Testout Security Pro Flashcards

Question 1

Q

3DES

Answer

A

Triple DES

Question 2

Q

AAA

Answer

A

Authentication, Authorization, Accounting

Question 3

Q

Access Control

Answer

A

The ability to permit or deny the privileges that users have when accessing resources on a network or computer.

Question 4

Q

Access Control Auditing (or Access Control Accounting)

Answer

A

Maintaining a record of a subject’s activity within the information system.

Question 5

Q

Access Control Authentication

Answer

A

The process of validating a subject’s identity. It includes the identification process, the user providing input to prove identity, and the system accepting that input as valid.

Question 6

Q

Access Control Authorization

Answer

A

The granting or denying a subject’s access to an object based on the level of permissions or the actions allowed on the object.

Question 7

Q

Access Control Identification

Answer

A

Identifies the subject. Examples include a username or a user ID number.

Question 8

Q

Access Control Matrix

Answer

A

Provide an interface for implementing an ACL

Question 9

Q

Access Control Object

Answer

A

Data, applications, systems, networks and physical space.

Question 10

Q

Access Control Policy

Answer

A

Defines the steps & measures that are taken to control access to objects by subjects.

Question 11

Q

Access Control Subjects

Answer

A

Users, applications or processes that need access to an object.

Question 12

Q

Access Control System

Answer

A

The access control system includes the policies, procedures, and technologies, that’re implemented to control a subject’s access to an object.

Question 13

Q

Account Lockout Threshold

Answer

A

Number of incorrect logon attempts that are allowed before the account is locked

Question 14

Q

Account Locout

Answer

A

Disables a user account after a specified number of incorrect logon attempts

Question 15

Q

Account Policies

Answer

A

Control the composition and use of passwords

Question 16

Q

Account Restrictions

Answer

A

Allow login only during certain days/hours, only from specific computers

Question 17

Q

Accounting

Answer

A

Maintaining a record of a subject’s activity

Question 18

Q

activation mechanism

Answer

A

The virus only replicates when the activation mechanism is triggered.

Question 19

Q

Active Directory

Answer

A

A directory service that uses a hierarchical database to store user accounts.

Question 20

Q

Active Directory Object Attributes

Answer

A

Every active directory object has attributes that’re populated with values.

Question 21

Q

AD Domain

Answer

A

Objects are grouped together into a domain, usually denoted by a triangle. Domains are identified by their DNS Namespace.

Question 22

Q

Administrative Control

Answer

A

Policies that describe accepted practices

Question 23

Q

Administrive Access Control

Answer

A

Policies that describe accepted practices.

Question 24

Q

AES

Answer

A

Advanced Encryption Standard

Question 25

Q

Algorithm

Answer

A

Process or formula used to convert a message into its meaning

Question 26

Q

Analytic Attack

Answer

A

Exploits a structural weakness in the algorithms

Question 27

Q

Application (Layer 7)

Answer

A

Integrates network functionality into OS. (For example: proxy firewall, gateway services, etc)

Question 28

Q

ARM

Answer

A

Advanced RISC Machine

Question 29

Q

Auditing

Answer

A

Maintaining a record of a subject’s activity

Question 30

Q

Authentication

Answer

A

Users must prove that they are who they say they are

Question 31

Q

Authentication

Answer

A

Validating a subject identity

Question 32

Q

Authorization

Answer

A

Granting or denying a subject access

Question 33

Q

Authorization

Answer

A

Process of controlling access to resources

Question 34

Q

Authorization Table

Answer

A

Matrix of access control objects, subjects, and their associated rights

Question 35

Q

Basic Encoding Rules (BER)

Answer

A

Original rules for encoding abstract info into a concrete data stream. Specifies a set of self-identifying & self-delimiting schemes which allow each data value to be identified, extracted & decoded individually.

Question 36

Q

BER

Answer

A

Basic Encoding Rules

Question 37

Q

Birthday Attack

Answer

A

A brute force attack where the attacked hashes messages until one with the same hash is found.

Question 38

Q

Block cipher

Answer

A

Encrypts by transposing plain text in chunks (block-by-block).

Question 39

Q

Brewer-Nash

Answer

A

Prevent conflicts of interest by dynamically adjusting access based on current activity

Question 40

Q

Brute Force Attack

Answer

A

Attacker tries every known key combination

Question 41

Q

Cat5

Answer

A

cable specifications

Question 42

Q

Category 1 Active Directory Objects

Answer

A

Resources. (They can represent network resources, like printers.)

Question 43

Q

Category 2 Active Directory Objects

Answer

A

Security Principals, including users, computers and groups.

Question 44

Q

CBC

Answer

A

Cipher Block Chaining

Question 45

Q

CFB

Answer

A

Cipher Feedback

Question 46

Q

Cipher Text

Answer

A

Unreadable message

Question 47

Q

Clark-Wilson

Answer

A

Controlled intermediary access applications that prevent direct access to the back-end database

Question 48

Q

Class A

Answer

A

1.0.0.0 to 126.255.255.255

Question 49

Q

Class B

Answer

A

128.0.0.0 to 191.255.255.255

Question 50

Q

Class C

Answer

A

192.0.0.0 to 223.255.255.255

Question 51

Q

Class D

Answer

A

224.0.0.0 to 239.225.225.225

Question 52

Q

Class E

Answer

A

240.0.0.0 to 255.255.255.255

Question 53

Q

Clipping level of 9

Answer

A

Account will be locked after 9 incorrect attempts

Question 54

Q

Code Substitution

Answer

A

Hidden words with unrelated terms

Question 55

Q

Collision

Answer

A

Two different messages produce the same hash value.

Question 56

Q

Collision Resistance

Answer

A

A hash algorithm’s ability to avoid the same output from two guessed inputs.

Question 57

Q

Compensative Access Control

Answer

A

Alternatives to primary access controls

Question 58

Q

Computer Policies also called?

Answer

A

Machine Policies

Question 59

Q

Confidentiality

Answer

A

Keep secrets a secret

Question 60

Q

Connection-oriented

Answer

A

Reliable data transmissions

Question 61

Q

Containment Rules

Answer

A

What types of objects can reside within other objects?

Question 62

Q

Content Dependent Access Control

Question 63

Q

Context-based Access Control

Question 64

Q

Corrective

Answer

A

Implement short-term repairs to restore basic functionality following an attack

Answer 63

A

Implement short-term repairs to restore basic functionality following an attack

Answer 64

A

Escalation of privilege

Answer 65

A

Retrieve as much info as possible

Answer 66

A

Process of counseling messages

Answer 67

A

Study of cryptography and cryptanalysis

Answer 68

A

Associated items of cryptographic

Answer 69

A

Access to more than one entity

Answer 70

A

Recovering original data that has been encrypted w/o key

Answer 71

A

Person who develops a converting plan

Answer 72

A

Discretionary Access Control

Answer 73

A

Defines rules and procedures for hosts as they access the Physical layer, including how multiple nodes share and coordinate the use of the same physical segment of the network.

Answer 74

A

Procedure used to convert data from cipher text into plain text

Answer 75

A

Layered defenses at each level.

Answer 76

A

Protects databases that contains sensitive information from a breach of privacy

Answer 77

A

Mostly used to expand the decision-making capabilities of a firewall application

Answer 78

A

Assigns access directly to subject based on decision of the owner. Manages access using identity

Answer 79

A

Implementation of discretionary access control

Answer 80

A

Arrangement that can be made among multiple enterprises that lets subscribers use the same identification data to obtain access to the networks of all enterprises in the group

Answer 81

A

Labels or attributes for subjects and objects

Answer 82

A

Allows access based on a role in an organization

Answer 83

A

Characteristics of objects or subjects along with rules, to restrict access

Answer 84

A

Used by Microsoft for auditing to identify past actions performed by users on an object

Answer 85

A

Individual work tasks assign privileges

Answer 86

A

Allows for role-based access control rules to only be in effect fora certain time period

Answer 87

A

Type of constrained user interface used to control a subject’s access

Answer 88

A

Always override Allow permissions

Answer 89

A

Data Encryption Standard

Answer 90

A

Search for details about the attack or the attacker

Answer 91

A

Search for details about the attack or the attacker

Answer 92

A

Discourage continued or escalations of attacks during an attack

Answer 93

A

Discourage continued or escalations of attacks during an attack

Answer 94

A

Uses known words and common variations

Answer 95

A

A list of attributes. Attributes from these lists are glued together to compose an object.

Answer 96

A

Example of a technical access control system that you use to manage and enforce access control policies.

Answer 97

A

Holds a copy of the Active Directory database.

Answer 98

A

Electronic Code Book

Answer 99

A

Access rights are cumulative

Answer 100

A

serial signaling

Answer 101

A

Process of using an algorithm to transform data from plain text to cipher text

Answer 102

A

Harder passwords

Answer 103

A

Remember passwords so the user can’t re-use passwords

Answer 104

A

Identifies users who are not allowed access

Answer 105

A

The downloaded file is complete, not corrupted whilst downloading, same as original and not virus-ridden.

Answer 106

A

Federated Access Control

Answer 107

A

Unstructured, local user accounts.

Answer 108

A

A collection of trees that share a common global catalog and a common directory schema.

Answer 109

A

Group Policy Object

Answer 110

A

Only the location it is applied to

Answer 111

A

Built-In Containers

Answer 112

A

Object that identifies a set of users with similar access needs

Answer 113

A

A function that takes a variable-length string, compresses it and transforms it into a fixed-length value.

Answer 114

A

Allows you to sort and organize your user accounts by location, function and department. Allows you to replicate it.

Answer 115

A

A small change in the message results in a big change in the hashed value.

Answer 116

A

Keyed-hash Message Authentication Code

Answer 117

A

International Data Encryption Algorithm

Answer 118

A

Identifies the subject

Answer 119

A

Users are denied access unless they have been granted access

Answer 120

A

Uses mechanisms such as the following to distribute the key:

Answer 121

A

Seed value used in encryption

Answer 122

A

Ensures that information is not corrupted or altered

Answer 123

A

The last 64-bits.

Answer 124

A

Layer 3 address that is logically assigned to a host.

Answer 125

A

A 32-bit binary number between 0 and 255, represented as four octets (four 8-bit numbers.)

Answer 126

A

128-bit binary number

Answer 127

A

The first 64-bits.

Answer 128

A

Initialization Vector

Answer 129

A

Initialization Vector

Answer 130

A

Staff are cross trained in different areas

Answer 131

A

Variable in a cipher used to encrypt/decrpt a message

Answer 132

A

Occurs when different keys produce the same cuphertext

Answer 133

A

Typically short, ranging from 56-bits to 512-bits.

Answer 134

A

A sequence of bits which is used for encryption.

Answer 135

A

Produces long streams of bits with no patterns.

Answer 136

A

Mandatory Access Control

Answer 137

A

Layer 2 address that’s physically assigned in the firmware of the NIC.

Answer 138

A

Assigned to objects by the owner

Answer 139

A

Assigned to subjects

Answer 140

A

A virus that takes advantage of application programs that use macros to automate repetitive functions.

Answer 141

A

Attacker gets between two communicating parties

Answer 142

A

MAC uses labels or attributes for both subjects and objects. Any operation by any subject on any object will be tested against a set of authorization rules to determine if the operation is allowed.

Answer 143

A

Forces users to change the password after the specified time interval

Answer 144

A

Developed by RSA.

Answer 145

A

When a server joins the Active Directory domain, it becomes a member, but it doesn’t have a copy of the domain database.

Answer 146

A

Prevent users from changing passwords too soon

Answer 147

A

Users cannot change the password for 2 days.

Answer 148

A

A virus that is a combination of multiple attacks.

Answer 149

A

Only allowed access if you need to know/use

Answer 150

A

Describes how data is routed across networks and on to the destination.

Answer 151

A

Translates multiple private addresses into the single registered IP address.

Answer 152

A

Contain the MAC address and performs at Data Link layer.

Answer 153

A

Prevents users from determining the read/white/execute rights for a file

Answer 154

A

Enable account lockout

Answer 155

A

Data, application, systems, networks, physical space

Answer 156

A

The virus is programmed with this, which is usually to destroy, compromise, or corrupt data.

Answer 157

A

Output Feedback

Answer 158

A

Method in which the plain text is converted to binary and combined with a string of randomly generated binary numbers

Answer 159

A

Local Group Policy, GPOs Linked to the domain, GPOs linked to the OU

Answer 160

A

Objects within a single domain being organized into OU’s.

Answer 161

A

Open Systems Interconnection is a theoretical, 7-layer construct to explain how networking works.

Answer 162

A

Involves manually distributing the key.

Answer 163

A

Password only valid for a set time

Answer 164

A

Prevents using passwords that are easy to guess or easy to crack

Answer 165

A

Proposed Encryption Standard

Answer 166

A

Pretty Good Privacy

Answer 167

A

Sets standards for sending and receiving electrical signals between devices.

Answer 168

A

Restricts physical access

Answer 169

A

Restrict physical access

Answer 170

A

Attack attempts to trick a user into accepting a fake or spoofed certificate

Answer 171

A

Readable Message

Answer 172

A

Identifies the number of bits in the relevant portion of the prefix

Answer 173

A

Presents data into compatible form.

Answer 174

A

Deter intrusion or attacks

Answer 175

A

Deter intrusion or attacks

Answer 176

A

Deter intrusion or attacks.

Answer 177

A

Users/Groups are only given access to what they need for their job, nothing more

Answer 178

A

Uses a series of photons to encrypt and send messages

Answer 179

A

Role-Based Access Control

Answer 180

A

Ron’s Code v2 or Ron’s Cipher v2

Answer 181

A

The most frequently used symmetric-key stream ciphers.

Answer 182

A

Ron’s Code v4 or Ron’s Cipher v4

Answer 183

A

Ron’s Code v5 or Ron’s Cipher v5

Answer 184

A

Restore the system to normal operations after the attack

Answer 185

A

Restore the system to normal operations after the attack and short-term stabilization period.

Answer 186

A

A file that the virus uses as a host.

Answer 187

A

Developed by COSIC. Generates 128, 160, 256, or 320 bits.

Answer 188

A

connector specifications

Answer 189

A

Data going through one substitution and transposition process.

Answer 190

A

Rule Set-Based Access Control

Answer 191

A

Every user needs a unique name.

Answer 192

A

You can have users with the exact same names, as long as they’re in different domains.

Answer 193

A

Process of cleaning a devices by having all data removed

Answer 194

A

The password is used as the key to perform a hash on a challenge text value, and only the hashed value is passed… not the password. The receiving host use the same method to compare.

Answer 195

A

Object that can be given permission to an object

Answer 196

A

Let the user be able to admin their passsword

Answer 197

A

Having more than one person to complete a task

Answer 198

A

Manages sessions in which data is transferred.

Answer 199

A

Developed by NIST and NSA. Generates 160 bits.

Answer 200

A

Tries to exploit information about the physical implementation f a cryptosystem

Answer 201

A

No write down

Answer 202

A

Exploits weakness in the design of a cryptosystem

Answer 203

A

A virus that resides in a low-level system service functions where they intercept system requests and alter service outputs their presence.

Answer 204

A

Process of hiding messages

Answer 205

A

Encryption is performed on each bit within the stream in real time.

Answer 206

A

Needs access to objects

Answer 207

A

Users, applications, processes.

Answer 208

A

32-bit number associated with each IPv4 address

Answer 209

A

Replaces one set of characters with symbols or another character set

Answer 210

A

Operates at Data Link layer by reading the MAC address in a frame to make forwarding decisions.

Answer 211

A

A form of cryptography that provides confidentiality with a weak form of authentication or integrity. It uses only one key to encrypt & decrypt data.

Answer 212

A

Computer Mechanisms that restrict access.

Answer 213

A

Computer mechanisms that restrict access

Answer 214

A

Authentication. authorization and auditing.

Answer 215

A

Lets us have other users over

Answer 216

A

Provides services that ensure accurate and timely delivery of network communications between two hosts. TCP is connection-oriented.

Answer 217

A

TCP and UDP.

Answer 218

A

Changes the position of characters in the plain text

Answer 219

A

A collection of one or more domains that exsist within the same DNS Namespace.

Answer 220

A

Provides services of network communications between two hosts. UDP is connectionless.

Answer 221

A

modem signaling

Answer 222

A

A program that attempts to damage a computer system and replicate itself to other computer systems.

Answer 223

A

Reduce the risk for an attack

Answer 224

A

Objects, subjects and system.

Answer 225

A

Confidentiality

Answer 226

A

Organization, delegation of administrator responsibilities, and replication.

Answer 227

A

Sophistication - Complication of attacks

Answer 228

A

Integrity keeps the item fully in-tack and not messed with, non-repudiation always givens authentication

Answer 229

A

Encryption

Answer 230

A

Authentication

Answer 231

A

WiFi Protected Access 2

Brainscape's Knowledge GenomeTM

Testout Security Pro Flashcards

Brainscape's Knowledge Genome^TM