RG: Ch 7: Security Flashcards
Which of the following physical characteristics to identify the user?
A. Hardware tokens
B. Biometric locks
C. Smart cards
D. Badge readers
B. Biometric locks
Biometric devices use physical characteristics to identify the user. Such devices are becoming more common in the business environment. Biometric systems include hand scanners, retinal scanners, and, possibly soon, DNA scanners. Hardware tokens are devices that contain security credentials. Smart cards are card that contain a chip and credentials. Badge readers are devices that read the information on a card and allow or disallow entry.
Which Windows group allows members to install most software but keeps them from changing key operating system files?
A. Power user
B. Guest
C. Administrator
D. User
A. Power user
The Power Users group is not as powerful as the Administrators group. Membership in this group gives read/write permission to the system, allowing members to install most software but keeping them from changing key operating system files. This is a good group for those who need to test software (such as programmers) and junior administrators. The Guest group is used to allow restricted access to the device. The Administrators group allows full access to the device. The rights held by the Users group are a compromise between Admin and Guest.
What element of a virus uniquely identifies it?
A. ID
B. Signature
C. Badge
D. Marking
B. Signature
A signature is an algorithm or other element of a virus that uniquely identifies it. Because some viruses have the ability to alter their signature, it is crucial that you keep signature files current, whether you choose to manually download them or configure the antivirus engine to do so automatically. An ID is any types of identifying badge or marker. A badge is something worn to provide identification. Marking is not a word typically used when discussing algorithms or attacks.
In which filtering is the physical address used?
A. MAC address filtering
B. Email filtering
C. IP address filtering
D. URL filtering
A. MAC address filtering
As physical addresses are MAC addresses MAC address filtering is the correct answer. Email filtering is the filtering of email addresses from which one is allowed to receive. IP address filtering is the type of filtering done on a router or firewall, based on IP addresses. URL filtering restricts the URLs that can be reached with the browser.
Which method is good for a lost mobile device?
A. Remote wipe
B. Geofencing
C. Screen lock
D. Segmentation of data
A. Remote wipe
Remote wipe gives you the ability to delete all content when a device is stolen or lost. Geofencing allows you to restrict use of the device to a geographic area. Screen locks prevent access to the home screen on the device. Segmentation of data is the separation of personal data from enterprise data on a device.
Which of the following was a concept that was designed to make it easier for less knowledgeable users to add a new client to the WLAN without manually entering the security information on the client?
A. SSID
B. WPS
C. WEP
D. WPA
B. WPS
Wi-Fi protected setup (WPS) was a concept that was designed to make it easier for less knowledgeable users to add a new client to the WLAN without manually entering the security information on the client. One method involves pushing a button on the AP at the same time a client is attempting to join the network so that the settings are sent to the client. Other methods involve placing the client close to the AP, and near-field communication is used for the process. Service Set identifier (SSID) is the name of the WLAN. Wired Equivalent Privacy (WEP) and Wi-Fi protected Access (WPA) are wireless security protocols.
Which type of screen lock uses gestures?
A. Fingerprint
B. Face
C. Swipe
D. Passcode
C. Swipe
Which of the following is the term used for someone being so close to you when you enter a building that they are able to come in right behind you without needing to use a key, a card, or any other security device?
A. Shadowing
B. Spoofing
C. Tailgating
D. Keyriding
C. Tailgating
Tailgating is the term used for someone being so close to you when you enter a building that they are able to come in right behind you without needing to use a key, a card, or any other security device. Many social-engineering intruders needing physical access to a site will use this method of gaining entry. Shadowing is when one user monitors another for training. Spoofing is the adoption of another’s email address, IP address, or MAC address. Keyriding is not a word typically used when discussing social engineering.
Which of the following is the process of masquerading as another user or device?
A. Shadowing
B. Spoofing
C. Duplicating
D. Masking
B. Spoofing
Spoofing is the process of masquerading as another user or device. It is usually done for the purpose of accessing a resource to which the hacker should not have access or to get through a security device such as a firewall that may be filtering traffic based on source IP address. Shadowing is when one user monitors another for training. Duplication is the creation of a matching object. Masking is not a term used when discussing impersonation.
Which of the following is a series of two doors with a small room between them?
A. Mantrap
B. Trapdoor
C. Badgetrap
D. Saferoom
A. Mantrap
A mantrap is a series of two doors with a small room between them. The user is authenticated at the first door and then allowed into the room. At that point, additional verification will occur (such as a guard visually identifying the person), and then the person is allowed through the second door. A trapdoor is doorway that is usually hidden. A saferoom is a room that is impenetrable from outside, and badgetrap is not a term used when disusing doorway systems.
Which of the following was used to increase security in WPA?
A. TKIP
B. AES
C. IPSec
D. SSL
A. TKIP
WPA was able to increase security by using a Temporal Key Integrity Protocol (TKIP) to scramble encryption keys using a hashing algorithm. Temporal Key Integrity Protocol is the encryption method used in WPA. Advanced Encryption Standard (AES) is the encryption used in WPA2. IPSec is an industry-standard encryption method, and Secure Sockets Layer (SSL) is an encryption method used in many VPNs.
Which NTFS permission is the least required to run a program?
A. List folder contents
B. Full Control
C. Read
D. Write
D. Write
This combines the permissions of Read with those of List Folder Contents and adds the ability to run executables. List Folder Contents allows viewing what items are in a folder. Full Control allows everything, and Read only allows reading documents.
Which of the following passwords is the strongest?
A. password
B. pAssword
C. Pa$$word
D. P@ssw0rd
D. P@ssw0rd
Although length is now considered the most important password security factor, complexity is also a factor, and these examples are all the same length. The password P@ssw0rd contains four character types, the most of any of the options, which increases the strength of the password. Password and pAssword contains only two types of characters. Pa$$word contains three types.
Which type of virus covers itself with protective code that stops debuggers or disassemblers from examining critical elements of the virus?
A. Companion
B. Macro
C. Armored
D. Multipartite
C. Armored
An armored virus is designed to make itself difficult to detect or analyze. Armored viruses cover themselves with protective code that stops debuggers or disassemblers from examining critical elements of the virus. A companion virus is one that attaches to a file or adopts the name of a file. A macro virus is one that hides in macros, and a multipartite virus is one that has multiple propagation methods.
Which of the following was created as a first stab at security for wireless devices?
A. WPA
B. WPA2
C. TKIP
D. WEP
D. WEP
Wired Equivalent Privacy (WEP) is a standard that was created as a first stab at security for wireless devices. Using WEP-encrypted data to provide data security has always been under scrutiny for not being as secure as initially intended. Wi-Fi Protected Access (WPA) and WPA2 are later methods that cane after WEP. Temporal Key Integrity Protocol is the encryption method used in WPA.
