Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Intro to Computer Security test 3 > Q14 > Flashcards

Q14 Flashcards

1
Q

Which of the following best describes an explicit deny principle?
A. All actions that are not expressly denied are allowed.
B. All actions that are not expressly allowed are denied.
C. All actions must be expressly denied.
D. None of the above.

A

C. All actions must be expressly denied.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the intent of least privilege?
A. Enforce the most restrictive rights required by users to run system processes.
B. Enforce the least restrictive rights required by users to run system processes.
C. Enforce the most restrictive rights required by users to complete assigned tasks.
D. Enforce the least restrictive rights required by users to complete assigned tasks.

A

C. Enforce the most restrictive rights required by users to complete assigned tasks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q 
Which of the following models is also known as an identity-based access control model?
A.   Discretionary access control
B.    Role-based access control
C.   Rule-based access control
D.   Mandatory access control
A

A. Discretionary access control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

A central authority determines which files a user can access. Which of the following best describes this?
A. An access control list (ACL)
B. An access control matrix
C. Discretionary access control model
D. Nondiscretionary access control model

A

D. Nondiscretionary access control model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q 
A central authority determines which files a user can access based on the organization’s hierarchy. Which of the following best describes this?
A.   Discretionary access control model
B.    An access control list (ACL)
C.   Rule-based access control model
D.   Role-based access control model
A

D. Role-based access control model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which of the following best describes a rule-based access control model?
A. It uses local rules applied to users individually.
B. It uses global rules applied to users individually.
C. It uses local rules applied to all users equally.
D. It uses global rules applied to all users equally.

A

D. It uses global rules applied to all users equally.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q 
What type of access control model is used on a firewall?
A.   Mandatory access control model
B.    Discretionary access control model
C.   Rule-based access control model
D.   Role-based access control model
A

C. Rule-based access control model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q 
Which of the following best describes a characteristic of the mandatory access control model?
A.   Employs explicit-deny philosophy
B.	Permissive
C.   Rule-based
D.   Prohibitive
A

D. Prohibitive

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q 
Which of the following can help mitigate the success of an online brute-force attack?
A.   Rainbow table
B.    Account lockout
C.   Salting passwords
D.   Encryption of password
A

B. Account lockout

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q 
What type of attack uses email and attempts to trick high-level executives?
A.   Phishing
B.    Spear phishing
C.   Whaling
D.   Vishing
A

C. Whaling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Intro to Computer Security test 3 (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions