Fundamentals of Computer Systems

Questions and Answers

What is a primary advantage of mainframe computing?

Dependency on Internet

Cost Efficiency

Flexibility and Agility

Centralized data handling (correct)

Which of the following is a disadvantage of cloud computing?

Legacy System Integration

Cost Considerations

Performance and Scalability

Security and Privacy Concerns (correct)

Which benefit is typically associated with client-server computing?

Improved Reliability and Uptime (correct)

High Cost Management

Decentralized Data Control

Enhanced Latency and Proximity

What is a common concern with mainframe systems?

Hard to Manage

Which benefit of cloud computing aids in disaster recovery?

Business Continuity and Disaster Recovery

What is a downside of maintaining legacy systems?

Costly in Maintenance

Which of the following describes a characteristic of knowledge?

Justified, true belief that is seen as reliable

Which is a key concern regarding cloud computing?

Unexpected Cost Management

What is the primary importance of knowledge within an organization?

It sets the organization apart from others.

How do successful companies utilize knowledge?

By retaining and protecting it effectively.

What challenge do companies face regarding knowledge sharing?

Balancing knowledge dissemination with security.

Which statement best describes a Denial of Service (DoS) attack?

It makes multiple computer systems unavailable to users.

What is a key consequence of poor knowledge management in organizations?

Decreased competitiveness and effectiveness.

What differentiates the organizations that often succeed in their industries?

Their access to the best information.

Why is it crucial for companies to protect their knowledge?

To preserve their competitive advantage.

What does systematic acquisition of knowledge through scientific methods ensure?

Validation through observation and reasoning.

What is the primary goal of a logic attack?

To exploit software vulnerabilities to crash servers

Which of the following describes a flooding attack?

Generating a massive number of bogus requests to consume resources

What are Distributed Denial of Service (DDoS) attacks known for?

Involving multiple machines to perform the attack

What is a common method used in a SYN attack?

Exploiting the three-way handshake of TCP

What technique does a Smurf attack utilize?

Exploiting network broadcasting to amplify traffic

In a Ping Flooding Attack, the attacker mainly utilizes which type of packets?

ICMP packets

What is the result of a Bandwidth Reap attack?

Denial of service to legitimate users due to overloaded bandwidth

Which statement is true about a Buffer Overflow attack?

It involves manipulating data inputs to crash applications.

What is a primary method to handle the traffic from a suspicious source?

Employ black hole filtering

Which of the following is a concern when dealing with distributed computing?

Costs associated with data leakage

What is a limitation of tracing back packets to identify the source of an attack?

Source IP address may be spoofed

What role do traffic cleaning centers play in attack mitigation?

They direct only clean traffic to web servers

Which of the following would NOT be a recommended action after tracing back packets?

Assume the source is legitimate

What is the final step that the attacker does not complete in a SYN attack?

Sending the ACK acknowledgment

Which of the following describes a key feature of a SMURF attack?

It involves multiple machines acting as a proxy.

What type of packets does a FRAGGLE attack use?

UDP echo packets

What happens during a PING flooding attack?

A massive number of ICMP ping requests are sent to the target.

How does a UDP flooding attack affect the target machine?

It causes the machine to crash when enough packets are sent.

What is a common characteristic of all the attacks described?

They all aim to exhaust the target's resources.

What type of attack uses ICMP packets with a spoofed source IP?

SMURF Attack

Which of the following attacks is characterized by the interaction between three machines?

SMURF Attack

Study Notes

Computer Systems Overview

• Centralized computing emerged in the early 1960s with the use of mainframes.
• Distributed computing includes client-server architecture and cloud computing.

Mainframes

• Advantages:
  • Centralized data management.
  • Capable of handling large quantities of data.
• Disadvantages:
  • Large physical size affects management.
  • High costs associated with implementation and maintenance.

Client-Server Architecture

• Facilitates communication between multiple clients and a centralized server.

Cloud Computing

• Offerings typically include cost efficiency, flexibility, agility, and enhanced management capabilities.
• Security and business continuity are significant benefits.

Mainframes vs. Cloud Solutions

• Mainframes:
  • Known for reliability, superior uptime, performance, and extensive security features.
  • Support legacy systems and compliance with data sovereignty.
• Cloud Solutions:
  • Highly cost-effective and agile while managing maintenance.
  • Concerns include dependency on internet connectivity, unexpected costs, and security/privacy issues.

Knowledge in Organizations

• Knowledge is defined as justified, true belief assessed for reliability.
• It encompasses facts, skills, concepts, and theories validated through scientific methods.
• Acquiring knowledge is crucial for distinguishing successful organizations.

Knowledge Sharing Challenges

• Companies face difficulties in allowing secure sharing of knowledge.
• Need for creating comprehensive, secure systems for knowledge management to maintain competitive advantage.

Denial of Service (DoS) Attacks

• Defined as actions that render one or more computer systems unavailable for regular functions.
• Types of DoS Attacks:
  • Logic attacks exploit software vulnerabilities to crash servers.
  • Flooding attacks overwhelm systems with excessive requests.

DoS Attack Examples

• Logic Attack: "Ping of Death" sends a large packet to crash servers.
• Flooding Attack: Techniques include SYN flood, ICMP flood, and buffer overflow.

Common DoS Attack Methods

• Bandwidth Reap: Floods the network using many machines to block legitimate access.
• SYN Attack: Exploits TCP handshake to fill the connection table, denying access to legitimate users.
• SMURF Attack: Utilizes third-party servers to amplify responses to the victim machine.
• Fraggle Attack: Similar to SMURF but uses UDP echo packets.
• Ping Flooding Attack: Sends a massive number of ICMP ping requests, effective when the attacker's bandwidth is higher than the target.
• UDP Flooding Attack: Consumes target resources with high volumes of UDP packets, leading to potential crashes.

Mitigation Strategies for DoS Attacks

• Rate limiting on known attack traffic types.
• Black hole filtering to redirect harmful traffic away from networks.
• Utilization of vendor services for traffic cleaning to prioritize legitimate web traffic.

Distributed Computing Concerns

• Organizations must have comprehensive security plans to protect data in distributed computing environments.
• Key issues include risks of data leaks, accountability, fostering a security culture, and managing ongoing expenses.

Description

This quiz covers the fundamental concepts of computer systems, including centralized and distributed computing models. It will explore mainframes, client-server architectures, and cloud computing. Additionally, it addresses the advantages and disadvantages of these systems in the context of cybersecurity and digital forensics.