Testout Security Pro Flashcards

Question

Algorithm

Answer 1

Process or formula used to convert a message into its meaning

Answer 2

Exploits a structural weakness in the algorithms

Answer 3

Integrates network functionality into OS. (For example: proxy firewall, gateway services, etc)

Answer 4

Advanced RISC Machine

Answer 5

Maintaining a record of a subject's activity

Answer 6

Users must prove that they are who they say they are

Answer 7

Validating a subject identity

Answer 8

Granting or denying a subject access

Answer 9

Process of controlling access to resources

Answer 10

Matrix of access control objects, subjects, and their associated rights

Answer 11

Original rules for encoding abstract info into a concrete data stream. Specifies a set of self-identifying & self-delimiting schemes which allow each data value to be identified, extracted & decoded individually.

Answer 12

Basic Encoding Rules

Answer 13

A brute force attack where the attacked hashes messages until one with the same hash is found.

Answer 14

Encrypts by transposing plain text in chunks (block-by-block).

Answer 15

Prevent conflicts of interest by dynamically adjusting access based on current activity

Answer 16

Attacker tries every known key combination

Answer 17

cable specifications

Answer 18

Resources. (They can represent network resources, like printers.)

Answer 19

Security Principals, including users, computers and groups.

Answer 20

Cipher Block Chaining

Answer 21

Cipher Feedback

Answer 22

Unreadable message

Answer 23

Controlled intermediary access applications that prevent direct access to the back-end database

Answer 24

1.0.0.0 to 126.255.255.255

Answer 25

128.0.0.0 to 191.255.255.255

Answer 26

192.0.0.0 to 223.255.255.255

Answer 27

224.0.0.0 to 239.225.225.225

Answer 28

240.0.0.0 to 255.255.255.255

Answer 29

Account will be locked after 9 incorrect attempts

Answer 30

Hidden words with unrelated terms

Answer 31

Two different messages produce the same hash value.

Answer 32

A hash algorithm's ability to avoid the same output from two guessed inputs.

Answer 33

Alternatives to primary access controls

Answer 34

Machine Policies

Answer 35

Keep secrets a secret

Answer 36

Reliable data transmissions

Answer 37

What types of objects can reside within other objects?

Answer 38

Implement short-term repairs to restore basic functionality following an attack

Answer 39

Implement short-term repairs to restore basic functionality following an attack

Answer 40

Escalation of privilege

Answer 41

Retrieve as much info as possible

Answer 42

Process of counseling messages

Answer 43

Study of cryptography and cryptanalysis

Answer 44

Associated items of cryptographic

Answer 45

Access to more than one entity

Answer 46

Recovering original data that has been encrypted w/o key

Answer 47

Person who develops a converting plan

Answer 48

Discretionary Access Control

Answer 49

Defines rules and procedures for hosts as they access the Physical layer, including how multiple nodes share and coordinate the use of the same physical segment of the network.

Answer 50

Procedure used to convert data from cipher text into plain text

Answer 51

Layered defenses at each level.

Answer 52

Protects databases that contains sensitive information from a breach of privacy

Answer 53

Mostly used to expand the decision-making capabilities of a firewall application

Answer 54

Assigns access directly to subject based on decision of the owner. Manages access using identity

Answer 55

Implementation of discretionary access control

Answer 56

Arrangement that can be made among multiple enterprises that lets subscribers use the same identification data to obtain access to the networks of all enterprises in the group

Answer 57

Labels or attributes for subjects and objects

Answer 58

Allows access based on a role in an organization

Answer 59

Characteristics of objects or subjects along with rules, to restrict access

Answer 60

Used by Microsoft for auditing to identify past actions performed by users on an object

Answer 61

Individual work tasks assign privileges

Answer 62

Allows for role-based access control rules to only be in effect fora certain time period

Answer 63

Type of constrained user interface used to control a subject's access

Answer 64

Always override Allow permissions

Answer 65

Data Encryption Standard

Answer 66

Search for details about the attack or the attacker

Answer 67

Search for details about the attack or the attacker

Answer 68

Discourage continued or escalations of attacks during an attack

Answer 69

Discourage continued or escalations of attacks during an attack

Answer 70

Uses known words and common variations

Answer 71

A list of attributes. Attributes from these lists are glued together to compose an object.

Answer 72

Example of a technical access control system that you use to manage and enforce access control policies.

Answer 73

Holds a copy of the Active Directory database.

Answer 74

Electronic Code Book

Answer 75

Access rights are cumulative

Answer 76

serial signaling

Answer 77

Process of using an algorithm to transform data from plain text to cipher text

Answer 78

Harder passwords

Answer 79

Remember passwords so the user can't re-use passwords

Answer 80

Identifies users who are not allowed access

Answer 81

The downloaded file is complete, not corrupted whilst downloading, same as original and not virus-ridden.

Answer 82

Federated Access Control

Answer 83

Unstructured, local user accounts.

Answer 84

A collection of trees that share a common global catalog and a common directory schema.

Answer 85

Group Policy Object

Answer 86

Only the location it is applied to

Answer 87

Built-In Containers

Answer 88

Object that identifies a set of users with similar access needs

Answer 89

A function that takes a variable-length string, compresses it and transforms it into a fixed-length value.

Answer 90

Allows you to sort and organize your user accounts by location, function and department. Allows you to replicate it.

Answer 91

A small change in the message results in a big change in the hashed value.

Answer 92

Keyed-hash Message Authentication Code

Answer 93

International Data Encryption Algorithm

Answer 94

Identifies the subject

Answer 95

Users are denied access unless they have been granted access

Answer 96

Uses mechanisms such as the following to distribute the key:

Answer 97

Seed value used in encryption

Answer 98

Ensures that information is not corrupted or altered

Answer 99

The last 64-bits.

Answer 100

Layer 3 address that is logically assigned to a host.

Answer 101

A 32-bit binary number between 0 and 255, represented as four octets (four 8-bit numbers.)

Answer 102

128-bit binary number

Answer 103

The first 64-bits.

Answer 104

Initialization Vector

Answer 105

Initialization Vector

Answer 106

Staff are cross trained in different areas

Answer 107

Variable in a cipher used to encrypt/decrpt a message

Answer 108

Occurs when different keys produce the same cuphertext

Answer 109

Typically short, ranging from 56-bits to 512-bits.

Answer 110

A sequence of bits which is used for encryption.

Answer 111

Produces long streams of bits with no patterns.

Answer 112

Mandatory Access Control

Answer 113

Layer 2 address that's physically assigned in the firmware of the NIC.

Answer 114

Assigned to objects by the owner

Answer 115

Assigned to subjects

Answer 116

A virus that takes advantage of application programs that use macros to automate repetitive functions.

Answer 117

Attacker gets between two communicating parties

Answer 118

MAC uses labels or attributes for both subjects and objects. Any operation by any subject on any object will be tested against a set of authorization rules to determine if the operation is allowed.

Answer 119

Forces users to change the password after the specified time interval

Answer 120

Developed by RSA.

Answer 121

When a server joins the Active Directory domain, it becomes a member, but it doesn't have a copy of the domain database.

Answer 122

Prevent users from changing passwords too soon

Answer 123

Users cannot change the password for 2 days.

Answer 124

A virus that is a combination of multiple attacks.

Answer 125

Only allowed access if you need to know/use

Answer 126

Describes how data is routed across networks and on to the destination.

Answer 127

Translates multiple private addresses into the single registered IP address.

Answer 128

Contain the MAC address and performs at Data Link layer.

Answer 129

Prevents users from determining the read/white/execute rights for a file

Answer 130

Enable account lockout

Answer 131

Data, application, systems, networks, physical space

Answer 132

The virus is programmed with this, which is usually to destroy, compromise, or corrupt data.

Answer 133

Output Feedback

Answer 134

Method in which the plain text is converted to binary and combined with a string of randomly generated binary numbers

Answer 135

Local Group Policy, GPOs Linked to the domain, GPOs linked to the OU

Answer 136

Objects within a single domain being organized into OU's.

Answer 137

Open Systems Interconnection is a theoretical, 7-layer construct to explain how networking works.

Answer 138

Involves manually distributing the key.

Answer 139

Password only valid for a set time

Answer 140

Prevents using passwords that are easy to guess or easy to crack

Answer 141

Proposed Encryption Standard

Answer 142

Pretty Good Privacy

Answer 143

Sets standards for sending and receiving electrical signals between devices.

Answer 144

Restricts physical access

Answer 145

Restrict physical access

Answer 146

Attack attempts to trick a user into accepting a fake or spoofed certificate

Answer 147

Readable Message

Answer 148

Identifies the number of bits in the relevant portion of the prefix

Answer 149

Presents data into compatible form.

Answer 150

Deter intrusion or attacks

Answer 151

Deter intrusion or attacks

Answer 152

Deter intrusion or attacks.

Answer 153

Users/Groups are only given access to what they need for their job, nothing more

Answer 154

Uses a series of photons to encrypt and send messages

Answer 155

Role-Based Access Control

Answer 156

Ron's Code v2 or Ron's Cipher v2

Answer 157

The most frequently used symmetric-key stream ciphers.

Answer 158

Ron's Code v4 or Ron's Cipher v4

Answer 159

Ron's Code v5 or Ron's Cipher v5

Answer 160

Restore the system to normal operations after the attack

Answer 161

Restore the system to normal operations after the attack and short-term stabilization period.

Answer 162

A file that the virus uses as a host.

Answer 163

Developed by COSIC. Generates 128, 160, 256, or 320 bits.

Answer 164

connector specifications

Answer 165

Data going through one substitution and transposition process.

Answer 166

Rule Set-Based Access Control

Answer 167

Every user needs a unique name.

Answer 168

You can have users with the exact same names, as long as they're in different domains.

Answer 169

Process of cleaning a devices by having all data removed

Answer 170

The password is used as the key to perform a hash on a challenge text value, and only the hashed value is passed... not the password. The receiving host use the same method to compare.

Answer 171

Object that can be given permission to an object

Answer 172

Let the user be able to admin their passsword

Answer 173

Having more than one person to complete a task

Answer 174

Manages sessions in which data is transferred.

Answer 175

Developed by NIST and NSA. Generates 160 bits.

Answer 176

Tries to exploit information about the physical implementation f a cryptosystem

Answer 177

No write down

Answer 178

Exploits weakness in the design of a cryptosystem

Answer 179

A virus that resides in a low-level system service functions where they intercept system requests and alter service outputs their presence.

Answer 180

Process of hiding messages

Answer 181

Encryption is performed on each bit within the stream in real time.

Answer 182

Needs access to objects

Answer 183

Users, applications, processes.

Answer 184

32-bit number associated with each IPv4 address

Answer 185

Replaces one set of characters with symbols or another character set

Answer 186

Operates at Data Link layer by reading the MAC address in a frame to make forwarding decisions.

Answer 187

A form of cryptography that provides confidentiality with a weak form of authentication or integrity. It uses only one key to encrypt & decrypt data.

Answer 188

Computer Mechanisms that restrict access.

Answer 189

Computer mechanisms that restrict access

Answer 190

Authentication. authorization and auditing.

Answer 191

Lets us have other users over

Answer 192

Provides services that ensure accurate and timely delivery of network communications between two hosts. TCP is connection-oriented.

Answer 193

TCP and UDP.

Answer 194

Changes the position of characters in the plain text

Answer 195

A collection of one or more domains that exsist within the same DNS Namespace.

Answer 196

Provides services of network communications between two hosts. UDP is connectionless.

Answer 197

modem signaling

Answer 198

A program that attempts to damage a computer system and replicate itself to other computer systems.

Answer 199

Reduce the risk for an attack

Answer 200

Objects, subjects and system.

Answer 201

Confidentiality

Answer 202

Organization, delegation of administrator responsibilities, and replication.

Answer 203

Sophistication - Complication of attacks

Answer 204

Integrity keeps the item fully in-tack and not messed with, non-repudiation always givens authentication

Answer 205

Encryption

Answer 206

Authentication

Answer 207

WiFi Protected Access 2

Testout Security Pro Flashcards

(239 cards)