Browse Definitions :
Quiz

Quiz: Securing Your Network

How to take the quiz:
- After reading the question, click on the answer that you think is correct to go to the WhatIs.com definition. If the answer you've chosen is correct, you will see the question text (or a paraphrase of it) somewhere in the definition.
OR
- After reading the question, write down the letter of your answer choice on scrap paper. Check your answers by using the answer key at the end of the quiz, where you'll also find additional resources related to the correct answer.

1.) This is a standard for security that is located at the network or packet-processing layer of network communications, as opposed to the application layer.
a. SSL
b. TCP
c. S-HTTP
d. passive FTP
e. IPsec

2.) When fending off an attack, this is a method of monitoring network traffic that involves forwarding a copy of each incoming and outgoing packet from one port of a network switch to another port where the packet can be studied.
a. port mirroring
b. emanation monitoring
c. network scanning
d. footprinting
e. hijacking

3.) This is a common type of denial-of-service attack that involves sending more traffic to a network address than the temporary data storage area is intended to hold, thereby shutting down the service and possibly corrupting or overwriting valid data.
a. war dialing
b. buffer overflow
c. Smurf attack
d. ping sweep
e. bucket brigade

4.) This is a computer host or small network inserted as a "neutral zone" between a company's private network and the outside public network.
a. firewall
b. VPN
c. man in the middle
d. DMZ
e. sheepdip computer

5.) This is one of the older and slower methods an intruder might use to scan a network to determine which of a range of IP addresses map to live hosts.
a. smurfing
b. brute force cracking
c. phreaking
d. ping sweep
e. war driving

6.) This is a firewall facility that can monitor the state of active connections and use this information to determine which network packets to allow through the firewall.
a. ICMP sweep
b. dynamic packet filter
c. roving analysis port
d. logic bomb
e. static packet filter

7.) This is a computer system on the Internet that is expressly set up to attract and "trap" intruders.
a. exploit
b. demilitarized zone
c. Trojan horse
d. snoop server
e. honeypot

8.) This is the transmission of data through a public network in such a way that the routing nodes in the public network are unaware that the transmission is part of a private network.
a. tunneling
b. virtual private network
c. output feedback
d. chaffing
e. promiscuous mode

9.) This occurs when a multitude of compromised systems attack a single targeted system, thereby causing the target system to shut down.
a. denial of service
b. global spy network
c. cipher block chaining
d. distributed denial-of-service attack
e. social engineering

10.) This allows remote workers to have secure access to their organization's network while using a public telecommunication infrastructure, such as the Internet.
a. shoulder surfing
b. Wingate
c. VPN
d. hot site
e. intrusion detection system

SCROLL DOWN FOR ANSWER KEY

















See the rest of our quiz topics

Answers:

1.) e. IPsec
Learn more about IPsec with our Featured Topic .

2.) a. port mirroring
For more information on port mirroring, visit our intrusion detection Best Web Links .

3.) b. buffer overflow
Learn more about buffer overflows in the Web Security Tip Defining and preventing buffer overflows .

4.) d. demilitarized zone
Do you need a DMZ? Find out in our Featured Topic .

5.) d. ping sweep
Learn more about ping sweep in our Ask the Expert Q&A Strange firewall log entries .

6.) b. dynamic packet filter
Learn more about firewalls with our WhatIs-powered quiz .

7.) e. honeypot
For more information, read the Executive Security Briefing Honeypots: Handle with care .

8.) a. tunneling
Learn more about VPNs and tunneling in this Q&A with Lisa Phifer .

9.) d. distributed denial-of-service attack
For more information on mitigating the threat of DDoS attacks, read the Security Policies Tip Preparing for DDoS attacks .

10.) c. VPN
Learn more about virtual private networks with this Featured Topic .

This was last updated in July 2008
SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • private key

    A private key, also known as a secret key, is a variable in cryptography that is used with an algorithm to encrypt and decrypt ...

  • DOS (disk operating system)

    A DOS, or disk operating system, is an operating system that runs from a disk drive. The term can also refer to a particular ...

  • security token

    A security token is a physical or digital device that provides two-factor authentication for a user to prove their identity in a ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • What is RAID 6?

    RAID 6, also known as double-parity RAID, uses two parity stripes on each disk. It allows for two disk failures within the RAID ...

  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

Close