2.3.2 Securing Networks Quiz

2.3.2 Securing Networks Quiz Answers

1. Which security measure is typically found both inside and outside a data center facility?

  • a gate
  • exit sensors
  • security traps
  • biometrics access
  • continuous video surveillance

Explanation: Continuous video surveillance is a security measure found both inside and outside a data center facility. A gate provides outside perimeter security. Security traps, biometrics access, and exit sensors provide inside perimeter security.

2. What is hyperjacking?

  • taking over a virtual machine hypervisor as part of a data center attack
  • overclocking the mesh network which connects the data center servers
  • adding outdated security software to a virtual machine to gain access to a data center server
  • using processors from multiple computers to increase data processing power

Explanation: Hyperjacking occurs when an attacker hijacks a virtual machine (VM) hypervisor and then uses that VM to launch an attack on other data center devices.

3. Which statement accurately characterizes the evolution of threats to network security?

  • Internal threats can cause even greater damage than external threats.
  • Internet architects planned for network security from the beginning.
  • Early Internet users often engaged in activities that would harm other users.
  • Threats have become less sophisticated while the technical knowledge needed by an attacker has grown.

Explanation: Internal threats can be intentional or accidental and cause greater damage than external threats because the internal user has direct access to the internal corporate network and corporate data.

4. When considering network security, what is the most valuable asset of an organization?

  • customers
  • data
  • financial resources
  • personnel

Explanation: Data, such as research and development data, sales data, financial data, human resource and legal data, employee data, contractor data, and customer data, is likely to be the most valuable asset for an organization.

5. Which resource is affected due to weak security settings for a device owned by the company, but housed in another location?

  • cloud storage device
  • hard copy
  • removable media
  • social networking

Explanation: Cloud storage is popular and has many benefits. However data stored there could be compromised due to weak security settings.

6. In the video that describes the anatomy of an attack, a threat actor was able to gain access through a network device, download data, and destroy it. Which flaw allowed the threat actor to do this?

  • open ports on the firewall
  • lack of a strong password policy
  • a flat network with no subnets or VLANs
  • improper physical security to gain access to the building

Explanation: The company had a flat network with no subnets. The threat actor was able to access and destroy all kinds of corporate data due to a thermostat that was on the network, but was not scanned as part of the security procedures.

7. Refer to the exhibit. An IT security manager is planning security updates on this particular network. Which type of network is displayed in the exhibit and is being considered for updates?

2.3.2 Securing Networks Quiz 1

  • CAN
  • WAN
  • SOHO
  • data center

Explanation: A distinguishing factor of campus area networks (CANs) are that they have interconnected LANs.

8. What are two security features commonly found in a WAN design? (Choose two.)

  • port security on all user-facing ports
  • VPNs used by mobile workers between sites
  • firewalls protecting the main and remote sites
  • WPA2 for data encryption of all data between sites
  • outside perimeter security including continuous video surveillance

Explanation: WANs span a wide area and commonly have connections from a main site to remote sites including a branch office, regional site, SOHO sites, and mobile workers. WANs typically connect over a public internet connection. Each site commonly has a firewall and VPNs used by remote workers between sites.

9. Which security technology is commonly used by a teleworker when accessing resources on the main corporate office network?

  • IPS
  • VPN
  • SecureX
  • biometric access

Explanation: VPNs are commonly used between corporate sites and between mobile or remote workers that connect to and use resources on the corporate network.

10. Which technology is used to secure, monitor, and manage mobile devices?

  • MDM
  • VPN
  • rootkit
  • ASA firewall4

Explanation: Mobile Device Management (MDM) is used to secure, monitor, and manage both corporate-owned and employee-owned devices such as smartphones, tablets, laptops, and desktops.

Notify of

Inline Feedbacks
View all comments