Review 6B

Question 1

A benefit of Open System Architecture is that it:

Answer 1

facilitates interoperatability

Question 2

A common form of asymmetric encryption is RSA.

True/ False

Answer 2

True

Question 3

A dial back modem may be used to prevent access by guessing passwords.
True/ False

Answer 3

True

Question 4

An ITF is considered a useful audit tool because it uses the same programs to compare processing using independently calculated data.

True/False

Answer 4

True

Question 5

Application firewall systems:

Answer 5

Disadvantages are poor performance and scalability as internet usage grows

Question 6

Common type of message digest algorithms are SHA1, MD2, MD4 and MD5:

Answer 6

There algorithms are one way functions unlike private and public key encryption algoritms. This process of creating message digest cannot be reversed

Question 7

Components of IDS:

Answer 7

Sensors that are responsible for collecting data, Analyzer that receive input from sensors and determine intrusive activity, An administrative control, A user interface

Question 8

Digital signature is a cryptographic method that ensures:

Answer 8

Data integrity, Authentication and Non repudiation

Question 9

Digital signatures and public\ Key encryption are vulnerable to man in the middle attacks wherein the senders digital signature private key and public key may be faked. True/ False

Answer 9

True

Question 10

Establishing controls to handle concurrent access problems is a preventive control. True/ False

Answer 10

True

Question 11

Examples of such attacks in application layer:

Answer 11

SQL injection, buffer overflow attacks.

Question 12

Heuristic scanning tools:

Answer 12

are a type of virus scanning used to indicate possible infected codes

Question 13

IDS cannot help following weakness:

Answer 13

weakness in policy definition, application level vulnerabilities, back door in the applications, weakness in identification and athentication schemes

Question 14

If asymmetric keys were used to encrypt bulk data:

Answer 14

the process would be very slow, this is the reason they are used to encrypt short messages such as digest or signatures

Question 15

Implementing data backup and recovery procedure is a corrective control, because backup and recovery procedure can be used to rollback database errors. True/ False

Answer 15

True

Question 16

In asymetric encryption process, two keys ork together as pair. One key is ued to encrypt data and other is used to decrypt data. Either key can be used to encrypt or decrypt but once the key has been used to encrypt data, only its partner can be used to decrypt the data. True/ False

Answer 16

True

Question 17

It is possible to break LAN security through the dail in route. Without dail up access controls, a caller can dial in and try passwords until they gain access. True/ False

Answer 17

True

Question 18

Neural based IDS:

Answer 18

are similar to statistical model but with added self learning functionality

Question 19

Open system are those for which suppliers provied components whose interfaces are defined by public standards, thus facilitating interoperability between systems made by different vendors. True/ False

Answer 19

True

Question 20

Possible attacks in packet filtering firewalls:

Answer 20

IP spoofing, Source routing specification and miniature fragment attack.

Question 21

Problem faced firewall:

Answer 21

Most firewalls operate at network layer, therefore they do not stop any application base or input based attack

Question 22

Prototyping is the development of a system through controlled trial and error: True/ False

Answer 22

True

Question 23

Router packet filtering firewalls:

Answer 23

Packet header have information in them, including the IP address of the sender and receiver and the authorized port numbers allowed to use the information transmitted. Base onthat information the router know what kind of internet service, such as web based or FTP, is being used to send the date as well as the identitied of the sender and reciver of the data.

Question 24

Stateful inspection firewall:

Answer 24

It keeps track of the destination IP address of each packet that leaves the organizations internal network. whenever the response to the packet is received its record is referenced to ascertain and ensure that the incoming message is in response to the request that went out from the organization.

Question 25

symmetric key systems use single, secret, bidirectional keys. True/ False

Answer 25

True

Question 26

To protect against Man in the middle attacks and independent authority has been designed. True/ False

Answer 26

True

Question 27

Twin line dial back modems:

Answer 27

Dial back modems are available that are connected to two individual telephones. one is used for incoming calls and the second is used to call back the user on the known telephone number.

Question 28

Two types of Honey pots:

Answer 28

High interactionn , Low interaction

Question 29

Types of IDS:

Answer 29

Signature based, statistical based, and Neural

based

Question 30

What is the most prevalent security risk when an organization implements remote VPN access to its network?

Answer 30

Malicious code could be spread across the network

Question 31

When using public key encryption to secure data being transmitted across a network:

Answer 31

the key use to encrypt is public, but the key used to deycrypt the data is private

Question 32

Advantage of Iris identification:

Answer 32

the contact with the device is not needed

Question 33

A good practice will terminate all VPN to the same end point in a so called VPN concentrator, and will not accept VPNs directed at other parts of the network. True/False

Answer 33

True

Question 34

Alteration attack:

Answer 34

Occurs when unothorzied modification affect the integrity of the data or code. Cryptographic hash is a primary defense against alteration attacks

Question 35

Another risk of peer to peer computing is that users may expose there IP addresses, which can lead to IP spoofing: True/ False

Answer 35

True

Question 36

A parity check:

Answer 36

is a hardware control that detects data errors when data are read from one computer to another, from memory or during transmission

Question 37

Applying a cryptographic hashing algorithm the entire message addresses the message integrity issue. Enciphering the message digest using the senders private key address non repidiation. Encrypting the message with a symmetric key, thereafter allowing the key to be enciphered using the receivers public key most efficiently address the confidentiality of the message as well as the receiver’s non repudiation. True/False

Answer 37

True

Question 38

A redundancy check:

Answer 38

detect transmission errors by appending calculated bit on to the end of each segment of data

Question 39

A reasonableness check:

Answer 39

compares data to predefined reasonability limit or occurrence rates established for the data

Question 40

Authentication is typically categorized as “something you know” PASSWORD. Something you have “TOKEN CARD” and something you are “BIOMETRIC FEATURES”. True/False

Answer 40

True

Question 41

Banana attack:

Answer 41

Redirects outgoaing messages from the client back onto the client, preventing outside access, as well as flooding the client with the sent packets

Question 42

Botnets:

Answer 42

Comprise a collection of compromised computers (called zombie computers) running software, usually installed via worms, Trojan horses or back doors.