Quiz 2

Question 1

Which of the following is not a denial-of-service attack?
Exploiting a flaw in a program to consume 100 percent of the CPU
Sending malformed packets to a system, causing it to freeze
Performing a brute-force attack against a known user account
Sending thousands of emails to a single address

Answer 1

Performing a brute-force attack against a known user account

Question 2

Why is spam so difficult to stop?
filters are ineffective at blocking inbound messages.
The source address is usually spoofed.
It is an attack requiring little expertise.
Spam can cause denial-of-service attacks.

Answer 2

The source address is usually spoofed.

Question 3

Which of the following is not a benefit of NAT?
Hiding the internal IP addressing scheme
Sharing a few public Internet addresses with a large number of
internal clients
Using the private IP addresses from RFC 1918 on an internal
network
filtering network traffic to prevent brute-force attacks

Answer 3

filtering network traffic to prevent brute-force attacks

Question 4

Which of the following can prevent e-mail spoofing?
Pretty good privacy
Point-to-point protocol
Microcom networking protocol
Password authentication protocol

Answer 4

Pretty good privacy

Question 5

Countermeasures against sniffers do not include which of the
following?
Using recent version of secure shell protocol.
Applying end-to-end encryption.
Using packet filters.
Implementing robust authentication techniques.

Answer 5

Using packet filters.

Question 6

A virtual private network (VPN) cannot provide or improve which of
the following security services?
Availability
Confidentiality
Integrity
Replay protection

Answer 6

Availability

Question 7

In a distributed computing environment, system security takes on
an important role. Two types of network attacks exist: passive and
active. Which of the following is an example of a passive attack?
Attempting to log in to someone else’s account
Installing a wiretap on a network cable to generate false
messages
Denying services to legitimate users
Sniffng a system password when the user types it

Answer 7

Sniffng a system password when the user types it

Question 8

Which of the following cannot protect non-IP protocols?
IPsec
PPTP
L2TP
L2F

Answer 8

IPsec

Question 9

A major risk involving the use of packet-switching networking is that:
It is possible that some packets can arrive at their destinations
out of sequence.
It is not possible to vary the routing of packets depending on
network conditions.
Terminals attached to a public data network may not have
enough intelligence.
Terminals attached to a public data network may not have
enough storage capacity.

Answer 9

It is possible that some packets can arrive at their destinations
out of sequence.

Question 10

Frame relay and X.25 networks are part of which of the following?
Circuit-switched services
Cell-switched services
Packet-switched services
Dedicated digital services

Answer 10

Packet-switched services

Question 11

What is it called when email itself is used as an attack mechanism?
Masquerading
Spoofing
Mail-bombing
Smurf attack

Answer 11

Mail-bombing

Question 12

What are the two common data classification schemes?
Military and private sector
Personal and government
Private sector and unrestricted sector
Classified and unclassified

Answer 12

Military and private sector

Question 13

When seeking to hire new employees, what is the first step?
Create a job description.
Set position classification.
Screen candidates.
Request resumes

Answer 13

Create a job description.

Question 14

Which of the following is a primary purpose of an exit interview?
To return the exiting employee’s personal belongings
To review the nondisclosure agreement
To evaluate the exiting employee’s performance
To cancel the exiting employee’s network access accounts

Answer 14

To review the nondisclosure agreement

Question 15

Which of the following statements is not true?
IT security can provide protection only against logical or technical
attacks.
The process by which the goals of risk management are achieved is
known as risk analysis.
Risks to an IT infrastructure are all computer based.
An asset is anything used in a business process or task.

Answer 15

Risks to an IT infrastructure are all computer based.

Question 16

When a safeguard or a countermeasure is not present or is not sufficient, what remains?
Vulnerability 
Exposure 
Risk
Penetration

Answer 16

Vulnerability

Question 17

How is single loss expectancy (SLE) calculated?

Threat + vulnerability
Asset value ($) * exposure factor
Annualized rate of occurrence * vulnerability
Annualized rate of occurrence * asset value * exposure factor

Answer 17

Asset value ($) * exposure factor

Question 18

How is the value of a safeguard to a company calculated?

• ALE before safeguard – ALE after implementing the safeguard –annual cost of safeguard
• ALE before safeguard * ARO of safeguard
• ALE after implementing safeguard – annual cost of safeguard – controls gap
• Total risk – controls gap

Answer 18

ALE before safeguard – ALE after implementing the safeguard – annual cost of safeguard

Question 19

Which of the following methods for handling risk involves a third
party?
Accepting Risk 
Eliminating risk
Reducing risk
Transferring risk

Answer 19

Transferring risk

Question 20

Which of the following assists in complying with others?
Policy
Procedure
Standard
Guideline

Answer 20

Procedure

Question 21

Which of the following is not the major reason for conducting risk
assessment?
It is a good security practice.
It is required by law or regulation.
It is integrated into the system development life-cycle process.
It supports the business objectives.

Answer 21

It is required by law or regulation.

Question 22

Which of the following is not a goal of the risk management
evaluation and assessment process in ensuring that the system
continues to operate in a safe and secure manner?
Implement a strong configuration management program.
Monitor the system security on a continuous basis.
Eliminate all potential threats, vulnerabilities, and risks to the
system.
Track findings from the security control assessment process.

Answer 22

Eliminate all potential threats, vulnerabilities, and risks to the
system.

Question 23

Which of the following is not a goal of IT security?
Confidentiality
Availability 
Integrity
Aggregation

Answer 23

Aggregation

Question 24

Risk management is a major priority of the SPK Company. The
following data has been collected for one asset in the company: Natural
threats are realized once every five years. The total asset value is
$1,000,000. Every time a threat causes damage, it cost the company an
average of $100,000. The company has the choice of getting insurance
for $10,000 per year or moving to a new location that will be a onetime
cost of $35,000. The SPK priorities in the risk management strategy
are accuracy and long-term repeatability of process.
What can be done with the residual risk?
It can be either reduced or calculated.
It can be either identified or evaluated.
It can be either assigned or accepted.
It can be either exposed or assessed

Answer 24

It can be either assigned or accepted.

Question 25

Risk management is a major priority of the SPK Company. The
following data has been collected for one asset in the company: Natural
threats are realized once every five years. The total asset value is
$1,000,000. Every time a threat causes damage, it cost the company an
average of $100,000. The company has the choice of getting insurance
for $10,000 per year or moving to a new location that will be a onetime
cost of $35,000. The SPK priorities in the risk management strategy
are accuracy and long-term repeatability of process.
Which of the following is not part of risk analysis?
Assets
Threats
Vulnerabilities
Countermeasures

Answer 25

Countermeasures

Question 26

Risk management is a major priority of the SPK Company. The
following data has been collected for one asset in the company: Natural
threats are realized once every five years. The total asset value is
$1,000,000. Every time a threat causes damage, it cost the company an
average of $100,000. The company has the choice of getting insurance
for $10,000 per year or moving to a new location that will be a onetime
cost of $35,000. The SPK priorities in the risk management strategy
are accuracy and long-term repeatability of process.
The costs and benefits of security techniques should be measured in
monetary terms where possible. Which of the following is the most
effective means to measure the cost of addressing relatively frequent
threats?
Single-occurrence losses
Annual loss expectancy
Fatal losses
Catastrophic losses

Answer 26

Annual loss expectancy

Question 27

In systems utilizing a ring protection scheme, at what level does the
security kernel reside?
Level 0
Level 1 
Level 2 
Level 3

Answer 27

Level 0

Question 28

Which one of the following is not part of the change management
process?
Request control
Release control
Configuration audit
Change control

Answer 28

Configuration audit

Question 29

What transaction management principle ensures that two transactions
do not interfere with each other as they operate on the same data?
Atomicity
Consistency
Isolation
Durability

Answer 29

Isolation

Question 30

Which of the following areas of software conguration management
(SCM) is executed last?
Identication
Change control
Status accounting
Audit

Answer 30

Audit

Question 31

Which of the following is an example of input validation error?
Access validation error
Congfiguration error
Buffer overflow error
Race condition error

Answer 31

Buffer overflow error

Question 32

What term is used to describe code objects that act on behalf of a user
and operate in an unattended manner?
Agent
Worm
Applet
Browser

Answer 32

Agent

Question 33

Which of the following protocols use many network ports?
SNMP and SMTP
TCP and UDP
ICMP and IGMP
ARP and RARP

Answer 33

TCP and UDP

Question 34

Which one of the following firewalls is simple, inexpensive, and quick to
implement?
Static packet lter rewall
Dynamic packet lter rewall
Application gateway rewall
Stateful inspection gateway rewall

Answer 34

Static packet filter firewall

Question 35

\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_ firewalls are known as third-generation firewalls.
Application-level gateway
Stateful inspection
Circuit-level gateway
Static packet-filtering

Answer 35

Stateful inspection

Question 36

By examining the source and destination addresses, the application
usage, the source of origin, and the relationship between current
packets with the previous packets of the same
session,_______________ firewalls are able to grant a broader range
of access for authorized users and activities and actively watch for and
block unauthorized users and activities.
Static packet-filtering
Application-level gateway
Stateful inspection
Circuit-level gateway

Answer 36

Stateful inspection

Question 37

Which of the following protocols are used by email clients to retrieve
email messages from an email server? Check all that apply.
POP3
SMTP
IMAP

Answer 37

POP3

IMAP

Question 38

Which of the following mechanisms can reduce the risk of collusion?
Check all that apply. Pick 2.
Background checks
Separation of duties
 Job rotation
Nondisclosure agreements

Answer 38

Separation of duties

Job rotation

Question 39

Which one of the following methods puts a system into a high level
of security upon detection of a failure?
Limit Checks 
Fail Secure 
Fail Open

Answer 39

Fail Secure

Question 40

Risk management activities are performed for periodic system reauthorization in which of the following system development life
cycle (SDLC) phases?
Initiation
Development/Acquisition
Implementation
Operation/maintenance

Answer 40

Operation/maintenance