Networks and Security Foundations D315
questions with verified answers
2 Types of Wireless Network Infrastructure Modes? Ans✓✓✓-Ad-hoc - device
puts out its own network, does not need a Wireless access point. (Printer starts
up and puts its own network out)
Infrastructure - WAP or Wireless router is used to connect wireless devices to
network (WAP acts like a wireless switch)
3 common network topologies Ans✓✓✓-Star Network, Ring Network, and Bus
network are common what?
3DES (Triple DES) Ans✓✓✓-Symmetric Encryption, that uses DES (data
encryption standard) 3 times in a row.
4 Responses to Risk? Ans✓✓✓-Avoidance -eliminating a particular risk by getting
rid of its cause (Computer has vuln's so we get rid of the computer)
Mitigation - Decreasing the possibility of the occurrence of the risk (Working on
the vuln's)
Acceptance - Not taking any action to reduce the risk
Transfer - Shifting the potential loss to a 3rd party (Purchasing insurance)
4 wireless encryption standards? Ans✓✓✓-WEP (weakest)
WAP
WPA2 (Most used)
WPA3 (Strongest, newest, not heavily used yet)
,AAA (authentication, authorization, and accounting) Ans✓✓✓-Framework
developed to control access to computing resources, enforce policies, and audit
usage
Verify who they say they are
Make sure they have the permissions to access
Keep logs of what they do
Access Point Ans✓✓✓-Used to interconnect wireless devices and provide a
connection to the wired LAN. Different than wireless router. Sits at data link layer
of OSI model.
Advance Persistent Threat (APT) Ans✓✓✓-A threat lies dormant waiting to
trigger at a preordained time. utilized in ransomware attacks so that back ups are
affected too.
AES (Advanced Encryption Standard) Ans✓✓✓-symmetric key algorithm,
considered a very secure form of encryption today, although, with advances in
computing power and quantum computing, it may not be considered secure
forever. can be used with a 128-bit, 192-bit, or 256-bit key. Longer key lengths are
exponentially harder to crack, but they also increase the amount of computing
power required to encrypt the data. Today, most devices and websites use the
256-bit version
Application Layer Firewall Ans✓✓✓-inspect the content of the packets,
incorporates the function of a proxy server, can block program level traffic. (think
parental controls) Layer 7
Application layer Security attacks and how to prevent them? Ans✓✓✓-SQL
Injection Attack
, Leverage a reveerse proxy system and scan incoming for malicious behavior also
Application Layer Firewall
ARP Command Ans✓✓✓-displays the IP to physical (MAC) address mappings for
hosts that have been discovered in the ARP cache.
ARP Poisoning Attack Ans✓✓✓-Used to manipulate the ARP cache of the system
asymmetric encryption Ans✓✓✓-used in public key encryption, it is scheme in
which the key to encrypt data is different from the key to decrypt. Private and
public key involved. Slower.
Availability (CIA Triad) Ans✓✓✓-Refers to the protection of information and
information systems from disruption (Making sure its available)
Compromises:
DoS or DDoS
Unplanned downtime due to server crash
Accident deletion of your name from Access control list
black hat hackers Ans✓✓✓-break into other people's computer systems and may
just look around or may steal and destroy information. (Bad guys)
Blue, Red, White, and Purple Teams Ans✓✓✓-Red team attempts to compromise
security
Blue team defends
White team observers (Referees)
questions with verified answers
2 Types of Wireless Network Infrastructure Modes? Ans✓✓✓-Ad-hoc - device
puts out its own network, does not need a Wireless access point. (Printer starts
up and puts its own network out)
Infrastructure - WAP or Wireless router is used to connect wireless devices to
network (WAP acts like a wireless switch)
3 common network topologies Ans✓✓✓-Star Network, Ring Network, and Bus
network are common what?
3DES (Triple DES) Ans✓✓✓-Symmetric Encryption, that uses DES (data
encryption standard) 3 times in a row.
4 Responses to Risk? Ans✓✓✓-Avoidance -eliminating a particular risk by getting
rid of its cause (Computer has vuln's so we get rid of the computer)
Mitigation - Decreasing the possibility of the occurrence of the risk (Working on
the vuln's)
Acceptance - Not taking any action to reduce the risk
Transfer - Shifting the potential loss to a 3rd party (Purchasing insurance)
4 wireless encryption standards? Ans✓✓✓-WEP (weakest)
WAP
WPA2 (Most used)
WPA3 (Strongest, newest, not heavily used yet)
,AAA (authentication, authorization, and accounting) Ans✓✓✓-Framework
developed to control access to computing resources, enforce policies, and audit
usage
Verify who they say they are
Make sure they have the permissions to access
Keep logs of what they do
Access Point Ans✓✓✓-Used to interconnect wireless devices and provide a
connection to the wired LAN. Different than wireless router. Sits at data link layer
of OSI model.
Advance Persistent Threat (APT) Ans✓✓✓-A threat lies dormant waiting to
trigger at a preordained time. utilized in ransomware attacks so that back ups are
affected too.
AES (Advanced Encryption Standard) Ans✓✓✓-symmetric key algorithm,
considered a very secure form of encryption today, although, with advances in
computing power and quantum computing, it may not be considered secure
forever. can be used with a 128-bit, 192-bit, or 256-bit key. Longer key lengths are
exponentially harder to crack, but they also increase the amount of computing
power required to encrypt the data. Today, most devices and websites use the
256-bit version
Application Layer Firewall Ans✓✓✓-inspect the content of the packets,
incorporates the function of a proxy server, can block program level traffic. (think
parental controls) Layer 7
Application layer Security attacks and how to prevent them? Ans✓✓✓-SQL
Injection Attack
, Leverage a reveerse proxy system and scan incoming for malicious behavior also
Application Layer Firewall
ARP Command Ans✓✓✓-displays the IP to physical (MAC) address mappings for
hosts that have been discovered in the ARP cache.
ARP Poisoning Attack Ans✓✓✓-Used to manipulate the ARP cache of the system
asymmetric encryption Ans✓✓✓-used in public key encryption, it is scheme in
which the key to encrypt data is different from the key to decrypt. Private and
public key involved. Slower.
Availability (CIA Triad) Ans✓✓✓-Refers to the protection of information and
information systems from disruption (Making sure its available)
Compromises:
DoS or DDoS
Unplanned downtime due to server crash
Accident deletion of your name from Access control list
black hat hackers Ans✓✓✓-break into other people's computer systems and may
just look around or may steal and destroy information. (Bad guys)
Blue, Red, White, and Purple Teams Ans✓✓✓-Red team attempts to compromise
security
Blue team defends
White team observers (Referees)
