Network Security
This device filters traffic between networks and blocks unauthorized access.
What is a firewall?
A fake email designed to trick users into revealing passwords or personal information.
What is phishing?
A security method requiring two forms of verification before access is granted.
What is multi-factor authentication (MFA)?
The process of converting readable data into coded text.
What is encryption?
Regularly installing software patches helps fix these.
What are vulnerabilities?
The protocol commonly used for secure web browsing that encrypts traffic.
What is HTTPS?
Malware that locks files and demands payment for access.
What is ransomware?
Passwords should ideally include uppercase letters, lowercase letters, numbers, and these special symbols.
What are special characters?
AES is an example of this type of encryption where the same key encrypts and decrypts data.
What is symmetric encryption?
Backing up data helps organizations recover from this type of malware attack.
What is ransomware?
This attack overwhelms a server with massive amounts of traffic to make it unavailable.
What is a DDoS attack?
This type of malware secretly records keystrokes on a computer.
What is a keylogger?
This biometric authentication method uses unique patterns inside the eye.
What is a retina scan?
RSA is an example of this type of encryption using public and private keys.
What is asymmetric encryption?
Employees should lock their computers before leaving to prevent this type of unauthorized access.
What is physical access?
This wireless security protocol replaced WPA and provides stronger encryption for Wi-Fi networks.
What is WPA3?
An attacker pretending to be tech support to gain sensitive information is using this type of attack.
What is social engineering?
The process of confirming a user's identity is called this.
What is authentication?
This cryptographic function converts data into a fixed-length value and is commonly used for password storage.
What is hashing?
This document outlines the rules and expectations for using company technology resources.
What is an acceptable use policy?
This principle gives users only the minimum permissions necessary to perform their job duties.
What is least privilege?
This attack intercepts communication between two parties without their knowledge.
What is a man-in-the-middle attack?
The security model where no user or device is automatically trusted is called this.
What is Zero Trust?
A digital certificate commonly uses this infrastructure to verify identity online.
What is PKI (Public Key Infrastructure)?
The practice of testing systems for weaknesses before attackers find them is called this.
What is penetration testing?