Storage Media Redundancy

Questions and Answers

What is the primary function of an Intrusion Detection System (IDS)?

• To automatically block malicious traffic from entering the network
• To monitor network traffic for signs of malicious activity (correct)
• To generate network reports without any alerts
• To prevent all forms of network traffic

Which type of deployment allows an Intrusion Prevention System (IPS) to directly influence network traffic?

• Out-of-band Deployment
• In-band Deployment (correct)
• Passive Deployment
• Active Deployment

What is a key risk associated with in-band deployments of an IPS?

• They can act as a single point of failure in the network. (correct)
• They require frequent manual updates.
• They have no ability to alert administrators.
• They are less effective in detecting anomalies.

What is a common example of malicious activity targeted by anomaly detection methods?

SQL Injections (B)

What is a disadvantage of an Intrusion Prevention System (IPS) according to its operational characteristics?

It can make significant errors while detecting threats. (A)

What is the primary purpose of Single Point of Failure (SPOF) analysis?

To identify and mitigate risks from single points of failure (D)

What does RAID technology primarily provide?

Protection against data loss through redundancy (D)

Which RAID level is characterized by synchronized identical disks?

RAID Level 1 (C)

In what scenario would a Single Point of Failure (SPOF) analysis be applied outside of IT infrastructure?

In HR management and vendor reliance (C)

What does 'High Availability' (HA) ensure in a system?

Redundant systems to protect against service failure (C)

Which RAID technology uses disc striping with parity?

Striping Mirroring (B)

How does reducing single points of failure benefit a business?

It enhances reliability and service continuity. (B)

What is the potential downside of addressing risks associated with SPOF?

Higher costs than the benefits gained (D)

What does NAT stand for in the context of IP addressing?

Network Address Translation (C)

Which of the following statements about IP addresses is true?

IP addresses can be duplicated if they are on private networks. (C)

What are the two parts that make up an IP address?

Network Address and Host Address (C)

Why do routers use NAT?

To allow multiple devices to use a single public IP address. (C)

What is sub-netting used for in IP addressing?

To divide domains for efficient traffic routing. (D)

How are end-user devices typically configured regarding their IP addresses?

With Dynamically-Changing IP Addresses. (C)

What analogy is used to describe IP addresses and network ports?

Street # of an Apartment and Unit # of an Apartment. (C)

Which binary value range can be represented by an 8-bit number?

0 to 255 (D)

What is the main reason for shifting from IPv4 to IPv6?

IPv4 is running out of available addresses. (B)

How many ports fall within the Well-known Ports range?

0 - 1,023 (A)

Which of the following statements is true regarding IPv4 addresses?

IPv4 addresses are 32 bits long. (B)

What is the purpose of Well-known Ports?

To ensure common services can be easily accessed. (B)

How many possible addresses are available with IPv6 compared to IPv4?

IPv6 provides approximately 340 undecillion addresses. (D)

What is a static IP address?

An IP address manually assigned and unique within its network. (B)

What kind of ports can application vendors register their applications to use?

Registered Ports (B)

What is the significance of the format used in IPv6 addresses?

It uses 8 groups of 4 hexadecimal numbers for compactness. (B)

What are the three types of authentication factors used in Multi Factor Authentication?

Something you know, Something you are, Something you own (B)

Which of the following best describes Personally Identifiable Information (PII)?

Any information that can be linked to a specific individual (A)

Why is it important to use strong, unique passwords?

They prevent unauthorized access to personal accounts (A)

What does Multi Factor Authentication combine?

Two or more different authentication methods (C)

What is a key characteristic of Protected Health Information (PHI)?

It is subject to regulations under HIPAA (C)

What is NOT considered part of Multi Factor Authentication?

Combining a password with security questions (C)

How can organizations protect the data they have collected?

By educating users on personal information protection (B)

What does Single Sign-On (SSO) allow users to do?

Share authenticated sessions across multiple sites (C)

Study Notes

Storage Media and Redundancy

• Redundancy provides protection against the failure of a single storage device.
• Redundant Array of Inexpensive Disks (RAID) offers various configurations to ensure data redundancy through additional disks.
• Single Point of Failure (SPOF) analysis identifies and mitigates risks of system vulnerabilities.
• Cost-benefit analysis helps determine if addressing SPOF risks is warranted.
• SPOF analysis applies beyond IT, including management practices and vendor reliance.

Continued Operation of Systems

• High Availability uses multiple systems to maintain service in case of failure.
• Internet Protocol (IP) Layer 4: The Transport Layer ensures reliable data transfer.

IP Addressing

• IP addresses consist of 8-bit binary numbers, allowing for 256 unique values (0 to 255).
• Duplicates are allowed in private networks; uniqueness is required for public IPs.
• Network Address and Host Address components define an IP address, where subnetting aids efficient routing.

IP Address Versioning

• IPv4 is nearing exhaustion; transition to IPv6 is underway.
• IPv6 employs 128-bit addresses, featuring 8 groups of 4 hexadecimal numbers for vastly expanded address space.

IP Address Assignment

• Static IPs require manual assignment and must be unique within a network.
• Dynamic IPs are assigned from an administrator-configured pool, allowing flexibility across devices.

Data Protection and User Education

• Strong, unique passwords enhance data security for organizations.
• Users need education on protecting their own personal information.
• Organizations must safeguard entrusted client data.

Multi-Factor Authentication

• Three authentication factors include something you know (passwords), something you are (biometric verification), and something you have (tokens).
• Multi-Factor Authentication enhances security by combining different factors.
• Passwords and security questions alone do not constitute multi-factor authentication.

Threat Identification and Prevention

• Intrusion Detection Systems (IDS) monitor network traffic for malicious activity and alert administrators.
• Common threats involve SQL Injections, malformed packets, unusual logins, and botnet traffic.
• Intrusion Prevention Systems (IPS) can actively block malicious traffic based on detection.

IPS Deployment Modes

• In-band deployments put IPS in the direct path of network traffic, with blocking capabilities but risk of becoming a single point of failure.
• Out-of-band deployments allow passive monitoring outside of direct traffic flow, reducing disruption risk but requiring action from administrators for threats.

Privacy Expectations and Regulations

• Reasonable expectation of privacy governs how data disclosures are regulated.
• Personally Identifiable Information (PII) and Protected Health Information (PHI) are two crucial types of private data requiring protection under laws like HIPAA.

Description

This quiz covers the concepts of storage media redundancy and the methods used to protect against the failure of a single component. It includes an overview of technologies such as RAID (Redundant Array of Inexpensive Disks) and discusses various forms of redundancy strategies. Test your understanding of these critical data protection techniques.