UGRD-IT6310 Network Security Questions and Answers 2023 with complete solution

UGRD-IT6310 Network Security Questions and Answers 2023 with complete solution Data Link Layer enables data transfer between two devices on the same network. True Based with SANS Technology Institute, it is the process of making preventative measures to keep the underlying networking infrastructure from any unauthorized access. Network Security Type of software that is often called as end-user programs. Application Software Refers to the information system which ensures that the information remains accurate. Integrity An attack where the hacker mimics another employee in the company. Impersonation It is an end-to-end layer used to deliver messages to a host Transport Layer An abbreviation that is consider as the brains of the computer. CPU It is designed to appear as a legit program to gain access to a network. Trojan Horse OSI Layer that is sometimes called HCI layer. Application Layer Any form of security incident that is properly handled can and eventually will turn into a bigger problem. False Which of the following is not a way on improving basic security. (Choose all that applies) a. Use easy to remember password b. Ignore Updates c. Reuse password d. Download software to any website available This attack tries to defeat an authentication mechanism by systematically entering each word in a dictionary as a password. Dictionary Attack It has an additional ability where they can modify security settings of a software. Spyware It's anything that can interrupt the operation, functioning, integrity, or availability of a network or system. Threat It is a security solution by organization to notice any malicious activity in a network. Network Detection This attack uses any password-cracking software to mathematically calculate every possible password. Brute-Force Attack Attack that send an email that contains attachment that loads malware onto your computer Phishing An act that exploits a weakness in a system. Attack Is any program that is harmful to a computer user. Malware A software that can detect malware. Antivirus Software An attack that allows any unauthorized users a way or passage to get inside a restricted area. Tailgating Which of these are not part of security model that is very popular to information security. Assurance it is the one managing the computer hardware resources in addition to applications and data. Operating System Adware is a type of malware that restricts user access to the computer either by encrypting files on the hard drive or locking down the system False It is the foundation for all security policies. Security Trinity Worm has the ability to replicate itself without a host program and spread independently while viruses rely on human activity to spread and damage a system or file. True Is the process of using social skills to encourage people to disclose their credentials Social Engineering This is a way of adding secondary layer of security to your account password. Two-factor authentication It serves as a proof and verifies that you are the person you say you are or what you claim to be. Authentication Layer that is responsible for establishing and maintaining connections. Session Layer This attack happens when the attacker or hacker sends too much information to the application causing it to overflow Buffer Overflow It is sometimes called TCP hijacking attack. Man-in-the-middle attack Information policy where the data should be access by an authorized person/s only. Confidentiality It is a combined set of components for collecting, storing and processing data and for providing information, facts and knowledge. Information System Combination of brute force and dictionary attack. Hybrid Attack A set of instructions and execute a specific task/s Software Which of these are not part of the reason why network security is important (Choose all that applies) a. To expose company assets b. To keep your job as network administrator c. To gain a competitive advantage d. To take advantage of competitors confidential information In implementing network security, company should invest more in preventing or avoiding any security breach over detecting and responding to any form of attack True It is the connection of two or more computer that share its resources Network It is a type of an injection attack that makes it possible to insert and execute malicious SQL statements SQL Injection It determines whether you are allowed to access a specific information or file. authorization Which of these are not part of the reason why we need to secure our network? To exploit vulnerabilities in the system An information that is only accessed by an authorized person. Confidential information Internet is an example of a network. True Areas of Security Trinity where they need to have a good security measures to avoid hackers from getting access to the network.