20 Network Security Quiz Questions and Answers

Question 1:
What is the primary function of a firewall in a network?
A. To encrypt data packets
B. To monitor and control incoming and outgoing network traffic based on predetermined security rules
C. To perform data backups
D. To manage user authentication

Answer: B

Explanation: A firewall acts as a barrier between a trusted internal network and untrusted external networks, filtering traffic to prevent unauthorized access and potential threats.

Question 2:
Which encryption method uses the same key for both encryption and decryption?
A. Asymmetric encryption
B. Hashing
C. Symmetric encryption
D. Digital signatures

Answer: C

Explanation: Symmetric encryption uses a single shared key, making it faster but requiring secure key exchange to maintain confidentiality.

Question 3:
What is a DDoS attack?
A. An attack that encrypts files and demands ransom
B. A distributed effort to overwhelm a target server with traffic from multiple sources
C. A method to steal passwords through fake websites
D. An attack that exploits software vulnerabilities

Answer: B

Explanation: In a DDoS (Distributed Denial of Service) attack, multiple compromised devices flood the target with traffic, exhausting its resources and making it unavailable.

Question 4:
Which protocol is commonly used to secure web communications by encrypting data in transit?
A. HTTP
B. FTP
C. TLS
D. ICMP

Answer: C

Explanation: TLS (Transport Layer Security) encrypts data between web servers and clients, ensuring privacy and integrity against eavesdropping and tampering.

Question 5:
What does two-factor authentication (2FA) add to the login process?
A. A single password
B. An additional verification step, such as a code sent to a mobile device
C. Biometric scanning only
D. Encryption of the username

Answer: B

Explanation: 2FA requires two forms of identification, typically something you know (password) and something you have (e.g., a phone for a code), reducing the risk of unauthorized access.

Question 6:
Which type of malware replicates itself and spreads to other systems?
A. Trojan
B. Worm
C. Spyware
D. Ransomware

Answer: B

Explanation: A worm is self-propagating malware that exploits network vulnerabilities to spread automatically without user interaction.

Question 7:
What is network sniffing?
A. Monitoring network traffic to capture data packets
B. Encrypting network cables
C. Blocking unauthorized devices
D. Updating firewall rules

Answer: A

Explanation: Network sniffing involves using tools to intercept and analyze data packets on a network, which can be used for troubleshooting or malicious purposes like data theft.

Question 8:
What is the main purpose of a VPN in network security?
A. To increase internet speed
B. To create a secure, encrypted tunnel for data transmission over public networks
C. To store data backups
D. To detect viruses

Answer: B

Explanation: A VPN (Virtual Private Network) masks the user’s IP address and encrypts data, protecting it from interception on unsecured networks.

Question 9:
What is the key difference between an IDS and an IPS?
A. IDS prevents attacks, while IPS detects them
B. IDS detects suspicious activity, while IPS actively blocks it
C. IDS encrypts data, while IPS does not
D. IDS is for wired networks, while IPS is for wireless

Answer: B

Explanation: An IDS (Intrusion Detection System) monitors for threats and alerts administrators, whereas an IPS (Intrusion Prevention System) takes action to stop detected threats.

Question 10:
Which hashing algorithm is commonly used for storing passwords securely?
A. MD5
B. AES
C. SHA-256
D. RSA

Answer: C

Explanation: SHA-256 is a one-way hashing function that produces a fixed-length output from input data, making it ideal for securely storing passwords without revealing the original.

Question 11:
How can users typically identify a phishing email?
A. By checking for perfect grammar
B. By looking for urgent language, mismatched URLs, or requests for sensitive information
C. By replying to the sender
D. By opening all attachments

Answer: B

Explanation: Phishing emails often use urgency, fake domains, or personal information requests to trick users, and verifying URLs can help detect these scams.

Question 12:
What is SQL injection?
A. An attack that floods a network with packets
B. Inserting malicious SQL code into a query to manipulate a database
C. Encrypting a website’s files
D. Stealing hardware

Answer: B

Explanation: SQL injection exploits vulnerabilities in web applications by injecting harmful SQL statements, potentially allowing unauthorized access or data alteration.

Question 13:
What happens in a Man-in-the-Middle (MitM) attack?
A. The attacker directly hacks the server
B. The attacker intercepts and possibly alters communication between two parties
C. The attacker creates a new network
D. The attacker only observes without interfering

Answer: B

Explanation: In a MitM attack, the attacker positions themselves between the user and the intended recipient, eavesdropping or modifying data in transit.

Question 14:
Which protocol is used to secure IP communications by authenticating and encrypting packets?
A. HTTP
B. IPsec
C. TCP
D. UDP

Answer: B

Explanation: IPsec (Internet Protocol Security) provides authentication, integrity, and encryption for IP packets, commonly used in VPNs to secure data transmission.

Question 15:
Which wireless security protocol is considered outdated and insecure due to weak encryption?
A. WPA3
B. WPA2
C. WEP
D. TLS

Answer: C

Explanation: WEP (Wired Equivalent Privacy) uses a flawed encryption method that can be easily cracked, making it vulnerable to attacks compared to newer protocols like WPA3.

Question 16:
What is biometric authentication in network security?
A. Using passwords and PINs
B. Verifying identity through unique physical characteristics, like fingerprints or facial recognition
C. Encrypting files with keys
D. Sending SMS codes

Answer: B

Explanation: Biometric authentication uses inherent biological traits for verification, adding a layer of security as these traits are difficult to duplicate or steal.

Question 17:
What is a zero-day vulnerability?
A. A vulnerability that has been patched for over a day
B. A flaw in software that is unknown to the vendor and exploited before a fix is available
C. A daily security update
D. A virus that activates every 24 hours

Answer: B

Explanation: A zero-day vulnerability is a newly discovered weakness that attackers exploit immediately, as no patch exists yet, posing a significant risk.

Question 18:
Why is patch management important in network security?
A. To increase network speed
B. To apply updates that fix known vulnerabilities and improve system security
C. To delete old files
D. To monitor user activity

Answer: B

Explanation: Patch management involves regularly updating software and systems to close security gaps, reducing the risk of exploits from known vulnerabilities.

Question 19:
What is social engineering in the context of network security?
A. Manipulating physical network hardware
B. Tricking individuals into revealing confidential information through psychological tactics
C. Encrypting social media data
D. Building secure social networks

Answer: B

Explanation: Social engineering exploits human psychology, such as trust or fear, to gain unauthorized access to systems or information, bypassing technical controls.

Question 20:
Which best practice helps prevent unauthorized access to a network?
A. Using default passwords
B. Implementing strong passwords, regular updates, and access controls
C. Sharing passwords with colleagues
D. Leaving devices unsecured

Answer: B

Explanation: Strong passwords combined with regular software updates and access controls like firewalls reduce the chances of breaches by making exploitation harder.