Question 1

Network security is more often compromised &#34;from the inside&#34; than from external sources.

Accepted Answer

It is a common observation that network security breaches are typically caused by insiders, including employees or contractors, rather than external hackers or attackers. Insiders can easily bypass security measures, misuse their access privileges, steal confidential information, or introduce malware or other malicious code into a network. Therefore, it is crucial for organizations to implement a comprehensive security strategy that not only addresses external threats but also monitors and manages internal risks.

Question 2

The use of certificate authorities to associate public keys with certain users is known as ____.&#10;A) PGP&#10;B) PKI&#10;C) IPSec&#10;D) SSL

Accepted Answer

The use of certificate authorities to associate public keys with certain users is known as Public Key Infrastructure (PKI). PGP (Pretty Good Privacy) is a type of encryption software that uses a combination of symmetric-key and public-key cryptography. IPSec (Internet Protocol Security) is a set of protocols for secure communication over IP networks. SSL (Secure Sockets Layer) is a protocol used for secure communication over the internet. While all of these terms relate to cryptography and security, only PKI specifically refers to the use of certificate authorities to associate public keys with users.

Question 3

A ____ attack occurs when a system becomes unable to function because it has inundated with requests for services and can't respond to any of them.&#10;A) flashing&#10;B) denial-of-service&#10;C) war driving&#10;D) phishing

Accepted Answer

A denial-of-service (DoS) attack occurs when a system is flooded with traffic or requests that consume its resources, making it difficult or impossible to serve legitimate requests. This type of attack can disrupt business operations, cause financial losses, or be used as a smokescreen for other malicious activities. Flashing, war driving, and phishing are unrelated to this type of attack.

Question 4

Encryption is the last means of defense against data theft.

Accepted Answer

Encryption is a technique used to convert plain text into a secret code that can't be easily read by anyone without the decryption key. It's one of the strongest forms of data protection available today and is often used to secure sensitive information such as passwords, financial data, and other private data. While there are other ways to protect data, such as firewalls and antivirus software, encryption is often the last means of defense against data theft because it provides an additional layer of security that's difficult to break.

Question 5

____ is a public key encryption system that can verify the authenticity of an e-mail sender and encrypt e-mail data in transmission.&#10;A) PGP&#10;B) SSH&#10;C) IPSec&#10;D) SSL

Accepted Answer

PGP (Pretty Good Privacy) is a public key encryption system that authenticates the sender and encrypts the email data during transmission. It is widely used for secure communications and is compatible with various email clients. SSH (Secure Shell) is a protocol used for secure remote login to a server, IPSec (Internet Protocol Security) is a protocol suite for securing Internet Protocol (IP) communications, and SSL (Secure Sockets Layer) is a protocol used to create a secure connection between a web server and a web browser. However, none of these options specifically address email encryption and sender verification like PGP does.

Question 6

In a ____ attack, a person redirects or captures secure transmissions as they occur.&#10;A) denial-of service&#10;B) man-in-the-middle&#10;C) war driving&#10;D) phishing

Accepted Answer

This is the classic definition of a man-in-the-middle attack, where an attacker intercepts secure communications between two parties and has the ability to read, modify, or even inject new data into the transmission.

Question 7

A security policy should state exactly which hardware, software, architecture, or protocols will be used to ensure security.

Accepted Answer

A security policy should outline security goals and objectives, but it should not limit the tools and technologies used to achieve them. The policy should leave room for flexibility and adaptation as new threats and solutions emerge.

Question 8

A ____ firewall is a router (or a computer installed with software that enables it to act as a router) that examines the header of every packet of data it receives to determine whether that type of packet is authorized to continue to its destination.

A) packet-filtering
B) gateway
C) proxy
D) selective

Accepted Answer

A packet-filtering firewall examines the header of every packet of data it receives to determine whether that type of packet is authorized to continue to its destination. Gateways and proxies are types of firewalls, but they may not necessarily use packet filtering as their primary method of filtering traffic. "Selective" is not a commonly used term to describe firewalls.

Question 9

A(n) ____ is a password-protected and encrypted file that holds an individual's identification information, including a public key.&#10;A) digital certificate&#10;B) authentication file&#10;C) access control list&#10;D) authentication certificate

Accepted Answer

A digital certificate is a password-protected and encrypted file that holds an individual's identification information, including a public key. It is commonly used for authentication purposes in online transactions and communication to ensure the security and privacy of sensitive information.

Question 10

The combination of a public key and a private key is known as a ____.&#10;A) key lock&#10;B) key frame&#10;C) key pair&#10;D) key set

Accepted Answer

The combination of a public key and a private key is known as a key pair. A key pair is used in public-key cryptography to encrypt and decrypt messages. The public key is shared with others and used to encrypt messages, while the private key is kept secret and used to decrypt those messages. Therefore, option C is the correct choice. The other options, key lock, key frame, and key set are not related to public-key cryptography.

Question 11

A router that is not configured to drop packets that match certain or suspicious characteristics is an example of a risk associated with ____.&#10;A) people&#10;B) transmission and hardware&#10;C) protocols and software&#10;D) Internet access

Accepted Answer

The answer of A router that is not configured to...

Question 12

A ____ attack occurs when a hacker uses programs that try a combination of a user ID and every word in a dictionary to gain access to the network.&#10;A) flashing&#10;B) denial-of-service&#10;C) dictionary&#10;D) brute force

Accepted Answer

The answer of A ____ attack occurs when a hacker...

Question 13

A NOS that contains a &#34;back door&#34;is an example of a risk associated with ____.&#10;A) people&#10;B) transmission and hardware&#10;C) protocols and software&#10;D) Internet access

Accepted Answer

The answer of A NOS that contains a &#34;back door&#34;is...

Question 14

By default, the 802.11 standard offers substantial security.

Accepted Answer

The answer of By default, the 802.11 standard offers substantial...

Question 15

____ is a social engineering practice in which a person attempts to glean access or authentication information by posing as someone who needs that information.&#10;A) Cracking&#10;B) Hacking&#10;C) War driving&#10;D) Phishing

Accepted Answer

The answer of ____ is a social engineering practice in...

Question 16

Human errors, ignorance, and omissions cause more than half of all security breaches sustained by networks.

Accepted Answer

The answer of Human errors, ignorance, and omissions cause more...

Question 17

A ____ attack occurs when an Internet chat user sends commands to a victim's machine that causes the screen to fill with garbage characters and requires the victim to terminate their chat sessions.&#10;A) flashing&#10;B) denial-of-service&#10;C) war driving&#10;D) phishing

Accepted Answer

The answer of A ____ attack occurs when an Internet...

Question 18

A ____ attack occurs when a hacker tries numerous possible character combinations to find the key that will decrypt encrypted data.&#10;A) flashing&#10;B) denial-of-service&#10;C) dictionary&#10;D) brute force

Accepted Answer

The answer of A ____ attack occurs when a hacker...

Question 19

____ software searches a node for open ports.&#10;A) Phishing&#10;B) Sniffing&#10;C) Authentication&#10;D) Port scanner

Accepted Answer

The answer of ____ software searches a node for open...

Question 20

A ____ main function is to examine packets and determine where to direct them based on their Network layer addressing information.&#10;A) switch's&#10;B) gateway's&#10;C) router's&#10;D) proxy server's

Accepted Answer

The answer of A ____ main function is to examine...

Question 21

In ____, both computers verify the credentials of the other.&#10;A) mutual authorization&#10;B) mutual access&#10;C) mutual authentication&#10;D) mutual verification

Accepted Answer

The answer of In ____, both computers verify the credentials...

Question 22

Define SSH (secure shell) and explain the threats it guards against. Include an explanation of the encryption algorithms that may be used with it.

Accepted Answer

The answer of Define SSH (secure shell) and explain the...

Question 23

RADIUS and TACACS belong to a category of protocols known as AAA (____).&#10;A) access, authorization, and accounting&#10;B) authentication, authorization, and accounting&#10;C) authentication, authorization, and authority&#10;D) authentication, authorization, and access

Accepted Answer

The answer of RADIUS and TACACS belong to a category...

Question 24

____ is a method of encrypting TCP/IP transmissions above the network layer.&#10;A) PGP&#10;B) IPSec&#10;C) PAP&#10;D) SSL

Accepted Answer

The answer of ____ is a method of encrypting TCP/IP...

Question 25

____________________ is the use of an algorithm to scramble data into a format that can be read only by reversing the algorithm.

Accepted Answer

The answer of ____________________ is the use of an algorithm...

Question 26

Describe who should conduct a security audit and the advantages of doing so, if any.

Accepted Answer

The answer of Describe who should conduct a security audit...

Question 27

Describe one potential flaw in CHAP and MS-CHAP authentication and explain how it is resolved.

Accepted Answer

The answer of Describe one potential flaw in CHAP and...

Question 28

A(n) ____________________ identifies an organization's security risks, levels of authority, designated security coordinator and team members, responsibilities for each team member, and responsibilities for each employee.

Accepted Answer

The answer of A(n) ____________________ identifies an organization's security risks,...

Question 29

Explain how to block traffic attempting to exit a LAN and discuss why an administrator would want to do this.

Accepted Answer

The answer of Explain how to block traffic attempting to...

Question 30

Describe the SCP (Secure CoPy) utility.

Accepted Answer

The answer of Describe the SCP (Secure CoPy) utility....

Question 31

Describe the two phases IPSec use to accomplish authentication.

Accepted Answer

The answer of Describe the two phases IPSec use to...

Question 32

A(n) ____________________ is a software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.

Accepted Answer

The answer of A(n) ____________________ is a software application on...

Question 33

Describe the three-way handshake used in CHAP.

Accepted Answer

The answer of Describe the three-way handshake used in CHAP....

Question 34

A VPN ____ authenticates VPN clients and establishes tunnels for VPN connections.&#10;A) router&#10;B) service&#10;C) concentrator&#10;D) certificate authority

Accepted Answer

The answer of A VPN ____ authenticates VPN clients and...

Question 35

In ____, a hacker forges name server records to falsify his host's identity.&#10;A) IP spoofing&#10;B) DNS spoofing&#10;C) ID spoofing&#10;D) DHCP spoofing

Accepted Answer

The answer of In ____, a hacker forges name server...

Question 36

A(n) ____________________ is a thorough examination of each aspect of the network to determine how it might be compromised.

Accepted Answer

The answer of A(n) ____________________ is a thorough examination of...

Question 37

In general, information is ____________________ if it could be used by other parties to impair an organization's functioning, decrease customers' confidence, cause a financial loss, damage an organization's status, or give a significant advantage to a competitor.

Accepted Answer

The answer of In general, information is ____________________ if it...

Question 38

Define and describe PAP.

Accepted Answer

The answer of Define and describe PAP....

Question 39

____ protocols are the rules that computers follow to accomplish authentication.&#10;A) Access&#10;B) Availability&#10;C) Authority&#10;D) Authentication

Accepted Answer

The answer of ____ protocols are the rules that computers...

Question 40

Describe what distinguishes 802.1x from other authentication standards.

Accepted Answer

The answer of Describe what distinguishes 802.1x from other authentication...

Question 41

Describe an advantage of using EAP.

Accepted Answer

The answer of Describe an advantage of using EAP....

Question 42

Match between columns&#10;                        Premises: A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;A software application on a network host that acts as an intermediary between the external and internal networks, screening all incoming and outgoing traffic.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Data is encrypted using a single key.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;Software that can only detect and log suspicious activity.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;A firewall that protects only the computer on which it is installed.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;The host that runs the proxy service.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;A firewall that can block designated types of traffic based on application data contained within packets.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Data is encrypted using two keys.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;Software that can react to suspicious activity.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.&#10;A firewall that can view a data stream.

Accepted Answer

The Answer of Stateful and proxy service and IDS and is...

Deck 11: Network Security