WGU Network-and-Security-Foundation Dumps

Pharmingis an attack that manipulates theDomain Name System (DNS)to redirect users to fraudulent websites without their knowledge. Attackers poison DNS records or compromise routers to reroute traffic to malicious sites designed to steal information.

Brute-force attackinvolves password guessing, not domain manipulation.

IP address spoofingdisguises a device’s identity but does not alter DNS records.

Session hijackingtakes over active user sessions but does not redirect websites.

Integrityin theCIA (Confidentiality, Integrity, Availability) triadensures that data is not altered in an unauthorized manner. In networking, integrity mechanisms such as checksums, message authentication codes (MACs), and digital signatures verify that transmitted data has not been tampered with. If an IP packet has an invalid checksum, the system detects corruption and requests retransmission, ensuring data integrity.

Confidentialityprotects against unauthorized access but does not ensure data consistency.

Availabilityensures that resources are accessible but does not verify data correctness.

Consistencyis not a formal component of the CIA triad.

Confidentialityin IT security ensures that sensitive data remains private and protected from unauthorized access. Encryption is a key measure used to maintain confidentiality by encoding data so that only authorized users can access it.

Integrityensures that data remains accurate and unchanged.

Availabilityensures that data is accessible when needed.

Consistencyis not a component of the CIA triad.

Enhancing physical resource securityensures that servers, networking devices, and data storage facilities are protected from unauthorized physical access, theft, or tampering. This includes measures like biometric authentication, surveillance, and restricted access zones.

Using a variable network topologydoes not directly protect data.

Increasing wireless access point rangemay improve connectivity but does not enhance security.

WEPis weak and should not be used for data protection.

AType 1 hypervisor(bare-metal hypervisor) runs directly on the hardware, providing better security and efficiency compared to Type 2 hypervisors. It reduces attack surfaces and optimizes resource utilization. Examples include VMware ESXi and Microsoft Hyper-V.

Type 2 hypervisorsrely on a host OS, making them less secure and efficient.

Open-source and proprietarydescribe licensing models, not hypervisor types.

Infrastructure as a Service (IaaS)provides virtualized computing resources, including virtual machines, storage, and networking, while allowing users full control over operating systems and applications. Examples include AWS EC2 and Google Compute Engine.

SaaSprovides ready-to-use applications (e.g., Google Docs).

FaaSruns code in response to events (e.g., AWS Lambda).

PaaSprovides development environments but not full infrastructure control.

Authorizationis the process of granting specific access rights and permissions based on user roles. By implementingRole-Based Access Control (RBAC), organizations ensure that users only have access to resources necessary for their job functions, reducing the risk of insider threats.

Authenticationverifies identity but does not control access.

Accountinglogs activities but does not restrict access.

Availabilityensures system uptime but is unrelated to permissions.

Data encryptionprotects sensitive information by encoding it into an unreadable format, ensuring that even if attackers intercept the data, they cannot decipher it without the proper decryption key. This is crucial forprotecting stored and transmitted data.

RBACcontrols user access but does not secure data in transit.

2FAstrengthens authentication but does not secure stored or transmitted data.

Patch managementfixes software vulnerabilities but does not directly protect intercepted data.

Awireless routeris designed to create an access point that allows wireless devices to connect to a network. It combines the functions of a traditional router with a wireless access point, enabling communication between wired and wireless devices. These routers use Wi-Fi standards (e.g., 802.11ac, 802.11ax) to transmit data wirelessly.

Broadband routersprimarily provide internet connectivity but do not necessarily include Wi-Fi functionality unless specified.

Core routershandle large-scale data routing in the backbone of networks but are not designed for access point creation.

Inter-provider border routersfunction at an ISP level for routing traffic between different networks, not for providing user access.

Alaunch point attackoccurs when an attacker compromises a system and uses it as a foothold to spread malware, conduct reconnaissance, or launch further attacks against other systems. Botnets and command-and-control (C2) servers operate this way.

Denial of availabilitydisrupts service, but does not spread attacks.

Data exportsteals data instead of launching further attacks.

Data modificationchanges existing information but does not involve propagating threats.

TheTransport layerin the TCP/IP model includes theUser Datagram Protocol (UDP)andTransmission Control Protocol (TCP). UDP is a connectionless protocol used for fast, lightweight data transmission where reliability is not the priority (e.g., video streaming, VoIP).

Application layerhandles end-user services but not transport mechanisms.

Network or internet layerdeals with IP addressing and routing, not UDP.

Physical or network access layerconcerns hardware transmission methods.

Infrastructure as a Service (IaaS)provides virtualized computing resources over the cloud, including virtual machines where users can install and configure their own operating systems and applications. It offers flexibility and scalability without requiring hardware investment. Examples include AWS EC2 and Microsoft Azure Virtual Machines.

FaaSexecutes small code functions without infrastructure management.

PaaSprovides a managed platform but not full OS control.

SaaSoffers ready-to-use applications without infrastructure control.

TheSession layer(Layer 5 of the OSI model) is responsible for establishing, maintaining, and terminating communication sessions between network applications. It ensures that data exchanges remain synchronized and structured.

Data link layerhandles error detection and frame transmission.

Physical layerdeals with hardware-level transmission.

Transport layerensures reliable data delivery but does not manage sessions.

This describes aransomware attack, which falls underdenial of availabilitybecause it prevents users from accessing their data or systems until a ransom is paid. Attackers use encryption to lock files, disrupting operations.

Data modificationrefers to unauthorized changes to information.

Data exportinvolves stealing data rather than disabling access.

Launch pointdescribes an attacker's use of a compromised system to attack others.

Detecting code vulnerabilitiesthroughregular security audits, code reviews, and static analysis toolshelps prevent buffer overflow attacks. Developers should implementbounds checking,memory-safe programming languages, and input validationto mitigate risks.

Disabling cachingdoes not prevent buffer overflow attacks.

Server-side validationhelps with input security but does not directly address buffer overflows.

Intrusion protection softwaremay detect attacks but does not prevent vulnerabilities in code.

Thepingcommand in Linux is used to check network connectivity to a specific hostname or IP address. It sends ICMP Echo Request packets and measures response times.

nslookupis used for DNS lookups, not connectivity testing.

ifconfigdisplays network interface configurations but does not test connectivity.

digis used for detailed DNS queries.

Theeconomy of mechanismprinciple states that security systems should beas simple and small as possible. Reducing complexity makes security mechanisms easier to understand, audit, and defend against attacks.

Least common mechanismreduces shared resources to limit security risks.

Least privilegerestricts access based on necessity.

Zero-trust modelassumes no implicit trust in users or devices.

ABus topologyis a network setup in which all devices share a single communication channel (central wire), and data is transmitted along this cable. Each device listens for data but only processes packets addressed to it. This topology was widely used in older Ethernet networks.

Star topologyuses a central switch or hub, not a shared wire.

Point-to-point topologyinvolves a direct link between two devices, not multiple devices sharing a medium.

Ring topologyconnects each device to two adjacent devices in a circular path, not a single shared bus.