Computer Network Security Technologies

Questions and Answers

Which of the following is NOT a type of cloud-based technology safeguard?

Virtual Security Appliances

Saas

IaaS

PaaS (correct)

What is the primary purpose of Network Access Control (NAC)?

To encrypt data transmitted over a network.

To prevent unauthorized access to a network. (correct)

To create a secure virtual network over a public network.

To monitor network traffic for suspicious activity.

Which of the following is NOT a method for ensuring data integrity?

Encryption (correct)

Access Control

Data Validation Checks

Hashing

Data Consistency

Which of the following best describes the relationship between standards, guidelines, and procedures?

Procedures are more detailed than guidelines, and guidelines are more detailed than standards.

Which of the following is NOT a component of the AAA framework for confidentiality?

Availability

Which of the following is NOT a common network security measure?

Virtual Private Network (VPN)

Which of the following is a physical method of data transfer?

Sneaker Net

Which of the following security concepts is primarily concerned with preventing interruptions or data loss?

Availability

Programs and services that protect systems, databases, and servers are known as ______ safeguards.

software

A ______ is a secure virtual network that uses public networks and encryption to hide a user's IP address.

VPN

Software as a Service (SaaS) allows users to gain access to software and ______ that are stored in cloud servers.

databases

The ISO model is established by the International Organization for ______.

Standardization

The ______ framework includes authentication, authorization, and accounting principles.

AAA

To ensure data integrity, techniques such as hashing and data validating checks are employed, which fall under the concept of ______.

quality

Intrusion Detection Systems (IDS) and firewalls are key components of ______ security.

network

A ______ transfers data by using removable media to physically move it.

sneaker net

Study Notes

Software Safeguards

• Programs and services that protect systems, databases, and servers from unauthorized access and risks.

Hardware Technologies

• Installed within network facilities to enhance security and operational efficiency.

Network-Based Technologies

• VPN (Virtual Private Network): Secures data transmission over public networks using encryption, hides user IP addresses.
• NAC (Network Access Control): Implements checks before allowing devices to connect to a network.
• Wireless access point security involves authentication and encryption to protect data.

Cloud-Based Technology Safeguards

• SaaS (Software as a Service): Provides users access to software and databases hosted in cloud servers.
• IaaS (Infrastructure as a Service): Delivers virtualized computing resources like hardware and software over the cloud.
• Virtual Security Appliances: Operate in a virtual environment with packaged security solutions.

Employee Training and Policies

• Formal Training Programs: Security awareness initiatives linked to performance evaluations, including various formats such as training sessions and online courses.
• Policies and Procedures: Outline standards, guidelines, and detailed processes to ensure secure operations.
  • Standards maintain consistency.
  • Guidelines provide suggestions for efficiency and security.
  • Procedures include comprehensive, step-by-step instructions.

Confidentiality and Privacy

• AAA Model:
  • Authentication: Verifying user identity.
  • Authorization: Defining user access to resources.
  • Accounting: Tracking user activities.
• Confidentiality is considered an ethical practice, while privacy focuses on the appropriate use of data.

ISO Model

• Framework established by the International Organization for Standardization to manage information security and approach complex security tasks effectively.

Data Integrity

• Refers to the quality of data, emphasizing accuracy, consistency, and trustworthiness.
• Methods to ensure data integrity include hashing, validation checks, ensuring consistency, and controlled access.

Data Transmission Methods

• Sneaker Net: Refers to the physical transfer of data using removable media.
• Wired Networks: Use cables to transmit data securely.
• Wireless Networks: Utilize airwaves for data transmission, requiring robust security measures.

Availability

• Focuses on identifying and eliminating failure points to ensure reliability in network services.

Network Security Components

• IDS (Intrusion Detection System) and IPS (Intrusion Prevention System): Monitor and manage unauthorized access attempts.
• Firewall Appliances: Protect networks by controlling incoming and outgoing traffic.
• Key aspects of network security:
  • Risk assessment.
  • Security policy formulation.
  • Organization of information security.
  • Asset management and human resources security.
  • Physical and environmental security.
  • Operational management of communications.
  • Info system acquisition, development, and maintenance.
  • Access control measures and incident management.
  • Business continuity planning and compliance management.

Software Safeguards

• Software safeguards include programs and services designed to protect systems, databases, and servers from unauthorized access and vulnerabilities.

Hardware Technologies

• Hardware technology refers to systems physically installed within network facilities, providing essential protection and reliability.

Network-Based Technologies

• VPN (Virtual Private Network): Establishes a secure network connection over the public internet using encryption, effectively hiding the user's IP address.
• Network Access Control (NAC): Implements a set of checks to verify devices before granting access to a network.
• Wireless Access Point Security: Ensures secure connections through authentication and encryption protocols.

Cloud-Based Technology Safeguards

• SaaS (Software as a Service): Offers users access to software and databases stored in cloud servers, promoting flexibility and scalability.
• IaaS (Infrastructure as a Service): Provides virtualized computing resources including hardware, software, and servers in a cloud environment.
• Virtual Security Appliances: Operate in a virtual environment and come pre-packaged with necessary security systems.

Formal Training and Policies

• Training Programs: Essential for security awareness, tied to performance evaluations, and includes training sessions and online courses for employees.
• Policies and Procedures: Establish standards and guidelines for security practices.
  • Standards: Maintain consistency across the organization.
  • Guidelines: Provide suggestions for efficient and secure operations.
  • Procedures: Offer detailed, step-by-step instructions for processes.

Confidentiality and Data Practices

• AAA: Comprised of authentication (verifying user identity), authorization (defining resource access), and accounting (tracking user activity).
• Confidentiality: Ethical practice aimed at protecting personal and sensitive information.
• Privacy: Ensures appropriate use of data collected from users.

ISO Model

• Represents the International Organization for Standardization, providing a framework to guide information security management and tackle complex security tasks.

Data Integrity

• Ensures the accuracy, consistency, and trustworthiness of data. Mechanisms for maintaining integrity include:
  • Hashing
  • Data validating checks
  • Ensuring data consistency and access controls.

Methods of Data Transfer

• Sneaker Net: A method of physically moving data using removable media.
• Wired Network: Relies on cables to transmit data securely.
• Wireless Network: Utilizes airwaves for data transmission, susceptible to unique security risks.

Availability

• Focuses on detecting and eliminating points of failure in the network to provide reliable service continuity.

Network Facilities

• Include IDS (Intrusion Detection Systems) and IPS (Intrusion Prevention Systems) along with firewall appliances to safeguard the network.

Network Security Components

• Incorporates various aspects such as:
  • Risk assessment
  • Security policies
  • Organization of information security
  • Asset management
  • Human resources security
  • Physical and environmental security
  • Communications and operations management
  • Information system acquisition, development, and maintenance
  • Access control
  • Information security incident management
  • Business continuity management
  • Compliance with regulations.

Description

This quiz covers various software and hardware technologies used to protect computer networks, databases, and servers from unauthorized access. It includes topics such as VPN, NAC, authentication, and encryption.