CYBER SECURITY IMPORTANT QUESTIONS I GATEWAY CLASSES I AKTU

Cyber Security Important Questions - GATEWAY CLASSES I AKTU

This document summarizes the key points and important questions related to Cyber Security discussed in the GATEWAY CLASSES YouTube video for AKTU B.Tech students.

---

1. Summary

This video from GATEWAY CLASSES aims to provide AKTU B.Tech students with essential questions and concepts for their Cyber Security examination. It focuses on core topics within the subject, highlighting areas that are frequently tested. The presenter emphasizes the importance of understanding fundamental principles and common attack vectors. The video also subtly promotes the GATEWAY CLASSES app for access to PDF notes and further resources.

---

2. Key Takeaways

* **Core Cyber Security Concepts:** Understanding fundamental principles is crucial for exam success.

* **Common Attack Vectors:** Familiarity with various types of cyber attacks is essential.

* **Importance of Definitions and Explanations:** Be prepared to define and explain key terms and processes.

* **Focus on Practical Applications:** Questions may involve understanding how security measures are implemented.

* **GATEWAY CLASSES Resources:** The channel offers PDF notes and further study materials via their app.

---

3. Detailed Notes

While the provided video information does not contain the actual content of the "important questions," based on the title and typical Cyber Security syllabus for engineering programs like AKTU B.Tech, the following are likely covered topics and question types:

**I. Introduction to Cyber Security**

* **Definition and Scope:**

* What is Cyber Security?

* Importance of Cyber Security in the digital age.

* CIA Triad: Confidentiality, Integrity, Availability - their definitions and significance.

* **Threats, Vulnerabilities, and Risks:**

* Defining and differentiating between threat, vulnerability, and risk.

* Examples of common threats.

* Methods to identify and assess vulnerabilities.

* **Cyber Security Goals and Objectives.**

**II. Cryptography Fundamentals**

* **Symmetric vs. Asymmetric Encryption:**

* Explanation of both types.

* Key differences, advantages, and disadvantages.

* Examples of algorithms (e.g., AES for symmetric, RSA for asymmetric).

* **Hashing:**

* Purpose and function of hashing.

* Properties of good hash functions (e.g., collision resistance).

* Applications of hashing (e.g., password storage, data integrity).

* **Digital Signatures:**

* How they work and their purpose.

* Role of public and private keys.

* Ensuring authenticity and non-repudiation.

* **Key Management:**

* Importance of secure key generation, distribution, and storage.

**III. Network Security**

* **Firewalls:**

* Types of firewalls (packet filtering, stateful, proxy, WAF).

* How firewalls work and their role in network defense.

* Configuration considerations.

* **Intrusion Detection Systems (IDS) & Intrusion Prevention Systems (IPS):**

* Difference between IDS and IPS.

* Signature-based vs. Anomaly-based detection.

* Placement and function within a network.

* **Virtual Private Networks (VPNs):**

* Purpose and functionality.

* How VPNs provide secure remote access.

* **Network Protocols and Security:**

* Security aspects of common protocols (e.g., HTTPS, SSL/TLS).

* Common network attacks (e.g., DoS/DDoS, Man-in-the-Middle).

**IV. Common Cyber Attacks and Defense Mechanisms**

* **Malware:**

* Types of malware (viruses, worms, Trojans, ransomware, spyware).

* How they spread and their impact.

* Prevention and removal strategies.

* **Phishing and Social Engineering:**

* Definition and common techniques.

* How to recognize and avoid phishing attacks.

* Importance of user awareness.

* **SQL Injection:**

* How it works and its impact on web applications.

* Defense mechanisms to prevent SQL injection.

* **Cross-Site Scripting (XSS):**

* Types of XSS (reflected, stored, DOM-based).

* How XSS attacks exploit web vulnerabilities.

* Preventive measures.

* **Password Attacks:**

* Brute-force, dictionary attacks.

* Importance of strong password policies.

**V. Cyber Security Best Practices and Policies**

* **Access Control:**

* Authentication, Authorization, Accounting (AAA).

* Principle of Least Privilege.

* **Security Awareness Training:**

* Importance for employees and users.

* **Incident Response:**

* Phases of incident response.

* Developing an incident response plan.

* **Data Privacy and Regulations:**

* Brief mention of relevant data protection laws (if applicable to the syllabus).

**VI. Potential Question Formats:**

* Define and explain specific terms (e.g., "Define CIA Triad").

* Compare and contrast concepts (e.g., "Differentiate between symmetric and asymmetric encryption").

* Explain the working of specific mechanisms (e.g., "Explain how a firewall works").

* Discuss the vulnerabilities and defense mechanisms for common attacks (e.g., "Describe SQL injection and its countermeasures").

* Illustrate concepts with examples.

---

**Note:** This detailed breakdown is an educated prediction of the topics likely covered in a Cyber Security "important questions" video for AKTU. To get the exact questions and in-depth explanations, please refer to the GATEWAY CLASSES app for their PDF notes.