WGU D315 STUDY GUIDE SECTION 3
EXAM QUESTIONS & DETAILED
ANSWERS ALREADY PASSED
Defense in Depth
Having multiple layers of defense so that even if one layer is compromised the others will still
protect the system
Separation of Privilege
No single user or process should have full control over the system as a whole to reduce the risk
of unauthorized access
Least Privilege
Limits users access based on what is needed to perform their tasks
Psychological Acceptability
Security measures should be designed to be easily understood by users and should minimize
the burden added to user operations
Least Common Mechanism
, System should minimize the sharing of mechanisms used to access resources between users or
processes, especially when they have different security privileges, to prevent security breaches
and unintended information sharing.
Open Design
Security should not rely on secrecy and should be designed to withstand intelligent attacks
What is a Firewall?
A firewall is a network security device that monitors and controls incoming and outgoing
network traffic to protect a private network from unauthorized access and harmful activities.
They can be made of hardware or software or both and can be found in public or private clouds
or as software-as-a-service
Packet filtering Firewall
Filters incoming and outgoing data packets based on rules, usually IP addresses, port numbers,
and protocols
Stateful Inspection Firewall
Monitors and controls active network connections to identify and block threats
Application Layer Firewall
System that monitors and controls traffic on the network based on application specific rules.
Also known as ALFW, it is usually deployed at the application level of the OSI model
EXAM QUESTIONS & DETAILED
ANSWERS ALREADY PASSED
Defense in Depth
Having multiple layers of defense so that even if one layer is compromised the others will still
protect the system
Separation of Privilege
No single user or process should have full control over the system as a whole to reduce the risk
of unauthorized access
Least Privilege
Limits users access based on what is needed to perform their tasks
Psychological Acceptability
Security measures should be designed to be easily understood by users and should minimize
the burden added to user operations
Least Common Mechanism
, System should minimize the sharing of mechanisms used to access resources between users or
processes, especially when they have different security privileges, to prevent security breaches
and unintended information sharing.
Open Design
Security should not rely on secrecy and should be designed to withstand intelligent attacks
What is a Firewall?
A firewall is a network security device that monitors and controls incoming and outgoing
network traffic to protect a private network from unauthorized access and harmful activities.
They can be made of hardware or software or both and can be found in public or private clouds
or as software-as-a-service
Packet filtering Firewall
Filters incoming and outgoing data packets based on rules, usually IP addresses, port numbers,
and protocols
Stateful Inspection Firewall
Monitors and controls active network connections to identify and block threats
Application Layer Firewall
System that monitors and controls traffic on the network based on application specific rules.
Also known as ALFW, it is usually deployed at the application level of the OSI model
