1102

Question 1

Which encryption method encrypts individual files so that only the owner and authorized users can decrypt the file and read or open it?

Answer 1

EFS (encryption File System)

Question 2

Why is it important to not move files encrypted with EFS to a non-NTFS partition?

Answer 2

removes the encryption

Question 3

How does file encryption differ from disk encryption?

Answer 3

each file in a disk/drive has to be encrypted with a different key.

Question 4

What is the role of a TPM when implementing whole disk encryption?

Answer 4

securely stores the keys that can be used to decrypt the hard drive.

Question 5

Which editions of Windows provide BitLocker support?

Answer 5

Windows 10 Enterprise and Pro, Windows 8 and 8.1 Professional and Enterprise, Windows 7 Ultimate and Enterprise, Windows Vista Ultimate and Enterprise, and Windows Server 2008 and later

Question 6

How can BitLocker be implemented on Windows systems that don’t have a TPM chip on the motherboard?

Answer 6

If a computer doesn’t have a TPM, saving a startup key on a removable drive, such as a USB flash drive, becomes mandatory when enabling BitLocker.

Question 7

Which protocols are commonly used to establish a VPN?

Answer 7

-IPSec
-Layer 2 Tunneling Protocol (L2TP)
-Point – to – Point Tunneling Protocol (PPTP)
-Secure Sockets Layer (SSL)
-OpenVPN
-Secure Shell (SSH)

Question 8

Which protocol is typically used for web transactions?

Answer 8

SSL (Security Socket Layer)

Question 9

Encryption

Answer 9

A process that makes digital materials accessible only through authorized decryption software or devices.

Question 10

File encryption

Answer 10

A process that encrypts the contents of an individual file.

Question 11

Disk encryption

Answer 11

A process that encrypts the entire contents of a hard drive.

Question 12

Data transmission encryption

Answer 12

A process that uses encryption to protect data sent through a network.

Question 13

BitLocker partition

Answer 13

A volume that contains the boot files.

Question 14

Trusted Platform Module (TPM)

Answer 14

A special hardware chip that generates and stores cryptographic keys.

Question 15

File Encryption Key (FEK)

Answer 15

A symmetric encryption key used to both encrypt and decrypt a file.

Question 16

BitLocker

Answer 16

protects against unauthorized data access on lost or stolen laptops and on other compromised systems.

Question 17

Which of the following security solutions would prevent you from reading a file that you did not create?

a)EFS
b)BitLocker
c)IPSec
d)VPN

Answer 17

a)EFS

Question 18

Remote Desktop Protocol (RDP)

Answer 18

is used by Windows Terminal Services-based applications, including Remote Desktop.

Question 19

FTP (File Transfer Protocol)

Answer 19

is used for transferring files. It does not establish a secure connection.

Question 20

WPA (Wi-fi Protected Access) and WEP (Wired Equivalent Privacy)

Answer 20

are protocols used to secure wireless communications.

Question 21

Encrypting File Server (EFS)

Answer 21

is a Windows feature that can encrypt a single file or multiple files and folders.

Question 22

BitLocker

Answer 22

is a Windows feature that encrypts an entire disk

Question 23

.

Single sign-on (SSO)

Answer 23

permits a user to employ the same credentials to automatically log in to other sites and services. SSO is not used for encryption.

Question 24

An administrative share

Answer 24

is used by administrators to access system drives. It is not used for encryption.

Question 25

BitLocker is designed to protect files against offline access only.
True or False

Answer 25

True

Question 26

BitLocker is not designed to protect file against online access. This is the purview of EFS.
True or False

Answer 26

True

Question 27

BitLocker is not designed to encrypt individual files. BitLocker encrypts the entire hard drive.
True or False

Answer 27

True

Question 28

BitLocker is not designed for use on the Home edition of Windows 10 or later. BitLocker is only available on the Ultimate and Enterprise editions.
True or False

Answer 28

True

Question 29

BitLocker is not designed for use on the Home edition of Windows 10 or later. BitLocker is only available on the Ultimate and Enterprise editions.

Answer 29

True

Question 30

BitLocker To Go

Answer 30

provides drive encryption for removable data drives, including USB flash drives. You can use BitLocker To Go to encrypt the data on a flash drive. The only way to decrypt the data on the flash drive is through the recovery password. Using BitLocker To Go and not sharing the recovery password would keep the data on the flash drive secure.

Question 31

BitLocker

Answer 31

is a drive encryption program that is designed to be used with NTFS files on your hard drive, not on non-NTFS removeable devices. Most USB flash drives use FAT32 or exFAT storage.

Question 32

Files that are encrypted with ____________ , lose their encryption when they are copied to a USB flash drive, which is commonly formatted with FAT32 or exFAT.

Answer 32

EFS, or Encrypting File System

Question 33

Microsoft Defender

Answer 33

is an antivirus program for Windows that does not encrypt files on a flash drive.

Question 34

A Trusted Platform Module (TPM)

Answer 34

is a special hardware chip included on a computer’s motherboard that contains software (within the firmware) that generates and stores cryptographic keys.

Question 35

BitLocker

Answer 35

is an encryption program, not a hardware chip.

Question 36

A USB device

Answer 36

is what saves the BitLocker key on a system that does not have a TPM chip.

Question 37

The TPM chip must be enabled in the BIOS/UEFI, but the BIOS/UEFI is not the chip itself. True or False

Answer 37

True

Question 38

BitLocker with TPM

Answer 38

BitLocker checks the integrity of the early boot components and the boot configuration data by using the Trusted Platform Module (TPM) to ensure that the data is accessible only when the computer’s boot components appear unaltered. Also, the encrypted disk must be in the same computer it was in when it was originally encrypted with BitLocker. This means that if someone were to obtain that hard drive and put it in a different computer, they wouldn’t be able to access the data on that drive. The data stays encrypted.

Question 39

BitLocker To Go

Answer 39

While BitLocker is designed to protect system hard drives, BitLocker To Go is designed to protect removeable storage devices, such as flash drives.

Question 40

Microsoft Defender

Answer 40

is an antivirus program designed to protect the Windows system from malware. This program would have no effect on preventing access to a stolen hard drive’s data.

Question 41

Windows Security

Answer 41

is a program that scans for security threats, malware, and viruses. It would have no effect on preventing access to a stolen hard drive’s data.