System Hardening and Zero Trust Architectures Quiz

Questions and Answers

What is Single Sign-On (SSO)?

• A method of authenticating users with certain sites that participate in an OpenID system
• A way to restrict access to sensitive PII and PHI
• An authentication process allowing users to access multiple systems with one set of credentials (correct)
• An action taken by DLP software when it detects a policy violation

What is the purpose of Data Loss Prevention (DLP) products?

• To provide a single account for all participating sites in an OpenID system
• To automate the discovery and classification of data types (correct)
• To encrypt financial records for added security
• To alert users about policy violations in the system

What is Personally Identifiable Information (PII)?

• Data used in the operation of a healthcare business
• Information shared with financial institutions
• Data that can be used to identify an individual directly or indirectly (correct)
• Data that describes biometrics and criminal history

What does Protected Health Information (PHI) include?

Information about past, present, or future health and related payments (A)

What is Personal Identifiable Financial Information (PIFI)?

Information about a consumer provided to a financial institution (C)

What is the main goal of system hardening?

Reduce the attack surface (B)

In a Zero Trust architecture, what is the approach to network access?

Access is continuously verified and authorized (D)

What distinguishes a private cloud from a public cloud?

Private cloud requires more upfront capital than public cloud (A)

Which deployment model is designed for public access and for users without the budget or resources to build their own cloud?

Public cloud (B)

How does Zero Trust differ from traditional security models?

Zero Trust grants access to all users on a trusted network (A)

Flashcards are hidden until you start studying