A+ 1102 Day 4a ITSA 2.1 Summarize security measures

Encryption is a method of securing data by encoding it so that only authorized parties can access it. This prevents unauthorized access to sensitive information, even if it is intercepted during transmission or stored on a device.

 False. While antivirus software is effective against many types of malware, such as viruses and worms, it may not provide comprehensive protection against all types of malware, such as ransomware or zero-day exploits. It is essential to use multiple layers of security measures for comprehensive protection against various threats.                        

Intrusion Detection Systems (IDS) monitor network traffic for signs of suspicious activities or potential security threats. They analyze patterns and behaviors to identify anomalies and alert administrators to potential security breaches, allowing them to take appropriate action to mitigate risks and protect the network.

 Access Control Lists (ACLs) are used to restrict access to resources based on user identity and authorization levels. They define permissions and rules that determine who can access specific resources and what actions they can perform, helping to enforce security policies and prevent unauthorized access to sensitive data. 

 Firewalls are network security devices that monitor and control incoming and outgoing network traffic based on predetermined security rules. They act as a barrier between a trusted internal network and untrusted external networks, preventing unauthorized access and protecting against malicious threats such as hackers and malware.                

 True. Biometric authentication methods use unique biological characteristics, such as fingerprints, facial features, or iris patterns, to verify a person's identity. These methods offer a high level of security because they are difficult to forge or replicate, making them ideal for authentication purposes in various security systems.                                    

Hashing is a cryptographic technique used to verify the integrity of data by generating a unique hash value for a given set of data. This hash value can be compared with the original value to detect any changes or tampering, ensuring the data's integrity during transmission or storage.