101-150

Question 1

Which of the following protocols periodically verifies the identity of the client by using a three-way handshake?

A. CHAP

B. PAP

C. PPP

D. EAP-TLS

Answer 1

A

Question 2

Which of the following protocols is designed to provide more secure encryption than the weak wired encryption privacy?

A. LEAP

B. TKIP

C. PEAP

D. CCMP

Answer 2

B

Question 3

Which of the following are the security measures that are needed to maintain the security of wireless LAN?

Each correct answer represents a complete solution. Choose all that apply.

A. WIPS

B. WLAN controller

C. Firewalls

D. WIDS

Answer 3

A, C, D

Question 4

Which of the following DoS attacks affects mostly Windows computers by sending corrupt UDP packets?

A. Fraggle

B. Smurf

C. Bonk

D. Ping flood

Answer 4

C

Question 5

Picture

You work as a Network Administrator for Blue Well Inc. The company has a Windows Server 2008 domainbased network. All client computers on the network run Windows Vista Ultimate. Andy, a Finance Manager, uses Windows Mail to download his e-mails to his inbox. He complains that every now and then he gets mails asking for revealing personal or financial information. He wants that such mails are not shown to him.

Which of the following steps will you take to accomplish the task?

A. Configure phishing filter in Internet Explorer 7.0. Configure it to filter all phishing mails.

B. Remove domain names of such emails from the Safe Sender’s list.

C. Configure phishing filter in Windows Mail. Configure it to move such mails to the Junk Mail folder.

D. Add domain names of such emails in the Block Sender’s list.

Answer 5

C

Question 6

Which of the following provides security by implementing authentication and encryption on Wireless LAN (WLAN)?

A. L2TP

B. IPSec

C. WAP

D. WEP

Answer 6

D

Question 7

Which of the following keys is derived from Group Master Key (GMK)?

A. Private Key

B. Group Temporal Key

C. Public Key

D. Pairwise Transient Key

Answer 7

B

Question 8

Which of the following types of filtering allows or restricts the flow of specific types of packets to provide security?

A. Route filtering

B. MAC address filtering

C. Packet filtering

D. Ingress filtering

Answer 8

C

Question 9

Peter works as a Network Administrator for the uCertify Inc. The company has a Windows-based network. All client computers run the Windows XP operating system. The employees of the company complain that suddenly all of the client computers have started working slowly. Peter finds that a malicious hacker is attempting to slow down the computers by flooding the network with a large number of requests. Which of the following attacks is being implemented by the malicious hacker?

A. Buffer overflow attack

B. Denial-of-Service (DoS) attack

C. SQL injection attack

D. Man-in-the-middle attack

Answer 9

B

Question 10

Which of the following is a networking protocol that provides centralized authentication, authorization, and accounting (AAA) management for computers to connect and use a network service?

A. HTTP

B. SSL

C. IPSec

D. RADIUS

Answer 10

D

Question 11

Which of the following are social engineering techniques?
Each correct answer represents a complete solution. Choose all that apply.

A. Phishing

B. Baiting

C. Pretexting

D. Salami attack

Answer 11

A, B, C

Question 12

You work as a Network Administrator for uCertify Inc. You need to provide a secure communication between the server and the client computers of the company. Which of the following protocols will you use to manage the communication securely?

A. HTTP

B. TCP

C. TLS

D. SSL

Answer 12

C, D

Question 13

Which of the following types of attacks is performed by Adam?

A. Man-in-the-middle attack

B. Reverse social engineering attack

C. DDoS attack that involves flooding a network or system

D. DoS attack that involves crashing a network or system

Answer 13

D

Question 14

Which of the following components are typically required for securing a wireless 802.11 network? Each correct answer represents a complete solution. Choose all that apply.

A. Network segmentation

B. Monitoring

C. AAA

D. Data confidentiality

Answer 14

A, B, C, D

Question 15

Which of the following is an application protocol that is used to query and modify data using directory services running over TCP/IP?

A. LDAP

B. HTTP

C. LEAP

D. RBAC

Answer 15

A

Question 16

Which of the following encryption algorithms is used by Wired Equivalent Privacy (WEP)?

A. RSA

B. RC4

C. TKIP

D. CCMP

Answer 16

B

Question 17

Which of the following actions will you perform to accomplish the task? Each correct answer represents a complete solution. Choose all that apply.

A. Configure the wireless network to use WEP encryption for the data transmitted over a wireless network.

B. Implement the IEEE 802.1X authentication for the wireless network.

C. Using group policies, configure the network to allow the wireless computers to connect to the infrastructure networks only.

D. Using group policies, configure the network to allow the wireless computers to connect to the ad hoc networks only.

E. Implement the open system authentication for the wireless network.

Answer 17

A, B, C

Question 18

Which of the following are the types of password guessing attacks? Each correct answer represents a complete solution. Choose two.

A. Password attack

B. Man-in-the-middle attack

C. Dictionary attack

D. Brute force attack

Answer 18

C, D

Question 19

Which of the following protocols is used to compare two values calculated using the Message Digest (MD5) hashing function?

A. EAP-TLS

B. CHAP

C. EAP

D. PEAP

Answer 19

B

Question 20

Which of the following policies are considered as a good starting point while designing a wireless security policy document? Each correct answer represents a complete solution. Choose all that apply.

A. Rogue AP policy

B. Functional security policy

C. Protocol policy

D. General security policy

Answer 20

A, B, D

Question 21

Which of the following are important characteristics of VPNs?

Each correct answer represents a complete solution. Choose all that apply.

A. Encapsulation

B. Authentication

C. Encryption

D. Data integrity

Answer 21

A, B, C, D

Question 22

Which of the following is a computer network that is layered on top of an underlying computer network?

A. WLAN

B. RSN

C. VPN

D. TSN

Answer 22

C

Question 23

Which of the following attacks on wireless LAN is performed to shut down the wireless network?

A. Active attack

B. Man-in-the-middle attack

C. Passive attack

D. Jamming attack

Answer 23

D

Question 24

Which of the following does PEAP use to authenticate the user inside an encrypted tunnel?

Each correct answer represents a complete solution. Choose two.

A. RC4

B. AES

C. MS-CHAP v2

D. GTC

Answer 24

C, D

Question 25

Which of the following are NOT steps in securing your wireless connection? Each correct answer represents a complete solution. Choose two.

A. Using either WEP or WPA encryption

B. Strong password policies on workstations.

C. MAC filtering on the router

D. Not broadcasting SSID

E. Hardening the server OS

Answer 25

B, E

Question 26

Which of the following types of attacks entices a user to disclose personal information such as social security number, bank account details, or credit card number?

A. Replay attack

B. Spoofing

C. Phishing

D. Password guessing attack

Answer 26

C

Question 27

You work as a Network Administrator for Tech Perfect Inc. The company has a wireless LAN infrastructure. The management wants to prevent unauthorized network access to local area networks and other information assets by the wireless devices. What will you do?

A. Implement a dynamic NAT.

B. Implement an ACL.

C. Implement a WIPS.

D. Implement a firewall.

Answer 27

C

Question 28

Which of the following key types are defined in the 802.11i Authentication and Key Management (AKM)?

Each correct answer represents a complete solution. Choose all that apply.

A. Pairwise Master Key (PMK)

B. Group Master Key (GMK)

C. Pairwise Transient Key (PTK)

D. Group Temporal Key (GTK)

Answer 28

A, B, C, D

Question 29

You work as a network administrator for Web Perfect Inc. You configure both WPA and EAP authentications on a client computer in the company’s wireless network. Where will the encryption key be located during the active user session? Each correct answer represents a part of the solution. Choose two.

A. On the AP

B. On the controller

C. Shared with all clients in the network

D. On the client

Answer 29

A, D

Question 30

Which of the following protocols are used to secure a VPN connection? Each correct answer represents a complete solution. Choose all that apply.

A. IPSec

B. TLS

C. SSL

D. L2TP

Answer 30

A, D

Question 31

Which of the following attacks come under the category of layer 2 Denial-of-Service attacks? Each correct answer represents a complete solution. Choose all that apply.

A. RF jamming attack

B. Password cracking

C. Spoofing attack

D. SYN flood attack

Answer 31

C, D

Question 32

Which of the following provides the best protection against a man-in-the-middle attack?

A. Strong password

B. Firewall

C. Strong encryption

D. Fiber-optic cable

Answer 32

C

Question 33

Which of the following security methods can be used to detect the DoS attack in order to enhance the security of the network?

A. WLAN controller

B. Spectrum analyzer

C. Protocol analyzer

D. WIPS

Answer 33

D

Question 34

Which of the following encryption methods uses AES technology?

A. Dynamic WEP

B. Static WEP

C. CCMP

D. TKIP

Answer 34

C

Question 35

You are the Administrator for a corporate network. You are concerned about denial of service attacks. Which of the following would be the most help against Denial of Service (DOS) attacks?

A. Honey pot

B. Network surveys.

C. Packet filtering firewall

D. Stateful Packet Inspection (SPI) firewall

Answer 35

D

Question 36

Which of the following would be the most help against Denial of Service (DOS) attacks?

A. Honey pot

B. Network surveys.

C. Packet filtering firewall

D. Stateful Packet Inspection (SPI) firewall

Answer 36

D

Question 37

Which of the following keys is derived from a preshared key and Extensible Authentication Protocol (EAP)?

A. Pairwise Master Key

B. Group Temporal Key

C. Private Key

D. Pairwise Transient Key

Answer 37

A

Question 38

Which of the following types of attacks come under the category of hacker attacks? Each correct answer represents a complete solution. Choose all that apply.

A. Password cracking

B. Smurf

C. IP address spoofing

D. Teardrop

Answer 38

A, C

Question 39

Which of the following keys are used by the public key infrastructure (PKI)? Each correct answer represents a complete solution. Choose all that apply.

A. Group Temporal Key

B. Private Key

C. Pairwise Transient Key

D. Public Key

Answer 39

B, D

Question 40

Which of the following is designed to detect bit-flipping and forgery attacks that are used against WEP?

A. Cyclic redundancy check (CRC)

B. Initialization vector (IV)

C. Message authentication code (MAC)

D. Message integrity code (MIC)

Answer 40

D

Question 41

Which of the following are software applications designed to track a user’s personal information with the intent to pass it on to third parties without the user’s permission?

Each correct answer represents a complete solution. Choose all that apply.

A. Stealware

B. Adware

C. Spyware

D. Zombie

Answer 41

B, C

Question 42

You work as a Network Administrator for Tech Perfect Inc. The company has a secure wireless network. Since the company’s wireless network is so dynamic, it requires regular auditing to maintain proper security. For this reason, you are configuring NetStumbler as a wireless auditing tool. What services can NetStumbler provide? Each correct answer represents a complete solution. Choose all that apply.

A. Detection of causes of wireless interference

B. Verification of network configurations

C. Detection of unauthorized (“rogue”) access points

D. Capturing and decoding of packets

Answer 42

A, B, C

Question 43

A Cisco Unified Wireless Network has an access point (AP) that provides a single point of management and reduces the security concern of a stolen access point. Which type of access point has this characteristic?

A. Rouge AP

B. Autonomous AP

C. Lightweight AP

D. LWAPP

Answer 43

C

Question 44

Which of the following is a type of malware that is secretly installed on the user’s personal computer and collects users’ information without their knowledge?

A. Worm

B. Virus

C. Spyware

D. Adware

Answer 44

C

Question 45

Which of the following features of a switch helps to protect network from MAC flood and MAC spoofing?

A. Port security

B. Quality of Service (QoS)

C. Multi-Authentication

D. MAC Authentication Bypass

Answer 45

A

Question 46

Which of the following protocols uses separate control and data connections between the client and server applications?

A. HTTP

B. FTP

C. SMTP

D. SCP

Answer 46

B

Question 47

Which of the following are attacks/techniques related to Wired Equivalent Privacy (WEP)?

Each correct answer represents a complete solution. Choose all that apply.

A. Bit-flipping attack

B. Phishing

C. Weak key

D. Baiting

Answer 47

A, C

Question 48

Which of the following are secure infrastructure management protocols used in WLAN?

Each correct answer represents a complete solution. Choose all that apply.

A. SNMPv3

B. Telnet

C. SCP

D. HTTPS

Answer 48

A, C, D

Question 49

Which of the following is an intermediate network similar to RSN that supports legacy security such as WEP within the same BSS?

A. WPA2

B. VPN

C. WPA

D. TSN

Answer 49

D

Question 50

Your company is going to add wireless connectivity to the existing LAN. You have concerns about the security of the wireless access and wish to implement encryption. Which of the following would be the best choice for you to use?

A. PKI

B. DES

C. WAP

D. WEP

Answer 50

D