Ch 11- Self Test

Question 1

Which best practice configures host computers so that they are not vulnerable to attack?

Answer 1

A. Vulnerability Assessment
B. Penetration test
C. Hardening
D. PKI

Question 2

Which type of test simulates a network attack?

Answer 2

A. Vulnerability assessment
B. Establishing an attack baseline
C. Hardening
D. Penetration test

Question 3

You have been asked to harden a crucial network router. What should you do? (Choose 2)

Answer 3

A. Disable the routing of IPv6 packets
B. Change the default administrative password
C. Apply firmware patches
D. Configure the router for SSO

Question 4

You are invited to join an IT meeting where the merits and pitfalls of cloud computing are being debated. Your manager conveys her concerns of data confidentiality for cloud storage. What can be done to secure data stored in the cloud?

Answer 4

A. Encrypt the data
B. Digitally sign the data
C. Use a stream cipher
D. Change default passwords

Question 5

Which of the following works best to encrypt variable-length data?

Answer 5

A. Block cipher
B. Symmetric cipher
C. Asymmetric cipher
D. Stream cipher

Question 6

With PKI, which key is used to validate a digital signature?

Answer 6

A. Private key
B. Public key
C. Secret key
D. Signing key

Question 7

Which of the following is related to nonrepudiation?

Answer 7

A. Block cipher
B. PKI
C. Symmetric encryption
D. Stream cipher

Question 8

Sean configures a web application to allow content managers to upload files to the website. What type of access control model is Sean using?

Answer 8

A. DAC
B. MAC
C. RBAC

Question 9

You are the administrator of a Windows network. When creating a new user account, you specify a security clearance of top secret so that the user can access classified files. What type of access control method is being used?

Answer 9

A. DAC
B. MAC
C. RBAC

Question 10

True of False. DAC is suitable for large organizations.

Answer 10

A. True

B. False