642

Question 1

You should not determine the maximum set of privileges that is needed to perform the user’s job. This is contrary to the____________________. The __________________________ dictates that the most restrictive user rights, permissions, and privileges are granted. —

Answer 1

principle of least privilege

Question 2

You cannot configure the appropriate privileges or group memberships for the user’s account until a proper _______________has been done. The _______________ entails determining the scope of a user’s job and determining the minimum set of privileges needed to perform the job. —

Answer 2

job analysis

Question 3

Excessive privileges occur when a user has been granted more ______________________than the job requires. When this occurs, it can have detrimental effects on a company’s security structure. —

Answer 3

rights, permissions, and privileges

Question 4

In a large environment, excessive privileges are hard to control. It is essential that the appropriate procedures are in place to ensure that the __________________________is executed properly. The principle of least privilege is considered a technical control. —

Answer 4

principle of least privilege

Question 5

Biometric authentication and full device encryption would provide you with the _________________________for Android mobile devices. —

Answer 5

highest level of security

Question 6

Biometric authentication matches a users uniquely identifiable _______________to a previously stored value. Biometrics is among the most secure physical security measures. Examples include fingerprints, iris or retinal scans, voice prints, and keyboard cadence. —

Answer 6

physical attribute

Question 7

Full device encryption requires that the user provide a ________________in order to activate the decryption key on the device. If the user does not provide the correct information, the data remains encrypted and inaccessible. —

Answer 7

PIN, password, or a swipe pattern

Question 8

Patching OS updates are always a critical concern, but it doesnt address security for___________________. —

Answer 8

Android mobile devices

Question 9

The Android OS is typically patched or updated by the phone manufacturer or Google, and updates may be outside the —

Answer 9

control of the organization.

Question 10

Ensuring that patches and updates are applied and current should be a basic component of —

Answer 10

system security.

Question 11

There are firewalls for Android, but they would only protect traffic entering or exiting the device. You would want to block ____________________itself as the primary security measure. —

Answer 11

unauthorized access to the device

Question 12

There are VPN products for Android, but they would only protect traffic to and from the device. They provide no _______________if the device is stolen. —

Answer 12

physical protection

Question 13

In windows 7 The user should press _________________and select Change a Password. —

Answer 13

Ctrl+Alt+Del

Question 14

While you could click Start, Control Panel, User Accounts and Family Safety, and Change Your Windows Password, this requires more administrative effort than using the —

Answer 14

Ctrl+Alt+Del key combination.

Question 15

You should not click Start, Control Panel, User Accounts, and the user’s account name, and select Change My Password. This process worked in Windows XP if you were using an administrative account. The _______________key combination could also be used in Windows XP. —

Answer 15

Ctrl+Alt+Del

Question 16

You should not click Start, Control Panel, User Accounts, and Change My Password. This process only worked in Windows XP if you were using a limited account. The _____________________combination could also be used in Windows XP. —

Answer 16

Ctrl+Alt+Del key