SBOLC Security Plus Study Guide with
Complete Solutions
2Fish - ANSWER-similar to AES
3DES - ANSWER-(old and slow x 3)
Acceptance - ANSWER-Cost of a countermeasure outweighs the loss due to a risk
AES - ANSWER-De facto standard
Asymmetric - ANSWER-DEER, has 2 keys
Authentication is the most critical step in the identification process. It is proving of a
subjects claim to identification. - ANSWER-
Authentication types - ANSWER-Something you know (password or PIN), Something
you have (smart card, token, or device), Something you are (fingerprints or retinal
pattern), Something you do (keystroke authentication), Somewhere you are (location)
Availability goal - ANSWER-continuous operation, available for use
Avoidance - ANSWER-Not performing an activity that could carry risk
Backdoor - ANSWER-Allows access to a system without having to authenticate
Block Cipher - ANSWER-found in software. Applied to block data (64 contiguous bits) at
once as a group. Very slow but more secure than Stream
Blowfish - ANSWER-(fastest, 64bit)
Bot - ANSWER-programs that run on automated tasks. Obeys a master or author of the
code
Botnet - ANSWER-collection of zombies- a network of compromised systems containing
malware which acts as a robot. Controlled by a master
Botnet attack - ANSWER-large number of computers under the control of a single evil
guy, who uses the botnets to ALL conduct a DoS attack at the same time. significant
effect on the target. Distributed DOS.
Captive Portal - ANSWER-Captures or redirects the users initial traffic because
something more is needed from the user, such as a credit card, or user name and
password.
, Cast - ANSWER-128/256
Centralized - ANSWER-PKI. Using centralized server, process can be managed with a
large single system. . large scale system is more vulnerable to attack
Cold Site - - ANSWER-dedicated space, but there is no actual infrastructure inside. This
could be something like an empty warehouse floor.
Cold site, warm site, hot site - ANSWER-used for when a primary site might go down
due to weather, emergencies, explosions, or whatever
Confidentiality goal - ANSWER-random ppl cant see your messages, only the intended
receiver
Configuration baselines - ANSWER-establishes mandatory settings that systems must
have in place to be accepted for use in the network.
Decentralized - ANSWER-WEB PGP/GPG. Allows process to be pushed out into
organization or environment.
Denial of Service (DOS) attack - ANSWER-system/service is unavailable for use
DES - ANSWER-(old and slow, 64 bit-56 effective)
Deterrence - ANSWER-Put something in place that will make it so the attacker will not
want to perform the malicious act because of the consequences.
Diffie Hellman - ANSWER-(only for key exchange)
Directory Services - ANSWER-naming system that stores , organizes, and provides
access to information in a directory
Distributed Denial of Service (DDoS) - multiple attackers prevents access to resources
for authorized users - ANSWER-
DNS attacks - ANSWER-Domain Name Service translates IP addresses and domain
names (such as Google.com). If you try to go to Google.com and someone has
attacked your DNS resolution, he could send you to his malicious site that looks exactly
like Google and steal your information that you put into the site
DOS - ANSWER-floods a server with requests of some type (could be pings, SYNs, etc)
which makes the server unavailable for its normal duties
Dynamic - ANSWER-pool of public IP addresses is shared by an entire private IP
subnet
Les avantages d'acheter des résumés chez Stuvia:
Qualité garantie par les avis des clients
Les clients de Stuvia ont évalués plus de 700 000 résumés. C'est comme ça que vous savez que vous achetez les meilleurs documents.
L’achat facile et rapide
Vous pouvez payer rapidement avec iDeal, carte de crédit ou Stuvia-crédit pour les résumés. Il n'y a pas d'adhésion nécessaire.
Focus sur l’essentiel
Vos camarades écrivent eux-mêmes les notes d’étude, c’est pourquoi les documents sont toujours fiables et à jour. Cela garantit que vous arrivez rapidement au coeur du matériel.
Foire aux questions
Qu'est-ce que j'obtiens en achetant ce document ?
Vous obtenez un PDF, disponible immédiatement après votre achat. Le document acheté est accessible à tout moment, n'importe où et indéfiniment via votre profil.
Garantie de remboursement : comment ça marche ?
Notre garantie de satisfaction garantit que vous trouverez toujours un document d'étude qui vous convient. Vous remplissez un formulaire et notre équipe du service client s'occupe du reste.
Auprès de qui est-ce que j'achète ce résumé ?
Stuvia est une place de marché. Alors, vous n'achetez donc pas ce document chez nous, mais auprès du vendeur CLOUND. Stuvia facilite les paiements au vendeur.
Est-ce que j'aurai un abonnement?
Non, vous n'achetez ce résumé que pour €10,42. Vous n'êtes lié à rien après votre achat.