Sec + Finals

Question 0

What is a decentralized open source FIM that does not require specific software to be installed on the desktop?

Answer 0

OpenID

Question 1

What is using one authentication credential to access multiple accounts or applications

Answer 1

Single Sign On (SSO)

Question 2

What is using a single authentic credential that is shared across multiple networks

Answer 2

Identity Management

Question 3

What is Federal Identity Management (FIM)?

Answer 3

When multiple networks are owned by different organizations

Question 4

Which Single Sign On (SSO) relies on tokens?

Answer 4

OAuth

Question 5

What is the name given to a wireless technology that uses short range radio frequency transmissions and provides for rapid ad hoc device pairings?

Answer 5

Bluetooth

Question 6

What is Personal Area Network (PAN)?

Answer 6

Technology designed for data communications over short distances

Question 7

What are the two types of Bluetooth network topologies?

Answer 7

Piconet and Scatternet

Question 8

Which Bluetooth topology is it when two Bluetooth devices come within range of each other, they automatically connect with one another?

Answer 8

Piconet

Question 9

A group of piconets in which connections exists between different piconets is called a?

Answer 9

Scatternet

Question 10

What are the two Bluetooth attacks?

Answer 10

Bluejacking and bluesnarfing

Question 11

Which Bluetooth attack is it that sends unsolicited messages to Bluetooth enabled devices but is considered more annoying than normal because no data is stolen?

Answer 11

Bluejacking

Question 12

Which Bluetooth attack is an attack that accesses unauthorized information from a wireless device through a Bluetooth connection, often between cell phones and laptop computers?

Answer 12

Bluesnarfing

Question 13

What are the most common type of Authentication Services?

Answer 13

RADIUS (does not encrypt)
Kerberos (tickets)
TACACS (Unix)
LDAP (big phone book)

Question 14

Which Authentication service is suitable for what are called “high volume service control expectations” such as dial-in access to a corporate network?

Answer 14

Remote Authentication Dial In User Service (RADIUS)

Question 15

Which authentication service client is typically a device such as a wireless access point (ap) or dial-up server that is responsible for sending user credentials and connections in the form of a RADIUS message to a RADIUS server?

Answer 15

RADIUS

Question 16

Which authentication system utilizes a ticket?

Answer 16

Kerberos

Question 17

Which authentication device is commonly used on Unix devices?

Answer 17

Terminal Access Control Access Control System (TACACS)

Question 18

Which authentication service is referred to the big phone book since it works as a directory service and sometimes called X.500?

Answer 18

Lightweight Directory Access Protocol (LDAP)

Question 19

What is the attack that can occur when user input is not properly filtered?

Answer 19

LDAP injection attacks

Question 20

What is the defense against LDAP injection attacks?

Answer 20

Examine all user input before processing

Question 21

What are the two categories of symmetric algorithms?

Answer 21

Stream Cipher

Block Cipher

Question 22

What is stream cipher?

Answer 22

Takes one character and replaces it with another character

Question 23

What is block cipher?

Answer 23

Manipulates an entire block of plaintext at one time

Question 24

What are the three protections in information security?

Answer 24

Confidentiality
Integrity
Availability

Question 25

Ensures that only authorized parties can view the information

Answer 25

Confidentiality

Question 26

Ensures that the information is correct and no unauthorized person or malicious software has altered the data

Answer 26

Integrity

Question 27

Ensures that the data is accessible to authorized users

Answer 27

Availability

Question 28

What are the steps of risk management?

Answer 28

Asset identification 
Threat identification 
Vulnerability appraisal
Risk assessment 
Risk mitigation

Question 29

A standard network device for connection multiple Ethernet devices together by using twisted-pair copper or fiber-optic cables in order to make them function as a single network segment?

Answer 29

Hub

Question 30

What layer in the OSI model is the hub?

Answer 30

Layer 1

Question 31

A device that connects network segments

Answer 31

Switch

Question 32

What layer in the OSI model is the switch

Answer 32

Layer 2

Question 33

Network device that can forward packets across computer networks

Answer 33

Router

Question 34

What layer in the OSI model is the router?

Answer 34

Layer 3

Question 35

Granting or denying approval to use specific resources

Answer 35

Access control

Question 36

Duties in access control:

Determines the level of security needed for the data and delegates security duties as required

Answer 36

Owner

Question 37

Duties in access control:

Periodically reviews security settings and maintains records of access by end users

Answer 37

Custodian

Question 38

Duties in access control:

Follows organizations security guidelines and does not attempt to circumvent security

Answer 38

End user

Question 39

What are the two basic types of fingerprint scanners?

Answer 39

Static fingerprint scanner

Dynamic fingerprint scanner

Question 40

What scanner requires the user to place the entire thumb or finger on a small oval window on the scanner?

Answer 40

Static fingerprint scanner

Question 41

What scanner has a small slit or opening?

Answer 41

Dynamic fingerprint scanner

Question 42

What has no encryption when voice protocol is used?

Answer 42

IP Telephony

Question 43

This layer is to send the signal to the network or receive the signal from the network

Answer 43

Layer 1

Physical Layer

Question 44

The function of this layer involves with encoding and signaling, data transmission, and reception

Answer 44

Later 1

Physical Layer

Question 45

This layer is responsible for dividing the data into packets; includes error detection and correction

Answer 45

Layer 2

Data Link Layer

Question 46

The function of this layer performs physical addressing, data framing, error detection, and handling

Answer 46

Layer 2

Data Link Layer

Question 47

This layer picks the route the packet is to take, and handles the addressing of the packets for delivery

Answer 47

Layer 3

Network Layer

Question 48

The function of this layer makes logical addressing, routing, fragmentation, and reassembly available

Answer 48

Layer 3

Network Layer

Question 49

What are the two basic types of Intrusion Detection System (IDS)?

Answer 49

HIDS and NIDS

Question 50

What intrusion detection system is a software based application that runs on a local host computer that can detect an attack as it occurs?

Answer 50

Host Intrusion Detection System (HIDS)

Question 51

What intrusion detection system watches for attacks on the network?

Answer 51

Network intrusion detection system

Question 52

What are the (5) steps for securing the Operating System (OS)?

Answer 52

1) develop the security policy
2) perform host software baselining
3) configure operating system and settings
4) deploy the settings
5) implement patch management

Question 53

What is sending an email or displaying a web announcement that falsely claims to be from a legitimate enterprise in an attempt to trick the user into surrendering private information?

Answer 53

Phishing

Question 54

What phishing attack automatically redirects the user to the fake site?

Answer 54

Pharming

Question 55

What phishing attack targets only specific users?

Answer 55

Spear phishing

Question 56

What phishing attack targets wealthy individuals?

Answer 56

Whaling

Question 57

What phishing attack uses telephone call instead of emails?

Answer 57

Vishing

Question 58

What are the three categories of authorization credentials?

Answer 58

1) what a user has (token or card)
2) what a user is (biometrics)
3) what a user knows (passwords)

Question 59

Computer typically located in an area with limited security and loaded with software and data files that appear to be authentic, yet they are actually imitations of real data files

Answer 59

Honeypot

Question 60

Software that enters a computer system without the user’s knowledge or consent and then performs an unwanted and usually harmful action

Answer 60

Malware

Question 61

What are the two types of malware that have the primary objective of spreading

Answer 61

Viruses and worms

Question 62

A malicious computer code that, like it’s biological counterpart, reproduces itself on the same computer

Answer 62

Computer virus

Question 63

What are the different types of computer viruses?

Answer 63

• program virus
• macro virus
• boot virus
• comparison virus

Question 64

Malicious program designed to take advantage of a vulnerability in a application or an operating system in order to enter a computer

Answer 64

Worm

Question 65

An executable program advertised as performing one activity but actually does something else

Answer 65

Trojan horse

Question 66

Set of software tools used by an attacker to hide actions or presence of other types of malicious software

Answer 66

Rootkit

Question 67

Computer code that lies dormant until it is triggered by a specific logical event

Answer 67

Logic bomb

Question 68

Software code that gives access to a program or service that circumvents any normal security protection

Answer 68

Backdoors

Question 69

General term used to describe software that spies on users by gathering information without consent, thus violating their privacy

Answer 69

Spyware

Question 70

Software program that delivers advertising content in a manner that is unexpected and unwanted by the user

Answer 70

Adware

Question 71

Captures and stores each keystroke that a user types on the computers keyboard

Answer 71

Keyloggers

Question 72

Technique that allows private IP addresses to be used on the public internet

Answer 72

Network Address Translation (NAT)

Question 73

Examines the current state of a system or network device before it is allowed to connect to the network

Answer 73

Network Access Control (NAC)

Question 74

Functions as a separate network that rests outside the secure network perimeter; untrusted outside users can access but cannot enter the secure network

Answer 74

Demilitarized Zone (DMZ)

Question 75

Allows scattered users to be logically grouped together even though they may be attached to different switches

Answer 75

VLAN

Question 76

Refers to any combination of hardware and software that enables remote users to access a local internal network

Answer 76

Remote access

Question 77

Targets SQL servers by injecting commands

Answer 77

SQL injections

Question 78

Attack that injects XLM tags and data into a database

Answer 78

XML injection

Question 79

Similar to SQL injection attacks can occur when user input is not properly filtered

Answer 79

LDAP injection attacks

Question 80

Difference between symmetric and asymmetric algorithms

Answer 80

Symmetric does CIA

Asymmetric does CIA and Authenticity and Nonrepudiation

Question 81

Steps for basic forensic procedures

Answer 81

1) Secure crime scene
2) collect the evidence
3) establish a chain of custody
4) examine the evidence

Question 82

System that provide and regulate heating and cooling for data centers

Answer 82

HVAC

Question 83

A defense for shielding electromagnetic field

Answer 83

Faraday cage

Question 84

Form of eavesdropping in which special equipment is used to pick up telecommunication signals or data within a computer device by monitoring the electromagnetic fields

Answer 84

Van Eck phreaking

Question 85

In order for a fire to occur, four entities must be present

Answer 85

• fuel
• oxygen
• heat
• reaction

Question 86

Copying information to a different medium and storing it

Answer 86

Data backups

Question 87

Starting point for all backups

Answer 87

Full backups

Question 88

Backs up any data that has changed since last full backup

Answer 88

Differential backup

Question 89

Backs up any data that has changed since last full backup or last incremental backup

Answer 89

Incremental backup

Question 90

Defined as the maximum length of time that any organization can tolerate between backups

Answer 90

Recovery Point Objective (RPO)

Question 91

The length of time it will take to recover the data that has been backed up

Answer 91

Recovery Time Objective (RTO)

Question 92

What are the different port states?

Answer 92

• Open
• Closed
• Blocked

Question 93

Application or service assigned to that port is listening for instructions

Answer 93

Open Port

Question 94

No process is listening at this port

Answer 94

Closed Port

Question 95

The host system does not reply to any inquiries to this port number

Answer 95

Blocked port

Question 96

Process of inventorying item that has positive economic value

Answer 96

Asset identification

Question 97

Determining the potential threats against the assets that come from any agents

Answer 97

Threat evaluation

Question 98

Determining the current weakness in assets

Answer 98

Vulnerability appraisal

Question 99

Determining the damage that would result from an attack and the likelihood that the vulnerability is a risk to the organization

Answer 99

Risk assessment

Question 100

Deciding what to do with the risk

Answer 100

Risk mitigation

Question 101

Symmetric encryption is also called

Answer 101

Private key cryptography

Question 102

This stream cipher simply substitutes one letter or character for another

Answer 102

Substitution cipher

Question 103

This stream cipher rearranges letters without changing them

Answer 103

Transposition cipher

Question 104

Block cipher that divides plaintext into 64-bit blocks and then executes the algorithm 16 times

Answer 104

Data Encryption Standard (DES)

Question 105

Uses three rounds of encryption instead of one

Answer 105

Triple Data Encryption Standard (3DES)

Question 106

Set of algorithms set up by Ron Rivest

Answer 106

Rivest Cipher (RC)

Question 107

Stream of cipher that accepts keys up to 128 bits in length

Answer 107

RC4

Question 108

Asymmetric cryptographic algorithms are also known as

Answer 108

Public key cryptography

Question 109

Is known to everyone and can be freely distributed

Answer 109

Public Key

Question 110

Is known only to the individual whom it belongs to

Answer 110

Private key

Question 111

Electronic verification of the sender

Answer 111

Digital signature

Question 112

Most common asymmetric cryptography algorithm

Answer 112

RSA

Question 113

Cryptology that uses sloping curves

Answer 113

Elliptic Curve Cryptography (ECC)

Question 114

Attempts to use the unusual and unique behavior of microscopic object to enable users to securely develop and share keys as well as to detect eaves dropping

Answer 114

Quantum cryptography

Question 115

Uses lattice based cryptography

Answer 115

NTRUEncrypt

Question 116

Unsolicited email

Answer 116

Spam

Question 117

Variation of spam that targets instead messaging

Answer 117

Spim

Question 118

False warning, often contained in an email message claiming to come from IT Department

Answer 118

Hoax

Question 119

Attack that injects scripts into a web application server that will then direct attacks at clients

Answer 119

Cross-Site Scripting (XSS)

Question 120

Uses the server as a platform to launch attacks on the other computers that access it

Answer 120

Cross-Site Scripting (XSS)

Question 121

An XSS attack requires a website to meet what two criteria

Answer 121

1) accepts user input without validating it

2) uses that input in an response without encoding it

Question 122

Attack that targets vulnerabilities in client applications that interact with a compromised server or process malicious data

Answer 122

Client-side attack

Question 123

Example of an attack:

A users computer becoming compromised just by viewing a web page and not even clicking any content.

Answer 123

Drive-by download

Question 124

When an attacker modifies the header

Answer 124

HTTP headed manipulation

Question 125

Part of a HTTP packet that is composed of fields that contain the different characteristics of the data being transmitted

Answer 125

HTTP header

Question 126

Specific directory on a web servers file system

Answer 126

Root directory

Question 127

Programs that provide additional functionality to web browsers

Answer 127

Add-ons

Question 128

A random string assigned to that session

Answer 128

Session token

Question 129

An attack in which an attacker attempts to impersonate the user by using their session token

Answer 129

Session hijacking

Question 130

Occurs when a process attempts to store data in RAM beyond of the fixed length storage buffer

Answer 130

Buffer overflow

Question 131

Attacks attempts to prevent system from performing it’s normal functions

Answer 131

Denial of service (DoS)

Question 132

Attack uses the Internet Control Message Protocol (ICMP) which is a layer protocol that is part of the Transmission Control Protocol/Internet Protocol (TCP/IP) to flood a victim with packets

Answer 132

Ping flood

Question 133

Uses hundreds or thousands of zombie computers in a botnet to flood a device with requests

Answer 133

distributed denial of service (DDoS)

Question 134

Attack by intercepting legitimate communication and forging a fictitious response to the sender

Answer 134

Man-in-the-middle

Question 135

Makes a copy of the transmission before sending it to the recipient

Answer 135

Replay

Question 136

An attacker could modify the MAC address in the ARP cache so that the corresponding IP address points to a different computer

Answer 136

ARP poisoning

Question 137

Substitutes DNS addresses so that the computer is automatically redirected to another device

Answer 137

DNS poisoning

Question 138

Exploiting a vulnerability in software to gain access to resources that the user would normally be restricted from obtaining

Answer 138

Privilege escalation

Question 139

Attack using third party to gain access rights

Answer 139

Transitive access

Question 140

Privilege that are granted to users to access hardware and software resources

Answer 140

Access rights

Question 141

Different ways to control risk

Answer 141

• privilege management
• change management
• incident management

Question 142

The process of assigning and revoking privileges to objects; that is, it covers the procedures of managing object authorization

Answer 142

Privilege management

Question 143

Enhanced type of server digital signature

Answer 143

Extended validation SSL certificate (EV SSL)

Question 144

Most widely accepted format for digital signatures

Answer 144

X.509

Question 145

The framework for all of the entities involved in digital certificates for digital certificate management -including hardware, software, people, policies, and procedures-to create, store, distribute, and revoke digital certificates

Answer 145

Public Key Infrastructure (PKI)

Question 146

Refers to the type of trusting relationship that can exist between individuals or entities

Answer 146

Trust model

Question 147

Assigns a single hierarchy with one master CA called the root

Answer 147

Hierarchal trust model

Question 148

Class 1 digital certificate

Answer 148

Personal Digital Certificate

Question 149

Class 2 Digital Certificate

Answer 149

Server Digital Certificates

Question 150

Class 3 digital certificate

Answer 150

Software digital certificate

Question 151

Trust model with one CA that acts as a facilitator to interconnect all other CA’s

Answer 151

Bridge Trust Model

Question 152

Trusted third party agency that is responsible for issuing the digital certificates

Answer 152

Certificate Authority (CA)

Question 153

Protocol that guarantees privacy and data integrity between applications communicating over the internet

Answer 153

Transport Layer Security (TLS)

Question 154

An encrypted alternative to the Telnet protocol that is used to access remote computers

Answer 154

Secure Shell (SSH)

Question 155

Set of protocols developed to support the secure exchange of packets. Because it operates at a low level in the OSI model, considered to be a transparent security protocol

Answer 155

IPsec

Question 156

What are the two encryption modes IPsec supports

Answer 156

Transport and tunnel

-transport mode encrypts only the data portion

Question 157

Two or more servers that are interconnected to appear as one

Answer 157

Server cluster

Question 158

A standby server exists only to take over for another server in the event of failure

Answer 158

Asymmetric server cluster

Question 159

Every server in the cluster performs useful work. If one server fails, the remaining servers continue to perform their normal work as well as that of the failed server

Answer 159

Symmetric server cluster

Question 160

Uses multiple hard drives for increased reliability and performance

Answer 160

RAID

Question 161

Striped desk array so the data is broken down into blocks and each block is written to a separate disk

Answer 161

RAID Level 0

Question 162

Data written to separate drives

Answer 162

RAID Level 1

Question 163

Each entire data block is written on a data disk and parity for blocks in the same rank as generated and recorded on a separate disk

Answer 163

RAID Level 5

Question 164

A mirrored array whose segments are RAID 0 arrays

Answer 164

RAID Level 0+1