SECURITY + EXAM PRACTICE

Which of the following provides for the highest level of security during login?

a.    Two-Factor Authentication

b.    One-Factor Authentication

c.    Single Sign-On

d.    Strong Authentication

Which of the following cable types would an attacker successfully implement a vampire tap?

1. Fiber Optic
2. Shielded Twisted Pair
3. Unshielded Twisted Pair
4. Coaxial

A chip on the motherboard of the computer that provides cryptographic services, such as a true random number generator and full support for asymmetric encryption, is known as?

1. Trusted Platform Module
2. Subscriber Identity Module
3. Common Access Card
4. File Encryption Key

Which of the following protocols is used to protect email messages by using digital certificates?

1. SMTP
2. POP3
3. S/MIME
4. ISAKMP

Which of the following services uses port 19?

1. FTP
2. Echo
3. Telnet
4. Chargen

Which of the following forms of physical access control involve a combination lock that allows access after the buttons are pushed in the proper sequence?

1. Deadbolt Lock
2. Preset Lock
3. Tailgate Sensor
4. Cipher Lock

Which of the following algorithms is an asymmetric algorithm?

1. RC4
2. DES
3. RSA
4. MD5

Which RAID Level uses a striped disk array so that data is broken down into blocks and each block is written to a separate disk drive?

1. RAID 0
2. RAID 1
3. RAID 3
4. RAID 5

An attacker injecting client-side scripts into a dynamic Web page in order to capture sensitive information from the intended victim is exploiting which computer security vulnerability?

1. SMTP Open Relay
2. XSS
3. SQL Injection
4. Java

Which of the following types of backups only backs up files that have the archive bit turned on, but removes the archive bit when backed up?

a.    Full Backup

b.    Differential Backup

c.    Grandfather Backup

d.    Incremental Backup

The presentation of credentials typically performed when logging on to a system is known as?

a.    Authentication

b.    Identification

c.    Authorization

d.    Access

Which of the following is not a component of the AAA (“Triple A”) Model?

a.    Availability

b.    Accounting

c.    Authenticity

d.    Authorization

You are working in the data center when you hear a noise on one of the computers followed by flames. Which is the best type of fire extinguisher to put out the fire?

a.    Class A

b.    Class B

c.    Class C

d.    Class D

Which of the following replaces multiple private IP addresses with a single public IP address?

a.    MAC

b.    NIC

c.    NAT

d.    PAT

Which symmetric algorithm is utilized by WEP?

a.    Elliptic Curve

b.    RC4

c.    Diffie-Hellman

d.    El Gamal

Which of the following refers to any combination of hardware and software that enables access to remote users to a local internal network?

a.    SSO

b.    EAP

c.    RAS

d.    PAP

Once evidence is collected at a crime scene, what is the first action that should be taken?

a.    Limit loss and damage to the asset

b.    Initiate a chain of custody

c.    Begin forensic analysis

d.    Initiate the incident response plan

What are two defensive measures employed to prevent buffer overflows?

a.    ASLR and ActiveX

b.    Java and DEP

c.    DEP and ASLR

d.    ActiveX and Java

Which of the following network authentication protocols uses symmetric key cryptography, stores a shared key for each network resource and uses a Key Distribution Center (KDC)?

a.    Telnet

b.    Kerberos

c.    Netware

d.    TACACS+

Executable code that tracks your online activity and reports it back to marketers without actually attacking your computer is categorized as?

1. Adware
2. Trojan
3. Virus
4. Rootkit

An unauthenticated connection to a Microsoft Windows 2000 or Windows NT computer that does not require a username or password is known as?

1. Freeware
2. Open Authentication
3. Null Session
4. Remote Desktop

End users are complaining about a lot of email from online vendors and pharmacies. Which of the following is this an example of?

1. Spam
2. Trojan
3. Phishing
4. Adware

Which of the following ensures that a user cannot deny having sent a message?

1. Availability
2. Integrity
3. Authenticity
4. Nonrepudiation

As an administrator, before configuring any IDS technologies that would scan for anomalies, you would first have to obtain:

1. Permit
2. Definitions
3. Security Baseline
4. Anomaly Signatures

Reviewing a subject’s privileges over an object is known as:

1. Privilege Creep
2. Privilege Auditing
3. Performance Monitor
4. System Monitor

Which of the following is most likely to allow an attacker to make a switch function as a hub?

1. MAC Flooding
2. ARP Poisioning
3. DNS Poisioning
4. Fake Device Redirect

A program that attaches itself to a document or program and then executes when that document is opened or program is launched is known as which type of malware?

1. Virus
2. Trojan Horse
3. Worm
4. Spam

What is a form of access control that allows by default unless a condition is specifically denied?

1. Implicit Deny
2. Explicit Deny
3. Access Control Entry
4. Separation of Duties

Which of the following RAID Levels mirrors its actions from the primary drive to another drive, creating an exact duplicate to achieve fault tolerance?

1. RAID 0
2. RAID 1
3. RAID 3
4. RAID 5

Which of the following wireless standards operates at the 2.4 GHz radio frequency spectrum and can support devices transmitting at 54 Mbps?

1. 802.11a
2. 802.11b
3. 802.11g
4. 802.11n

Which of the following services uses port 88?

1. TACACS+
2. RADIUS
3. Kerberos
4. IMAP v4

Ensuring that information is correct and no unauthorized person or malicious software has altered the data is known as:

1. Authenticity
2. Nonrepudiation
3. Confidentiality
4. Integrity

What is it called when two different messages are hashed and, in result, produce the same digest?

1. PKI
2. Detection
3. Collusion
4. Collision

Which type of attack involves the man-in-the-middle capturing login credentials between a computer and a server, then at a later time, using the captured credentials?

1. Spoofing
2. Denial of Service
3. Smurf
4. Replay

What is the term used to describe a system attack that provides input data that exceeds the limits recognized by a program?

1. Cookie
2. Denial of Service
3. Buffer Overflow
4. Input Validation

What would an attacker use to break into a computer, gain privileges to perform unauthorized functions, and remove traces of the attacker’s existence?

1. Rootkit
2. Backdoor
3. Privilege Escalation
4. Penetration Test

Which type of monitoring methodology is used to examine network traffic, activity, transactions, or behavior by comparing against a predefined set of definitions?

1. Anomaly-Based
2. Signature-Based
3. Behavior-Based
4. Heuristic-Based

Which of the following hides the IP address of a network device by replacing a single private IP address with a single public IP address?

1. PAT
2. PAP
3. NAT
4. NAC

What is the term given to an alarm that is raised when there is no abnormal behavior called?

1. False Positive
2. False Negative
3. False Acceptance
4. False Rejection

Which of the following services are affected by shutting down ports 110 and 143?

1. FTP and HTTP
2. DNS and DHCP
3. SMTP and SNMP
4. POP and IMAP

Which of the following types of algorithms takes a variable-length message and produces a fixed-length hash?

1. Stream Cipher
2. Block Cipher
3. Message Digest
4. Diffie-Hellman

Which of the following define the actions employees, contractors, vendors, or visitors may perform while accessing systems and networking equipment?

1. SLA
2. ILM
3. PII
4. AUP

The technique known as “sandboxing” is used to defend against attacks from which of the following?

1. ActiveX Controls
2. Java Applet
3. JavaScript
4. Third-Party Cookie

Using cryptography to prove that the sender was legitimate and not an imposter is an example of which protection?

1. Authenticity
2. Accounting
3. Availability
4. Authorization

What can an attacker use to send massive amounts of spam and perform distributed denial of service attacks?

1. Zombie
2. Botnet
3. Load Balancing
4. Phishing

Which of the following would be the best tool in helping an administrator quickly find a rouge device on the network?

1. Protocol Analyzer
2. Network Mapper
3. DNS Log Aggregator
4. Vulnerability Scanner

Which asymmetric algorithm is used to encrypt a shared key in order to establish a symmetric session?

1. RSA
2. Whirlpool
3. Message Digest
4. Diffie-Hellman

An email message designed to trick the user into surrendering sensitive and/or private information is known as:

1. Phishing
2. Pharming
3. Hoax
4. Honeymail

Which access control model is the most restrictive, uses labels, and subscribes to the idea of need to know?

1. Discretionary Access Control
2. Mandatory Access Control
3. Role-Based Access Control
4. Rule-Based Access Control

An attack from one computer designed to consume network resources so that the network or its devices cannot respond to legitimate requests is best described as:

1. Denial-of-Service
2. Buffer Overflow
3. DNS Zone Transfer
4. Brute Force Attack

Granting users only the minimum number of privileges necessary to perform their job is known as:

1. Need-to-know
2. Least privilege
3. Job rotation
4. Separation of duties

Which of the following attacks begins with the attacker creating hashes of common words and comparing those hashed words against those in a stolen password file?

1. Birthday Attack
2. Rainbow Table
3. Dictionary Attack
4. Brute Force

Unsolicited messages sent via Bluetooth to Bluetooth-enabled devices is known as:

1. Blue Jacking
2. Blue Sniping
3. Blue Snarfing
4. Blue Bombing

Which of the following is used to address customer-specific, security-related issues?

1. Hotfix
2. Critical Update
3. Patch
4. Feature Pack

What software scans a computer for infections as well as monitor computer activity and scan all new documents that might contain malware?

1. Popup Blocker
2. Antispyware
3. Antispam
4. Antivirus

Which of the following modes of IPSec encrypts only the data portion of each packet and leaves the header unencrypted?

1. Authentication Mode
2. Transport Mode
3. Tunnel Mode
4. Encapsulating Mode

What is known as malware installed on a computer that collects information about users, such as Internet surfing habits or browser history, without their knowledge?

1. Third-Party Cookie
2. Recon Virus
3. ARP Poisoning
4. Spyware

The fraudulent act of taking advantage of the 5-day grace period to delete Internet domain names is known as:

a.      Kiting

b.      Spoofing

c.      Poisoning

d.      Zone Transfer

If a user is able to log in to their MSN Hotmail email account and is able to access multiple services without having to authenticate, which access control model is being used?

1. Extended
2. Single Sign-On
3. Multifactor
4. Multivendor

An account that is secretly set up without the administrator’s knowledge or permission, that cannot be detected, and that allows for remote access to the device is known as?

1. Default Account
2. Cache
3. Backdoor
4. Certificate Repository

What is the concept of having more than one person required to complete a task to avoid a single user from having complete control known as?

1. Separation of Duties
2. Job Rotation
3. Least Privilege
4. Need to Know

Which of the following is not a use for a protocol analyzer?

1. Network Traffic Characterization
2. Network Troubleshooting
3. Security Analysis
4. Packet Shaping

Which term best describes a low-level system program that uses a notification engine designed to monitor and track down hidden activity on a desktop system, server, PDA, or cell phone?

a.    Activity Monitor

b.    Protocol Analyzer

c.    System Monitor

d.    Performance Monitor