Threats, Attacks & Vulnerabilities
Which of the following are examples of denial-of-service attack (pick 3)?
A. Fraggle
B. Smurf
C. Gargomel
D. Teardrop
A. Fraggle
B. Smurf
D. Teardrop
Allows data on mobile devices to be remotely deleted if the device is lost or stolen.
Used to reduce EMI output.
A processes that occurs when a user provides appropriate credentials such as the correct username and password.
Authentication
Recovery site that has only power, telecommunications, and networking active all the time.
Warm site
Term given to a fraudulent wireless access point that is configured to lure connections to it.
Prevents users and hackers from executing unauthorized applications, but does not prevent malicious code from executing.
Permits only known good applications.
Application whitelisting
This environment can help when performing security research, which studies the effects of unsafe files without the possibility of compromising the host system.
Virtual sandbox
An Extensible Markup Language (XML) framework for creating and exchanging security information between online partners.
SAML (Security Assertion Markup Language)
Names, addresses, phone numbers, email addresses, financial profiles, social security numbers, and credit card information.
Examples of personally identifiable information (PII)
A test that reveals security weaknesses through real-world attacks. The results can help identify areas for improvement and prioritize risks.
A function of splitting a network into two or more using routers to connect each subnet together.
Subnetting or network address allocation
This type of cloud computing allows clients to outsource everything that would normally be in a typical IT department.
Infrastructure as a Service (IaaS)
Identity system in which the user never supplies credentials directly to any application or service except the originating identity provider.
Federated identity systems
Your organization is partnering with another organization that requires shared systems. What document outlines how the shared systems will interface?
Interconnection Security Agreement (ISA)
More transparent testing. Because you are provided with source code, you have more knowledge about the system.
White box testing
Used to capture network traffic and generate statistics for creating reports.
Protocol analyzer
A technology implemented when setting up a switched network to group users by department. Systems are logically connected into the same broadcast domain, regardless of their physical attachment to the network.
Authentication in which a client sends its authentication details not directly to a target server, but to a key distribution center (KDC).
This designates the amount of data loss that is sustainable and up to what point in time data recovery could happen before business is disrupted.
Recovery Point Objective (RPO)
One of the most important countermeasures to prevent code injection attacks.
Input validation
Your organization requires a firewall feature that controls network activity associated with Denial of Service attacks. Which safeguard should be implemented?
A. Web Application firewall
B. Flood guard
C. Implicit deny
D. Port security
B. Flood guard
A network security vulnerability assessment has revealed that legacy internal vital sign monitors of a hospital’s emergency room are visibly exposed to the internet. Which control should be implemented?
A. Code wrappers
B. Network segmentation
C. Sandboxing
D. Automatic updates
B. Network segmentation
Originally developed for use in dial-up connectivity, this remote access system provides authentication and access control within an enterprise network.
Remote Authentication Dial-In User Service (RADIUS)
As the system administrator for your organization, you have been asked to calculate the ALE for a $5,000 server. The server crashes a lot. In the past year, the server has crashed 10 times, requiring a system reboot to recover with only 10% loss of data or function. What is the ALE of the server?
(5000 x 10) x 0.1 = $5000
(AV x EF) x ARO = ALE
SLE × ARO = ALE