






Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
NETWORK SECURITY ENCRYPTION PROTOCOLS QUESTION BANK 2026
Typology: Exams
1 / 10
This page cannot be seen from the preview
Don't miss anything!







โ Hardening Answer: Ensures that the default configurations are dealt with appropriately โ Hashing Encryption Answer: A one-way type of encryption that takes clear text and turns it into ciphertext, which can not be decrypted โ High-Availability Answer: The implementation of redundancy at various levels to ensure that the loss of a single component or service does not result in a service outage โ HTTPS Answer: Simply HTTP in conjunction with a Secure Sockets Layer (SSL), which adds encryption to the connection โ Hypertext Transfer Protocol (HTTP) Answer: Utilized on the Internet to allow the browsing of the web
โ Implicit Deny Answer: Whatever isn't explicitly allowed is denied โ Incident Answer: Any event that adversely affects the network โ Intentional Threats Answer: Have some type of malicious intent behind them โ Internal Attackers Answer: Individuals inside an organization that may possess the skills necessary to thwart security, resulting in unauthorized access or the malicious deletion of data โ International Organization For Standardization (ISO) Answer: The largest standards development company and happens to be the company that developed the OSI/RM back in 1984 โ Internet Engineering Task Force (IETF) Answer: An open committee of groups that work together to develop and maintain various Internet standards
โ Man-In-The-Middle Attack Answer: A situation where an attacker positions himself between two hosts that are communicating with one another and then listens in on the session โ MS-CHAP Answer: Hashes passwords using the MD5 and SHA algorithms โ Network Access Control Answer: Describes a set of technologies and protocols that are used to enforce system security at the initial time of connection โ Non-Repudiation Answer: The inability of a person or organization to disown its own data โ Patch Management Answer: Ensures that operating system patches, software patches, and firmware upgrades for network devices are able to be deployed in a very consistent fashion โ Penetration Testing
Answer: Attempts to breach security that is set up on the system and is therefore more intrusive โ Port Scanning Attacks Answer: Utilizes software to determine the ports that are open on the destination system โ Privilege Escalation Answer: When the attacker exploits a bug in the system to enable an account or an application to perform additional actions that are outside the normal range of permissions โ Ransomware Answer: A particular type of malware that holds the system hostage so to speak โ Remote Authentication Dial-In User Service (RADIUS) Answer: Provides a mechanism in which all of the AAA functions can be centralized โ Risk Answer: A concept that is indicative of the exposure to damage or loss, and is a calculated value
โ Social Engineering Answer: Another type of attack which preys on people rather than systems โ Software Attack Answer: Either an attack against actual software resources or the utilization of software programs to generate an attack โ Spyware Answer: Any program that runs without the knowledge of the user and spies on the actions of that user, like activities taken on webpages or usernames and passwords entered into a website โ Stakeholder Answer: Someone who has an interest in the system and can include end-users, management, and administrative personnel โ Stream Ciphers Answer: Encrypt one bit at a time and are much faster and less susceptible to errors then other types of ciphers โ Symmetric Key Encryption
Answer: Utilizes the same key for both the encryption and decryption process โ Telnet Answer: Another form of remote administration via the command line, but is not heavily used because of security risk โ Threat Answer: Any event or action that might cause a breach or violation in security policies and/or procedures โ Trivial File Transfer Protocol (TFTP) Answer: Used in similar fashion to FTP but uses UDP as the transport protocol as opposed to TCP โ Trojan Horses Answer: Malware hidden inside another program โ Unintentional Threats Answer: Threats that can occur without malicious intent โ Virus
โ Wireless Access Points (WAP) Answer: A device that provides a connection between the wired and wireless networks โ Worm Answer: A type of malicious code that replicates itself without user intervention โ Zero-Day Exploits Answer: Any attack that is targeting a vulnerability for which a patch is just been released but the administrative personnel haven't had time to patch