WGU Network-and-Security-Foundation - Network-and-Security-Foundation

Availabilityensures that systems, applications, and data remain accessible and operational for authorized users when needed. Organizations implement redundancy, failover mechanisms, and backup systems to maintain availability.

Integrityensures that data remains accurate and unchanged.

Confidentialityprotects sensitive data from unauthorized access.

Innovationis not a component of the CIA triad.

PIPEDArequires businesses in Canada to protectpersonal informationthrough security measures andproper disposal practices. This includessecure deletion of personal data when no longer neededto prevent unauthorized access.

Compensating individuals for data salesis not a legal requirement.

Notifying individuals of each data accessis unnecessary unless required by a breach.

Disclosing security softwareis not mandated by PIPEDA.

Having restoration policies in placeensures that in the event of data breaches, ransomware, or system failures, data can be quickly restored from secure backups. This minimizes downtime and data loss.

Using a variable network topologydoes not directly improve data security.

Changing passwords weeklymay lead to weaker security due to password fatigue.

WEPis obsolete and does not provide strong encryption for data protection.

Thepingcommand in Linux is used to check network connectivity to a specific hostname or IP address. It sends ICMP Echo Request packets and measures response times.

nslookupis used for DNS lookups, not connectivity testing.

ifconfigdisplays network interface configurations but does not test connectivity.

digis used for detailed DNS queries.

Human-centerednessin security design prioritizesuser experience and productivitywhile implementing security measures. It ensures that security policies are intuitive and do not excessively burden users, reducing resistance to security compliance.

Least common mechanismminimizes shared resources to enhance security.

Fail-safeensures secure defaults in case of system failure.

Zero-trust modelassumes no inherent trust in users or devices.

Anaccess point (AP)is a network device that extends the coverage of a wireless network by acting as a bridge between wired and wireless devices. It allows users to connect to a network without needing a direct wired connection. APs are particularly useful in large office spaces where Wi-Fi signals may not reach all areas.

Routersprimarily manage network traffic but do not directly extend network range unless they include built-in AP functionality.

Serversare used for hosting applications and storing data but do not extend network connectivity.

Switchesconnect wired devices within a local network but do not extend wireless network range.

Data modification attacksinvolve unauthorized changes to stored data, altering information to mislead, disrupt, or destroy integrity. Attackers may modify logs, transactions, or records for fraud or sabotage.

Launch pointis when a system is used to attack others.

Data exportis the theft of data.

Denial of availabilitymakes data inaccessible, but does not necessarily modify it.

Monitor mode scanningallows administrators to detect unauthorized or rogue access points broadcasting in the network. This technique, along withwireless intrusion detection systems (WIDS), helps identify and block unauthorized devices.

Requiring complex passwordsenhances security but does not prevent rogue APs.

Server-side validationsecures applications, not wireless networks.

Disallowing ICMP packetsis a security measure but does not address rogue APs.

Adictionary attackis a password-cracking method that systematically tries common words, phrases, and predictable passwords (e.g., "password123", "admin2024") to gain access to an account. Attackers often compile large lists of weak or reused passwords.

Phishingtricks users into revealing passwords but does not systematically test multiple words.

Credential stuffinguses breached passwords rather than guessing from a list.

Social engineeringmanipulates users but does not rely on automated password attempts.