21

The cloud management workstation, which must be highly secured.

Question 22

What principle should apply to cloud permissions?

Answer 22

Least privilege—only grant access needed for a task.

Question 23

What should be enforced on server user accounts?

Answer 23

Minimum password lengths, complexity, and account limitations.

Question 24

How should network access be controlled on servers?

Answer 24

Limit access and monitor for unauthorized connections.

Question 25

Why must SCADA systems be segmented?

Answer 25

They control critical industrial systems and must be isolated from external networks.

Question 26

What type of system manages SCADA operations?

Answer 26

A PC or controller that manages distributed industrial devices.

Question 27

Why are embedded systems difficult to secure?

Answer 27

They often can’t be easily upgraded or patched.

Question 28

How can embedded systems be protected?

Answer 28

By applying segmentation and firewall rules to restrict access.

Question 29

What makes RTOS different from regular OSes?

Answer 29

It processes tasks in a strict, deterministic schedule for time-critical systems.

Question 30

How should RTOS systems be secured?

Answer 30

Run minimal services, isolate systems, and use host-based firewalls.

Question 31

Why are IoT devices often insecure?

Answer 31

Manufacturers use weak defaults and lack security expertise.

Question 32

How should IoT devices be isolated?

Answer 32

Place them on a separate VLAN to limit access.

Question 33

What is the goal of wireless security?

Answer 33

To ensure authentication, confidentiality, and integrity of all wireless communications.

Question 34

What does WPA3 improve over WPA2?

Answer 34

It adds stronger encryption (GCMP) and replaces PSK handshakes with SAE for better security.

Question 35

What is SAE in WPA3?

Answer 35

Simultaneous Authentication of Equals—a mutual authentication process that prevents brute force attacks.

Question 36

What is 802.1X used for?

Answer 36

Port-based Network Access Control that prevents access until authentication succeeds.

Question 37

What is the AAA framework?

Answer 37

Identification, Authentication, Authorization, and Accounting—core network access control concepts.

Question 38

What is RADIUS?

Answer 38

A centralized AAA protocol used for authentication of users and devices on networks.

Question 39

What is EAP?

Answer 39

Extensible Authentication Protocol—a framework for many authentication methods over 802.1X.

Question 40

What is input validation?

Answer 40

Checking all input to ensure it matches expected formats, preventing injection attacks.

Question 41

What are secure cookies?

Answer 41

Cookies with the 'Secure' attribute set, only sent over HTTPS connections.

Question 42

What is static code analysis?

Answer 42

Reviewing code for vulnerabilities without executing it (Static Application Security Testing).

Question 43

What is code signing?

Answer 43

Digitally signing software to verify authenticity and integrity of code.

Question 44

What is sandboxing?

Answer 44

Running applications in isolated environments to prevent system-wide impact.

Question 45

Why is asset tracking important?

Answer 45

To associate ownership, classification, and maintenance records with each device.

Question 46

What is media sanitization?

Answer 46

The process of securely erasing or destroying data so it cannot be recovered.

Question 47

What is a certificate of destruction?

Answer 47

Proof from a third party that data or media was securely destroyed.

Question 48

Why is data retention necessary?

Answer 48

To meet compliance, operational, and recovery requirements.

Question 49

How does vulnerability scanning differ from penetration testing?

Answer 49

Scanning is non-invasive; penetration testing actively exploits vulnerabilities.

Question 50

What is fuzzing?

Answer 50

Sending random input to an application to detect crashes or unexpected behavior.

Question 51

What is package monitoring?

Answer 51

Verifying software packages for integrity and authenticity before deployment.

Question 52

What is OSINT?

Answer 52

Open-Source Intelligence—publicly available data used for security research.

Question 53

What is proprietary threat intelligence?

Answer 53

Purchased data from vendors providing curated threat analytics and indicators.

Question 54

What is dark web intelligence?

Answer 54

Monitoring hidden forums and marketplaces for stolen data or company mentions.

Question 55

What document defines pentest parameters?

Answer 55

Rules of engagement, outlining scope, contacts, and limitations.

Question 56

What is persistence in penetration testing?

Answer 56

Setting up a way to regain access, like backdoors or accounts, after compromise.

Question 57

What is a pivot?

Answer 57

Using a compromised system as a relay to access other systems.

Question 58

What is responsible disclosure?

Answer 58

Reporting vulnerabilities privately to allow the vendor time to fix before public release.

Question 59

What is a false positive?

Answer 59

When a scan reports a vulnerability that does not actually exist.

Question 60

What is CVSS?

Answer 60

Common Vulnerability Scoring System—a 0–10 rating for vulnerability severity.

Question 61

What is a CVE?

Answer 61

Common Vulnerabilities and Exposures—a unique identifier for known security flaws.

Question 62

What is exposure factor?

Answer 62

A percentage indicating the potential impact if a vulnerability is exploited.

Question 63

What does risk tolerance determine?

Answer 63

How much risk an organization is willing to accept before acting on a vulnerability.