Generic Security Concepts Review

Q: What is the CIA triad, what does each mean?

Q: What is non-repudiation?

Q: Define Layered Security

Q: What is the main security reasoning for mandatory vacations?

Generic Security Concepts Review

Q: What type of authentication system does the OS (Security Kernel) determined who is allowed access to a resource

Q: What access control model helps fight “authorization creep”

Q: Biometrics are an example of “What you ____”

Q: What is a better security model, network based or host based? Justify your answer.

Chapter 2 – Review QuestionsQ. What is the best countermeasure against phishing

attacks?

Q. Why is a hoax still a security concern?

Q. Installing camera to read credit card numbers at gas pumps is what type of attack?

Q. Does an Organization Security Policy Statement detail specifics such as how to properly encrypt data?

Chapter 2 – Review QuestionsQ. What is the difference between Due

Diligence and Due Care?

Q. What is the term for a set of “required steps to be taken” when doing some action called?

Cryptography reviewQ. Which of the CIA triad does a hash provide?

Q. An HMAC is used to try to prevent MiM attacks. Does a HMAC provide non-repudiation?

Q. Why don’t we just use Asymmetric Encryption for all encryption?

Q. What is Diffie-Hellman primarily used for?

Cryptography reviewQ. What is AES meant to replace, what is the

algorithm that was chosen to be AES?

Q. True or false, If I encrypt a message with someone's public key, anyone with the public key can decrypt it.

Q. What is the Asymmetric algorithm commonly used in PDAs and cell phones?

Q. How many rounds of transposition/substitution does DES have? How about Triple DES?

PKI review questionsQ. What is a digital certificate? What is it intended to

represent?

Q. What are two important pieces of info in a digital certificate

Q. Why would you use multiple certificates

Q. If you have 100 users, in a 2 certificate model (encryption & signing) how many total keys do you have?

PKI reviewQ. What is key escrow

Q. How do I validate the identity of a certificate that someone has given me? When does the validation chain end?

Q. What version of X.509 were extensions added?

Q. My certificate has been revoked, how do I “un-revoke it”

Physical Security ReviewQ. What feature can allow a windows computer to

automatically run a Trojan program on an inserted CD or USB drive

Q. Which of the following water based automatic fire suppression systems would be best used for a data center.

Q. Why is access to a network jack a risk?

Q. What is the CER in terms of biometrics

Q. What is a type 1 and type 2 error?

Physical Security Review

Q. If providing access to a bank vault, would I prefer higher false positives or higher false negatives?

Q. What type of fire rating is electrical fires?

Q. What is the difference between smart cards and memory cards.

Q. What type of motion sensor detects a human through emanated heat?

Chapter 8 - Review

Q. What layer of the OSI model does a switch operate at, what addresses does it “switch”

Q. What layer of the OSI model does a router look at, what addresses does it “route”

Q. What is the purpose of MAC flooding?

Q. What is a DNS poisoning attack.

Chapter 8 ReviewQ. What is a Bastion Host

Q. What is the purpose of a DMZ

Q. What is NAC/NAP?

Q. What is the main purpose of a circuit layer proxy.

Q. How is an application layer proxy different than a circuit layer proxy?

Chapter 9 – Review QuestionsQ. Name the 3 AAA protocols we talked about

Q. Which of the following items does Kerberos use.– Shared keys– Tickets– Public keys– Digital signatures

Q. Does L2TP use TCP or UDP?

Q. Explain the difference between CHAP and PAP

Chapter 9 – Review Questions

Q. What protocol (TCP/UDP) does Radius use, how about TACACS+

Q. Why is Telnet bad?

Q. What is the purpose of a VPN?

Q. What protocol does PPTP require for operation?

Chapter 10 – Review QuestionsQ. What encryption protocol does WEP use

Q. What 2 key lengths does WEP support

Q. WPA takes the algorithm from WEP and changes the encryption key with every packet. What is this called? T_ _ _

Q. What encryption protocol does WPA2 use?

Q. Why is MAC filtering or turning off SSID broadcasting not sufficient security?

Q. What does WAP use as the “secure” WAP protocol? W _ _ _

Chapter 10 – Review QuestionsQ. What is the WAP GAP

Q. Define how to accomplish a MiM attack on a wireless network

Q. What type of authentication concept would help against the attack above?

Q. What is Bluetooth used for?

Q. What is Bluesnarfing?

Chapter 11 - IDSQ. What is an IDS?

Q. What is the difference between an HIDS and a NIDS

Q. What is the difference between a IDS and an IPS?

Q. What are two “types” of IDS detection, explain them?

Chapter 11 - IDSQ. What is the purpose of a honey pot?

Q. If an IDS detects traffic coming in from the internet with internal IP addresses as the src addresses, why should I be concerned?

Q. Which is the first version of Windows that Windows Defender is shipped with? What other Windows OS’es is it available for?

Q. Can signature based scanning detect 0days attacks?

Chapter 12Q. What is a security baseline?

Q. What is a windows feature that you can use to push computer settings to all computer in a domain?

Q. What is a windows “security template”

Q. Does a hot fix generally add new functionality to an OS or application?

Q. What is system hardening?

Chapter 12Q. What is a buffer overflow

Q. What are TCP wrappers?

Q. Describe Unix File Permissions?

Chapter 12

• Define the ports numbers that the following services run on– HTTP– HTTPS– SMTP– IMAP– POP– FTP– DNS

Chapter 13

Q. What are the steps in a 3 way handshake

Q. What is the difference between a virus and a worm

Q. What is a SYN flood

Q. What is a Smurf attack

Chapter 13

Q. What is the concept of stealing another persons live TCP communication stream called.

Q. What is a replay attack?

Q. What is a root kit?

Q. What is a vishing attack? (not phishing)

Q. What is the best defense for phishing?

Chapter 13

Q. What is a logic bomb

Q. What is DDos

Q. How are DDoS attacks usually launched?

Chapter 14Q. What is a problem with POP

Q. What is a problem with IMAP

Q. Is SMTP encrypted? Does is provide user authentication?

Q.What is a real-time Black Hole List?

Chapter 14

Q. What is greylisting?

Q. What is S/MIME, which symmetric encryptions methods does it support

_ _ 2& _ _ _ S

Q. What “PKI” model does PGP use?

Chapter 15

Q. Why is SSL used for websites? What does SSL and a website provide?

Q. What is Active X, what access to your computers does Active X have?

Q. What is Java

Q. What is application signing?

Chapter 15Q. What does application signing provide?

Q. What restrictions does Java place on unsigned applications?

Q. Is safe to run ANY signed java/active X app?

Q. Briefly define Cross Site Scripting (XSS)

Q. Where does a CGI program run.

Chapter 16Q. What is a Hot Site

Q. What is a warm site.

Q. What is a cold Site.

Q. What is the difference between a Hot Site and a Mirror Site

Chapter 16

Q. What is a Full Backup

Q. What is an incremental Backup

Q. What is a differential Backup?

Q. What is a continuous Backup?

Chapter 16

Q. What is RAID0

Q. What is RAID1

Q. What is RAID5

Q. If I have 4 30G disks setup as a RAID 5 array, how much actually usable storage do I have?

Chapter 17

Q. Define EF

Q. Define SLE

Q. Define ARO

Q. Define ALE

Chapter 17Q. Any countermeasure you deploy should

ultimately be ______ _______

Q. If my ALE for a threat is $50K a year, and a countermeasure to eliminate the threat costs $30K a year, should I implement it?

Q. If my ALE is $50K a year, a countermeasure will reduce the ALE by 50%, and the countermeasure costs 30K a year, should I implement it?

Chapter r17

Q. What is “residual risk”

Q. What is risk transference

Q. What is risk avoidance

Q. What is risk acceptance

Chapter 17

Q. What is quantitative risks analysis, what is qualitative risk analysis?

Q. Can you get automated tools for quantitative analysis, how about qualitative analysis.

Q. What is due diligence, due care?

Chapter 18

• Change management… nothing really here

Chapter 19Q. What is role based access control

Q. What is MAC? Where is it usually used?

Q. What is DAC? Where is it usually used?

Q. What is rule based access control?

Chapter 19Q. What is single sign on, name one SSO technology.

Q. What is a minimum password age

Q. What is a password “history”

Q. Name the main components of Kerberos. Does Kerberos every send passwords across the network?

Q. What is a major “gotcha” when debugging Kerberos login failures?

Chapter 20 – Review QuestionsQ. What is the concept of best evidence

Q. When you want to do forensics on a computer, you should make a copy of the hard drive. What type of copy should you make?

Q. What is the MINIMUM number of copies you should make of the original hard drive

Chapter 20 – Review QuestionsQ. Put these step of analysis in the correct order

A. Analyze the DriveB. Power down the systemC. Dump MemoryD. Image the hard drive

Q. Why do you run checksums/hashes on the original files before analysis?

Q. Why should someone witness you as you collect the evidence?

Q. What is the difference between “free space” and “slack space”