Your network is the lifeline of your organization. It allows your users to access the information they need to do their jobs correctly and efficiently – but does it do so securely? And, are you sure only your users are accessing it? Hone your knowledge of network attacks and security with this WhatIs-powered quiz.How to take the quiz:
- After reading the question, click on the answer that you think is correct to go to the WhatIs.com definition. If the answer you've chosen is correct, you will see the question text (or a paraphrase of it) somewhere in the definition.
- After reading the question, write down the letter of your answer choice on scrap paper. Check your answers by using the answer key at the end of the quiz, where you'll also find additional resources related to the correct answer.
1.) This is a standard for security that is located at the network or packet-processing layer
of network communications, as opposed to the application layer.
d. passive FTP
2.) When fending off an attack, this is a method of monitoring network
traffic that involves forwarding a copy of each incoming and outgoing packet
from one port of a network switch to another port where the packet can
a. port mirroring
b. emanation monitoring
c. network scanning
3.) This is a common type of denial-of-service attack that involves sending
more traffic to a network address than the temporary data storage area
is intended to hold, thereby shutting down the service and possibly corrupting
or overwriting valid data.
a. war dialing
b. buffer overflow
c. smurf attack
d. ping sweep
e. bucket brigade
4.) This is a computer host or small network inserted as a "neutral zone" between
a company's private network and the outside public network.
c. man in the middle
e. sheepdip computer
5.) This is one of the older and slower methods an intruder might use to scan a network to determine
which of a range of IP addresses map to live hosts.
b. brute force cracking
d. ping sweep
e. war driving
6.) This is a firewall facility that can monitor the state of active connections
and use this information to determine which network packets to allow through
a. ICMP sweep
b. dynamic packet filter
c. roving analysis port
d. logic bomb
e. static packet filter
8.) This is the transmission of data through a public network in such a way that
the routing nodes in the public network are unaware that the transmission
is part of a private network.
b. virtual private network
c. output feedback
e. promiscuous mode
9.) This occurs when a multitude of compromised systems attack a single targeted
system, thereby causing the target system to shut down.
a. denial of service
b. global spy network
c. cipher block chaining
d. distributed denial-of-service attack
e. social engineering
10.) This allows remote workers to have secure access to their organization's network while using a public telecommunication infrastructure, such as the Internet.
a. shoulder surfing
d. hot site
e. intrusion detection system
SCROLL DOWN FOR ANSWER KEY
1.) e. IPsec
Learn more about IPsec with our Featured Topic.
2.) a. port mirroring
For more information on port mirroring, visit our intrusion detection Best Web Links.
3.) b. buffer overflow
Learn more about buffer overflows in the Web Security Tip Defining and preventing buffer overflows.
4.) d. demilitarized zone
Do you need a DMZ? Find out in our Featured Topic.
5.) d. ping sweep
Learn more about ping sweep in our Ask the Expert Q&A Strange firewall log entries.
6.) b. dynamic packet filter
Learn more about firewalls with our WhatIs-powered quiz.
7.) e. honeypot
For more information, read the Executive Security Briefing Honeypots: Handle with care.
8.) a. tunneling
Learn more about VPNs and tunneling in this Q&A with Lisa Phifer.
9.) d. distributed denial-of-service attack
For more information on mitigating the threat of DDoS attacks, read the Security Policies Tip Preparing for DDoS attacks.
10.) c. VPN
Learn more about virtual private networks with this Featured Topic.
This was first published in October 2002