2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
SANS - SEC 301 and CCNA Learning Set Test Bank
Exam 2026-2027\NEWEST VERSION A& B WITH
COMPLETE QUESTIONS AND CORRECT DETAILED
ANSWERS\BEST FOR MIDTERM AND FINAL EXAM
PREP\LATEST UPDATE 2026-2027
Everyone can do everything they need to do and nothing more. Bradley Manning
- WikiLeaks Target - HVAC hack
Principle of Least Privilege
The cornerstone of all security: Everyting done in security addresses one or
more of these three things
Confidentiality, Integrity, availability
Confidentiality - Only those who need to access something can; ties into
principle of least privilege
Integrity - data is edited correctly and by the right people. Failure ex.: Delta $5
tickets round trip tickets to anywhere Delta flies/attach on pricing database
Availability - If you cannot use it, why do you have it?
CIA Triad
/ 1/197
,2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The protection of data, networks and computing power. The protection of data
(information security) is the most important. The protection of networks is
important to prevent loss of server resources as well as to protect the network
from being used for illegal purposes. The protection of computing power is
relevant only to expensive machines such as large supercomputers.
computer security
A type of brute force method for uncovering passwords and decryption keys. It
sorts common words by frequency of use and starts with the most likely
possibilities; for example, names of people, sports teams, pets and cars. For
greater security, users should not use passwords that could be found in an
ordinary dictionary. While a dictionary attack can be done manually by an
individual, it is easily done via software and a database with millions of words.
dictionary attack
/ 2/197
,2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The protection of data against unauthorized access. Programs and data can be
secured by issuing passwords and digital certificates to authorized users.
However, passwords only validate that a correct number has been entered, not
that it is the actual person. Digital certificates and biometric techniques
(fingerprints, eyes, voice, etc.) provide a more secure method (see
authentication). After a user has been authenticated, sensitive data can be
encrypted to prevent eavesdropping (see cryptography).
Authorized Users Can Be the Most Dangerous
Although precautions can be taken to authenticate users, it is much more
difficult to determine if an authorized employee is doing something malicious.
Someone may have valid access to an account for updating, but determining
whether phony numbers are being entered requires a great deal more
processing. The bottom line is that effective security measures are always a
balance between technology and personnel management.
information security
/ 3/197
, 2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The primary method for keeping a computer secure from intruders. A firewall
allows or blocks traffic into and out of a private network or the user's
computer. Firewalls are widely used to give users secure access to the Internet
as well as to separate a company's public Web server from its internal network.
Firewalls are also used to keep internal network segments secure; for example,
the accounting network might be vulnerable to snooping from within the
enterprise.
In the home, a personal firewall typically comes with or is installed in the user's
computer (see Windows Firewall). Personal firewalls may also detect outbound
traffic to guard against spyware, which could be sending your surfing habits to a
Web site. They alert you when software makes an outbound request for the first
time (see spyware).
In the organization, a firewall can be a stand-alone machine (see firewall
appliance) or software in a router or server. It can be as simple as a single router
that filters out unwanted packets, or it may comprise a combination of routers
and servers each performing some type of firewall processing. For more about
the various firewall techniques, see firewall methods.
firewall
An assault against a computer system or network as a result of deliberate,
intelligent action; for example, denial of service attacks, penetration and
sabotage. See attacker, attack vector, brute force attack, dictionary attack,
denial of service attack, replay attack, piggybacking, penetration and
sabotage.
attack
/ 4/197
SANS - SEC 301 and CCNA Learning Set Test Bank
Exam 2026-2027\NEWEST VERSION A& B WITH
COMPLETE QUESTIONS AND CORRECT DETAILED
ANSWERS\BEST FOR MIDTERM AND FINAL EXAM
PREP\LATEST UPDATE 2026-2027
Everyone can do everything they need to do and nothing more. Bradley Manning
- WikiLeaks Target - HVAC hack
Principle of Least Privilege
The cornerstone of all security: Everyting done in security addresses one or
more of these three things
Confidentiality, Integrity, availability
Confidentiality - Only those who need to access something can; ties into
principle of least privilege
Integrity - data is edited correctly and by the right people. Failure ex.: Delta $5
tickets round trip tickets to anywhere Delta flies/attach on pricing database
Availability - If you cannot use it, why do you have it?
CIA Triad
/ 1/197
,2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The protection of data, networks and computing power. The protection of data
(information security) is the most important. The protection of networks is
important to prevent loss of server resources as well as to protect the network
from being used for illegal purposes. The protection of computing power is
relevant only to expensive machines such as large supercomputers.
computer security
A type of brute force method for uncovering passwords and decryption keys. It
sorts common words by frequency of use and starts with the most likely
possibilities; for example, names of people, sports teams, pets and cars. For
greater security, users should not use passwords that could be found in an
ordinary dictionary. While a dictionary attack can be done manually by an
individual, it is easily done via software and a database with millions of words.
dictionary attack
/ 2/197
,2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The protection of data against unauthorized access. Programs and data can be
secured by issuing passwords and digital certificates to authorized users.
However, passwords only validate that a correct number has been entered, not
that it is the actual person. Digital certificates and biometric techniques
(fingerprints, eyes, voice, etc.) provide a more secure method (see
authentication). After a user has been authenticated, sensitive data can be
encrypted to prevent eavesdropping (see cryptography).
Authorized Users Can Be the Most Dangerous
Although precautions can be taken to authenticate users, it is much more
difficult to determine if an authorized employee is doing something malicious.
Someone may have valid access to an account for updating, but determining
whether phony numbers are being entered requires a great deal more
processing. The bottom line is that effective security measures are always a
balance between technology and personnel management.
information security
/ 3/197
, 2/14/26, 9:09 AM SANS - SEC 301 and CCNA Learning Set
The primary method for keeping a computer secure from intruders. A firewall
allows or blocks traffic into and out of a private network or the user's
computer. Firewalls are widely used to give users secure access to the Internet
as well as to separate a company's public Web server from its internal network.
Firewalls are also used to keep internal network segments secure; for example,
the accounting network might be vulnerable to snooping from within the
enterprise.
In the home, a personal firewall typically comes with or is installed in the user's
computer (see Windows Firewall). Personal firewalls may also detect outbound
traffic to guard against spyware, which could be sending your surfing habits to a
Web site. They alert you when software makes an outbound request for the first
time (see spyware).
In the organization, a firewall can be a stand-alone machine (see firewall
appliance) or software in a router or server. It can be as simple as a single router
that filters out unwanted packets, or it may comprise a combination of routers
and servers each performing some type of firewall processing. For more about
the various firewall techniques, see firewall methods.
firewall
An assault against a computer system or network as a result of deliberate,
intelligent action; for example, denial of service attacks, penetration and
sabotage. See attacker, attack vector, brute force attack, dictionary attack,
denial of service attack, replay attack, piggybacking, penetration and
sabotage.
attack
/ 4/197
