Practice exam strengthening

Question 1

What is the range of well known ports?

Answer 1

0-1023

Question 2

What was the first international treaty seeking to address computer crimes?

Answer 2

Council of Europe (CoE) Convention on Cybercrime

Question 3

What outlines the general requirements of an ISMS?

Answers questions like: What is an ISMS? What does it do?

Answer 3

ISO/IEC 27001

Question 4

NIST SP 800-53 was initially created to tells agencies what needs to be put into place in order to be compliant with what?

A. HIPAA
B. FISMA
C. GLBA
D. PCI DSS

Answer 4

B

Question 5

What is the best definition of a socket?

Answer 5

A port number and an IP address

Question 6

Computer-generated or electronic information is most often categorized as what type of evidence?

Answer 6

Hearsay

Question 7

How often should fire extinguishers be inspected?

A. Every two years
B. Once a year
C. Quarterly
D. Monthly

Answer 7

quarterly

Question 8

What is the other name for Thin Net?

A. 10BaseT
B. 100BaseT
C. Fast Ethernet
D. 10Base2

Answer 8

10Base2

Question 9

What SDLC model does this describe?

“Discrete phases of development requiring formal reviews and documentation” ?

Answer 9

Waterfall model

Question 10

Which are the most used backup facility type?

A. Warm site
B. Hot Site
C. Redundant Site
D. Cold site

Answer 10

Warm site

Question 11

A form of attack on a computer which takes advantage of the fact that the operating system is in a vulnerable state after an interrupt has occurred.

(Fun Fact: Also not mentioned in the book.)

Answer 11

NAK attack

Question 12

This component of PPP establishes, configures, and maintains the connection.

Answer 12

Link Control Protocol

LCP

Question 13

This component of PPP provides user authentication capabilities through PAP, CHAP, and EAP

Answer 13

Network Control Protocol

NCP

Question 14

This is a framing protocol that is used mainly for device-to-device communication, such as two routers communicating over a WAN link. It is an improvement over SDLC

Answer 14

HDLC

High Level Data Link Control

Question 15

This is the simplest SOO technology, but it is not very secure.

A. Kerberos
B. Thin Clients
C. SESAME
D. scripting

Answer 15

D. scripting

Question 16

This is a symmetric block cipher developed while studying DES, an ICMP tunneling attack, and the name of a god i norse mythology.

Answer 16

Loki

Question 17

Which of the following is not considered a
detective control.

A. Incident Response
B. Mandatory Vacations
C. Separation of Duties
D. Job Rotation

Answer 17

Separation of Duties

Question 18

Put these change management steps in order.

A Request a change
B, Document a change
C. Implement a change
D. Test a change
E. Approve a change
F. Report to management

Answer 18

Request a change
Approve a change
Document a change
Test a change
Implement a change
Report to management

Question 19

American Institute of Certified Public Accountants (AICPA) first had SAS 70, which originally had a focus on financial issues. In 2011 the AICPA released a new framework of auditing standards on ________, which are defined in the __________ .

Answer 19

SOC (Service Organization Controls)

SSAE 16 American Statement on Standards for Attestation Engagements

Question 20

What is the single point of failure within an SOO implementation?

Answer 20

authentication server

Question 21

OSI Model —-> TCP/IP model

Application, Presention, Session = ____________
Transport = __________
Network = ____________
Data Link, Physical = _____________

Answer 21

Application
Host-to-Host
Internet
Network Access

Question 22

In 802.11, OSA has no authentication and all transactions are in cleartext, so wide open to sniffing. When the AP is configured to use ______, the AP sends a random value to the wireless device, which encrypts it and sends it back. AP decrypts it and verifies the value.

Answer 22

SKA

Shared Key Authentication

Question 23

This is the most authoritative level of time source.

A. Stratum 0
B. Stratum 1
C. Stratum 2
C. Stratum 3

Answer 23

A

Question 24

Which component of the IPSec suite provides confidentiality, data-origin authentication, and data integrity?

A. ISAKMP
B. ESP
C. AH
D. IKE

Answer 24

ESP

Encapsulating Security Payload

Question 25

Which component of the IPSec suite provides data integrity, data-origin authentication, and protection from replay attacks?

A. ISAKMP
B. ESP
C. AH
D. IKE

Answer 25

AH

Authentication Header

Question 26

Which component of the IPSec suite provides a framework for security association?

A. ISAKMP
B. ESP
C. AH
D. IKE

Answer 26

ISAKMP

Internet Security Association and Key Management Protocol

Question 27

Which component of the IPSec suite provides authentication keying material for use with ISAKMP?

A. ISAKMP
B. ESP
C. AH
D. IKE

Answer 27

IKE

Internet Key Exchange

Question 28

Which tunneling protocol extends and protects PPP connections, works at the data link layer, transmits over multiple types of networks (not just IP), and combines with IPSec for security?

A. TLS
B. IPSec
C. PPTP
D. L2TP

Answer 28

L2TP

Question 29

Which tunneling protocol extends and protects PPP connections, works at the data link layer, transmits over IP networks only?

A. TLS
B. IPSec
C. PPTP
D. L2TP

Answer 29

PPTP

Question 30

Which tunneling protocol handles multiple VPN connections at the same time, provides secure authentication and encryption, and works at the network layer?

A. TLS
B. IPSec
C. PPTP
D. L2TP

Answer 30

IPSec

Question 31

Which tunneling protocol protects mainly web and e-mail traffic, works at the session layer, and is easy to deploy since it is already embedded into web browsers?

A. TLS
B. IPSec
C. PPTP
D. L2TP

Answer 31

TLS

Question 32

____________ software controls what users can access when using a web browser to interact with web-based enterprise assets. This type of access control is put into place to control external entities requesting access to internal resources.

Answer 32

WAM

Web-based Access Management

Question 33

If a non-European organization wants to do business with a European entity, it will need to adhere to the __________________ requirements if certain types of data will be passed back and forth during business processes.

Answer 33

Safe Harbor

Question 34

This is an international organization that helps different GOVERNMENTS come together and tackle the economic, social , and governance challenges of a globalized economy.

Answer 34

OECD

Organization for Economic Co-Operation and Development

Question 35

Which does XACML not use?

A. Action Element - Types of Access
B. Subject Element - Requesting Entity
C. Resource Element - Requested Entity
D. Action Element - Access Control

Answer 35

D. Action Element - Access Control

Question 36

________ is a tool used to conceptually understand the structure and behavior of a complex entity through different views. It provides different views of the system, based upon the needs of the stakeholders of that system.

Answer 36

An Architecture

Question 37

What is the international standard for business continuity?

It provides guidelines for information and communications technology readiness for business continuity.

Answer 37

ISO/IEC 27031:2011

Question 38

The ___________ framework is a model for the development of ENTERPRISE architectures. The _______ model is the moedel and methodology for hte development of information security enterprise architectures.

Answer 38

Zachman, SABSA

Question 39

____________ is a methodology that is intended to be used in situations where people manage and direct the risk evaluation for information security within their company.

Answer 39

OCTAVE

Operationally Critical Threat, Asset, and Vulnerability Evaluation