Lecture 6

Question 1

______ allows a single user to harness the computing power of one or more remote systems to achieve a single goal.

A. distributed computing
B. centralized computing
C. administered computing

Answer 1

A. distributed computing

Question 2

This threat attached itself to a legitimate OS, file or application and performs unwanted actions. It spreads through infected media.

A. Trojan
B. Worm
C. Virus

Answer 2

C. Virus

Question 3

What is a Trojan Horse threat?

Answer 3

Malicious code that is disguised as a harmless program.

Question 4

A ____ is a threat that is dormat until a specific trigger

Answer 4

logic bomb

Question 5

This type of threat is self-propagating.

A. Trojan
B. Worm
C. Virus

Answer 5

B. Worm

Question 6

______ code objects sent from a server to a client to perform some action. They are self-contained and operate independently of the server.

Answer 6

Applets

Question 7

_____ is intelligent code objects performing actions on behalf of a user.

A. applet
B. agent
C. COM

Answer 7

B. agent

Question 8

The object management group (OMG) created ______. In this model a broker invokes the object to keep details transparent to the client

Answer 8

Common Object Request Broker Architecture (CORBA)

Question 9

Microsoft created ____ which allows users to embed components from one app into another

Answer 9

Component Object Model (COM)

Question 10

List the 4 characteristics of a relational database.

Answer 10

atomicity
consistency
isolation
durability

Question 11

____ is where all or none of the instructions in a transaction are executed.

A. atomicity
B. consistency
C. isolation
D. durability

Answer 11

A. atomicity

Question 12

_____ is where all transactions must follow the database rules.

A. atomicity
B. consistency
C. isolation
D. durability

Answer 12

B. consistency

Question 13

_____ means that all transactions must operate independently.

A. atomicity
B. consistency
C. isolation
D. durability

Answer 13

C. isolation

Question 14

_____ ensures that transactions committed to the database are preserved.

A. atomicity
B. consistency
C. isolation
D. durability

Answer 14

D. durability

Question 15

In database a ____ is a SQL statement used to present data to a user as if it were a table. It can be used as a security tool.

Answer 15

View

Question 16

A ______ is an interface for applications to communicate with different databases.

Answer 16

Open Database Connectivity (ODBC)

Question 17

The collection of numerous non-sensitive items combined to derive more sensitive information.

A. Combination
B. Sniffing
C. Aggregation
D. Inference

Answer 17

C. Aggregation

Question 18

Combining several pieces of information to gain access to information that should be classified at a higher level.

A. Combination
B. Sniffing
C. Aggregation
D. Inference

Answer 18

A. Combination
B. Sniffing
C. Aggregation
D. Inference

Question 19

What is a data warehouse?

Answer 19

storage of large amounts of information from a variety of databases for use with specialized analysis techniques

Question 20

A ____ channel is the transmission of sensitive data that shouldn’t exist/not documented.

Answer 20

covert

Question 21

____ procedures ensure that security controls are properly implemented throughout the lifecycle of the system.

Answer 21

Assurance

Question 22

What is a limit check?

Answer 22

It limits the type, format, length, or range of input information.

Question 23

The ____ SDLC model is a series of iterative steps. Each phase is completed before the next begins.

A. Spiral
B. Waterfall
C. IDEAL
D. Agile

Answer 23

B. Waterfall

Question 24

The ____ SDLC model allows for multiple iterations of an iterative style process.

A. Spiral
B. Waterfall
C. IDEAL
D. Agile

Answer 24

A. Spiral

Question 25

The ____ SDLC model is a process of quickly developing software to make is available quicker. A. Spiral B. Waterfall C. IDEAL D. Agile

Answer 25

D. Agile

Question 26

The ____ SDLC mode has 5 phases: Initializing, Diagnosing, Establishing, Acting, Learning. A. Spiral B. Waterfall C. IDEAL D. Agile

Answer 26

C. IDEAL

Question 27

_____ is the process of controlling the versions of software used throughout the environment and tracks changes to software configurations.

Answer 27

configuration management

Question 28

This testing examines the internal logical structures of a program and steps through the code line by line, analyzing the program for potential errors. A. Gray-box testing B. Black-box testing C. White-box testing

Answer 28

C. White-box testing

Question 29

This testing is where a tester has access to the source code but does not analyze the inner workings of the program. A. Gray-box testing B. Black-box testing C. White-box testing

Answer 29

A. Gray-box testing

Question 30

In this testing there is no access to the internal code. The output is inspected. A. Gray-box testing B. Black-box testing C. White-box testing

Answer 30

B. Black-box testing

Question 31

_____ mechanisms ensure that each process has its own isolated memory space for storage of data and execution of application code

Answer 31

process isolation

Question 32

______ is a technique that implements process isolation at the hardware level by enforcing memory access constraints

Answer 32

hardware segmentation

Question 33

_____ is where the details of performing activities is hidden from the user.

Answer 33

Abstraction

Question 34

Systems are authorized to process information at more than one security level even when not all users have clearance for all information processed by the system A. Dedicated security mode B. System-high security mode C. Compartmented security mode D. Multilevel security mode

Answer 34

D. Multilevel security mode

Question 35

System are authorized to process only information that all users are cleared for A. Dedicated security mode B. System-high security mode C. Compartmented security mode D. Multilevel security mode

Answer 35

B. System-high security mode