WEEK 6 2025

Question 1

Modification threat on cloud security is an example of

Answer 1

Deception
Disruption
Usurpation

Question 2

Examples of Passive attack

Answer 2

Traffic analysis

Question 3

(T/F) Interception is an attack on integrity

Answer 3

False

Question 4

S1: Intrusion Detection System(IDS) scans the incoming messages, and creates alerts when suspected scans/attacks are in progress.
S2: Authentication is the identification of legitimate users

Answer 4

Both are True

Question 5

1. Injection Attack
2. Flooding
3. Metadata(WSDL) Spoofing attack

Answer 5

Introduce malicious code to change the course of execution.
Attacker sending huge amounts of requests to a certain service and causing denial of service.
Malicious reengineering of Web Services’ metadata description

Question 6

(T/F)Recovery Time Objective(RTO) represents the period of time allowed for the complete execution of the task.

Answer 6

False

Question 7

Correct statements for necessary and sufficient conditions for the detection of inheritance conflict are:

Answer 7

Sufficient condition: current entry role is senior to at least one exit role.
Necessary condition: at least one exit role

Question 8

Hypervisor risks associated with VM escape

Answer 8

Vulnerable virtual machine applications like Vmchat, VMftp, Vmcat etc.
Improper configuration of VM.

Question 9

(T/F) In fault tolerance, replication is the duplication of critical components of a system with the intention of increasing reliability of the system, usually in the case of a backup or fail-safe.

Answer 9

False

Question 10

Open Source tools used for retrieving web pages in Amazon E2C platform

Answer 10

wget