What is the principle of least privilege?
Granting users and applications only the minimum permissions necessary to perform their tasks.
This principle helps to enhance security by limiting access rights.
Why is the principle of least privilege important?
It limits potential damage from malware, errors, or unauthorized access.
By restricting permissions, the risk of exploitation is minimized.
What is the Zero Trust security model?
A model that assumes no user, device, or application is trusted by default, even inside the network.
This approach enhances security by verifying every access request.
What is required in a Zero Trust environment?
Continuous authentication and authorization for every access request.
This ensures that trust is never assumed and must be verified constantly.
What is an Access Control List (ACL)?
A set of rules that allows or denies network traffic based on criteria like IP address, port, or protocol.
ACLs are essential for managing network security.
Where are ACLs commonly used?
- On routers
- On firewalls
- On systems to control access and network traffic
They play a crucial role in network security management.
What is Multifactor Authentication (MFA)?
A security method that requires two or more forms of identity verification.
MFA significantly enhances security by requiring multiple proofs of identity.
What are the categories of authentication factors in MFA?
- Something you know
- Something you have
- Something you are
- Somewhere you are
These categories help to strengthen the authentication process.
Why is MFA more secure than single-factor authentication?
It requires multiple independent proofs of identity, reducing the risk of unauthorized access.
This layered approach enhances overall security.
How does email authentication work as an MFA method?
A verification code or link is sent to a user’s email to confirm identity.
This method adds an additional layer of security.
Why is email-based authentication considered weaker MFA?
Because email accounts can be compromised and are often protected by the same credentials being verified.
This vulnerability can lead to security breaches.
What is token generation in MFA?
The use of apps or hardware devices to generate time-based or random authentication codes.
Token generation enhances security by providing unique codes for authentication.
What are examples of token generation tools?
- Mobile authenticator apps
- Physical hardware token devices
These tools are widely used for secure authentication.
How does SMS or phone call authentication work?
A one-time code is sent via text message or voice call to verify identity.
This method is commonly used for two-factor authentication.
What are the security risks of SMS-based authentication?
It is vulnerable to social engineering, SIM swapping, and message interception.
These risks can compromise the security of the authentication process.
What is Time-based One-Time Password (TOTP)?
A code generated using a shared secret and synchronized time that changes at regular intervals (e.g., every 30 seconds).
TOTP is a secure method for generating temporary passwords.
What is an example of an application that uses TOTP?
Authenticator apps like Google Authenticator or similar mobile apps.
These apps provide a convenient way to generate TOTP codes.
What is a One-Time Password (OTP)?
A code that can be used only once and then becomes invalid.
OTPs enhance security by preventing reuse of authentication codes.
How does OTP differ from TOTP?
OTP codes are single-use and not necessarily time-synchronized, while TOTP codes are time-based and periodically change.
This distinction affects how each type of password is generated and used.
Why are OTPs considered secure?
Because each code is valid only once, reducing the risk of reuse or interception.
This feature makes OTPs a reliable method for authentication.
-
1.1 Operating Systems Overview10
-
1.1 File Systems9
-
4.1 Document Types7
-
4.6 Incident Response6
-
4.6 Privacy, Licensing, and policies15
-
4.7 Professionalism6
-
4.7 Communication6
-
1.6 The Windows Control Panel18
-
1.6 Windows Settings11
-
1.10 Installing Applications16
-
1.11 cloud productivity tools14
-
Cybrary4
-
compTIA quizzes11
-
1.4 Task Manager17
-
1.4 The Microsoft Management Console15
-
1.4 Additional Windows Tools10
-
1.5 The Windows Network Command Line16
-
1.5 Windows Command Line Tools23
-
1.7 Windows Network Technologies10
-
1.7 Configuring Windows Firewall9
-
1.7 Windows IP Address Configuration6
-
1.7 Windows Network Connections9
-
4.9 Remote Access31
-
3.1 Troubleshoting Windows25
-
2.1 Physical Security15
-
2.1 Physical Access Security15
-
2.1 Logical Security20
-
2.1 Authentication and Access20
-
2.2 Defender Antivirus14
-
2.2 Windows Firewall15
-
2.2 Windows Security settings24
-
2.2 Active Directory20
