ISM 4220/3540 EXAM 3 QUESTIONS AND ANSWERS
Morris Worm - Answers - First cyberattack to cause physical damage, forcing
companies to disconnect from the internet.
Overloading a server - Answers - Overloading a server with traffic to disrupt its
availability is called a denial-of-service (DoS) attack.
CIA triad - Answers - Confidentiality, Integrity, and Availability, which are core principles
of information security.
Confidentiality - Answers - Refers to the protection of organizational data from
unauthorized
disclosure of customer and proprietary data
Integrity - Answers - The assurance that data have not been altered or destroyed
Availability - Answers - Providing continuous operation of the organization's hardware
and
software
NAT (Network Address Translation) - Answers - Works behind our IP address on the
internet, translating packets between public and private IPs. Packets are routed through
a router and pass through applications or firewalls installed on our computers for
security.
Transport Layer Security (TLS) - Answers - Main encryption protocol
Intrusion prevention Systems - Answers - To detect and stop intrusions
-Network-Based IPS
-Host-Based IPS
If it works, the attackers are already in your network. These systems simply monitor
network traffic to see what's happening. In the Target hack, the system flagged the
intrusion, but since it was a generic alert, they ignored it, thinking no action was needed.
Network-Based IPS - Answers - Uses sensors on key network circuits.
Host-Based IPS - Answers - Software installed on a specific host or server
Types of Malware - Answers - virus, worm, trojan, ransomware, spyware
Virus - Answers - -Attaches to files or programs and spreads when opened.
-Requires user action to activate.
, Worm - Answers - Self-replicates and spreads through networks without user action.
Trojan Horse - Answers - Disguises itself as legitimate software but performs malicious
actions once installed.
Ransomware - Answers - Locks or encrypts files and demands payment to restore
access.
Spyware - Answers - Secretly collects user data and sends it to attackers.
BlockChain - Answers - Definition: The technology behind cryptocurrencies like Bitcoin.
Structure: Consists of encrypted blocks of valid transactions linked together in a chain.
Integrity: Designed to prevent tampering; once a block is added, it's nearly impossible to
edit or alter.
Key Feature: Ensures security and trust in digital transactions.
Decentralized BlockChain - Answers - -Due to the fact it's decentralized, the ledger is
very secure, which makes it ideal for goods like
energy.
-Changed everything, been around for quite some time.
Symmetric Encryption (Better) - One Key - Answers - The same key is used for both
encryption and decryption.
Faster and simpler but less secure for sharing keys.
Example: Secure file storage.
Asymmetric Encryption - Two Keys - Answers - Uses two keys: one for encryption
(public key) and a different one for decryption (private key).
More secure for communication, as the private key is kept secret.
Example: Secure email communication.
Public Key - Answers - Encrypts the message (shared openly).
Private Key - Answers - Decrypts the message (kept secret).
Public Key Systems - Answers - Based on one-way functions (hashes)
Public Key Encryption - Answers - Simplifies key sharing since only the public key is
shared, eliminating the need to securely share private keys.
Both keys are generated together (via a large, random number)
Firewall - Answers - Commonly used to
secure an organization's Internet
connection
Morris Worm - Answers - First cyberattack to cause physical damage, forcing
companies to disconnect from the internet.
Overloading a server - Answers - Overloading a server with traffic to disrupt its
availability is called a denial-of-service (DoS) attack.
CIA triad - Answers - Confidentiality, Integrity, and Availability, which are core principles
of information security.
Confidentiality - Answers - Refers to the protection of organizational data from
unauthorized
disclosure of customer and proprietary data
Integrity - Answers - The assurance that data have not been altered or destroyed
Availability - Answers - Providing continuous operation of the organization's hardware
and
software
NAT (Network Address Translation) - Answers - Works behind our IP address on the
internet, translating packets between public and private IPs. Packets are routed through
a router and pass through applications or firewalls installed on our computers for
security.
Transport Layer Security (TLS) - Answers - Main encryption protocol
Intrusion prevention Systems - Answers - To detect and stop intrusions
-Network-Based IPS
-Host-Based IPS
If it works, the attackers are already in your network. These systems simply monitor
network traffic to see what's happening. In the Target hack, the system flagged the
intrusion, but since it was a generic alert, they ignored it, thinking no action was needed.
Network-Based IPS - Answers - Uses sensors on key network circuits.
Host-Based IPS - Answers - Software installed on a specific host or server
Types of Malware - Answers - virus, worm, trojan, ransomware, spyware
Virus - Answers - -Attaches to files or programs and spreads when opened.
-Requires user action to activate.
, Worm - Answers - Self-replicates and spreads through networks without user action.
Trojan Horse - Answers - Disguises itself as legitimate software but performs malicious
actions once installed.
Ransomware - Answers - Locks or encrypts files and demands payment to restore
access.
Spyware - Answers - Secretly collects user data and sends it to attackers.
BlockChain - Answers - Definition: The technology behind cryptocurrencies like Bitcoin.
Structure: Consists of encrypted blocks of valid transactions linked together in a chain.
Integrity: Designed to prevent tampering; once a block is added, it's nearly impossible to
edit or alter.
Key Feature: Ensures security and trust in digital transactions.
Decentralized BlockChain - Answers - -Due to the fact it's decentralized, the ledger is
very secure, which makes it ideal for goods like
energy.
-Changed everything, been around for quite some time.
Symmetric Encryption (Better) - One Key - Answers - The same key is used for both
encryption and decryption.
Faster and simpler but less secure for sharing keys.
Example: Secure file storage.
Asymmetric Encryption - Two Keys - Answers - Uses two keys: one for encryption
(public key) and a different one for decryption (private key).
More secure for communication, as the private key is kept secret.
Example: Secure email communication.
Public Key - Answers - Encrypts the message (shared openly).
Private Key - Answers - Decrypts the message (kept secret).
Public Key Systems - Answers - Based on one-way functions (hashes)
Public Key Encryption - Answers - Simplifies key sharing since only the public key is
shared, eliminating the need to securely share private keys.
Both keys are generated together (via a large, random number)
Firewall - Answers - Commonly used to
secure an organization's Internet
connection
