from the test

Question 1

<p>\_\_ is an example of asymmetric cryptography</p>

Answer 1

<p>RSA </p>

Question 2

<p>which e-mail security method is defined in RFC 2632 and RFC 2634? </p>

Answer 2

<p>Secure Multipurpose Internet Mail Extensions (s/mime)</p>

Question 3

<p>\_\_\_ provides non-repudiation, authentication, and integrity for e-mail messages. </p>

Answer 3

<p>S/MIME 3 </p>

Question 4

<p>\_\_ \_\_ is a spyware technique that inserts a dynamic link library into a running process's memory. </p>

Answer 4

<p>DLL Injection </p>

Question 5

<p>\_\_ \_\_ occurs when the length of the input data is longer than the length processor buffers can handle. </p>

Answer 5

<p>Buffer Overflow</p>

Question 6

<p>The major security vulnerability of using FTP is --- </p>

Answer 6

<p>User ID and password are sent in clear text</p>

Question 7

<p>This layer of the OSI model segments and reassembles data into a data stream and provides reliable and unreliable end to end data transmission</p>

Answer 7

<p>(Layer 4) Transport</p>

Question 8

<p>This layer starts, maintains, and stops sessions between applications on different network devices. </p>

Answer 8

<p>(Layer 5) Session Layer</p>

Question 9

<p>This layer provides the functions to establish and maintain the physical link between network devices</p>

Answer 9

<p>(Layer 1) Physical </p>

Question 10

<p>\_\_\_ provides centralized remote user authentication, authorization and accounting. </p>

Answer 10

<p>RADIUS</p>

Question 11

<p>This mode ensures that wireless clients can only communicate with the wireless access point and not with other wireless clients.</p>

Answer 11

<p>Isolation Mode</p>

Question 12

<p>\_\_\_ is an intrusion detection system (IDS)</p>

Answer 12

<p>Snort</p>

Question 13

<p>\_\_\_ \_\_\_ is the practice of dispensing IP addresses and host names with the goal of traffic diversion.</p>

Answer 13

<p>DNS poisoning </p>

Question 14

<p>\_\_\_ \_\_\_ \_\_\_ allows an attacker to reroute data traffic from a network device to a personal computer</p>

Answer 14

<p>Network Address Hijacking </p>

Question 15

<p>\_\_ is a technique used by intruders to circumvent a lock</p>

Answer 15

<p>Raking</p>

Question 16

<p>\_\_\_ is a collection of programs that grants a hacker administrative access to a computer or network</p>

Answer 16

<p>Rootkit</p>

Question 17

<p>\_\_\_ risk analysis does not assign monetary values</p>

Answer 17

<p>Qualitative</p>

Question 18

<p>\_\_ risk analysis attempts to predict the likelihood a threat would occur and assigns a monetary value in the even a loss occus</p>

Answer 18

<p>Quantitative </p>

Question 19

<p>\_\_ this risk management is discouraging cerain actions from being taken to protect against risk</p>

Answer 19

<p>Deterrence </p>

Question 20

<p>\_\_ this risk management is deciding to no longer employ the actions associated with a particular risk.</p>

Answer 20

<p>Avoidance </p>

Question 21

<p>\_\_ this risk management is taking steps to reduce risk </p>

Answer 21

<p>Mitigation</p>

Question 22

<p>\_\_\_ \_\_\_ allows you to configure how many new passwords must be created before an old one can be reused. </p>

Answer 22

<p>gdfg</p>

Question 23

<p>A \_\_ test tests specific systems to ensure their operation at alternate facilities </p>

Answer 23

<p>Parallel Test </p>

Question 24

<p>The chain of custody guarantees \_\_\_ </p>

Answer 24

<p>the identity and integrity of the evidence from the collection stage to its presentation in the court of law. </p>

Question 25

<p>The revocation request grace period refers to \_\_ </p>

Answer 25

<p>The maximum time taken by the certification authority server to perform a revocation. </p>

Question 26

<p>You should us a \_\_ to determine if the performance of the server had degraded.</p>

Answer 26

<p>System Monitor</p>

Question 27

<p>A \_\_ scanner will provide iformation on the ports and services that are available on your network.</p>

Answer 27

<p>Port</p>

Question 28

<p>A \_\_ test checks your network for known vulnerabilities and provides methods for protection against the vulnerabilities</p>

Answer 28

<p>Vulnerability </p>

Question 29

<p>During which phase of SSL communication do a web client and a web server establish a TCP/IP connection?</p>

Answer 29

<p>Handshake</p>

Question 30

<p>Secure Hashing Algorithm (SHA) produces \_\_ bit checksums</p>

Answer 30

<p>160</p>

Question 31

<p>\_\_ establishes a web of trust between the users.</p>

Answer 31

<p>Pretty Good Privacy (PGP) </p>

Question 32

<p>PGP is a public key encryption standard that is used to \_\_</p>

Answer 32

<p>to protect e-mail and files that are transmitted over the network. </p>

Question 33

<p>PGP encrypts data using \_\_ encryption</p>

Answer 33

<p>symmetric</p>

Question 34

<p>Secure Code Review examines \_\_\_\_</p>

Answer 34

<p>all written code for any security holes that may exist</p>

Question 35

<p>This type of tool tests your networks security to see if it can be penetrated.</p>

Answer 35

<p>Penetration tester</p>

Question 36

<p>An Executive succession plan ensures \_\_ </p>

Answer 36

<p>that a vital corporate position is filled in the even it is vacated during a disaster </p>

Question 37

<p>RSA is an example of \_\_ cryptography with \_\_\_</p>

Answer 37

<p>asymmetric cryptography with authentication</p>

Question 38

<p>Asymmetric algorithms include</p>

Answer 38

<p>include Diffie-Hellman, RSA,ElGamal, CAST</p>

Question 39

<p>Symmetric algorithms include</p>

Answer 39

<p>Data Encryption Standard
Triple DES (3DES)
Advanced Encryption Standard </p>

Question 40

<p>A _ virus can infect both executable files and boot sectors of hard disk drives.</p>

Answer 40

<p>Multipart </p>

Question 41

<p>This command line utility is used to trouble shoot a domain name server. </p>

Answer 41

<p>Nslookup</p>

Question 42

<p>This utility traces the route a packet takes and records the hops along the way. </p>

Answer 42

<p>Tracert/traceroute </p>

Question 43

<p>\_\_\_ is an application layer protocol whose purpose is to collect statistics from TCP/IP devices.</p>

Answer 43

<p>simple network management protocol. (SNMP) </p>

Question 44

<p>What ports does snmp use?</p>

Answer 44

<p>Ports 161 and 162</p>

Question 45

<p>\_\_\_\_\_ allows a user to dial in to the network via a modem or modem pool while providing the user with secure access during the he is connected </p>

Answer 45

<p>Remote access server (RAS) </p>

Question 46

<p>What infrastructure provides the system for the secure exchange of data over a network through the use of an asymmetric key system? </p>

Answer 46

<p>Public key infrastructure (pki)</p>

Question 47

<p>Another term for technical controls is \_\_ controls</p>

Answer 47

<p>Logical</p>

Question 48

<p>A backup control is an example of an \_\_\_ control </p>

Answer 48

<p>Operational Control</p>

Question 49

<p>Software testing is an example of an \_\_\_ control</p>

Answer 49

<p>Operational Control</p>

Question 50

<p>To implement hardware-based encryption on a Windows server 2008, you need a \_\_</p>

Answer 50

<p>Trusted Platform Module (TPM) chip. </p>

Question 51

<p>Symmetric keys do not ensure \_\_ and \_\_\_ for key management because the same key is used for encryption and decryption</p>

Answer 51

<p>Security and Scalability </p>

Question 52

<p>The best protection against cross-site scripting (XSS) is to \_\_</p>

Answer 52

<p>Disable the running of the scripts</p>

Question 53

<p>A \_\_ contains a list of serial numbers for digital certificates that have not expired, but that a CA has specified to be invalid.</p>

Answer 53

<p>Certificate Revocation List (CRL) </p>

Question 54

<p>\_\_ is a hashing algorithm that creates a message digest, which can be used to determine whether a file has been changed since the message digest has been changed</p>

Answer 54

<p>Secure Hashing Algorithm (SHA)-1</p>

Question 55

<p>This network device acts as an internet gateway, firewall and internet caching server for a private network.</p>

Answer 55

<p>Proxy Server</p>

Question 56

<p>\_\_ is traffic redirection to a site that looks identical to the intended site</p>

Answer 56

<p>Pharming </p>

Question 57

<p>\_\_ is an asymmetric public key encryption algorithm based on the Diffie-Hellman key agreement. </p>

Answer 57

<p>ElGamal</p>

Question 58

<p>\_\_ is a Microsoft Windows feature that supports file encryption on NTFS hard disk volumes.</p>

Answer 58

<p>Encrypting File System (EFS) </p>

Question 59

<p>Sending data across an insecure network, such as the internet, affects \_\_ and \_\_</p>

Answer 59

<p>Confidentiality And Integrity </p>

Question 60

<p>\_\_\_ is a block cipher encryption standard that uses a single 56-bit encryption to encrypt 64- bit blocks of data.</p>

Answer 60

<p>Data Encryption Standard </p>

Question 61

<p>\_\_ IDS watches for intrusions that match a known identity.</p>

Answer 61

<p>Signature IDS </p>

Question 62

<p>A \_\_ IDS detects activities that are unusual. </p>

Answer 62

<p>Anomaly- based </p>

Question 63

<p>Make sure to look up PBX attacks</p>

Answer 63

<p>PBX</p>

Question 64

<p>\_\_ was created to deal with Voice over IP and wireless services. </p>

Answer 64

<p>Diameter</p>

Question 65

<p>\_\_ is used to digitally sign packets that are transmitted on Internet Protocol Security (IPsec connections. </p>

Answer 65

<p>Kyed Hashing for Message Authentication Code (KHMAC </p>

Question 66

<p>\_\_ files contain information about viruses, such as examples of virus code and the types that a particular virus infects</p>

Answer 66

<p>Signature File</p>

Question 67

<p>What is the purpose of Infrastructure as a Service in cloud computing?</p>

Answer 67

<p>It provides computer and server infrastructure, typically through a virtualization environment. </p>

Question 68

<p>What is the main difference between virtualization and cloud computing?</p>

Answer 68

<p>The location and ownership of the physical components. </p>

Question 69

<p>Which document lists the steps to take in case of a disaster to your main IT site?</p>

Answer 69

<p>Disaster Recovery Plan (DRP) </p>

Question 70

<p>Which private-key encryption algorithm does PGP use to encrypt data?</p>

Answer 70

<p>International Data Encryption Algorithm (IDEA) </p>

Question 71

<p>Which document is used when it is necessary to invoke legal action against an employee for inappropriate use of computer resources.</p>

Answer 71

<p> Acceptable use policy </p>

Question 72

<p>Which error arises because data is not checked before input to ensure that it has an appropriate length?</p>

Answer 72

<p>Buffer overflow errors</p>

Question 73

<p>Which business continuity planning factor includes vulnerability analysis </p>

Answer 73

<p>Business Impact Assessment </p>

Question 74

<p>What is the name of the process for removing only the incriminating data from the audit logs?</p>

Answer 74

<p>Scrubbing</p>

Question 75

<p>Which port does NNTP </p>

Answer 75

<p>119</p>

Question 76

<p>Which audit category monitors changes to user accounts and groups?</p>

Answer 76

<p>The Audit Account Management category</p>

Question 77

What are the four types of water sprinklers?

Answer 77

Wet pipe, dry pipe, preaction and deluge.

Question 78

<p>\_\_ based monitoring looks for behavior that is not allowed and acts accordingly </p>

Answer 78

<p>Behavior </p>

Question 79

<p>A \_\_ filtering firewall only looks at a data packet to obtain the source and destination addresses and the protocol and port used.</p>

Answer 79

<p>Packet Filtering Firewall</p>

Question 80

<p>LDAP entries are contained in a \_\_ which is a hierarchical structure that can be searched for directory information.</p>

Answer 80

<p>Directory Information Tree</p>

Question 81

<p>\_\_ is a private key encryption standard that was developed by the us government for the Clipper Chip. </p>

Answer 81

<p>Skipjack</p>

Question 82

<p>Skipjack uses an _-bit key. </p>

Answer 82

<p>80</p>

Question 83

<p>A \_\_\_ firewall is also referred to as an appliance firewall. </p>

Answer 83

<p>Hardware</p>

Question 84

<p>\_\_ provides a transparent firewall solution between an internal network and outside networks.</p>

Answer 84

<p>NAT</p>

Question 85

<p>Separation of duties is employed when user accounts are \_\_</p>

Answer 85

<p>created by one employee and user permissions are configured by another employee.</p>

Question 86

<p>The primary loop protection on an Ethernet network is \_\_</p>

Answer 86

<p>Spanning Tree Protocol (STP) </p>

Question 87

<p>What is a disadvantage of a hardware firewall compared to a software firewall?</p>

Answer 87

<p>A hardware firewall has a fixed number of available interfaces.</p>

Question 88

<p>What is an embedded firewall?</p>

Answer 88

<p>A firewall that is integrated into a router.</p>

Question 89

<p>A software firewall is installed on a \_\_\_</p>

Answer 89

<p>server operating system.</p>

Question 90

<p>A _ is an encryption method designed to be used only once.</p>

Answer 90

<p>One-time pad (OTP)</p>

Question 91

<p>\_\_\_ is an 802.11b communications mode that enables wireless devices to communicate directly. </p>

Answer 91

<p>Ad hoc</p>

Question 92

<p>Classification of information is typically part of an \_\_ </p>

Answer 92

<p>information policy</p>

Question 93

<p>Secure Hashing Algorithm (SHA) produces \_\_ bit checksums.</p>

Answer 93

<p>160 bit</p>

Question 94

<p>Which size checksum does MD5 produce? </p>

Answer 94

<p>128 bit</p>

Question 95

__ ensures that the coputer on the network meet an organizations security policies

Answer 95

Network Access Control

Question 96

__ __ is a smart card attack that allows a hacker to uncover the encryption key using reverse engineering.

Answer 96

Fault generation

Question 97

you should use __ to encrypt a single document from your web server.

Answer 97

S-http

Question 98

Which Kerberos 5 entitiy authenticates users?

Answer 98

The Authentication Service

Question 99

___ is the process in which the management accepts system functionality and assurance.

Answer 99

Accreditation

Question 100

What is authentication?

Answer 100

verifying the identity of users

Question 101

You should use a __ analyzer to determine if passwords are being transmitted in plain text

Answer 101

protocol analyzer

Question 102

What does the message authentication code (MAC) ensure?

Answer 102

MAC ensures the integrity of messages.

Question 103

___ indentifies sensitive data and ensures that unauthorized entities cannot access it

Answer 103

Confidentiality

Question 104

___ ensures that data and resources are available to authorized entities in a timely manner

Answer 104

Availability

Question 105

__ is the process of identifying a subject requesting system access.

Answer 105

Authentication

Question 106

__ ensures that data and resources are edited only in an approved manner by authorized entities.

Answer 106

Integrity

Question 107

Which security service does encryption provide?

Answer 107

Confidentiality

Question 108

__ is an error-control technique that ensures that files have not been changed.

Answer 108

packet checksum

Question 109

__ refers to the quantitative amount of loss incurred by a single event.

Answer 109

Single Loss Expectancy

Question 110

A network protocol analyzer is also known as a

Answer 110

Packet Sniffer

Question 111

A __ right occurs when user inherits a permission based on group membership.

Answer 111

Implicit

Question 112

An __ right occurs when a user is directly give a permission.

Answer 112

Explicit

Question 113

A __ plan is primarily concerned with recovering major systems and applications after a disruption.

Answer 113

Contingency

Question 114

In low encryption mode, which level of encryption does WEP provide?

Answer 114

64-bit

Question 115

__ allows organizations to deploy web servers, databases, and delelopment tools in a cloud

Answer 115

Platform as a service

Question 116

__ allows organizations to run applications in a cloud.

Answer 116

Software as a service

Question 117

__ allows organizations to deploy virtual machines, servers, and storage in a cloud.

Answer 117

Infrastructure

Question 118

__ is a protocol that secures messages between the Application and Transport layer

Answer 118

SSL

Question 119

__ is a protocol used to test and report on path info between network devices

Answer 119

ICMP

Question 120

__ is a protocol that allows files to be copied over a secure connection.

Answer 120

SCP

Question 121

Look up EAP methods

Answer 121

dfg

Question 122

Log analysis is an example of a

Answer 122

network analysis

Question 123

A __ copy of a hard disk refers to making a copy at the sector level to cover every part of the area that can store user data.

Answer 123

Bit-level

Question 124

__ is synonymous with protocol analyzing.

Answer 124

Packet Sniffing

Question 125

Layer 2 Tunneling Protocol operates at the ___ layer of the OSI model?

Answer 125

Data Link layer 2

Question 126

A Fail-over system is a computer that does ___?

Answer 126

Is connected to a primary computer and takes over if the primary computer fails.

Question 127

__ is an authentication framework used in wireless networks and point-to-point connections.

Answer 127

Extensible Authentication Protocol (EAP)

Question 128

Which setting ensures that accounts are not used beyond a certain date and/or time?

Answer 128

account expiration

Question 129

Which port does SSH use?

Answer 129

22

Question 130

What is derived by multiplying single loss expectancy (SLE) by the annualized rate of occurrence (ARO) of an event?

Answer 130

Annualized loss expectancy (ALE)

Question 131

what is the primary concern of RAID?

Answer 131

Availability

Question 132

Which type of attack does Challenge Handshake Authentication Protocol protect against?

Answer 132

Replay attack

Question 133

Which protocol is the combo of PPTP and Cisco’s Layer 2 forwarding (L2F) technology?

Answer 133

Layer 2 Tunneling Protocol (L2TP)

Question 134

What does SLA stand for?

Answer 134

Service Level Agreement

Question 135

What does the SLA define?

Answer 135

Defines the level of service to be provided

Question 136

What is a BPO?

Answer 136

Blanket Purchase Order

Question 137

What does the BPO do?

Answer 137

It is an agreement between a government agency and a private company for ongoing purchases of goods or services.

Question 138

What is a MOU?

Answer 138

Memorandum of Understanding

Question 139

What does a MOU do?

Answer 139

Ii is a brief summary of which party is responsible for what portion of the work.

Question 140

What is an ISA?

Answer 140

The Interconnection Security Agreement.

Question 141

What does a ISA do?

Answer 141

This is an agreement between two organizations that have connected systems.

Question 142

TCP/IP protocol suite operates at which layer of the OSI model?

Answer 142

Layer 4 Transmission

Question 143

LDAP uses which port?

Answer 143

389

Question 144

LDAP with SSL uses which port?

Answer 144

636

Question 145

Which port does L2TP use?

Answer 145

1701

Question 146

The audit __ __ category will audit all instances of users exercising their rights.

Answer 146

Audit privilege use

Question 147

The audit __ __ audit category monitors changes to user accounts and groups

Answer 147

Account Management