Data Security Fundamentals

Questions and Answers

What is the purpose of trend analysis?

To monitor surveillance footage

To identify patterns or trends over time (correct)

To provide instructions to users

To reverse the impact of an incident

Which term describes systems that monitor and record activities using cameras?

Corrective Controls

Motion Detection Systems

Video Surveillance Systems (correct)

Compensating Controls

What are corrective controls intended to do?

Prevent incidents before they occur

Reverse the impact of an incident after it occurs (correct)

Provide instructions for users

Maintain security in real-time

What is the function of Security Information and Event Management (SIEM) systems?

Collect and analyze data from multiple sources

What does ‘something you have’ refer to in authentication methods?

Smart card or token

What does accounting in the context of security imply?

Tracking user activity and recording it in logs

Which of the following best defines authorization?

Granting access based on proven identity

What is the primary function of encryption in data protection?

To ensure data is only viewable by authorized users

What does metadata typically include?

Information about data, like email headers

Which method is commonly used to ensure the integrity of data?

Hashing

What does scalability refer to in system design?

The potential for a system to handle increased workloads

What is the purpose of password managers?

Store and simplify credential use for users

What does the acronym FAR stand for in authentication?

False Acceptance Rate

Which of the following best describes fault tolerance?

Methods that remove single points of failure

What does Dual-factor authentication utilize?

Two factors of authentication

What is the primary goal of risk mitigation in cybersecurity?

To reduce the chances of a threat exploiting a vulnerability

Which component is critical for maintaining high availability of systems?

Fault tolerance methods

What is a key characteristic of Privileged Access Management (PAM)?

Implements stringent security controls over elevated privileges

What is the primary purpose of Single Sign-On (SSO)?

To allow access to multiple resources without re-authenticating

How does cloud resource elasticity benefit organizations?

By allowing dynamic adjustments based on workload

What does the term 'vulnerability' refer to in a cybersecurity context?

A weakness in hardware or software systems

What does SAML stand for in the context of authentication?

Security Assertion Markup Language

What is the primary advantage of implementing account audit practices?

Review rights and permissions to enforce least privilege

What is the correct definition of TOTP?

Temporary One-time Password with expiration

What does an Initialization Vector (IV) primarily aid in with regard to data encryption?

It acts as an arbitrary number used with a secret key.

Which type of attack involves attempting to discover an Initialization Vector to access a passphrase?

Initialization Vector (IV) attack

Which of the following attacks utilizes an NFC reader to extract data from mobile devices?

Near Field Communication (NFC) attack

What type of VPN provides secure connections between different networks?

Site-to-site VPN

Which of the following encapsulates traffic to provide confidentiality, integrity, and authentication in a VPN?

Encapsulating Security Payload (ESP)

Which of the following best describes the function of a Faraday cage?

It blocks wireless signals and attacks.

What does Split Tunnel mode in a VPN primarily do?

Only encrypts traffic meant for the VPN's private network.

Which type of IPsec mode encrypts only the payload and is often used in private networks?

IPsec Transport mode

What is the primary function of a Persistent NAC agent?

It remains installed on the client system permanently.

Which authentication protocol is known for using cleartext passwords?

PAP

How does an Agentless NAC system function?

It scans systems remotely without requiring agent installation.

Which of the following is NOT a feature of TACACS+?

Relies on UDP for data transmission.

What distinguishes EAP from other authentication protocols?

Can encrypt entire sessions and compatible with RADIUS.

Study Notes

Data Security Principles

• Confidentiality: Ensures data is accessed only by authorized users.
• Encryption: Effective method for maintaining data confidentiality.
• Access Controls: Mechanisms that enforce confidentiality by limiting who can view data.
• Integrity: Guarantees that data remains unaltered and untampered.
• Hashing: A technique commonly used for maintaining data integrity.

Availability and Scalability

• Availability: Ensures that data and services are consistently accessible when needed.
• Fault Tolerance: Strategies implemented to enhance availability by eliminating single points of failure.
• Redundancies: Often added components that support high availability.
• Scalability: The system's ability to manage increased demands by adding resources (scale up) or nodes (scale out).
• Elasticity: Dynamic resource adjustment based on workload, typical in cloud environments.

Risk Management

• Security Controls: Limit risks by decreasing the likelihood of threats exploiting vulnerabilities.
• Risk: The potential of a threat compromising data’s confidentiality, integrity, or availability.
• Vulnerability: A weakness in technology or operations that may be exploited by threats.
• Risk Mitigation: Strategies designed to lower the chances of risk materializing.

Security Monitoring and Controls

• Trend Analysis: Long-term examination of data to identify trends or patterns.
• Video Surveillance Systems & Motion Detection Systems: Technologies for monitoring physical spaces.
• Corrective Controls: Actions taken to reverse the effects of security incidents.
• Compensating Controls: Alternative measures when primary controls can't be applied.

Authentication Mechanisms

• Authentication: Proving identity through recognized credentials.
• Identification: The initial claim of identity, using usernames or biometrics.
• Authorization: Granting access based on verified identity.
• Accounting: Monitoring and logging user activity.

Authentication Factors

• Knowledge: Typical credentials such as usernames and passwords.
• Possession: Physical entities like smart cards or tokens.
• Inherence: Biometrics including fingerprints or facial recognition.
• Location Factor: Geographical controls on access, like home or office.

Access Control Techniques

• Single Sign-On (SSO): Allows multiple resource access without re-authenticating.
• Role-based Access Control: Access based on the user's designated roles.
• Shared Accounts: Impede effective identification and accountability.

Networking and Security Protocols

• Virtual Private Network (VPN): Secures private data transmission over public networks.
• IPsec: Widely used protocol suite for secure VPN connections.
• Full Tunnel vs. Split Tunnel: Full tunnel encrypts all traffic; split tunnel encrypts select traffic.

Network Access Control (NAC)

• NAC: Inspects and enforces security health compliance of connecting devices.
• Agent Types: Includes persistent agents remaining on clients and dissolvable agents that are temporary.
• Remote Access Authentication: Secures connections from outside networks, utilizing protocols like RADIUS and TACACS+.

Wireless Security Threats

• NFC Attacks: Use NFC readers to access mobile device data.
• Bluetooth Security Threats: Include bluejacking and bluesnarfing, which breach Bluetooth security.
• WPA2 and WPA3: Wireless security protocols resilient against replay attacks.

Error Rates in Authentication

• False Acceptance Rate (FAR): Frequency of unauthorized access granted.
• False Rejection Rate (FRR): Rate of legitimate access denied by the system.
• Crossover Error Rate (CER): Point where FAR and FRR are equal, indicating system effectiveness.

Description

This quiz covers essential concepts of data security including confidentiality, encryption, access controls, integrity, hashing, and availability. Test your understanding of how these elements work together to protect information. Perfect for students and professionals interested in cybersecurity.