Download ICTL Exam: Information Assurance & Security Guide and more Exams Advanced Education in PDF only on Docsity!
ICTL EXAM QUESTIONS AND CORRECT
ANSWERS
Hashing algorithm - --a tool that ensures data integrity by taking binary data and producing a fixed-length representation called the hash value or message digest backbone - --The part of a network to which segments and significant shared devices (such as routers, switches, and servers) connect. The implementation of an IA operational baseline will be an incremental process of doing what? - --Protecting critical assets One of the jobs of the kernel is to: - --- Manage the system's resources Five nines - --when the system and services are available 99,999% of the time Antivirus protection - --antimalware program that continuously monitors for viruses Cryptology - --the study of codes, or the art of writing and solving them Computer Software - --a set of instructions that directs the computer in how to complete a task Methods used to ensure high availability - --- eliminate single points of failure
- design for reliability
- detect failures as they occur
convergence - --The use of data networks to carry voice (or telephone), video, and other communications services in addition to data. According to DoD 8570.01-M, the IA (Information Assurance) technical category consists of how many levels? - --I, II, & III ICMP (Internet Control Message Protocol) - --Used by a router to exchange information with other routers MD5 algorithm - --a hash function developed by Ron Rivest that produces a 128-bit hash value Unix is: - --- A trademark
- An operating system An internet - --a network of computer networks data packet - --A discrete unit of information sent from one node on a network to another. Linux is written in: - --C Which tool would be most effective for mapping a target network? - -- Vulnerability scanner Configuration Management - --The process of keeping track of changes to the system, if needed, approving them.
host - --A computer that enables resource sharing by other computers on the same network Public Domain - --works that are not restricted by copyright; they are owned by the public and can be freely used Ransomware - --holds a computer system or the data it contains captive until the target makes a payment Internet Service Providers - --provide an access path to the Internet Methods used to ensure confidentiality - --data encryption, authentication, and access control. 3DES (Triple Data Encryption Algorithm) - --a symmetric block cipher with 64- bit block size that uses a 56-bit key, encrypts data three times and uses a different key for at least one of the three passes, giving it a cumulative key size of 112-168 bits Script Kiddies - --teenagers or hobbyists mostly limited to pranks and vandalism, have little or no skill, often using existing tools or instructions found on the Internet to launch attacks. Most of the tools that are part of Linux systems come from: - --The GNU (GNU's Not Unix!) project While Loop - --loops through a block of code while a specified condition is true Vulnerability Brokers - --grey hat hackers who attempt to discover
exploits and report them to vendors, sometimes for prizes or rewards Having reviewed DoD Wireless STIG (Ver6, Release 1), Sarah learns she may only utilize SecNet 54 and ______________ for transmitting classified information up to Top Secret. - --KOV-26 Talon Risk Analysis - --The process of identifying security risks, determining their magnitude, and identifying areas needing safeguards Digital certificate - --it enable users, hosts, and organizations to exchange information securely over the Internet The Linux platform that runs on mobile phones is called: - --Android 3D Spreadsheets - --enable you to link multiple worksheets together Authorization - --services that determine which resources users can access, along with the operations that users can perform, after the user is granted access once authentication is complete Hacktivists - --grey hat hackers who rally and protest against different political and social ideas What does a distribution provide to add and remove software from the system? - --Package manager Antivirus software installed to scan and monitor malware activities on a server or workstation would be identified as a __________ based intrusion detection/prevention system. - --Host
System resiliency - --capability to maintain availability of data and operational processing despite attacks or disrupting event NIC (Network Interface Controller/Card) - --A piece of hardware that allows a computer to connect to a network Unix was originally invented at: - --AT&T Bell Labs NOS (network operating system) - --a specialized operating system for a network device such as a router, switch or firewall A type of attack where the intruder observes authentication secrets such as a combination or PIN: - --Shoulder Surfing Methods used to ensure availability - --system redundancy, system backups, increased system resiliency, equipment maintenance, up-to-date operating systems and software, and plans in place to recover quickly from unforeseen disasters. Spyware - --any software using someone's Internet connection in the background without their knowledge or explicit permission. These applications are typically bundled as a hidden component of freeware or shareware programs that can be downloaded from the Internet; however, it should be noted that majority of shareware and freeware do not come with this. Once installed, this monitors user activity on the Internet and transmits that information in the background to someone else. IT can also gather information about e-mail addresses and even passwords and credit card numbers. node - --A computer or other device connected to a network, which has a unique address and is capable of sending or receiving data
Domain integrity - --a database integrity that state that all data stored in a column must follow the same format and definition Domain Name - --follows the protocol and represents the company, product, or person represented by the webpage File encryption - --a tool used to protect data stored in the form of files Plug-In - --a third party program that allows your browser to display multimedia-rich, interactive, dynamic content Database Management System - --controls how collections of data are stored, organized, retrieved, and secured ElGamal - --uses the U.S. government standard for digital signatures. This encryption algorithm is free to use because no one holds the patent A license where you don't have access to the source code is called: - --Closed source A type of attack where an intruder is able to forge a biometric sample: - -- Splicing Attack SMTP (Simple Mail Transfer Protocol) Session Hijacking - --by gaining access to a list of e-mail addresses a person can send spam to thousands of users Referential integrity - --a database integrity that state that a user cannot delete a record which is related to another user
Which distributions are made by, or clones of, Red Hat? - --- CentOS
- Fedora stand-alone computer - --A computer that uses applications and data only from its local disks and that is not connected to a network. Document Management System - --store documents on a server or on the Web, and provide security and access to the business documents Distributed Tool - --A tool that can be distributed to multiple hosts, which can then be coordinated to anonymously perform an attack on the target host simultaneously after some time delay topology - --The physical layout of computers on a network. User defined integrity - --a database integrity that state that a set of rules defined by a user which does not belong to one of the other categories When choosing a distribution of Linux, you should consider: - --- Which distributions are supported by the software you need to run
- The maintenance cycle of the distribution
- Which management tools are provided by the distribution
- Whether or not the distribution is under active development
- If you need support on the distribution itself New Laws - --the ISACA (Information Systems Audit and Control Association) group track law enacted related to cyber security
Internet Key Exchange - --a fundamental component of IPsec Virtual Private Networks (VPNs) Mitigation - --involves reducing the severity of the loss or the likelihood of the loss from occurring traffic - --The data transmission and processing activity taking place on a computer network at any given time. Ubuntu is derived from which distribution? - --Debian 802.2 - --The IEEE standard for error and flow control in data frames. Our responsibility to protect a citizens/soldiers private information stored on an automated information system is outlined in The Privacy Act of ___________. - -- transmission media - --The means through which data are transmitted and received. 802.3 - --The IEEE standard for Ethernet networking devices and data handling (using the CSMA/CD access method). Operation Controls - --Security methods that focus on mechanisms that primarily are implemented and executed by people (as opposed to systems) Applications make requests to the kernel and receive resources, such as memory, CPU, and disk in return.
Object-Oriented Programming - --a programming language model organized around objects rather than "actions" and data rather than logic SCP (secure copy protocol) - --securely transfers computer files between two remote systems NAS (Network Attached Storage) - --a storage device connected to a network that allows storage and retrieval of data from a centralized location by authorized network users 802.5 - --The IEEE standard for token ring networking devices and data handling. NIST (National Institute of Standards and Technology) - --created a framework for companies and organizations in need of cybersecurity professionals 802.11 - --The IEEE standard for wireless networking. 802.16 - --The IEEE standard for broadband wireless metropolitan area networking (also known as WiMAX). ACK (acknowledgment) - --A response generated at the Transport layer of the OSI model that confirms to a sender that its frame was received. The ACK packet is the third of three in the three-step process of establishing a connection. ANSI - --American National Standards Institute
API (application programming interface) - --A set of routines, protocols, and tools for building software applications. APIs specify how software components should interact, such as what data to use and what actions should be taken. Application layer - --The seventh layer of the OSI model. This layer's protocols enable software programs to negotiate formatting, procedural, security, synchronization, and other requirements with the network. Uses messages passed between end systems. Mobile Code - --Software modules obtained from remote systems, transferred across a network, and then downloaded and executed on a local system without explicit installation or execution by the recipient, Malicious types of this are designed, employed, distributed, or activated with the intention of compromising the performance or security of information systems and computers, increasing access to those systems disclosing unauthorized information, corrupting information, denying service, or stealing resources. Spear Phishing attacks commonly attempt to impersonate email from trusted entities. What security device is used in email to verify the identity of sender? - --Digital Signatures Backup - --A copy of data and/or applications contained in the IT stored on magnetic media outside of the IT to be used in the event IT data are lost. Consistency - --validation rule that checks for the consistency of codes in related data items block ID - --The first set of six characters that make up the MAC address and that are unique to a particular manufacturer.
Data Link layer - --The second layer in the OSI model. This layer bridges the networking media with the Network layer. Its primary function is to divide the data it receives from the Network layer into frames that can then be transmitted by the Physical layer. The most important consideration when choosing an operating system is: - -- What the computer will do IP address (Internet Protocol address) - --The Network layer address assigned to nodes to uniquely identify them on a TCP/IP network. IP addresses consist of 32 bits divided into four octets, or bytes. is a numerical label assigned to each device connected to a computer network that uses the Internet Protocol for communication.[1][2] An IP address serves two main functions: host or network interface identification and location addressing. Sniffing - --occurs when attackers examine all network traffic as it passes through their NIC independent of whether or not the traffic is addressed to them or not IETF - --Internet Engineering Task Force. Limiting - --mitigation strategy that includes limiting access to data and information by reducing the possibility of a threat IANA - --Internet Assigned Numbers Authority Class C - --192.168.0.0 - 192.168.255. device ID - --The second set of six characters that make up a network device's MAC address - contains the device's model and manufacture date.
IPv6 (Internet Protocol version 6) - --provides a large number of new addresses to route Internet traffic.The IPv6 address format is much different than the IPv format. It contains eight sets of four hexadecimal digits and uses colons to separate each block. , such as "fe80::42:acff:feaa:1bf0". Sneaker net - --uses removable media to physically move data from one computer to another EIA - --Electronic Industries Alliance Administrative Access Control - --policies and procedures defined by organizations to implement and enforce all aspects of controlling unauthorized access. These controls focus on personnel and business practices System Integrity - --The quality that a system has when it performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of the system Data Integrity - --The state that exists when automated data is the same as that in source documents, or has been correctly computed from source data, and has not been exposed to alteration or destruction. Also refers to the accuracy, consistency, and reliability of data stored in a database Recovery Control - --restore resources, functions, and capabilities after a violation of a security policy. These controls can repair damage, in addition to stopping any further damage. These controls have more advanced capabilities over corrective access controls. Linux is not Unix because: - --- It hasn't undergone certification
Range - --validation rule that checks that data lies within a minimum and maximum value Application resilience - --application's ability to react to problems in one of its components while still functioning ISP (internet service provider ) - --A business that provides organizations and individuals with Internet access and often, other services, such as e-mail and Web hosting. flow control - --A method of gauging the appropriate rate of data transmission based on how fast the recipient can accept data. NSA (National Security Agency) - --is responsible for intelligence collection and surveillance activities in the U.S ITU (International Telecommunication Union) - --A United Nations agency that regulates international telecommunications and provides developing countries with technical expertise and equipment to advance their technological bases. Securely Provision - --includes conceptualizing, designing, and building secure IT systems Blended Threat - --A computer network attack that seeks to maximize the severity of damage and speed of contagion by combining methods, for example using characteristics of both viruses and worms, while also taking advantage of vulnerabilities in computers, networks, or other physical systems. An attack using a blended approach might send a virus via an e-mail attachment, along with a Trojan horse embedded in an HTML file that will cause damage to the recipient computer. EX. Nimba, CodeRed, Bugbear.
fragmentation - --A Network layer service that subdivides segments it receives from the Transport layer into smaller packets. Wired networks - --uses cables to transmit data SMiShing - --uses Short Message Service to send fake text messages Network layer - --The third layer in the OSI model. Protocols in this layer translate network addresses into their physical counterparts and decide how to route data from the sender to the receiver. Methods - --procedure(Action) associated with an object frame - --A package for data that includes not only the raw data, or "payload," but also the sender's and recipient's addressing and control information. Frames are generated at the Data Link layer of the OSI model and are issued to the network at the Physical layer. Diversity - --mitigation strategy that includes an organization using different encryption algorithms or authentication systems to protect data in different states Rogue access point - --a wireless access point installed on a secure network without explicit authorization MAC address - --A 12-character string that uniquely identifies a network node. The manufacturer hard codes the MAC address into the NIC. This address is composed of the block ID and device ID.
