Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Networking

Review questions for final

advertisement 
Review Sheet
Final Exam
Computer Security, Spring 2011
Review questions for final
1. List some of the data in an IPv4 packet header which is relevant from a security standpoint.
2. What is Network Address Translation (NAT)? What is subnetting?
3. How does the Address Resolution Protocol translate IP addresses to MAC addresses? What
is ARP poisoning?
4. What is a SYN flood, and how can we defend against it?
5. From a security standpoint, how do routers, switches, and hubs differ?
6. What is a man-in-the-middle attack?
7. What is the simple security property in the Bell-Lapadula model? What is the *-property?
How do these work together to ensure data integrity? What is the ds-property?
8. How does the Biba Integrity model differ from the Bell-Lapadula? What are the 3 rules in
this system (analogous to the ones in the previous problem)?
9. What is the Clark-Wilson integrity model designed for (as opposed to the Biba and BellLapadula models)? What are the two main concepts in this model?
10. Describe the Chinese wall model, and give an example of where it might be used.
11. Why is C more vulnerable to buffer overflow attacks than python, perl, or other higher level
languages?
12. Describe how a stack overflow attack is executed.
13. How can computers defend against stack overflows? Give an example of a run-time defense
and a compile-time defense.
14. What is a heap overflow attack?
15. What is an injection attack?
16. Describe how cross site scripting works, and how programs can defend against it.
17. Name 3 things that hackers exploited in order to gain access to Paris Hilton’s cell phone.
1
Review Sheet
Final Exam
Computer Security, Spring 2011
18. What is pretexting?
19. What type of access control does Linux generally support, and what impact does this have
on security?
20. When securing a computer system, why do we limit how many applications are running?
21. What is the difference between TCP Wrappers and iptables?
22. What is chroot jail?
23. How are mandatory access controls implemented in Linux?
24. What is SELinux? What is the difference between it and Novell AppArmor?
25. Briefly describe the functions of the following components on a Windows machine: Security
reference monitor, local security authority, and security account manager
26. Give one reason local accounts can be better than domain accounts, and one reason why
domain accounts may be preferable to local accounts.
27. How is mandatory access control implemented in Windows?
28. What are the governing principles of hardening systems in Windows? How and why are these
different than the main principles in Linux system design?
29. How does windows prevent against buffer overflow attacks? What about heap overflow attacks?
30. What is a no execute bit, and how does it work?
31. What is stack randomization?
32. Name 3 categories of crime recognized by the international community.
33. Give two or three of the unique challenges facing law enforcement professionals when it comes
to cybercrime (as opposed to other types of criminal activity).
34. How did the FBI finally catch Kevin Mitnick?
35. What did the Digital Millennium Copyright Act do?
2
Review Sheet
Final Exam
Computer Security, Spring 2011
36. What is digital rights management?
37. Describe two or three of the main issues brought up by the lawsuit by Sony against Hotz, the
hacker who cracked the PS3.
38. What is computer forensics? What are the key elements used in computer forensics?
39. What is the main balance to find in auditing or logging of data? What are the 3 levels where
auditing is used?
40. What are the 3 options for storing log data, and the advantages and drawbacks of each?
41. What is an intrusion detection system? What are the main goals of any intrusion detection
system?
42. What are the two kinds of intrusion detection systems?
43. What is anomaly detection, and what is signature detection?
44. How do network intrusion detection systems work, and where do they monitor traffic?
45. What is the difference between an inline sensor and a passive sensor?
46. What is a honeypot?
3
Related documents
Demo - Štěpán Mičulka
Demo - Štěpán Mičulka
Final Exam - Topic Outline
Final Exam - Topic Outline
Unit 1: The Host Section
Unit 1: The Host Section
The Great Book Stack Challenge
The Great Book Stack Challenge
How to Deliver an IT Security Sales Presentation
How to Deliver an IT Security Sales Presentation
The Well (1 of 2)
The Well (1 of 2)
Bypass Report
Bypass Report
Overflow and Underflow:
Overflow and Underflow:
overflow flowing
overflow flowing
Secure Coding - UMBC Center for Information Security and Assurance
Secure Coding - UMBC Center for Information Security and Assurance
ppt
ppt
What Makes Geeks Tick? A Study of Stack Overflow Careers
What Makes Geeks Tick? A Study of Stack Overflow Careers
CTC 452: Network Security & Hacking Prevention
CTC 452: Network Security & Hacking Prevention
Overflow provision for box gutters
Overflow provision for box gutters
346696909-Essential-Copying-and-Pasting-From-Stack-Overflow
346696909-Essential-Copying-and-Pasting-From-Stack-Overflow
Stop Hacker Attacks at the OS Level
Stop Hacker Attacks at the OS Level
seminar
seminar
ppt - Applied Crypto Group at Stanford University
ppt - Applied Crypto Group at Stanford University
Hacking Windows CE
Hacking Windows CE
ch11
ch11
1 ICS 232 LABWORK#7 (Term 992) Objectives:
1 ICS 232 LABWORK#7 (Term 992) Objectives:
Lecture-5
Lecture-5
Download
advertisement