IS3230 CHAPTER 10

Question 1

An element of the access control list known as (ACE) is called ___.

Answer 1

ACCESS CONTROL ENTRY (ACE)

Question 2

A list of security policies that is associated with an object is called ___.

Answer 2

ACCESS CONTROL LIST (ACL)

Question 3

Someone trying to compromise information or data is called ___.

Answer 3

ATTACKER

Question 4

The service provided through Kerberos that identifies users on a computer system and is part of the Key Distribution Center is called ___.

Answer 4

AUTHENTICATION SERVICE

Question 5

A message that is part of the Kerberos authentication process and is composed of the client ID and timestamp is called ___.

Answer 5

AUTHENTICATOR

Question 6

A model that defines basic principles of access controls is called ___.

Answer 6

BELL-LaPADULA MODEL

Question 7

Information that has cryptographic protection applied to it is called ___.

Answer 7

CLEAR TEXT

Question 8

Products that are easily available to anyone is called ___.

Answer 8

COMMERCIAL OFF-THE-SHELF (COTS)

Question 9

ISO/IEC 15408 standard for computer security is called ___.

Answer 9

COMMON CRITERIA

Question 10

.Unauthorized access and release of information is called ___.

Answer 10

COMPROMISE

Question 11

Used to control access to resources this is called ___.

Answer 11

CREDENTIALS

Question 12

Used to protect data so that it cannot be easily read or understood is called ___.

Answer 12

CRYPTOGRAPHY

Question 13

An attack against a system that limits it from doing the tasks it is intended to do is called ___.

Answer 13

DENIAL OF SERVICE (DoS) ATTACK

Question 14

Provides a means of verifying identities of computer systems on an unprotected network. This is designed to provide strong authentication for client/server applications by using secret-key cryptography is called ___.

Answer 14

KERBEROS

Question 15

The service or server that acts as both the ticket granting service and the authentication service is called ___.

Answer 15

KEY DISTRIBUTION CENTER (KDC)

Question 16

The use of policies within a network infrastructure to limit access to resources until the system proves that it has complied with the policy is called ___.

Answer 16

NETWORK ACCESS CONTROL (NAC)

Question 17

This divides the network infrastructure into seven layers and is called ___.

Answer 17

OPEN SYSTEMS INTERCONNECTION (OSI) REFERENCE MODEL

Question 18

This is orange and part of the “Rainbow Series” published by the US DOD is called ___.

Answer 18

ORANGE BOOK

Question 19

A key used to encrypt and decrypt messages is called ___.

Answer 19

SECRET KEY

Question 20

A variable that identifies a user, group, or account is called ___.

Answer 20

SECURITY IDENTIFIER (SID)

Question 21

An access point’s ID on a wireless LAN is called ___.

Answer 21

SERVICE SET IDENTIFIER (SSID)

Question 22

.A method of access control that allows a user to log on to a system and gain access to other resources within the network via the initial logon. It helps a user avoid having to log on multiple times and remember multiple passwords for various systems is called ___.

Answer 22

SINGLE SIGN-ON (SSO)

Question 23

The act of identifying a suer as authentic with a single authentication factor is called ___.

Answer 23

SINGLE-FACTOR AUTHENTICATION

Question 24

A form of encryption where the sender and the receiver use the same key for encrypting an object is called ___.

Answer 24

SYMMETRIC ENCRYPTION

Question 25

Encryption used for WLANs is called ___.

Answer 25

TEMPORAL KEY INTEGRITY PROTOCOL (TKIP)

Question 26

The act of identifying a suer as authentic with three authentication factors is called ___.

Answer 26

THREE-FACTOR AUTHENTICATION

Question 27

A server or service that is authorized to issue tickets to the client after the client has already received a ticket granting ticket and is called ___.

Answer 27

TICKET-GRANTING SERVICE (TGS)

Question 28

Being open and honest about the infrastructure; not hiding any data from the users is called ___.

Answer 28

TRANSPARENCY

Question 29

The act of identifying a user as authentic with two authentication factors is called ___.

Answer 29

TWO-FACTOR AUTHENTICATION

Question 30

1. What does ACL stand for? 1. Access control level 2. Access control limit 3. Access control logic 4. Access control list

Answer 30

Access control list

Question 31

2. List the four types of access control models.

Answer 31

MANDATORY access control (MAC) DISCRETIONARY access control (DAC) ROLE BASED access control (RBAC) ATTRIBUTE-BASED access control (ABAC)

Question 32

3. Which of the following are components of a Kerberos system? (Select two) 1. TKIP 2. AS 3. GS 4. BGP

Answer 32

AS | GS

Question 33

4. A switch is a divide used on which layer of the OSI model? 1. Layer 1 2. Layer 2 3. Layer 4 4. Layer 5

Answer 33

Layer 2

Question 34

``` 5. Which of the following are authentication factors? (Select three) 1, Something you need 2, Something you have 3, Something you are 4, Something you believe 5, Something you know ```

Answer 34

Something you have Something you are Something you know

Question 35

6. VLANs are used to segment networks. | TRUE OR FALSE

Answer 35

TRUE

Question 36

7. What are types of access control lists? 1. DACL 2. MACL 3. SACL 4. TACL

Answer 36

DACL | SACL

Question 37

8. Passwords should have no time limit assigned to them. | TRUE OR FALSE

Answer 37

FALSE

Question 38

9. Which of the following is the most secure encryption method for WLANs? 1. DAC 2. WEP 3. WPA 4. MAC

Answer 38

WPA

Question 39

10. How many hexadecimal digits are provided by IEEE for vendor identification? 1. 6 2. 12 3. 18 4. 24

Answer 39

6

Question 40

11. Which IEEE standard defines WLANs? 1. 802.11 2. 802.10 3. 802.5 4. 802.1q

Answer 40

802.11

Question 41

12. Which of the following is an example of SSO? 1. Keystroke logger 2. Trojan horse 3. Kerberos 4. Broadcast domains

Answer 41

Kerberos