Test Study 4

Question 1

What is Type 2 XSS?

Answer 1

Persistent

Malicious scripts that are submitted and stored on the server to be presented to other users.

Question 2

What works on port 25?

Answer 2

SMTP

Question 3

What has an IP header of 51?

Answer 3

AH

Question 4

What are the key concepts of Common Criteria?

Answer 4

Target of Evaluation
Protection Profile
Security Functionality Requirements
Security Assurance Requirements
Evaluation Assurance Level

Question 5

What operates on port 515?

Answer 5

CUP

Question 6

What is the trusted path?

Answer 6

A secure channel for system management activities to prevent imitation.

Question 7

What is PRI in networking?

Answer 7

Primary Rate Interface ISDN, consists of 24 x 64 kb/s channels for a total of 1.544 Mb/s
Also known as T1 or E1

Question 8

Which standard certificate format is used most often by CAs?

Answer 8

PEM

Question 9

What port does SNMP work on?

Answer 9

161

Question 10

What packet has an IP header of 1?

Answer 10

ICMP

Question 11

What ISDN can provide speeds of at least 30 Mb/s?

Answer 11

E-3, T-3

Question 12

What part of the TCB is responsible for handling user access requests?

Answer 12

Security kernel.

Question 13

What happens in the analyze step of continuous monitoring?

Answer 13

Analyze the data collected and report the findings and determine the appropriate response.

Question 14

What is the IP header for ESP?

Answer 14

50

Question 15

What RMF step includes reporting findings and determining the appropriate response?

Answer 15

Analyze and Report

Question 16

What framework will provide an indication of maturity of security controls?

Answer 16

COBIT

Question 17

What operates on port 67/68

Answer 17

BootP / DHCP

Question 18

What happens in the review and update step of continuous monitoring?

Answer 18

Review and update the monitoring program, adjusting the strategy and maturing measurement capabilities to increase visibility into assets and awareness of vulnerabilities.

Question 19

What is the IP header for ICMP?

Answer 19

1

Question 20

What port does SMTP work on?

Answer 20

25

Question 21

What happens in the establish step of continuous monitoring?

Answer 21

Determine metrics, status monitoring frequencies, control assessment frequencies, and technical architecture.

Question 22

What provides digital network over voice cabling?

Answer 22

ISDN

Question 23

What encryption method replaces characters based on a fixed number of positions away?

Answer 23

Shift cipher

Question 24

What RMF step includes collecting security related information required for metrics?

Answer 24

Implement

Question 25

What are the wireless standards that can operate at 5 ghz?

Answer 25

802. 11a
803. 11ac
804. 11n

Question 26

What are the speeds of T-1, T-3, E-1, and E-3?

Answer 26

T-1 is 1.544 Mb/s
T-3 is 45 Mb/s
E-1 is 2.048 Mb/s
E-3 is 34.368 Mb/s

Question 27

What works on port 143?

Answer 27

IMAP

Question 28

What is a capability table?

Answer 28

A list of subjects that are authorized to access a specific object.

Question 29

What is PASTA?

Answer 29

Process for attack simulation and threat analysis

It’s a seven step risk oriented threat assessment methodology.

Question 30

What is the difference in S/MIME and PGP?

Answer 30

PGP relies on web of trust, S/MIME requires PKI

Question 31

What protocol can apply encryption and digital signatures to email, and is compatible with a wide range of key management approaches?

Answer 31

MOSS

Question 32

What happens in the respond step of continuous monitoring?

Answer 32

Respond to findings with technical, management, and operational mitigating activities or acceptance, transference, or avoidance.

Question 33

What are the wireless standards and their ranges?

Answer 33

5ghz
802.11a
802.11ac
2.5ghz
802.11b
802.11g
Both
802.11n

Question 34

What is an ephemeral key?

Answer 34

a key generated based on all new parameters and randomized.

Question 35

What is a secure channel for system management?

Answer 35

Trusted Path

Question 36

What is the reference monitor?

Answer 36

An abstract machine that is used to validate access to objects by authorized subjects. It operates at the boundary between the trusted and untrusted realm.

Question 37

What is BR in networking?

Answer 37

Basic Rate ISDN, it consists of 2 x 64kb/s channels for a total of 128 kb/s

Question 38

What are the key principals of GDPR?

Answer 38

Lawfulness, fairness and transparency.
    Purpose limitation.
    Data minimization.
    Accuracy.
    Storage limitation.
    Integrity and confidentiality (security)
    Accountability.

Question 39

What is a statement of importance?

Answer 39

A document derived from the BIA which is relevant to continuity plans.

Question 40

What is OCSP stapling?

Answer 40

The presenter of a certificate bears the resource cost involved in providing OCSP responses by appending a time-stamped OCSP response signed by the CA to the initial TLS handshake.

Question 41

What works on port 110?

Answer 41

POP

Question 42

What is a tunneling protocol that works at the network layer that cannot handle its own encryption?

Answer 42

GRE

Generic Routing Encapsulation

Question 43

What is material evidence?

Answer 43

Evidence that bears a significant relationship to the facts of the case.

Question 44

What is S/MIME?

Answer 44

Secure Multi Purpose Internet Mail Extentions

A protocol for sending digitally signed or encrypted email.

Question 45

What operates on port 2049?

Answer 45

NFS

Question 46

What are AH, UDP, ESP in long form?

Answer 46

Authentication Header
User Datagram Protocol
Encapsulation Security Protocol

Question 47

What port does LDAPS work on?

Answer 47

636

Question 48

What is the name of the process where the presenter of a certificate also provides a time-stamped and signed OCSP response to prove validity of a certificate?

Answer 48

Stapling

Question 49

What is a tunneling protocol that works at the data link layer that cannot handle its own encryption?

Answer 49

L2TP

Question 50

What operates on port 389?

Answer 50

LDAP

Question 51

What port does TFTP operate on?

Answer 51

69

Question 52

What port does POP work on?

Answer 52

110

Question 53

What is Common Criteria?

Answer 53

A standard/framework for security certification.

Question 54

What kind of key is generated based on all new parameters?

Answer 54

Ephemeral key

Question 55

What are the types and names of XSS?

Answer 55

Type 1 - Reflected

Type 2 - Persistent

Question 56

What operates on port 20?

Answer 56

FTP

Question 57

What is the ports for BootP?

Answer 57

67/68

Question 58

What is GRE?

Answer 58

Generic Routing Encapsulation

An old, layer 3 tunneling protocol that cannot do its own encryption.

Question 59

What port does NFS work on?

Answer 59

2049

Question 60

What are the wireless standards that can operate at 2.5ghz?

Answer 60

802. 11b
803. 11g
804. 11n

Question 61

What is PEM?

Answer 61

A commonly used standard by CAs.

Question 62

Which XSS involves a user clicking on a bad hyperlink?

Answer 62

Type 1, Reflected

Question 63

What is the security kernel?

Answer 63

Handles all user/application requests for access to system resources. It enforces controls

Question 64

What is a shift cipher?

Answer 64

ROT-13, converts paintext by replacing it with another character a fixed number of positions away.

Question 65

What RMF step includes adjusting the strategy and maturing measurement capabilities?

Answer 65

Review and Update

Question 66

What is Type 1 XSS?

Answer 66

Reflected

Associated with a gullible user clicking a hyperlink with parameters in it

Question 67

What describes the rights a subject has to every object in the system?

Answer 67

Access control matrix

Rights management matrix

Question 68

What protocol can handle either point to point or tunneled communication by itself?

Answer 68

IPSEC

Question 69

What encryption method changes clear text into ciphertext on a letter by letter basis?

Answer 69

Cipher

Question 70

Which XSS involves malicious scripts being served up to the user?

Answer 70

Type 2, Persistent

Question 71

What describes the rights that subjects have to a specific object?

Answer 71

Capability Table

Question 72

Which is faster, T-1 or E-1?

Answer 72

E-1

Question 73

What is an ISDN?

Answer 73

Integrated services digital network, a digital network over voice cabling.

Question 74

What type of evidence bears a relationship to the facts of the case?

Answer 74

Material

Question 75

What type of evidence is reliable?

Answer 75

Competent

Question 76

What are the steps of the SDLC?

Answer 76

Planning
Defining
Designing
Building / Developing
Testing
Deployment

Question 77

Which ISDN would be the minimum to support 30 Mb/s?

Answer 77

E-3

Question 78

What is PPTP?

Answer 78

Point to point tunneling

a vpn protocol that operates at the data link layer, largely in disuse, but can provide authentication and encryption.

Question 79

What ISDN format provides 128 kb/s?

Answer 79

BR

Basic Rate

Question 80

What port does LDAP work on?

Answer 80

389

Question 81

What is IPSEC?

Answer 81

A protocol to provide either point to point or tunneled communication and provide non-repudiation and confidentiality.

Question 82

What is COBIT?

Answer 82

A framework that will provide an indication of the maturity of security controls.

Question 83

What is the IP header for the AH?

Answer 83

51

Question 84

How does a cipher work?

Answer 84

Letter by letter basis

Question 85

What is the TCB and what are some of its properties?

Answer 85

Trusted Computing Base
The sum of all the protection mechanisms within a computer and is responsible for enforcing security policy.
Defined in the orange book
Includes hardware, software, and firmware
Higher TCB ratings require detailed testing procedures and documentation
TCB enforcement depends on parameters supplied by system admins

Question 86

What port does DHCP work on?

Answer 86

67

Question 87

What is a protocol for sending encrypted email?

Answer 87

S/MIME

Question 88

What operates on port 69?

Answer 88

TFTP

Question 89

What is a method that can be used to authenticate email to reduce phishing or spam?

Answer 89

DKIM

Question 90

What happens in the implement step of continuous monitoring?

Answer 90

Implement a continuous monitoring program and collect the security related information required for metrics, assessments and reporting. Automate where possible

Question 91

What RMF step includes determining metrics and control assessment frequencies?

Answer 91

Establish

Question 92

What ISDN format provides up to 1.544 Mb/s

Answer 92

PRI or T1

Question 93

What is DKIM?

Answer 93

Domain Keys Identified Mail

A method used to authenticate email so as to minimize phishing and spam

Question 94

What is L2TP

Answer 94

Layer 2 Tunneling Protocol
An extension of PPTP, it is designed to encapsulate messages for constructing a tunnel but relies on other protocols for encryption

Question 95

What is the IP header for UDP?

Answer 95

17

Question 96

What RMF continuous monitoring step includes a formulating a strategy based on risk tolerance?

Answer 96

Define

Question 97

What is PPP

Answer 97

Point to point protocol

Deprecated protocol for encapsulation of data between permiters.

Question 98

What is an access control matrix and what is it also known as?

Answer 98

Rights management matrix

A model that describes the rights of each subject with respect to every object in the system.

Question 99

What is the port for FTP?

Answer 99

20

Question 100

What is relevant evidence?

Answer 100

Evidence that is of consequence to the determination of the outcome of the case.

Question 101

What operates on port 636

Answer 101

LDAPS

Question 102

What are the steps in continuous monitoring?

Answer 102

Define
Establish
Implement
Analyze and Report
Respond
Review and Update

Question 103

What continuous monitoring step includes handling findings via mitigation, acceptance, transference, or avoidance?

Answer 103

Respond

Question 104

What port does CUP operate on? And what is CUP?

Answer 104

515, common unix printer

Question 105

What port does IMAP work on?

Answer 105

143

Question 106

What packet has an IP header of 17?

Answer 106

UDP

Question 107

What is a seven step process for threat analysis and attack simulation?

Answer 107

PASTA

Question 108

What has an IP header of 50?

Answer 108

ESP

Question 109

What part of the TCB is responsible for validating access?

Answer 109

Reference monitor

Question 110

What is a protocol that works at the data link layer that can provide encryption?

Answer 110

PPTP

Question 111

What is Competent evidence?

Answer 111

Evidence that is reliable.

Question 112

What works on port 161?

Answer 112

SNMP

Question 113

What happens in the define step of continuous monitoring?

Answer 113

Define a strategy based on risk tolerance that maintains clear visibility into assets, awareness of vulnerabilities, up to date threat information, and mission/business impacts.

Question 114

What is a deprecated protocol intended to operate between perimeters?

Answer 114

PPP or point to point

Question 115

What type of evidence is consequential to the outcome of the case?

Answer 115

Relevant

Question 116

What is MOSS?

Answer 116

MIME Object Security Services
A protocol that can apply encryption and digital signatures to MIME objects. It is also intended to be compatible with a wide range of public key management approaches