Pass the Checkpoint Other Certification 156-110 Questions and answers with ExamsMirror

Internal users try to gain unauthorized access to information assets outside the organizational perimeter.

External-intrusion attempts from sources outside the LAN are not granted permissions or rights to an organization's information assets.

External users attempt to access public resources.

External intruders attempt exploitation of vulnerabilities, to remove their own access.

Internal users perform inappropriate acts on assets to which they have been given rights or permissions.

DoS attacks do not require attackers to have any privileges on a target system.

DoS attacks are nearly impossible to stop, once they begin.

DoS attacks free the target system of excessive overhead.

DoS ties up a system with so many requests, system resources are consumed, and performance degrades.

DoS attacks cause the attacked system to accept legitimate access requests.

Using generic user names and passwords increases system security and reliability.

Using separate accounts for each user reduces resource consumption, particularly disk space.

By using individual login names and passwords, user actions can be traced.

If users do not have individual login names, processes can automatically run with root/administrator access.

A generic user name and password for users and security administrators provides anonymity, which prevents useful logging and auditing.

are required standards in health care and banking.

provide redundant systems and data backups.

control who is allowed to view and modify information.

are academic models not suitable for implementation.

set standards for acceptable media-storage devices.

Security Triad

Privilege aggregation

Need-to-know

Privilege escalation

Least privilege

uses smart cards, hardware tokens, and biometrics to authenticate users; also known as three-factor authentication

requires the use of one-time passwords, so users authenticate only once, with a given set of credentials

requires users to re-authenticate at each server and access control

stores user credentials locally, so that users need only authenticate the first time a local machine is used

allows users to authenticate once, and then uses tokens or other credentials to manage subsequent authentication attempts

Information systems

Shipping and receiving

Marketing

Requesting department

Chief Information Officer

Standard e-mail

Fax machine

Virtual private network

Bonded courier

Telephone

Network Intrusion Detection Systems

Social engineering

Dumpster diving

Property theft

Unauthorized access to a facility

ICMP traffic

Peak traffic

Fragmented packets

Insufficient bandwidth

Burst traffic