SBOLC SECURITY PLUS STUDY GUIDE, Exams of Social Sciences

SBOLC SECURITY PLUS STUDY GUIDE

Typology: Exams

2025/2026

Available from 05/14/2026

lectannah
lectannah 🇺🇸

1.1K documents

1 / 7

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
SBOLC SECURITY PLUS STUDY GUIDE
Goals of Crypto - Answers- Confidentiality (encryption),Integrity
(Hashing),Authentication (Prove yourself), Non-repudiation (can't deny it happened-
digital signatures)
TCP vs UDP - Answers- UDP is "best effort" delivery with to nodes on a network. Little
overhead and is often used for streaming audio or video traffic. TCP is reliable one-to-
one connection between two hosts. Uses 3-way handshake (SYN-SYN ACK- ACK)
Network access control (NAC) - Answers- goal is to prevent computers with suboptimal
security from potentially infecting other systems in the network. Enforces policy.
Quarantine portal - Answers- redirects user to a quarantine area where fixes can be
accessed. Usually a web page with hyperlinks to the fixes. Once necessary software is
installed the system is then in compliance.
Worms - Answers- (adware) self-contained
Logic bombs - Answers- (spyware) Inserted into a system which sets off an action when
specific conditions are met
Trojan Horse - Answers- (ransomware) Social engineering. Included as an attachment
or as part of an installation program
Backdoor - Answers- Allows access to a system without having to authenticate
Denial of Service (DOS) attack - Answers- system/service is unavailable for use
Ping of Death - Answers- massive ping packet to crash server
Teardrop - Answers- fragment the packets
Man in middle - Answers- (redirection attacks)
Distributed Denial of Service (DDoS) - multiple attackers prevents access to resources
for authorized users - Answers-
Smurf -amplification attack (attacker uses router to broadcast attack). ICMP - Answers-
Fraggle - Answers- amplification attack. UDP
Security control types - Answers- managerial, technical, operational
pf3
pf4
pf5

Partial preview of the text

Download SBOLC SECURITY PLUS STUDY GUIDE and more Exams Social Sciences in PDF only on Docsity!

SBOLC SECURITY PLUS STUDY GUIDE

Goals of Crypto - Answers- Confidentiality (encryption),Integrity (Hashing),Authentication (Prove yourself), Non-repudiation (can't deny it happened- digital signatures) TCP vs UDP - Answers- UDP is "best effort" delivery with to nodes on a network. Little overhead and is often used for streaming audio or video traffic. TCP is reliable one-to- one connection between two hosts. Uses 3-way handshake (SYN-SYN ACK- ACK) Network access control (NAC) - Answers- goal is to prevent computers with suboptimal security from potentially infecting other systems in the network. Enforces policy. Quarantine portal - Answers- redirects user to a quarantine area where fixes can be accessed. Usually a web page with hyperlinks to the fixes. Once necessary software is installed the system is then in compliance. Worms - Answers- (adware) self-contained Logic bombs - Answers- (spyware) Inserted into a system which sets off an action when specific conditions are met Trojan Horse - Answers- (ransomware) Social engineering. Included as an attachment or as part of an installation program Backdoor - Answers- Allows access to a system without having to authenticate Denial of Service (DOS) attack - Answers- system/service is unavailable for use Ping of Death - Answers- massive ping packet to crash server Teardrop - Answers- fragment the packets Man in middle - Answers- (redirection attacks) Distributed Denial of Service (DDoS) - multiple attackers prevents access to resources for authorized users - Answers- Smurf - amplification attack (attacker uses router to broadcast attack). ICMP - Answers- Fraggle - Answers- amplification attack. UDP Security control types - Answers- managerial, technical, operational

Managerial - Answers- policies and procedures put into place to define and guide employees actions in dealing with sensitive info. Technical - Answers- devices, processes, protocols, and other measures use to protect the CIA of sensitive info. (technical measures) Operational define how people in the organization should handle data, software and hardware. should include environmental and physical security. - Answers- exception handling - Answers- ensures the code can handle the error conditions error handling - Answers- anticipation, detection and resolution of any errors OS hardening techniques - Answers- process of securely configuring the system against security vulnerabilities Stream Cipher - Answers- usually found in hardware. Data encrypted bit by bit. Example is RC4. Fast Block Cipher - Answers- found in software. Applied to block data (64 contiguous bits) at once as a group. Very slow but more secure than Stream Confidentiality goal - Answers- random ppl cant see your messages, only the intended receiver Integrity goal - Answers- message sent has not been changed Availability goal - Answers- continuous operation, available for use Captive Portal - Answers- Captures or redirects the users initial traffic because something more is needed from the user, such as a credit card, or user name and password. Identification vs Authentication - Answers- Identification is the claim of who we are. Authentication is the most critical step in the identification process. It is proving of a subjects claim to identification. - Answers- Authentication types - Answers- Something you know (password or PIN), Something you have (smart card, token, or device), Something you are (fingerprints or retinal pattern), Something you do (keystroke authentication), Somewhere you are (location) Virus (spam) - Answers- replicates itself on a system. Requires a host to move from system to system

Symmetric - Answers- C32BRAIDS, has only 1 key Cast - Answers- 128/ 3DES - Answers- (old and slow x 3) 2Fish - Answers- similar to AES Blowfish - Answers- (fastest, 64bit) RC - Answers- 4,5,6 (RC4=stream, used in WEB &WPA) AES - Answers- De facto standard Idea - Answers- international DES - Answers- (old and slow, 64 bit-56 effective) Skipjack - Answers- (clipper chip, escrowed to NSA) Safer - Answers- Bluetooth Asymmetric - Answers- DEER, has 2 keys Diffie Hellman - Answers- (only for key exchange) El Gamal - Answers- (old and outdated) ECC - Answers- (elliptical curve cryptology- embedded devices) RSA - Answers- (defecto, does all the things) DNS attacks - Answers- Domain Name Service translates IP addresses and domain names (such as Google.com). If you try to go to Google.com and someone has attacked your DNS resolution, he could send you to his malicious site that looks exactly like Google and steal your information that you put into the site Single Sign on - Answers- authenticate only once. If account is compromised, intruder has unrestricted access, such as with Kerberon Qualitative - Answers- researching the likelihood and impact of a risk. (risk= likelihood of occurrence x impact on organization Quantitative - Answers- assigns "real" numbers to the cost of damages and countermeasures

EAL levels - Answers- 1 - Functionally tested 2 - Structurally tested 3 - Methodically tested and checked 4 - Methodically designed, tested, and reviewed 5 - Semi formally design and tested 6 - semi formally verified designed and tested 7 - Formally verified design and tested Passwords - Answers- use uppercase and lowercase special characters and numbers are stronger. min length should be 8 characters. Hash hardening - Answers- SALT (helps keep collision from happening. Random value calculated into hash adding more complexity. Collision strength-use algorithm with higher hash outputs. Establish clipping levels to defeat brute force Tunneling methods - Answers- virtual dedicated connection between two systems or networks. Sends private data across a public network by encapsulating data into other packs. Point to Point - no encryption - Answers- Point to Point over Ethernet (PPPoE) - Provides authentication, encryption, compression - Answers- Point to Point Tunneling Protocol (PPTP) - turns PPP frame into IP packets - Answers- VPN Tunneling - Answers- IPv4 - Answers- most common. 32 bit IPv6 - Answers- 128 bits Uses hexadecimal more IP space and more built in security Type I - Answers- False Reject rate (FRR) Type II - Answers- False Accept rate (FAR) Insider access threats - Answers- Poses significant risk to an organization (data disclosure, loss of resources, damage to organization reputation. Avoidance - Answers- Not performing an activity that could carry risk Transference - Answers- Shifting the burden of loss to another party through legislation, contract, insurance or other means Acceptance - Answers- Cost of a countermeasure outweighs the loss due to a risk

Static - Answers- transforms only the network part of the address, leaving host intact Dynamic - Answers- pool of public IP addresses is shared by an entire private IP subnet PAT - Answers- allows many private hosts to share a single IP address by multiplexing the communication streams and differentiated by TCP/UDP port numbers SLE - Answers- single loss expectancy includes the asset value and exposure value Directory Services - Answers- naming system that stores , organizes, and provides access to information in a directory LDAP - Answers- follows X.500 standard. active directory communicates in this language. vulnerabilities- man in the middle, evil twin, improper directory settings Microsoft active directory - Answers- uses Kurburos for authentication IPsec - Answers- is the defacto standard for encrypting virtual private network. Needs to be configured to run one of two modes. Tunnel - Answers- uses encapsulation for the header info and is used in link-to-link network communications. Both the packet content and header are protected Transport - Answers- used for end to end encryption of data. Packet is protected but the header is left in tact Physical Security - Answers- shields the organization from attackers attempting to gain access to the premises Cold site, warm site, hot site - Answers- used for when a primary site might go down due to weather, emergencies, explosions, or whatever Cold Site - - Answers- dedicated space, but there is no actual infrastructure inside. This could be something like an empty warehouse floor. Warm site - - Answers- Cold site but you have the servers or whatever actually already set up. They are just not turned on. It's more expensive to maintain than a cold site, but can also get your business up and running more quickly. Hot site - - Answers- Warm site with the servers or whatever turned on and ready to go. Most expensive of the options, but if your primary site goes down, a hot site will get you up and running pretty much instantly.