Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Chapter 4
Network Security

THE COMPTIA NETWORK+ EXAM N10-008 TOPICS COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:

4.1 Explain common security concepts.
- Confidentiality, integrity, availability (CIA)
- Threats
  - Internal
  - External
- Vulnerabilities
  - Common vulnerabilities and exposures (CVE)
  - Zero-day
- Exploits
- Least privilege
- Role-based access
- Zero Trust
- Defense in depth
  - Network segmentation enforcement
  - Screened subnet [previously known as demilitarized zone (DMZ)]
  - Separation of duties
  - Network access control
  - Honeypot
- Authentication methods
  - Multifactor
  - Terminal Access Controller Access-Control System Plus (TACACS+)
  - Single sign-on (SSO)
  - Remote Authentication Dial-in User Service (RADIUS)
  - LDAP
  - Kerberos
  - Local authentication
  - 802.1X
  - Extensible Authentication Protocol (EAP)
- Risk Management
  - Security risk assessments
    - Threat assessment
    - Vulnerability assessment
    - Penetration testing
    - Posture assessment
  - Business risk assessments
    - Process assessment
    - Vendor assessment
- Security information and event management (SIEM)
4.2 Compare and contrast common types of attacks.
- Technology-based
  - Denial-of-service (DoS)/distributed denial-of-service (DDoS)
    - Botnet/command and control
  - On-path attack (previously known as man-in-the-middle attack)
  - DNS poisoning
  - VLAN hopping
  - ARP spoofing
  - Rogue DHCP
  - Rogue access point (AP)
  - Evil twin
  - Ransomware
  - Password attacks
    - Brute-force
    - Dictionary
  - MAC spoofing
  - IP spoofing
  - Deauthentication
  - Malware
- Human and environmental
  - Social engineering
    - Phishing
    - Tailgating
    - Piggybacking
    - Shoulder surfing
4.3 Given a scenario, apply network hardening techniques.
- Best practices
  - Secure SNMP
  - Router Advertisement (RA) Guard
  - Port security
  - Dynamic ARP inspection
  - Control plane policing
  - Private VLANs
  - Disable unneeded switchports
  - Disable unneeded network services
  - Change default passwords
  - Password complexity/length
  - Enable DHCP snooping
  - Change default VLAN
  - Patch and firmware management
  - Access control list
  - Role-based access
  - Firewall rules
    - Explicit deny
    - Implicit deny
- Wireless security
  - MAC filtering
  - Antenna placement
  - Power levels
  - Wireless client isolation
  - Guest network isolation
  - Preshared keys (PSKs)
  - EAP
  - Geofencing
  - Captive portal
- IoT access considerations
4.4 Compare and contrast remote access methods and security implications.
- Site-to-site VPN
- Client-to-site VPN
  - Clientless VPN
  - Split tunnel vs. full tunnel
- Remote desktop connection
- Remote desktop gateway
- SSH
- Virtual network computing (VNC)
- Virtual desktop
- Authentication and authorization considerations
- In-band vs. out-of-band management
4.5 Explain the importance of physical security.
- Detection methods
  - Camera
  - Motion detection
  - Asset tags
  - Tamper detection
- Prevention methods
  - Employee training
  - Access control hardware
    - Badge readers
    - Biometrics
  - Locking racks
  - Locking cabinets
  - Access control vestibule (previously known as a mantrap)
  - Smart lockers
- Asset disposal
  - Factory reset/wipe configuration
  - Sanitize devices for disposal

Which of the following are terms for an area of an enterprise network, separated by firewalls, which contains servers that must be accessible both from the Internet and from the internal network? (Choose all that apply.)
1. Intranet
2. DMZ
3. EGP
4. Stateless network
5. Perimeter network
6. Screened subnet
Which of the following authentication protocols do Windows networks use for Active Directory Domain Services (AD DS) authentication of internal clients?
1. RADIUS
2. WPA2
3. Kerberos
4. EAP-TLS
Which of the following are examples of multifactor authentication? (Choose all that apply.)
1. A system that uses an external RADIUS server for authentication
2. A system that requires two passwords for authentication
3. A system that requires a smartcard and a PIN for authentication
4. A system that requires a password and a retinal scan for authentication
Which of the following protocols can you use to authenticate Windows remote access users with smartcards?
1. EAP
2. MS-CHAPv2
3. CHAP
4. PAP
Which of the following statements best defines multifactor user authentication?
1. Verification of a user's identity on all of a network's resources using a single sign-on
2. Verification of a user's identity using two or more types of credentials
3. Verification of a user's identity on two devices at once
4. Verification of a user's membership in two or more security groups
Which of the following services are methods of tracking a user's activities on a network? (Choose all that apply.)
1. Authentication
2. Authorization
3. Accounting
4. Auditing
When a user supplies a password to log on to a server, which of the following actions is the user performing?
1. Authentication
2. Authorization
3. Accounting
4. Auditing
When a user swipes a finger across a fingerprint scanner to log on to a laptop computer, which of the following actions is the user performing?
1. Authentication
2. Authorization
3. Accounting
4. Auditing
Which of the following security protocols can authenticate users without transmitting their passwords over the network?
1. Kerberos
2. 802.1X
3. TKIP
4. LDAP
Which of the following statements about authentication auditing are not true?
1. Auditing can disclose attempts to compromise passwords.
2. Auditing can detect authentications that occur after hours.
3. Auditing can identify the guess patterns used by password cracking software.
4. Auditing can record unsuccessful as well as successful authentications.
When a user swipes a smartcard through a reader to log on to a laptop computer, which of the following actions is the user performing?
1. Authentication
2. Authorization
3. Accounting
4. Auditing
Combining elements like something you know, something you have, and something you are to provide access to a secured network resource is a definition of which of the following types of authentication?
1. Multifactor
2. Multisegment
3. Multimetric
4. Multifiltered
Which of the following terms describes a system that prevents computers from logging on to a network unless they have the latest updates and antimalware software installed?
1. NAC
2. LDAP
3. RADIUS
4. TKIP-RC4
Which of the following describes the primary difference between Single Sign-On (SSO) and same sign-on?
1. SSO enables users to access different resources with one set of credentials, whereas same sign-on requires users to have multiple credential sets.
2. SSO credentials consist of one username and one password, whereas same sign-on credentials consist of one username and multiple passwords.
3. SSO requires the user to supply credentials only once, whereas with same sign-on, the user must supply the credentials repeatedly.
4. SSO requires multifactor authentication, such as a password and a smartcard, whereas same sign-on requires only a password for authentication.
Which of the following is the best description of biometrics?
1. Something you know
2. Something you have
3. Something you are
4. Something you do
Which of the following authentication factors is an example of something you have?
1. A fingerprint
2. A smartcard
3. A password
4. A finger gesture
Which of the following statements best describes the primary scenario for the use of TACACS+?
1. TACACS+ was designed to provide authentication, authorization, and accounting services for wireless networks.
2. TACACS+ was designed to provide authentication, authorization, and accounting services for the Active Directory service.
3. TACACS+ was designed to provide authentication, authorization, and accounting services for remote dial-up users.
4. TACACS+ was designed to provide authentication, authorization, and accounting services for network routers and switches.
The new door lock on your company's datacenter door requires you to supply both a PIN and a thumbprint scan. Which of the following types of authentication factors does the lock use? (Choose all that apply.)
1. Something you have
2. Something you know
3. Something you are
4. Something you do
Your new smartphone enables you to configure the lock screen with a picture of your husband, on which you draw eyes, nose, and a mouth with your finger to unlock the phone. This is an example of which of the following authentication factors?
1. Something you have
2. Something you know
3. Something you are
4. Something you do
Which of the following authentication factors is an example of something you do?
1. A fingerprint
2. A smartcard
3. A password
4. A finger gesture
Which of the following authentication factors is an example of something you know?
1. A fingerprint
2. A smartcard
3. A password
4. A finger gesture
Which of the following authentication factors is an example of something you are?
1. A fingerprint
2. A smartcard
3. A password
4. A finger gesture
Which of the following is an implementation of Network Access Control (NAC)?
1. RADIUS
2. 802.1X
3. LDAP
4. TACACS+
Which of the following is not one of the roles involved in an 802.1X transaction?
1. Supplicant
2. Authentication server
3. Authorizing agent
4. Authenticator
In an 802.1X transaction, what is the function of the supplicant?
1. The supplicant is the service that issues certificates to clients attempting to connect to the network.
2. The supplicant is the service that verifies the credentials of the client attempting to access the network.
3. The supplicant is the network device to which the client is attempting to connect.
4. The supplicant is the client user or computer attempting to connect to the network.
In an 802.1X transaction, what is the function of the authenticator?
1. The authenticator is the service that issues certificates to clients attempting to connect to the network.
2. The authenticator is the service that verifies the credentials of the client attempting to access the network.
3. The authenticator is the network device to which the client is attempting to connect.
4. The authenticator is the client user or computer attempting to connect to the network.
An 802.1X transaction involves three roles: the supplicant, the authenticator, and the authentication server. Of the three, which role typically takes the form of a RADIUS implementation?
1. The supplicant
2. The authenticator
3. The authentication server
4. None of the above
Which of the following are standards that define combined Authentication, Authorization, and Accounting (AAA) services? (Choose all that apply.)
1. 802.1X
2. RADIUS
3. TACACS+
4. LDAP
Which of the following standards was originally designed to provide Authentication, Authorization, and Accounting (AAA) services for dial-up network connections?
1. RADIUS
2. TACACS+
3. Kerberos
4. LDAP
Which of the following statements about RADIUS and TACACS+ are correct?
1. By default, RADIUS uses UDP, and TACACS+ uses TCP.
2. By default, RADIUS uses TCP, and TACACS+ uses UDP.
3. By default, both RADIUS and TACACS+ use TCP.
4. By default, both RADIUS and TACACS+ use UDP.
Which of the following standards provides Authentication, Authorization, and Accounting (AAA) services for network routers and switches?
1. RADIUS
2. TACACS+
3. Kerberos
4. LDAP
Which of the following terms refers to the process of determining whether a user is a member of a group that provides access to a particular network resource?
1. Authentication
2. Accounting
3. Authorization
4. Access control
Which of the following terms refers to the process of confirming a user's identity by checking specific credentials?
1. Authentication
2. Accounting
3. Authorization
4. Access control
Which of the following terms refers to the process by which a system tracks a user's network activity?
1. Authentication
2. Accounting
3. Authorization
4. Access control
Which of the following statements are true about a public key infrastructure? (Choose all that apply.)
1. Data encrypted with a user's public key can be decrypted with the user's public key.
2. Data encrypted with a user's public key can be decrypted with the user's private key.
3. Data encrypted with a user's private key can be decrypted with the user's private key.
4. Data encrypted with a user's private key can be decrypted with the user's public key.
Which of the following technologies can maintain an account database that multiple remote access servers can employ to authenticate remote users?
1. RADIUS
2. IDS
3. NGFW
4. NAS
Which element of the Confidentiality-Integrity-Availability (CIA) triad prevents unauthorized modification of protected data?
1. Confidentiality
2. Integrity
3. Availability
4. None of the above
Which of the following is an example of local authentication?
1. A system that uses an external RADIUS server for authentication
2. A system that uses the Kerberos protocol for authentication
3. A system that authenticates users without network communication
4. A system that requires a password and a retinal scan for authentication
In some cases, network administrators create computers that function as enticing targets for attackers but that do not provide access to any legitimately sensitive services or information. Which of the following is the term used to describe this technique?
1. DMZ
2. Honeypot
3. Root guard
4. Spoofing
Honeypots and honeynets belong to which of the following categories of devices?
1. Mitigation techniques
2. Network attacks
3. Switch port protection types
4. Firewall filters
Which of the following best describes the process of penetration testing?
1. Administrators create computers or networks that are alluring targets for intruders.
2. Administrators attempt to access the network from outside using hacker tools.
3. An organization hires an outside consultant to evaluate the security conditions on the network.
4. An organization hires an outside consultant who attempts to compromise the network's security measures.
Which of the following types of servers are typically found in a screened subnet? (Choose all that apply.)
1. Domain controllers
2. DHCP servers
3. Email servers
4. Web servers
Which of the following statements best describes the difference between an exploit and a vulnerability?
1. An exploit is a potential weakness in software, and a vulnerability is a potential weakness in hardware.
2. A vulnerability is a potential weakness in a system, and an exploit is a hardware or software element that is designed to take advantage of a vulnerability.
3. An exploit is a potential weakness in a system, and a vulnerability is a hardware or software element that is designed to take advantage of a vulnerability.
4. A vulnerability is a potential weakness in software, and an exploit is a potential weakness in hardware.
Which of the following abbreviations describes a product that combines real-time monitoring of security events and automated analysis of the event information gathered?
1. SIEM
2. SNMP
3. SEIM
4. SEM/SIM
A technician in the IT department at your company was terminated today and had to be escorted from the building. Your supervisor has instructed you to disable all of the technician's accounts, change all network device passwords to which the technician had access, and have the datacenter doors rekeyed. Which of the following terms best describes your supervisor's concern in asking you to do these things?
1. Social engineering
2. Internal threats
3. Logic bombs
4. War driving
5. External threats
Which of the following is the best description of a software product with a zero-day vulnerability?
1. A product with a vulnerability that has just been addressed by a newly-released fix
2. A product with a vulnerability that has been addressed by a fix, which nearly all users have applied
3. A vulnerability in a newly-released product for which no fix has yet been developed
4. A vulnerability in a product which no attackers have yet discovered or exploited
Ralph is evaluating software products for potential deployment on his company's network. Which of the following types of searches can Ralph use to identify security issues that have been discovered in specific products?
1. CIA
2. CVE
3. SKU
4. SIEM
Alice's company regularly hires a large number of operators for their phone center. The operators require access to a customer database and an order entry system. Because this is a high-turnover position, Alice has streamlined the on-boarding process by creating a security group with the appropriate permissions needed to access the necessary software. This way, she can simply add each new user to the group, rather than assigning the permissions individually. This is an example of which of the following security concepts?
1. Least privilege
2. Zero trust
3. Role-based access control
4. Defense in depth
When starting her new position as a network administrator, Alice was given two user accounts. One account is intended for standard user activities, and another has the additional permissions needed for Alice to perform administrative tasks. This is an example of which of the following security concepts?
1. Zero-day
2. Multifactor authentication
3. Least privilege
4. Defense in depth
Which of the following is a practice that a zero trust architecture is designed to protect against?
1. Zero-day vulnerabilities
2. External threats
3. Deauthentication
4. Lateral movement
Which of the following is not one of the mechanisms often used to implement a defense in depth strategy?
1. Screened subnets
2. Network segmentation enforcement
3. Honeypots
4. Access control vestibules
5. Social engineering
6. Separation of duties
As part of her company's new risk management initiative, Alice has been assigned the task of performing a threat assessment for the firm's data resources. For each potential threat she discovers, which of the following elements should Alice estimate? (Choose all that apply.)
1. Severity
2. Mitigation
3. Likelihood
4. Posture
Alice has been assigned the task of examining her department's order entry procedure, to determine whether it meets established cost, quality, and timeliness goals. Which of the following is the best term for this examination?
1. Vendor assessment
2. Process assessment
3. Business assessment
4. Risk assessment
A user calls the help desk, complaining that he cannot access any of the data on his computer. A message has also appeared on his screen stating that his data has been encrypted and that it will only be decrypted after he pays $768 in digital currency to an unknown address. Which of the following types of attack has the user experienced?
1. War driving
2. Ransomware
3. Denial-of-Service
4. ARP poisoning
Which of the following attack types typically involves modifying network packets while they are in transit? (Choose all that apply.)
1. Spoofing
2. Denial-of-Service
3. On-path
4. Logic bomb
Which of the following types of attack involves the modification of a legitimate software product?
1. Social engineering
2. War driving
3. Logic bomb
4. Evil twin
Which of the following steps can help to prevent war driving attacks from compromising your wireless network? (Choose all that apply.)
1. Configure your access point to use a longer SSID.
2. Configure your access point not to broadcast its SSID.
3. Configure your clients and access point to use WPA2 security.
4. Configure your clients and access point to use WEP security.
On the fence outside your home, you happen to notice a small sticker that has the Service Set Identifier (SSID) of your wireless network written on it, along with the name of the security protocol your network is using. To which of the following attacks have you been made a victim?
1. War driving
2. War chalking
3. War tagging
4. War signing
Which of the following is the name for an attack in which an intruder uses a Bluetooth connection to steal information from a wireless device, such as a smart phone?
1. Bluedogging
2. Bluesnarfing
3. Bluesmurfing
4. Bluejacking
Which of the following types of Denial-of-Service (DoS) attack does not involve flooding a server with traffic?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following statements best describes the difference between distributed and reflective Denial-of-Service (DoS) attacks?
1. A distributed DoS attack uses other computers to flood a target server with traffic, whereas a reflective DoS attack causes a server to flood itself with loopback messages.
2. A distributed DoS attack uses malware-infected computers to flood a target, whereas a reflective DoS attack takes advantage of other servers’ native functions to make them flood a target.
3. A reflective DoS attack uses malware-infected computers to flood a target, whereas a distributed DoS attack takes advantage of other servers’ native functions to make them flood a target.
4. A distributed DoS attack floods multiple target computers with traffic, whereas a reflective DoS attack only floods a single target.
Which of the following terms refers to a Denial-of-Service (DoS) attack that places more of a burden on the target server than just the flood of incoming traffic?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following types of attacks require no additional hardware or software components? (Choose all that apply.)
1. Brute-force
2. Social engineering
3. Denial-of-Service
4. Phishing
Which of the following attack types are specifically targeted at wireless network clients? (Choose all that apply.)
1. Logic bomb
2. Deauthentication
3. Evil twin
4. ARP poisoning
Which of the following is an effective method for preventing sensitive data from being compromised through social engineering?
1. Implement a program of user education and corporate policies.
2. Install an antivirus software product on all user workstations.
3. Install a firewall between the internal network and the Internet.
4. Use Internet Protocol Security (IPSec) to encrypt all network traffic.
Which of the following terms refer to Denial-of-Service (DoS) attacks that use other computers to flood a target server with traffic? (Choose all that apply.)
1. Amplified
2. Reflective
3. Distributed
4. Permanent
In which of the following ways is VLAN hopping a potential threat?
1. VLAN hopping enables an attacker to scramble a switch's patch panel connections.
2. VLAN hopping enables an attacker to rename the default VLAN on a switch.
3. VLAN hopping enables an attacker to access different VLANs using 802.1q spoofing.
4. VLAN hopping enables an attacker to change the native VLAN on a switch.
Which of the following tools are needed by an individual performing a war driving attack? (Choose all that apply.)
1. A stolen credit card number
2. A wireless-equipped computer or other device
3. A screwdriver
4. An automobile or other vehicle
5. A telephone
Which of the following types of attacks can be used to enable an intruder to access a wireless network despite the protection provided by MAC filtering?
1. Spoofing
2. Brute-force
3. DNS poisoning
4. War driving
Which of the following terms refers to a type of Denial-of-Service (DoS) attack that uses multiple computers to bombard a target server with traffic?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following terms refers to a type of Denial-of-Service (DoS) attack that bombards a target server with traffic that requires a large amount of processing?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following types of attacks are rarely seen anymore because of changes in device design that were specifically designed to prevent them? (Choose all that apply.)
1. VLAN hopping
2. Logic bomb
3. Phishing
4. Smurf
Which of the following terms refers to a Denial-of-Service (DoS) attack in which an attacker breaks into a company's datacenter and smashes its servers with a sledgehammer?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following terms refers to a Denial-of-Service (DoS) attack that involves zombies?
1. Amplified
2. Reflective
3. Distributed
4. Permanent
Which of the following types of attacks can cause a user's attempts to connect to an Internet website to be diverted to an attacker's website instead?
1. Evil twin
2. ARP poisoning
3. Spoofing
4. DNS poisoning
Which of the following functions can be interfered with by a DNS poisoning attack?
1. IP address resolution
2. Name resolution
3. Password protection
4. Network switching
In testing the new application he has designed, Ralph has discovered that it contains a weakness that could enable an attacker to gain full administrative access. Which of the following is another term for this weakness?
1. Exploit
2. Mitigation
3. Vulnerability
4. Honeypot
A senior IT administrator at your company was terminated two weeks ago. Today, Friday, you arrived at the office and found that all of the hosts in the web server farm had had their data deleted. There are no unauthorized entries to the datacenter recorded, but you suspect the terminated administrator is responsible for deleting the data. Which of the following attack types might the administrator have directed at the web server farm?
1. Social engineering
2. ARP poisoning
3. Evil twin
4. Logic bomb
Which of the following attack types can be facilitated by ARP poisoning? (Choose all that apply.)
1. Evil twin
2. On-path
3. Session hijacking
4. Social engineering
Which of the following statements best describes a type of replay attack?
1. An intruder reenters a resource previously compromised by another intruder.
2. An intruder retransmits captured authentication packets to gain access to a secured resource.
3. An intruder uses the same technique that provided access to other resources to penetrate a new resource.
4. An intruder accesses a resource that was accidentally left unsecured by an authorized user.
Ed receives an email through his personal account, warning him that his checking account has been locked due to excessive activity. To confirm that the activity is fraudulent, the email instructs Ed to click the enclosed hyperlink, log on to his account, and review the list of charges. Ed clicks the link and is taken to a web page that appears to be that of his bank. He then supplies his username and password to log on. Which of the following types of attacks is Ed likely to be experiencing?
1. Social engineering
2. Phishing
3. Logic bomb
4. Spoofing
Which of the following attack types are specifically directed at wireless networks? (Choose all that apply.)
1. Evil twin
2. Phishing
3. Deauthentication
4. War driving
Which of the following are not considered to be Denial-of-Service (DoS) attacks? (Choose all that apply.)
1. An intruder breaks into a company's datacenter and smashes their web servers with a sledgehammer.
2. An attacker uses the ping command with the -t parameter to send a continuous stream of large Internet Control Message Protocol (ICMP) packets to a specific server.
3. An attacker captures the packets transmitted to and from a domain controller to obtain encrypted passwords.
4. An attacker connects a rogue access point to a company's wireless network, using their Service Set Identifier (SSID) in the hope of attracting their users.
In the hacker subculture, which of the following statements best describes a zombie?
1. A computer that is remotely controllable because it has been infected by malware
2. A computer that is no longer functioning because it is the target of a Denial-of-Service (DoS) attack
3. A user that has fallen victim to a phishing attack
4. A program that attackers use to penetrate passwords using brute-force attacks
Which of the following statements best describes a ransomware attack?
1. A website is rendered inaccessible by a Denial-of-Service (DoS) attack until its owner agrees to pay a fee.
2. A user's access to a specific resource, such as a bank's website, is blocked until the user pays a fee.
3. A message appears on a user's screen, stating that system is locked and will only be released on payment of a fee.
4. An application is supplied with limited usability until the user pays a license fee.
Which of the following types of attacks requires no computer equipment?
1. Denial-of-Service
2. Social engineering
3. Brute-force
4. Dictionary
5. Phishing
Which of the following best describes a brute-force attack?
1. An attacker breaking down the door of a datacenter
2. An attacker cracking a password by trying thousands of guesses
3. An attacker using zombie computers to flood a server with traffic
4. An attacker deploying an unauthorized access point on a wireless network
An intruder has deployed a rogue access point on your company's wireless network and is using it to access traffic generated by users who have accidentally connected to it. Which of the following is the name for this type of attack?
1. Evil twin
2. War driving
3. Social networking
4. Spoofing
A person identifying herself as Trixie from IT telephones a user called Alice and tells her that there is a problem with her network user account that could cause all her data to be lost. To resolve the problem, Trixie says that she must log on using Alice's account and configure an important setting. All she needs to do this is Alice's account password. This call is, of course, an illicit attempt to learn Alice's password. Which of the following terms describes the type of attack that is currently occurring?
1. On-path
2. Spoofing
3. Social engineering
4. Evil twin
Regularly applying operating system updates and patches to network computers is an important mitigation procedure for which of the following security problems?
1. Denial-of-Service attacks
2. Malware
3. Social engineering
4. Port security
Which of the following is not a form of social engineering?
1. Piggybacking
2. Tailgating
3. Shoulder surfing
4. Evil twin
5. Phishing
Which of the following standards defines a framework for the authentication process, but does not specify the actual authentication mechanism?
1. WPA
2. EAP
3. TKIP
4. TLS
EAP and 802.1X are components that help to provide which of the following areas of wireless network security?
1. Authentication
2. Authorization
3. Encryption
4. Accounting
Which of the following Extended Authentication Protocol (EAP) variants utilize tunneling to provide security for the authentication process? (Choose all that apply.)
1. PEAP
2. EAP-FAST
3. EAP-TLS
4. EAP-PSK
A wireless network is configured to allow clients to authenticate only when the signal strength of their connections exceeds a specified level. Which of the following terms best describes this configuration?
1. Local authentication
2. Port security
3. Geofencing
4. Motion detection
Which of the following best describes a wireless network that uses geofencing as a security mechanism?
1. A wireless network that allows clients to authenticate only when the signal strength of their connections exceeds a specified level
2. A wireless network that requires users to log on to a wired system before they can authenticate on a wireless device
3. A wireless network that requires users to have an Active Directory account located within the local site
4. A wireless network that requires users to type in the local Service Set Identifier (SSID) before they can authenticate
Which of the following elements associates a public and private key pair to the identity of a specific person or computer?
1. Exploit
2. Signature
3. Certificate
4. Resource record
In addition to EAP-TLS, which of the following are also Extensible Authentication Protocol (EAP) variants that use the Transport Layer Security (TLS) protocol? (Choose all that apply.)
1. PEAP
2. EAP-PWD
3. EAP-MD5
4. EAP-FAST
Which of the following can be described as wireless network hardening techniques? (Choose all that apply.)
1. Encryption
2. Authentication
3. MAC filtering
4. Social engineering
5. Antenna placement
Despite having imposed password policies on his network, compelling users to change their passwords frequently, create passwords of a specific length, and use complex passwords, Ralph has had several reports of account penetrations. The victims of the incidents had all apparently shared a “tip” suggesting that users cycle through the names of their children, nephews, nieces, and other relatives when forced to create new passwords, changing letters to numbers as needed. Which of the following actions can Ralph take to remedy the situation without creating a larger problem?
1. Distribute a list of common passwords that are insecure, such as those based on names, birth dates, etc.
2. Modify the password policies to force users to change passwords more frequently
3. Assign the users long passwords consisting of random-generated characters and change them often
4. Change the password history policy to a value greater than the number of children in any user's family
Which of the following devices are likely to have default credentials configured into them that attackers might know? (Choose all that apply.)
1. Wireless access points
2. Windows servers
3. Switches
4. Routers
One of the basic principles of network device hardening is to use secure protocols. Which of the following suggestions comply with this principle? (Choose all that apply.)
1. Use SSH instead of Telnet.
2. Use WEP instead of WPA2.
3. Use TKIP instead of AES.
4. Use HTTPS instead of HTTP.
On which of the following types of devices should you consider disabling unused ports as a security precaution? (Choose all that apply.)
1. Hubs
2. Servers
3. Switches
4. Wireless Access Points
For which of the following reasons is disabling the Service Set Identifier (SSID) broadcast of a wireless network to prevent unauthorized access a relatively weak method of device hardening?
1. Attackers have ways of connecting to the network without the SSID.
2. Attackers can capture packets transmitted over the network and read the SSID from them.
3. Every access point's SSID is printed on a label on the back of the device.
4. Attackers have software that can easily guess a network's SSID
Which of the following cannot be considered to be a server hardening policy?
1. Disabling unnecessary services
2. Disabling unused TCP and UDP ports
3. Upgrading firmware
4. Creating privileged user accounts
Which of the following are valid reasons not to disable unused switch ports? (Choose all that apply.)
1. The datacenter is secured from unauthorized access.
2. The unused ports are not patched in to wall jacks.
3. The unused ports are left open to facilitate the on-boarding of new users.
4. The switch is configured to use a MAC-based access control list.
Which of the following Windows password policies includes a provision to prevent users from specifying common passwords?
1. Maximum password age
2. Enforce password history
3. Minimum password length
4. Passwords must meet complexity requirements
Which of the following is not a method for hardening a Wireless Access Point (WAP)?
1. Upgrading firmware
2. Changing default credentials
3. Generating new Pre-Shared Keys
4. Deauthentication
Creating a policy instructing users to avoid passwords that use commonly shared information, such as birth dates and the names of children and pets, is an example of which of the following?
1. Mitigation techniques
2. Multifactor authentication
3. Network hardening
4. Access control
Which of the following are the default administrative user accounts found in Windows and Linux operating systems? (Choose all that apply.)
1. Administrator
2. root
3. admin
4. Control
Which of the following are network segmentation methods that can prevent intruders from gaining full access to a network? (Choose all that apply.)
1. ACL
2. VLAN
3. NAC
4. DMZ
Which of the following types of mitigation techniques is not applicable to servers?
1. Role separation
2. Applying ACLs
3. File integrity monitoring
4. DHCP snooping
Which of the following services are provided by Access Control Lists (ACLs)?
1. Authentication
2. Authorization
3. Accounting
4. Auditing
Which of the following terms describes the threat mitigation technique of deploying individual applications and services on virtual servers so that no more than one is endangered at any one time, rather than deploying multiple applications on a single server?
1. Geofencing
2. Network segmentation
3. Role separation
4. VLAN hopping
Role separation is a threat mitigation technique that is applied to which of the following types of network components?
1. Switches
2. Servers
3. Routers
4. Wireless Access Points (WAPs)
A server's firewall is configured using a default policy that does not allow any users remote access to the server unless an administrator creates a rule granting them access. Which of the following terms describes this default policy?
1. Explicit allow
2. Explicit deny
3. Implicit allow
4. Implicit deny
Dynamic ARP Inspection (DAI) is a feature in some network switches that prevents on-path (man-in-the-middle) attacks facilitated by Address Resolution Protocol (ARP) poisoning, the deliberate insertion of fraudulent information into the ARP cache. A switch with DAI inspects incoming ARP packets and rejects those that contain incorrect pairs of IP and Media Access Control (MAC) addresses. Which of the following is the means by which the switch compiles a table of the correct ARP information for comparison with the incoming packets?
1. DHCP snooping
2. Secure SNMP
3. DNS name resolution
4. NDP
Which of the following statements about DHCP snooping is not true?
1. DHCP snooping detects rogue DHCP servers.
2. DHCP snooping is implemented in network switches.
3. DHCP snooping drops DHCP messages arriving over the incorrect port.
4. DHCP snooping prevents DNS cache poisoning.
At which layer of the Open Systems Interconnection (OSI) reference model does Dynamic Host Configuration Protocol (DHCP) snooping operate?
1. Data link
2. Network
3. Transport
4. Application
Which of the following types of attacks on a network switch can a flood guard help to prevent?
1. DNS poisoning
2. War driving
3. MAC flooding
4. Evil twin
Which of the following protocols is a root guard designed to affect?
1. EAP
2. STP
3. LDAP
4. ARP
Which of the following mitigation techniques helps organizations maintain compliance to standards such as HIPAA and FISMA?
1. File integrity monitoring
2. Role separation
3. Deauthentication
4. Tamper detection
5. Router Advertisement guard
Which of the following functions cannot be implemented using digital signatures?
1. Integrity
2. Nonrepudiation
3. Segmentation
4. Authentication
When Ralph digitally signs and encrypts a document with his private key, Alice can decrypt the document only by using Ralph's public key. As long as the private key is accepted to be secure, which of the following statements are true? (Choose all that apply.)
1. Ralph cannot deny having created the document.
2. No one has altered the document since Ralph sent it.
3. No one but Ralph can have created the document.
4. No one but Alice can decrypt and read the document.
When Alice encrypts a document with Ralph's public key, Ralph can decrypt the document only by using his private key. As long as the private key is accepted to be secure, which of the following statements are true? (Choose all that apply.)
1. Alice cannot deny having created the document.
2. No one has opened the document since Alice sent it.
3. No one but Alice can have created the document.
4. No one but Ralph can decrypt and read the document.
Which of the following types of patches is most typically applied to a hardware device?
1. Firmware updates
2. Driver updates
3. Feature changes
4. Vulnerability patches
Which of the following software releases is a fix designed to address one specific issue?
1. A patch
2. An update
3. An upgrade
4. A service pack
Unlike individual users, who usually have their operating system patches downloaded and installed automatically, corporate IT departments typically evaluate new patches before deploying them. Which of the following is not a common step in this evaluation process?
1. Testing
2. Researching
3. Rolling back
4. Backing up
Which of the following terms refers to the process of uninstalling a recently released patch to resume using the previous version?
1. Backslide
2. Downgrade
3. Reset
4. Rollback
How does Media Access Control (MAC) address filtering increase the security of a Wireless Local Area Network (WLAN)?
1. By preventing access points from broadcasting their presence
2. By allowing traffic sent to or from specific MAC addresses through the Internet firewall
3. By substituting registered MAC addresses for unregistered ones in network packets
4. By permitting only devices with specified MAC addresses to connect to an access point
5. By isolating specific wireless clients from the rest of the network
Which of the following is the best description of geofencing?
1. Something you have
2. Something you know
3. Something you do
4. Somewhere you are
MAC filtering is an access control method used by which of the following types of hardware devices?
1. Wireless Access Point
2. RADIUS server
3. Domain controller
4. Smartcards
Which of the following technologies utilize Access Control Lists (ACLs) to limit access to network resources? (Choose all that apply.)
1. NTFS
2. LDAP
3. WAP
4. Kerberos
Alice is a consultant working in your office, who has been given the Secure Set Identifier (SSID) and the passphrase for the company's main wireless network, but she is unable to connect with her laptop. Which of the following security measures might be preventing her from connecting?
1. MAC filtering
2. Disabling SSID broadcast
3. Geofencing
4. Using WPA2
5. Guest network isolation
On a wireless network, which of the following best describes an example of a captive portal?
1. A switch port used to connect to other switches
2. A web page with which a user must interact before being granted access to a wireless network
3. A series of two doors through which people must pass before they can enter a secured space
4. A web page stating that the user's computer has been locked and will only be unlocked after payment of a fee
A user attempting to connect to a WiFi hotspot in a coffee shop is taken to a web page that requires her to accept an End User License Agreement (EULA) before access to the network is granted. Which of the following is the term for such an arrangement?
1. Captive portal
2. Ransomware
3. Port security
4. Root guard
Which of the following is another term for a switching technique called port isolation?
1. Frame relay
2. Private VLAN
3. Site-to-site VPN
4. Screened subnet
The Internet of Things (IoT) encompasses a huge number of device types ranging from personal electronics to household appliances to medical equipment to industrial machinery. Many of these devices deal with sensitive information, and many perform critically important tasks. The field of IoT security is still in its infancy; there is no all-encompassing standard defining IoT protection protocols. IoT devices have vastly different security requirements and also vastly different functional capabilities, making it difficult to create a blanket protection mechanism for all of them. Which of the following are potentially viable methods for securing all IoT devices against attack? (Choose all that apply.)
1. Network segmentation
2. Network Access Control (NAC)
3. Security gateways
4. Firewalls
Which of the following statements about a switch's default VLAN are true? (Choose all that apply.)
1. Administrators must create a default VLAN when configuring a new switch.
2. The default VLAN on a switch cannot be deleted.
3. The default VLAN on most switches is designated as VLAN 0.
4. The default VLAN on a switch cannot be renamed.
Control plane policing (CPP or CoPP) is a feature on some routers and switches that limits the rate of traffic on the device's processor, to prevent Denial-of-Service (DoS) and reconnaissance attacks, using which of the following technologies?
1. IPSec
2. 802.1X
3. RA Guard
4. QoS
5. VLAN hopping
Which of the following technologies enables Virtual Private Network (VPN) clients to connect directly to each other, as well as to the VPN server at the home site?
1. VPN concentrator
2. DMVPN
3. SIP trunk
4. MPLS
5. Clientless VPN
Which of the following Virtual Private Network (VPN) protocols is generally considered to be obsolete?
1. IPSec
2. L2TP
3. PPTP
4. SSL/TLS
Which of the following Virtual Private Network (VPN) protocols does not provide encryption within the tunnel?
1. PPTP
2. IPSec
3. L2TP
4. SSL
Which of the following elements must be identical in both the client and server computers to establish a remote Wide Area Network (WAN) connection? (Choose all that apply.)
1. The WAN type
2. The data link layer protocol
3. The authentication method
4. The operating system
Which of the following is not a protocol that is typically used to secure communication between web servers and web browsers?
1. SSL
2. TLS
3. SSH
4. DTLS
Which of the following types of Virtual Private Network (VPN) connection is the best solution for allowing clients limited access to your corporate network?
1. Host-to-site
2. Site-to-site
3. Host-to-host
4. Extranet
Which of the following protocols is not used for remote control of computers?
1. RDP
2. TFTP
3. SSH
4. Telnet
Which of the following services is provided by the Remote Desktop Protocol (RDP)?
1. Thin client computing
2. Clientless virtual private networking
3. Encrypted tunneling
4. Unauthenticated file transfers
Which of the following types of Virtual Private Network (VPN) connection is the best solution for connecting a branch office to a corporate headquarters?
1. Host-to-site
2. Site-to-site
3. Host-to-host
4. Extranet
Ralph is a network administrator for a firm that is allowing employees to telecommute for the first time, and he is responsible for designing a remote access solution that will enable users to access network resources, such as company email and databases, securely. All of the remote users have been issued smartcards and will be connecting using Virtual Private Network (VPN) connections on company-supplied laptop computers running Windows 10 and equipped with card readers. The users will be logging on to the company network using their standard Active Directory Domain Services accounts, so it is important for Ralph to design a solution that provides the maximum protection for their passwords, both inside and outside the office. Which of the following authentication protocols should Ralph configure the remote access servers and the laptop computers to use?
1. Password Authentication Protocol (PAP)
2. Challenge Handshake Authentication Protocol (CHAP)
3. Extensible Authentication Protocol (EAP)
4. Microsoft Challenge Handshake Authentication Protocol (MSCHAPv2)
Which of the following remote access protocols provides users with full graphical control over a Windows computer? (Choose all that apply.)
1. SSH
2. RDP
3. VNC
4. Telnet
Ralph has come upon the term virtual desktop, and he is not exactly sure what it means. After performing some Internet searches, he finds multiple definitions. Which of the following is not one of the technologies that uses the term virtual desktop?
1. A three-dimensional realization of a computer display created using a virtual reality hardware device
2. A computer display with a virtual operating system desktop that is larger than can be displayed on a monitor
3. A cloud-based Windows 10 deployment that enables users to access their desktops using any remote device
4. A hardware device that projects a computer desktop on a screen, rather than displaying it on a monitor
Which of the following types of traffic are carried by the Remote Desktop Protocol (RDP)? (Choose all that apply.)
1. Keystrokes
2. Mouse movements
3. Display information
4. Application data
Which of the following types of traffic are transmitted by Virtual Network Computing (VNC)? (Choose all that apply.)
1. Keystrokes
2. Mouse movements
3. Display information
4. Application data
Which of the following types of traffic are carried by Telnet? (Choose all that apply.)
1. Keystrokes
2. Mouse movements
3. Display information
4. Application data
Which of the following describes the primary function of a Remote Desktop Gateway?
1. Provides multiple users with Remote Desktop client access to one workstation
2. Provides a single Remote Desktop client with simultaneous access to multiple workstations
3. Enables remote users outside the network to access network workstations
4. Enables remote users to access workstations without the need for a Remote Desktop client.
Which of the following statements about in-band management and out-of-band management are true? (Choose all that apply.)
1. Out-of-band management tools do not provide access to the remote system's BIOS or UEFI firmware.
2. Out-of-band management tools enable you to reinstall the operating system on a remote computer.
3. Telnet, Secure Shell (SSH), and Virtual Network Computing (VNC) are in-band management tools.
4. To perform out-of-band management on a device, it must have an IP address.
Which of the following statements best defines out-of-band management?
1. Out-of-band management is a method for accessing network devices from a remote location.
2. Out-of-band management is a method for accessing network devices using a direct cable connection.
3. Out-of-band management is a method for accessing network devices using a connection to the system other than the production network to which the device is connected.
4. Out-of-band management is a method for accessing network devices using any tool that operates over the production network to which the device is connected.
What four components are required for a computer to establish a remote Transmission Control Protocol/Internet Protocol (TCP/IP) connection?
1. Common protocols
2. Remote Access Service (RAS)
3. A physical layer connection
4. TCP/IP configuration
5. Point-to-Point Tunneling Protocol (PPTP)
6. Host and remote software
Which of the following statements explains why web browsing over a client-to-site Virtual Private Network (VPN) connection is usually so much slower than browsing locally?
1. The browser application is running on the VPN server.
2. The browser is using the remote network's Internet connection.
3. The VPN tunnel restricts the amount of bandwidth available.
4. VPN encryption is processor intensive.
In a site-to-site Virtual Private Network (VPN) connection, which of the following combinations of endpoint devices would most likely be involved?
1. Two workstations
2. A workstation and a server
3. A workstation and a VPN concentrator
4. Two VPN concentrators
In a client-to-site Virtual Private Network (VPN) connection, which of the following combinations of endpoint devices would most likely be involved?
1. Two workstations
2. A workstation and a server
3. A workstation and a VPN concentrator
4. Two VPN concentrators
Which of the following are the two most common types of Transport Layer Security/Secure Sockets Layer (TLS/SSL) Virtual Private Network (VPN) connections? (Choose all that apply.)
1. TLS/SSL client
2. TLS/SSL portal
3. TLS/SSL tunnel
4. TLS/SSL gateway
In a host-to-host Virtual Private Network (VPN) connection, which of the following combinations of endpoint devices would most likely be involved?
1. Two workstations
2. A workstation and a server
3. A workstation and a VPN concentrator
4. Two VPN concentrators
Many managed switches and routers include a console port for administrative access, to which you can connect a laptop and run a terminal program to access the device's interface. Which of the following is the best term for this type of access to the device?
1. Out-of-band
2. In-band
3. Client-to-site
4. BYOD
Which of the following statements about running a site-to-site Virtual Private Network (VPN) connection to join two distant Local Area Networks (LANs) together, rather than using a Wide Area Network (WAN) connection, are generally true? (Choose all that apply.)
1. The VPN is cheaper.
2. The VPN is slower.
3. The VPN is less secure.
4. The VPN is harder to maintain.
Which of the following are examples of out-of-band device management? (Choose all that apply.)
1. Logging on remotely from a network workstation
2. Plugging a laptop into a console port
3. Establishing a point-to-point modem connection
4. Connecting dedicated ports on each device to a separate switch
Which of the following is not an advantage of the Virtual Network Computing (VNC) terminal emulation product over its competitors?
1. VNC is free.
2. VNC runs on many operating systems.
3. VNC runs faster than the competition.
4. VNC can run through a web browser.
Which of the following was the first Transmission Control Protocol/Internet Protocol (TCP/IP) terminal emulation program?
1. Telnet
2. SSH
3. Windows Terminal Services
4. Virtual Network Computing
Which of the following techniques do Virtual Private Networks (VPNs) use to secure the data that they transmit over the Internet? (Choose all that apply.)
1. Tunneling
2. Socketing
3. Message integrity
4. Authentication
Virtual Private Networks (VPNs) use tunneling, which is the process of encapsulating a data packet within another packet for transmission over a network connection, typically using the Internet. The system encrypts the entire encapsulated data packet for protection. Split tunneling is a variation of this method that provides which of the following advantages? (Choose all that apply.)
1. Conservation of VPN bandwidth
2. Access to local network devices while connected to the VPN
3. Additional data integrity protection
4. Faster data transmission through multiplexing
SSH was created to be an improvement on the Telnet terminal emulation program. In which of the following ways is it an improvement?
1. SSH is faster than Telnet.
2. SSH provides graphical terminal emulation.
3. SSH encrypts passwords and data.
4. SSH is less expensive than Telnet.
Remote Desktop Protocol (RDP) was created for use with which of the following terminal emulation programs?
1. Windows Terminal Services
2. Virtual Network Computing (VNC)
3. Citrix WinFrame
4. Telnet
Your company has two users who want to telecommute from home. They do not have any hardware or software configured or installed. They need to transfer files to the corporate network over a secure link. Your company has a Virtual Private Network (VPN) concentrator that uses Layer 2 Tunneling Protocol (L2TP) and Internet Protocol Security (IPSec). The users want to implement the fastest available service. Both of the users’ homes are within 10,000 feet of a central office. Which of the following solutions address this scenario? (Choose all that apply.)
1. Each user should install a modem and VPN client software, and configure it to dial through a local Internet Service Provider (ISP) to connect to the company server using L2TP and IPSec.
2. Each user should establish a Digital Subscriber Line (DSL) connection by either ordering a new line or using the existing line. Each user then needs to install VPN client software and configure it to connect to the company server using L2TP and IPsec.
3. Each user should establish a cable television (CATV) connection with a local broadband ISP. Each user then needs to install VPN client software and configure it to connect to the company server using L2TP and IPSec.
4. Each user should install an Integrated Services Digital Network (ISDN) line in his or her house. Each user then needs to install VPN client software and configure it to dial through a local ISP to connect to the company server using L2TP and IPsec.
Which of the following is a PPP authentication protocol that enables users to authenticate using smartcards, badge readers, and fingerprint scanners, as well as usernames and passwords?
1. PPTP
2. PAP
3. CHAP
4. EAP
A laptop that is equipped with a fingerprint scanner that authenticates the user is using which of the following types of technology?
1. Pattern recognition
2. Hand geometry
3. Biometrics
4. Tamper detection
An IT department receives a shipment of 20 new computers, and Alice has been assigned the task of preparing them for deployment to end users. The first thing she does is affix a metal tag with a bar code on it to each computer. Which of the following terms best describes the function of this procedure?
1. Asset tracking
2. Tamper detection
3. Device hardening
4. Port security
Which of the following types of physical security is most likely to detect an insider threat?
1. Smartcards
2. Motion detection
3. Video surveillance
4. Biometrics
Which of the following physical security mechanisms can either “fail close” or “fail open”?
1. Motion detectors
2. Video cameras
3. Honeypots
4. Door locks
Smart lockers are storage devices that can provide users with access to supplies, deliveries, and other items using various security mechanisms. Which of the following are technologies that smart lockers can use to authenticate users and provide secure access to their contents?
1. NFC
2. RFID
3. Bluetooth
4. Biometrics
5. PIN
6. All of the above
Which of the following are common types of cameras used for video surveillance of secured network installations? (Choose all that apply.)
1. IP
2. LDAP
3. CCTV
4. NAC
Which of the following types of attack can best be prevented by implementing a program of employee education and training?
1. Social engineering
2. War driving
3. Logic bomb
4. Evil twin
Which of the following statements describes what it means when the automated lock on the door to a datacenter is configured to fail open?
1. The door remains in its current state in the event of an emergency.
2. The door locks in the event of an emergency.
3. The door unlocks in the event of an emergency.
4. The door continues to function using battery power in the event of an emergency.
A high security installation that requires entrants to submit to a retinal scan before the door unlocks is using which of the following types of technology?
1. Pattern recognition
2. Hand geometry
3. Biometrics
4. Tamper detection
Which of the following are means of preventing unauthorized individuals from entering a sensitive location, such as a datacenter? (Choose all that apply.)
1. Biometric scans
2. Identification badges
3. Key fobs
4. Motion detection
Which of the following security measures can monitor the specific activities of authorized individuals within sensitive areas?
1. Video surveillance
2. Identification badges
3. Key fobs
4. Motion detection
5. Locking cabinets
Which of the following physical security devices can use passive RFIDs to enable an authorized user to enter a secured area? (Choose all that apply.)
1. Key fob
2. Keycard lock
3. Proximity card
4. Cypher lock
5. Smart locker
Some key fobs used for authenticated entrance to a secured area have a keypad that requires the user to enter a PIN before the device is activated. Which of the following authentication factors is this device using? (Choose all that apply.)
1. Something you do
2. Something you have
3. Something you are
4. Something you know
Which of the following physical security devices can enable an authorized user to enter a secured area without any physical contact with the device? (Choose all that apply.)
1. Key fob
2. Keycard lock
3. Proximity card
4. Cypher lock
Video surveillance of sensitive areas, such as datacenters, can aid in the detection of which of the following types of attacks? (Choose all that apply.)
1. Social engineering
2. Evil twin
3. Brute-force
4. Insider threats
Which of the following statements is true when a biometric authentication procedure results in a false positive?
1. A user who should be authorized is denied access.
2. A user who should not be authorized is denied access.
3. A user who should be authorized is granted access.
4. A user who should not be authorized is granted access.
In the datacenter of a company involved with sensitive government data, all servers have crimped metal tags holding the cases closed. All of the hardware racks are locked in clear-fronted cabinets. All cable runs are installed in transparent conduits. These are all examples of which of the following physical security measures?
1. Tamper detection
2. Asset tracking
3. Geofencing
4. Port security
A secured government building that scans the faces of incoming people and compares them to a database of authorized entrants is using which of the following types of technology?
1. Pattern recognition
2. Hand geometry
3. Biometrics
4. Tamper detection
Which of the following is not a means of preventing physical security breaches to a network datacenter?
1. Badges
2. Locks
3. Key fobs
4. Tailgaters
Identification badges, key fobs, and access control vestibules all fall into which of the following categories of security devices?
1. Physical security
2. Data security
3. Asset tracking
4. Port security
Which of the following are not means of detecting intruders in a network datacenter? (Choose all that apply.)
1. Motion detection
2. Video surveillance
3. Biometrics
4. Smartcards
Which of the following statements describes what it means when the automated lock on the door to a datacenter is configured to fail closed?
1. The door remains in its current state in the event of an emergency.
2. The door locks in the event of an emergency.
3. The door unlocks in the event of an emergency.
4. The door continues to function using battery power in the event of an emergency.
After an incident in which your company's datacenter was penetrated by an intruder, the management has installed a double doorway at the entrance to the datacenter. The two doors have a small vestibule in between them, and one door must be closed before the other one can open. Which of the following terms describes this arrangement?
1. Server closet
2. Mantrap
3. Controlled entrance
4. Honeypot
Ralph's company has purchased new computers to replace some of the older workstations currently in use. Ralph has been assigned the task of preparing the old computers for disposal. They will be sold to a local secondhand dealer. For the dealer to accept the computers, they must have a functional operating system. Company policy also dictates that the computers be permanently wiped of all applications and data before disposal. Which of the following tasks will Ralph have to perform before the computers are sold? (Choose all that apply.)
1. Reinstall the operating system
2. Uninstall all applications
3. Delete all data files
4. Run a disk wipe utility
5. Perform a factory reset
Which of the following is not one of the functions provided by TACACS+?
1. Authentication
2. Authorization
3. Administration
4. Accounting

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.

Table of Contents for Chapter 4: Network Security

Create new playlist

Sign In

Sign Up

Table of Contents for
Chapter 4: Network Security