Test 4

Question 1

Which of the following is not a type of computer connector?

A)

USB

B)

SATA

C)

IDS

D)

FireWire

Answer 1

C)

IDS

Question 2

Web browsers cache web pages that the user visited recently. This cached data is referred to as a temporary Internet file, and it is stored in a folder on the user’s hard drive.

A) True

B) False

Answer 2

A) True

Question 3

An e-mail header can have more than one Received field.

A) True
B) False

Answer 3

A) True

Question 4

A ________________ systematically tries every conceivable combination until a password is found, or until all possible combinations have been exhausted.

Answer 4

Brute force attack

Question 5

______________ A technique that you can use to determine if the extension of a file has been changed.

Answer 5

(Signature analysis, Signature)

Question 6

Metadata is a data component that describes other data. In other words, it’s data about data.

A) True
B) False

Answer 6

A) True

Question 7

A criminal can conceal data in hidden disk partitions.

A) True
B) False

Answer 7

A) True

Question 8

On a Windows 7 computer, what is the name of the feature that stores user names, passwords, and other credentials?

A)

Credential Manager

B)

Security Accounts Manager (SAM)

C)

Password Vault Manager

D)

Password.pwl

Answer 8

A)

Credential Manager

Question 9

In Linux, which directory holds the security logs?

A)

/Sec/Log/

B)

/Logs/Security/

C)

/Var/Syslog/Log/

D)

/Var/Log/

Answer 9

D)

/Var/Log/

Question 10

Suspects can hide data in which of the following locations? (Choose all that apply.)

A)

White space in documents

B)

Behind graphics in documents

C)

USB port

D)

Host protected areas (HPAs) on drives

Answer 10

A)

White space in documents

B)

Behind graphics in documents

D)

Host protected areas (HPAs) on drives

Question 11

_________ is the process of translating an encrypted message back into the original unencrypted message.

Answer 11

___Decryption___

Question 12

Which of the following security principles assures that a message originated from the stated source?

A)

Confidentiality

B)

Integrity

C)

Authentication

D)

Nonrepudiation

Answer 12

D)

Nonrepudiation

Question 13

Which of the following uses the same value to encrypt and decrypt text?

A)

Private key algorithm

B)

Public key algorithm

C)

Transposition cipher

D)

Substitution cipher

Answer 13

A)

Private key algorithm

Question 14

A _________ algorithm uses one key to encrypt plaintext and another key to decrypt ciphertext.

Answer 14

public key, public-key

Question 15

A key that is 4 bits in length can represent how many different key values? Hint: 2^4

A)

16

B)

32

C)

64

D)

128

Answer 15

A)

16

Question 16

A ______________ attack decrypts a file characterized by comparing ciphertext to a plaintext message you chose and encrypted.

Answer 16

__plaintext_

Question 17

Of the following symmetric encryption algorithms, which one latest and strongest standard adopted by the U.S. government, with key sizes of 128, 192, or 256 bits?

A)

Blowfish

B)

Advanced Encryption Standard (AES)

C)

Serpent

D)

Twofish

Answer 17

B)

Advanced Encryption Standard (AES)

Question 18

Social engineering can be an effective method of obtaining a password.

A) True
B) False

Answer 18

A) True

Question 19

Encryption is the practice of hiding one message in another, larger message.

A) True
B) False

Answer 19

B) False

Question 20

BONUS: who designed the Blowfish cipher?

Answer 20

(Bruce Schneier, Schneier)

Question 21

BONUS: A valid definition of digital evidence is

A)

Data stored or transmitted using a computer

B)

Information of probative value

C)

Digital data of probative value

D)

Any digital evidence on a computer

Answer 21

C)

Digital data of probative value

Question 22

BONUS: Computers can be involved in which of the following types of crime?

A)

Homicide and sexual assault

B)

Computer intrusions and intellectual property theft

C)

Civil disputes

D)

All of the above

Answer 22

D)

All of the above

Question 23

BONUS: A logon record tells us that, at a specific time:

A)

An unknown person logged into the system using the account

B)

The owner of a specific account logged into the system

C)

The account was used to log into the system

D)

None of the above

Answer 23

C)

The account was used to log into the system

Question 24

BONUS: The criminological principle which states that, when anyone, or anything, enters a crime scene he/she takes something of the scene with him/her, and leaves something of himself/herself behind, is:

A)

Locard’s Exchange Principle

B)

Differential Association Theory

C)

Beccaria’s Social Contract

D)

None of the above

Answer 24

A)

Locard’s Exchange Principle