CISA Refresher 2

Question 1

A validity chekc would be the most useful for the verification of passwords because it would verify that the required format has been used

Answer 1

TRUE

Question 2

a certificate always includes

Answer 2

public key, expiration date and owner’s information

Question 3

SSL provides end point authentication and communication privacy over internet using cryptography

Answer 3

TRUE

Question 4

HTTPS uses prublic key certificates to verify the iddentity of end points

Answer 4

TRUE

Question 5

SSL uses a hyprid of hesed, private and public key cryptographic processes to secure transactions over the inernet through a PKI

Answer 5

TRUE

Question 6

The SSL handshake protocol is based on the application layer but provides for the security of the communication sessions too

Answer 6

TRUE

Question 7

IP network layer packet security protocol establishes VPN via transport and tunnel mode encryption methods

Answer 7

TRUE

Question 8

In establishing IPSec sessions in either mode

Answer 8

security associations are established

Question 9

SA ( Security assosications)

Answer 9

define which security parameters should be applied between the communicating parties as encryption algorithms, Key , initialization vectors, life span of key etc

Question 10

SSH is useful in securing telnet and FTP services, and it implemented as the application layer, as opposed to operating at network layer

Answer 10

TRUE

Question 11

Secure multipurpose internet Mail Extensions (S/MIME)

Answer 11

A standard secure e-mail protocol that authenticates the identity of the sender and receiver

Question 12

Secure electronic Transaction (SET)

Answer 12

is a protocol developed jointly by VISA and master card to secure payment transactions among all parties involved in credit card transactions on behalf of cardholders and merchants

Question 13

SET is an application oriented protocal

Answer 13

TRUE

Question 14

Worm

Answer 14

Variant of a virus frequently encountered, which unlike a virus, does not physically attach itself to another program. To propogate itself to host system. A work typically exploits security weaknesses in the operating systems configurations

Question 15

Following are hardware tactics that can reduce the risk of infection

Answer 15

Use boot virus protection ( built in firmware based virus protections ), Use remote booting ( eg diskless workstations), Use hardware based password, Use write protected tabs on disc, Ensure that insecure protocols are blocked by firewall from external segment and internet

Question 16

Antivirus softwars

Answer 16

are both preventive and detective tool

Question 17

Scanners

Answer 17

Looks for sequence of bits called signatures that are typical of virus program

Question 18

Two type scanners

Answer 18

Virus masked or signature based, Heuristic scanners

Question 19

Heuristic scanners tend to generate a high level of false positive errors

Answer 19

TRUE

Question 20

Heuristic scanners

Answer 20

analyse the code and decides on the basis of stastical probability whether it could contain malicous code

Question 21

Active monitor

Answer 21

Interpret DOS andread onlymemory BIOS calls looking for virus like actions

Question 22

Active monitors can be problematic because

Answer 22

they cannot distinguish between a user request and a program or virus request

Question 23

Cyclic redundancy check

Answer 23

Compute a binary number on a known virus free program that is then stored in a database file. The number is called CRC

Question 24

CRC check can be done only after infection is occured

Answer 24

TRUE

Question 25

CRC check is infective againste new files that are virus infected and that are not recorded in the database

Answer 25

TRUE

Question 26

Behaviour blockers

Answer 26

can ptentially detect a virus at a early stage

Question 27

behaviour blocker

Answer 27

detects potentially abnormal behaviour such as writing to the boot sector or the master boot record, or making changes to the executable files

Question 28

Immunizers

Answer 28

defend against viruses byappending section of themselves to files

Question 29

Immunizers are not always practical sinceit is not possible to immunize files against all known viruses

Answer 29

TRUE

Question 30

Virus wall

Answer 30

virus scanning software used a integrated part of firewall technology

Question 31

Bloting door lock

Answer 31

These locks require the traditional metal key to gain entry

Question 32

Deadman doors

Answer 32

This reduces the risk of piggybacking, when an unauthorized person follows an authorized person through a secured entry

Question 33

Imaging is a process that allows one to obtain a bit for bit copy of dagt to avoid damage of original date or information, it is made to obtain reidual dat such as deleted files, fragments of deleted files and othere information present, from the disk for analysis

Answer 33

TRUE

Question 34

Ingestion/ normalisation

Answer 34

THie process converts the information extracted to a format that can be understood by investigators.

Question 35

short term interruptions such as sags, spikes and surges, which last from a few millionths to a few thousandths of a secons

Answer 35

can be preventeed by using properly placed surge protectors.

Question 36

Intermediate term interruptions which last from few seconds to 30 minutes

Answer 36

can be controlled by UPS devices

Question 37

Long term interruptions which last froma few hours to several days

Answer 37

require the use of alternate power generators

Question 38

since water and electricity do not mix

Answer 38

these systems must be combined with a automaticswitch to shutdownthe electricity suplly to the area protected

Question 39

Helon system

Answer 39

release pressurized Halon gases that remove ozygen from the air, thus starving the fire.

Question 40

Halon substitute is FM 200, which is the most effective alternative

Answer 40

TRUE

Question 41

Argonite

Answer 41

people have suffocagted by breathing argon by mistake

Question 42

Electrical surge protectors

Answer 42

reduce the risk of damage to equipment due to power spikes, Such protectors are typically built into the UPS system