Network-and-Security-Foundation Network-and-Security-Foundation Question and Answers

Confidentialityensures that sensitive information is only accessible to authorized individuals.Role-Based Access Control (RBAC)enforces confidentiality by restricting access based on a user's role within an organization, ensuring that only authorized users can view or modify certain data.

Integrityensures data is not altered improperly.

Availabilityensures access to resources but does not manage permissions.

Consistencyis not a CIA triad component.

Data modification attacksinvolve unauthorized changes to stored data, altering information to mislead, disrupt, or destroy integrity. Attackers may modify logs, transactions, or records for fraud or sabotage.

Launch pointis when a system is used to attack others.

Data exportis the theft of data.

Denial of availabilitymakes data inaccessible, but does not necessarily modify it.

Enhancing physical resource securityensures that servers, networking devices, and data storage facilities are protected from unauthorized physical access, theft, or tampering. This includes measures like biometric authentication, surveillance, and restricted access zones.

Using a variable network topologydoes not directly protect data.

Increasing wireless access point rangemay improve connectivity but does not enhance security.

WEPis weak and should not be used for data protection.

Monitor mode scanningallows administrators to detect unauthorized or rogue access points broadcasting in the network. This technique, along withwireless intrusion detection systems (WIDS), helps identify and block unauthorized devices.

Requiring complex passwordsenhances security but does not prevent rogue APs.

Server-side validationsecures applications, not wireless networks.

Disallowing ICMP packetsis a security measure but does not address rogue APs.

ARing topologyis a network setup where each device is connected to two adjacent devices, forming a circular path for data transmission. This topology ensures that data travels in a single orbidirectional loop.

Point-to-pointtopology refers to a direct connection between two devices without forming a larger network structure.

Bus topologyhas all devices connected to a single central cable, rather than forming a ring.

Star topologyfeatures a central hub or switch that connects all devices, rather than direct device-to-device links.

Thedigcommand in Linux is used for DNS troubleshooting. It queries DNS records and provides detailed information about domain name resolutions.

traceroutetracks the path packets take to a destination but does not diagnose DNS.

netstatlists active connections, not DNS records.

ifconfigis used for managing network interfaces.

IP address spoofingis a cyberattack where an attacker disguises their system by falsifying its IP address, making it appear as a trusted device in a network. This technique is used for bypassing security controls, launching denial-of-service (DoS) attacks, or impersonating legitimate users.

Pharmingredirects users to fake websites to steal credentials.

Man-in-the-middle attackintercepts communications between two parties.

Session hijackingtakes over an active session but does not involve falsifying an IP address.

Pharmingis an attack that manipulates theDomain Name System (DNS)to redirect users to fraudulent websites without their knowledge. Attackers poison DNS records or compromise routers to reroute traffic to malicious sites designed to steal information.

Brute-force attackinvolves password guessing, not domain manipulation.

IP address spoofingdisguises a device’s identity but does not alter DNS records.

Session hijackingtakes over active user sessions but does not redirect websites.

AType 1 hypervisor(bare-metal hypervisor) runs directly on the hardware, providing better security and efficiency compared to Type 2 hypervisors. It reduces attack surfaces and optimizes resource utilization. Examples include VMware ESXi and Microsoft Hyper-V.

Type 2 hypervisorsrely on a host OS, making them less secure and efficient.

Open-source and proprietarydescribe licensing models, not hypervisor types.

A violation ofintegrityoccurs whendata is modified incorrectly, whether intentionally or by accident. In this case, anemployee modifying a customer account incorrectlydemonstrates a breach of data integrity.

A and Crelate toavailability, as they describe system downtime.

Drelates toconfidentiality, as it describes improper data protection.

AWireless Local Area Network (WLAN)enables wireless connectivity within a defined geographic area, such as a library, office, or coffee shop. WLANs use Wi-Fi technology to allow users to access the internet without physical cables.

Storage Area Networks (SANs)are used for data storage and do not provide internet connectivity to users.

Metropolitan Area Networks (MANs)cover larger areas, such as cities, and are not used within a single building.

Personal Area Networks (PANs)connect personal devices like smartphones and laptops over short distances, such as via Bluetooth, but do not support public internet access.

TheSession layer(Layer 5 of the OSI model) is responsible for establishing, maintaining, and terminating communication sessions between network applications. It ensures that data exchanges remain synchronized and structured.

Data link layerhandles error detection and frame transmission.

Physical layerdeals with hardware-level transmission.

Transport layerensures reliable data delivery but does not manage sessions.

Configuring switch port tracinghelps detect unauthorized devices, such as rogue access points, that are connected to the network. Network administrators can useport securityandintrusion detection systems (IDS)to monitor and block unauthorized access points.

Decreasing wireless rangemay limit exposure but does not actively detect rogue APs.

Disabling unnecessary servicesimproves security but does not prevent rogue APs.

Monitoring traffic patternshelps detect anomalies but does not directly stop rogue APs.

Platform as a Service (PaaS)provides a pre-configured computing environment that includes an operating system, runtime, and development tools, making it ideal for developers who want a ready-to-use platform. Examples include Google App Engine and Microsoft Azure App Services.

SaaSprovides fully hosted applications, not just pre-configured virtual machines.

IaaSprovides infrastructure without pre-installed software.

FaaSexecutes specific functions without persistent infrastructure.

Anaccess point (AP)is a network device that extends the coverage of a wireless network by acting as a bridge between wired and wireless devices. It allows users to connect to a network without needing a direct wired connection. APs are particularly useful in large office spaces where Wi-Fi signals may not reach all areas.

Routersprimarily manage network traffic but do not directly extend network range unless they include built-in AP functionality.

Serversare used for hosting applications and storing data but do not extend network connectivity.

Switchesconnect wired devices within a local network but do not extend wireless network range.