


Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
NETWORK SECURITY OPERATIONS| COMPUTER SCIENCE| IT| 2026 QUIZZES NETWORK SECURITY OPERATIONS| COMPUTER SCIENCE| IT| 2026 QUIZZES
Typology: Exams
1 / 4
This page cannot be seen from the preview
Don't miss anything!



Firewalls - ANSWER-hardware, software, or both designed to prevent unauthorized persons from accessing electronic information. Packet Filter Firewalls - ANSWER-operates at Layers 3 and 4 of the OSI network model: network and transport. These firewalls inspect incoming (ingress) and outgoing (egress) traffic and compare the following attributes to a database of packet filter rules that determine if the firewall will forward (allow) or drop (deny) the traffic: Stateful Inspection - ANSWER-Automatically creates rules to permit traffic based on communication type. Operates at OSI layer 3- Application Level - ANSWER-Operates at OSI Layer 7 and below, Analyzes packet content and blocks program-level traffic. IDS (Intrusion Detection System) - ANSWER-Monitors the network to detect threats. Listens passively on the network. Alerts network admin of any detected suspicious behavior. IPS (Intrusion Prevention System) - ANSWER-Intercepts and blocks threats. Has many network ports to operate as input/output pairs. Has cables routed physically through devices to create choke points. IDS and IPS - ANSWER-Both Identifies malicious traffic. Available as virtual and host- based applications. Can be configured to operate in tap mode. IDS Deployment - ANSWER-Suspicious traffic comes into the switch Intrusion system inspects traffic and alerts admin of suspicious packets. An alarm is sent to admin's management system. IPS Deployment - ANSWER-Suspicious traffic comes in. An intrusion system blocks suspicious packets before it gets to the switch. SQL Injection Attack - ANSWER-Security solution: Leverage a reverse proxy system and scan incoming packets for malicious behavior. OSI Layer: Application (7)
Man-in-the-Middle Attack - ANSWER-Security solution: Mitigate by using an application- layer proxy or an IPS, and train users about fake security certificates. OSI Layer: Presentation (6) RPC Attack - ANSWER-Security solution: Mitigate with regular OS and application patching. OSI Layer: Session (5) Port Scanner - ANSWER-Security solution: Mitigate by using a packet-filtering firewall. OSI Layer: Transport (4) Ping Sweep Attack - ANSWER-Security solution: Mitigate by using a packet-filtering firewall. OSI Layer: Network (3) VLAN Hopping - ANSWER-Security solution: Configure the VLAN tagging per the switch vendor's recommendation. OSI Layer: Data Link (2) Wiretapping - ANSWER-Security solution: Look for physical vulnerabilities, check the locks on doors, racks, and wiring closets. OSI Layer: Physical (1) Symmetric Key Encryption - ANSWER-known as private key encryption, uses the same key to encrypt the data as it does to decrypt the data. Asymmetric Key Encryption - ANSWER-rely on two different keys to encrypt and decrypt the traffic. This is particularly useful on the internet where the encryption of the data being sent to and from e-commerce and banking websites is needed. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) - ANSWER-the most common forms of encryption found on the internet today. TLS - ANSWER-creates a secure channel over the internet between a client computer and a server by exchanging a public key in the form of a certificate. IAM - ANSWER-Cloud providers, both private and public, require a form of authentication to prove your identity and include authorization rules, to control what you may access MFA - ANSWER-an extra step beyond a username and password Private Cloud - ANSWER-are scalable, single-tenant clusters of computing, storage, and networking resources owned and maintained by a single company, typically (but not always) located within a data center belonging to that company. The owner of the equipment typically holds the final responsibility for all the hardware and most, if not all, of the physical data center security concerns.
Authorization - ANSWER-Define what the user can access Give permissions to a user Write and delete or read-only Accounting - ANSWER-Report on user's access Provides forensic trail after a security breach Logs successful and unsuccessful connection attempts