1. What is the primary goal of a secure network design?
A. To ensure high availability of network services
B. To protect network resources from unauthorized access
C. To provide fast network connections
D. To monitor network traffic efficiently
Answer: B) To protect network resources from unauthorized
access
Rationale: A secure network design focuses on ensuring that
unauthorized access to network resources is prevented while
maintaining confidentiality, integrity, and availability.
2. Which of the following types of attacks exploits vulnerabilities
in network protocols?
A. Phishing
B. Man-in-the-middle (MitM)
C. Denial of Service (DoS)
D. Cross-site scripting (XSS)
Answer: B) Man-in-the-middle (MitM)
Rationale: In a MitM attack, the attacker intercepts and
potentially alters communication between two parties, exploiting
vulnerabilities in network protocols.
,3. What is a common attack vector for exploiting network
vulnerabilities?
A. Phishing
B. Denial of Service (DoS)
C. Man-in-the-middle attacks
D. All of the above
Answer: D) All of the above
Rationale: Attackers can exploit various vectors like phishing,
DoS, and man-in-the-middle attacks to compromise network
security, making it essential to secure networks from all angles.
4. What does the term "zero trust" mean in network security?
A. Trusting all devices connected to the network
B. Trusting devices within a specific network segment
C. Never trusting any device or user, regardless of location
D. Allowing trusted users full access to network resources
Answer: C) Never trusting any device or user, regardless of
location
Rationale: The zero-trust model assumes that threats exist both
inside and outside the network, so no device or user is trusted by
default.
, 5. Which of the following is an example of a physical layer
security measure?
A. Encryption of network traffic
B. Use of secure tunneling protocols
C. Access control to data centers
D. Use of firewalls to monitor traffic
Answer: C) Access control to data centers
Rationale: Physical security measures, such as restricting access to
data centers, protect network infrastructure from physical
tampering or unauthorized access.
6. Which network design feature helps in isolating sensitive data
and systems from the rest of the network?
A. DMZ
B. VPN
C. VLAN
D. IDS
Answer: C) VLAN
Rationale: A VLAN is a logical segmentation of a network that
isolates sensitive data and systems, providing added security by
restricting access to only authorized users.
7. What is the role of encryption in securing a network?
A. To ensure high availability of network services
B. To protect network resources from unauthorized access
C. To provide fast network connections
D. To monitor network traffic efficiently
Answer: B) To protect network resources from unauthorized
access
Rationale: A secure network design focuses on ensuring that
unauthorized access to network resources is prevented while
maintaining confidentiality, integrity, and availability.
2. Which of the following types of attacks exploits vulnerabilities
in network protocols?
A. Phishing
B. Man-in-the-middle (MitM)
C. Denial of Service (DoS)
D. Cross-site scripting (XSS)
Answer: B) Man-in-the-middle (MitM)
Rationale: In a MitM attack, the attacker intercepts and
potentially alters communication between two parties, exploiting
vulnerabilities in network protocols.
,3. What is a common attack vector for exploiting network
vulnerabilities?
A. Phishing
B. Denial of Service (DoS)
C. Man-in-the-middle attacks
D. All of the above
Answer: D) All of the above
Rationale: Attackers can exploit various vectors like phishing,
DoS, and man-in-the-middle attacks to compromise network
security, making it essential to secure networks from all angles.
4. What does the term "zero trust" mean in network security?
A. Trusting all devices connected to the network
B. Trusting devices within a specific network segment
C. Never trusting any device or user, regardless of location
D. Allowing trusted users full access to network resources
Answer: C) Never trusting any device or user, regardless of
location
Rationale: The zero-trust model assumes that threats exist both
inside and outside the network, so no device or user is trusted by
default.
, 5. Which of the following is an example of a physical layer
security measure?
A. Encryption of network traffic
B. Use of secure tunneling protocols
C. Access control to data centers
D. Use of firewalls to monitor traffic
Answer: C) Access control to data centers
Rationale: Physical security measures, such as restricting access to
data centers, protect network infrastructure from physical
tampering or unauthorized access.
6. Which network design feature helps in isolating sensitive data
and systems from the rest of the network?
A. DMZ
B. VPN
C. VLAN
D. IDS
Answer: C) VLAN
Rationale: A VLAN is a logical segmentation of a network that
isolates sensitive data and systems, providing added security by
restricting access to only authorized users.
7. What is the role of encryption in securing a network?
