IS3340 CHAPTER 2

Question 1

The process of providing and denying access to objects is called ___?

Answer 1

ACCESS CONTROL

Question 2

Shared database of domain users, groups, computers, resources, and other information, along with network functionality to centralize and standardize network management and interoperation is called ___?

Answer 2

ACTIVE DIRECTORY

Question 3

The collection of all possible vulnerabilities that could provide unauthorized access to computer resources; all of the software a computer runs that is vulnerable to attack is called ___?

Answer 3

ATTACK SURFACE

Question 4

Proving that provided identity credentials are valid and correct is called ?

Answer 4

AUTHENTICATION

Question 5

Granting and/or denying access to resources based on the authenticated user is called ___?

Answer 5

AUTHORIZATION

Question 6

A level of sensitivity assigned to an object by its owner. An example object could be assigned as top secret, secret, confidential, restricted, or unclassified and is called ___?

Answer 6

CLASSIFICATION

Question 7

A security level assigned to subjects, authorizing them to access objects with an equal or lower classification. These levels include top secret, secret, and confidential and is called ___?

Answer 7

CLEARANCE

Question 8

Any mechanism or action that prevents, detects, or addresses an attack is called ___?

Answer 8

CONTROL

Question 9

An access control method based on an object’s owner and permissions granted by the owner is called ___?

Answer 9

DISCRETIONARY ACCESS CONTROL (DAC)

Question 10

To take advantage of a specific vulnerability is called ___?

Answer 10

EXPLOIT

Question 11

Software layer in the operating system kernel that provides the actual access to physical hardware is called ___?

Answer 11

HARDWARE ABSTRACTION LAYER(HAL)

Question 12

Providing credentials that claim a specific identity, such as a user name is called ___?

Answer 12

IDENTIFICATION

Question 13

The core part of an operating system that provides the essential services of the operating system is called ___?

Answer 13

KERNEL

Question 14

An attack in which the attacker is located between a client and a server and intercepts traffic flowing back and forth between the two computers. The attacker can view or modify data that is transmitted in the clear. This is called ___?

Answer 14

Man in the middle Attack

Question 15

The portion of an operating system’s kernel that resides exclusively in memory is called ___?

Answer 15

MICROKERNEL

Question 16

Authentication process that requires multiple types of authentication credentials is called ___?

Answer 16

MULTI-FACTOR AUTHENTICATION

Question 17

A resource to which access is controlled is called ___?

Answer 17

OBJECT

Question 18

This defines what a user can do to a specific object, such as read or delete the object and is called ___?

Answer 18

PERMISSION

Question 19

User rights define tasks that a user is permitted to carry out, such as take ownership of objects or shut down the computer and is called ___?

Answer 19

RIGHT

Question 20

An access control method based on permissions defined by a role, e.g., manager, authorized user, guest, as opposed to an individual user, e.g., Michael Solomon. This is called ___?

Answer 20

ROLE BASED ACCESS CONTROL (RBAC)

Question 21

A unique identifier for each user and group in a Windows environment is called ___?

Answer 21

SECURITY IDENTIFIER (SID)

Question 22

An entity requesting access to an object is called ___?

Answer 22

SUBJECT

Question 23

The highest privilege at which programs can run, allowing access to the physical hardware and kernel resources. AKA kernel mode and is called ___?

Answer 23

SUPERVISOR MODE

Question 24

Authentication process that requires two separate types of authentication credentials is called ___?

Answer 24

TWO-FACTOR AUTHENTICATION

Question 25

Authentication based on information only a valid user knows, such as a password or PIN is called ___?

Answer 25

TYPE I AUTHENTICATION

Question 26

Authentication based on a physical object that contains identity information, such as a token, card, or other device is called ___?

Answer 26

TYPE II AUTHENTICATION

Question 27

Authentication based on a physical characteristic (biometric), such as a fingerprint, hand print, or retina characteristic is called ___?

Answer 27

TYPE III AUTHENTICATION

Question 28

Limited privilege for running programs that does not allow direct access to the computer’s physical hardware or certain kernel resources is called ___?

Answer 28

USER MODE

Question 29

1. Which of the following is NOT a goal of a secure environment?
2. All required information is available to authorized users
3. No information is available to unauthorized user
4. All required information is available
5. No classified information is available to unauthorized users

Answer 29

All required information is available

Question 30

2. Which term describes the central component of an operating system?
3. Kernel
4. Shell
5. Hardware Abstraction Layer
6. Executive

Answer 30

Kernel

Question 31

3. what are the two run modes for windows programs?
4. supervisor mode and executive mode
5. Kernel mode and supervisor mode
6. User mode and executive mode
7. Kernel mode and user mode

Answer 31

Kernel mode and user mode

Question 32

4. Which of the following Windows components resides in memory to provide the core operating system services?
5. Kernel
6. Microkernel
7. Executive
8. Hardware Abstraction Layer

Answer 32

Microkernel

Question 33

5. what is the name of the process which proves you are who you say you are?
6. Identification
7. Authorization
8. Permission
9. Authentication

Answer 33

Authentication

Question 34

6. Which type of authentication is a smart card?
7. Type I
8. Type II
9. Type III
10. Type IV

Answer 34

Type II

Question 35

7. Which access control method relates data classification to user clearance?
8. MAC
9. DAC
10. RBAC
11. LDAC

Answer 35

MAC

Question 36

8. What value uniquely identifies a user or group in Windows?
9. UID
10. SAT
11. SID
12. ACE

Answer 36

SID

Question 37

9. If the same user is created on three separate Windows computers, which value is the same on all three computers?
10. SID
11. User code
12. Username
13. SAT

Answer 37

Username

Question 38

10. Which Windows feature allows users and groups to be “shared” among machines?
11. Domain control
12. Workgroup
13. SID
14. Active Directory

Answer 38

Active Directory

Question 39

11. What defines the limit of how many computers share users and groups?
12. SID
13. GUID
14. Domain
15. Workgroup

Answer 39

Domain

Question 40

12. Which of the following best describes the term “attack surface”?
13. All possible vulnerabilities in application software that could be exploited
14. All possible vulnerabilities that could be exploited
15. The most likely avenues of attack
16. Known vulnerabilities that have not been patched

Answer 40

All possible vulnerabilities that could be exploited

Question 41

13. When possible, what is the best way to mitigate vulnerability in a specific service?
14. Remove the service
15. Disable the service
16. Block access to the service
17. Patch the service

Answer 41

Remove the service

Question 42

14. When monitoring a Windows system, with what do you compare current system performance to test for security compliance?
15. The previous monitoring results
16. A normal performance scan
17. A stated baseline
18. A defined security goal

Answer 42

A stated baseline

Question 43

15. Why should you immediately test your system for security compliance after making a configuration change?
16. Configuration changes generally increase security
17. Configuration changes generally decrease security
18. Configuration changes may introduce new vulnerabilities
19. Configuration changes may remove existing vulnerabilities

Answer 43

Configuration changes may introduce new vulnerabilities