Fundamentals of Information Security [State Exam | Part 1]

Question

What is a potential risk when using a free and open wireless hotspot in a public location?

Answer 1

Too many users trying to connect to the Internet may cause a network traffic jam.

Answer 2

The Internet connection can become too slow when many users access the wireless hotspot.

Answer 3

Network traffic might be hijacked and information stolen.

Answer 4

Purchase of products from vendors might be required in exchange for the Internet access.

Answer 5

by integrating all security devices and appliances in an organization

Answer 6

by analyzing logging data in real time

Answer 7

by combining data from multiple technologies

Answer 8

by dynamically implementing firewall rules

Answer 9

They are part of a protest group behind a political cause.

Answer 10

They are curious and learning hacking skills.

Answer 11

They are trying to show off their hacking skills.

Answer 12

They are interested in discovering new exploits.

Answer 13

Approximately 5 minutes per year.

Answer 14

Approximately 10 minutes per year.

Answer 15

Approximately 20 minutes per year.

Answer 16

Approximately 30 minutes per year.

Answer 17

Most IoT devices do not require an Internet connection and are unable to receive new updates.

Answer 18

IoT devices cannot function on an isolated network with only an Internet connection.

Answer 19

Most IoT devices do not receive frequent firmware updates.

Answer 20

IoT devices require unencrypted wireless connections.

Answer 21

managing comprehensive threat solutions

Answer 22

ensuring secure routing packet exchanges

Answer 23

responding to data center physical break-ins

Answer 24

monitoring network security threats

Answer 25

providing secure Internet connections

Answer 26

man-in-the-middle attack

Answer 27

DoS attack

Answer 28

Ransomware

Answer 29

Trojan horse

Answer 30

SQL injection

Answer 31

firewall appliance

Answer 32

security monitoring

Answer 33

log management

Answer 34

intrusion prevention

Answer 35

proxy service

Answer 36

threat intelligence

Answer 37

SOC Manager

Answer 38

Tier 2 personnel

Answer 39

Tier 3 personnel

Answer 40

Tier 1 personnel

Answer 41

Cyberwarfare is an attack carried out by a group of script kiddies.

Answer 42

It is a series of personal protective equipment developed for soldiers involved in nuclear war.

Answer 43

It is simulation software for Air Force pilots that allows them to practice under a simulated war scenario.

Answer 44

It is Internet-based conflict that involves the penetration of information systems of other nations.

Answer 45

syslog server

Answer 46

registration system

Answer 47

ticketing system

Answer 48

security alert knowledge-based system

Answer 49

script kiddie

Answer 50

Tier 1 Analyst

Answer 51

SOC Manager

Answer 52

Tier 2 Incident Reporter

Answer 53

Tier 3 SME

Answer 54

Control Panel

Answer 55

Task Manager

Answer 56

Right-click the application and choose Run as root.

Answer 57

Right-click the application and choose Run as Priviledge.

Answer 58

Right-click the application and choose Run as Administrator.

Answer 59

Right-click the application and choose Run as Superuser.

Answer 60

in the recovery partition

Answer 61

in flash memory

Answer 62

in the Registry

Answer 63

the number of routers between the source and destination device

Answer 64

the destination device is reachable through the network

Answer 65

the average time it takes each router in the path between source and destination to respond

Answer 66

the IP address of the router nearest the destination device

Answer 67

the average time it takes a packet to reach the destination and for the response to return to the source

Answer 68

It provides an active list of TCP connections.

Answer 69

It maintains system logs.

Answer 70

It selectively denies traffic on specified interfaces.

Answer 71

It provides information on system resources and processes.

Answer 72

all active TCP and UDP connections, their current state, and their associated process ID (PID)

Answer 73

only active TCP connections in an ESTABLISHED state

Answer 74

only active UDP connections in an LISTENING state

Answer 75

a local routing table

Answer 76

ipconfig /flushdns

Answer 77

net cisco.com

Answer 78

nslookup cisco.com

Answer 79

ping cisco.com

Answer 80

nbtstat cisco.com

Answer 81

Run the command from the command prompt.

Answer 82

Install latest Windows updates.

Answer 83

Restart the abno service in Task Manager.

Answer 84

Run PowerShell as administrator.

Answer 85

Event Viewer

Answer 86

PowerShell

Answer 87

Task Manager

Answer 88

Performance Monitor

Answer 89

firewall settings

Answer 90

MAC address settings

Answer 91

smartcard settings

Answer 92

file system settings

Answer 93

file directory and subdirectory

Answer 94

current file directory

Answer 95

file attribute

Answer 96

storage device or partition

Answer 97

administrator

Answer 98

to create user accounts

Answer 99

to test the hardware devices on the PC

Answer 100

to change the computer name for the PC

Answer 101

to configure networking parameters for the PC

Answer 102

Event Viewer

Answer 103

PowerShell

Answer 104

Task Manager

Answer 105

Performance Monitor

Answer 106

to review the network configuration on the PC

Answer 107

to check if the DNS server can be contacted

Answer 108

to ensure that the PC can connect to remote networks

Answer 109

to review the status of network media connections

Answer 110

to display the bandwidth and throughput of the network connection

Answer 111

NTFS allows the automatic detection of bad sectors.

Answer 112

NTFS is easier to configure.

Answer 113

NTFS allows faster formatting of drives.

Answer 114

NTFS provides more security features.

Answer 115

NTFS supports larger files.

Answer 116

NTFS allows faster access to external peripherals such as a USB drive.

Answer 117

to start a network service

Answer 118

to display information about shared network resources

Answer 119

to show a list of computers and network devices on the network

Answer 120

to review the settings of password and logon requirements for users

Answer 121

to check if the NIC functions as expected

Answer 122

to check if the default gateway is configured correctly

Answer 123

to display the bandwidth and throughput of the network connection

Answer 124

to check if the TCP/IP protocol suite is installed properly

Answer 125

to ensure that the PC can connect to remote networks

Answer 126

It is easier to use than other operating systems.

Answer 127

It is more secure than other server operating systems.

Answer 128

The administrator has more control over the operating system.

Answer 129

More network applications are created for this environment

Answer 130

write only

Answer 131

read, write, execute

Answer 132

read, write

Answer 133

file viewer

Answer 134

package management tool

Answer 135

terminal emulator

Answer 136

system viewer

Answer 137

The server works as a standalone computer.

Answer 138

The server is designed to provide services to clients.

Answer 139

The workstation has fewer applications installed.

Answer 140

The workstation has more users who attach to it.

Answer 141

Allow default services to remain enabled.

Answer 142

Update patches on a strict annual basis irrespective of release date.

Answer 143

Enforce the password history mechanism.

Answer 144

Ensure physical security.

Answer 145

Allow USB auto-detection.

Answer 146

to provide a customizable CLI environment

Answer 147

to provide a basic framework for a GUI

Answer 148

to provide remote access to a Linux-based system

Answer 149

to provide a basic set of penetration testing tools

Answer 150

fewer deployments

Answer 151

integrated firewall

Answer 152

customizable penetration and protection tools

Answer 153

file system structure, file permissions, and user account restrictions

Answer 154

new releases

Answer 155

penetration testing

Answer 156

penetration testing

Answer 157

package manager

Answer 158

malware analysis tool

Answer 159

packet capture software

Answer 160

ticketing system

Answer 161

log manager

Answer 162

sudo journalctl –u nginx.service -f

Answer 163

sudo journalctl –f

Answer 164

sudo journalctl –until "1 hour ago"

Answer 165

sudo journalctl –u nginx.services

Answer 166

It provides access to settings and the shutdown function.

Answer 167

It is used to compile code that creates an application.

Answer 168

It is used to install an application.

Answer 169

It provides a short list of tasks a particular application can perform.

Answer 170

only the creator of the file

Answer 171

any user that has 'group' permission to the file

Answer 172

any user that has 'other' permission to the file

Answer 173

creating interdependent processes

Answer 174

dynamic processes

Answer 175

pipelining

Answer 176

to configure an appointment for a specific date and time

Answer 177

to configure and manage task (to-do) lists

Answer 178

to update the operating system

Answer 179

to apportion and configure a part of the hard disk for file storage

Answer 180

A DHCPDISCOVER message is sent with a multicast IP address that all DHCP servers listen to as the destination address.

Answer 181

A DHCPDISCOVER message is sent with the broadcast IP address as the destination address.

Answer 182

A DHCPDISCOVER message is sent with the IP address of the default gateway as the destination address.

Answer 183

A DHCPDISCOVER message is sent with the IP address of the DHCP server as the destination address.

Answer 184

This is a link-local address.

Answer 185

This is a loopback address.

Answer 186

There is an IP address conflict.

Answer 187

This is a private IP address.

Answer 188

the combination of the source and destination sequence numbers and port numbers

Answer 189

the combination of a source IP address and port number or a destination IP address and port number

Answer 190

the combination of the source and destination sequence and acknowledgment numbers

Answer 191

the combination of the source and destination IP address and source and destination Ethernet address

Answer 192

08-CB-8A-5C-D5-BA

Answer 193

00-D0-D3-BE-79-26

Answer 194

00-60-0F-B1-D1-11

Answer 195

01-90-C0-E4-55-BB

Answer 196

DSN server

Answer 197

router ISP

Answer 198

web server

Answer 199

multiplexing

Answer 200

encapsulation

Answer 201

segmentation

Answer 202

An ARP request is sent to all devices on the Ethernet LAN and contains the IP address of the destination host and its multicast MAC address.

Answer 203

If no device responds to the ARP request, then the originating node will broadcast the data packet to all devices on the network segment.

Answer 204

When a host is encapsulating a packet into a frame, it refers to the MAC address table to determine the mapping of IP addresses to MAC addresses.

Answer 205

If a host is ready to send a packet to a local destination device and it has the IP address but not the MAC address of the destination, it generates an ARP broadcast.

Answer 206

If a device receiving an ARP request has the destination IPv4 address, it responds with an ARP reply.

Answer 207

outside global

Answer 208

outside local

Answer 209

inside local

Answer 210

inside global

Answer 211

SW1 will send an ARP reply with the PC2 MAC address.

Answer 212

PC2 will send an ARP reply with its MAC address.

Answer 213

RT1 will send an ARP reply with its Fa0/0 MAC address.

Answer 214

RT1 will send an ARP reply with the PC2 MAC address.

Answer 215

SW1 will send an ARP reply with its Fa0/1 MAC address.

Answer 216

Unacknowledged data packets are retransmitted.

Answer 217

Destination devices receive traffic with minimal delay.

Answer 218

Destination devices reassemble messages and pass them to an application.

Answer 219

Transmitted data segments are tracked.

Answer 220

Received data is unacknowledged.

Answer 221

2001:0DB8:0000:0000:0BAF:0000:3F57:FE94

Answer 222

2001:0DB8:0000:0BAF:0000:0000:3F57:FE94

Answer 223

2001:DB80:0000:0000:BAF0:0000:3F57:FE94

Answer 224

2001:0DB8:0000:0000:0000:0BAF:3F57:FE94

Answer 225

to provide secure Internet file transfer

Answer 226

to convert a URL name into an IP address

Answer 227

to forward traffic on the basis of MAC addresses

Answer 228

to encapsulate data that is used to communicate across a network

Answer 229

to select the paths that are used to direct traffic to destination networks

Answer 230

UDP sequence number

Answer 231

TCP 3-way handshake

Answer 232

TCP port number

Answer 233

UDP ACK flag

Answer 234

Multiple ARP replies result in the switch MAC address table containing entries that match the MAC addresses of hosts that are connected to the relevant switch port.

Answer 235

Network attackers could manipulate MAC address and IP address mappings in ARP messages with the intent of intercepting network traffic.

Answer 236

On large networks with low bandwidth, multiple ARP broadcasts could cause data communication delays.

Answer 237

Manually configuring static ARP associations could facilitate ARP poisoning or MAC address spoofing.

Answer 238

Large numbers of ARP request broadcasts could cause the host MAC address table to overflow and prevent the host from communicating on the network.

Answer 239

sequence numbers

Answer 240

acknowledgments

Answer 241

window size

Answer 242

to provide feedback of IP packet transmissions

Answer 243

to monitor the process of a domain name to IP address resolution

Answer 244

to inform routers about network topology changes

Answer 245

to ensure the delivery of an IP packet

Answer 246

The message is lost because FTP does not use a reliable delivery method.

Answer 247

The part of the FTP message that was lost is re-sent.

Answer 248

The FTP source host sends a query to the destination host.

Answer 249

The entire FTP message is re-sent.

Answer 250

conserve IPv4 addresses

Answer 251

allow peer-to-peer file sharing

Answer 252

enhance network performance

Answer 253

increase network security

Answer 254

to identify the network address of the destination network

Answer 255

to identify the host address of the destination host

Answer 256

to identify the broadcast address of the destination network

Answer 257

to identify faulty frames

Answer 258

192.135.250.1

Answer 259

192.133.219.0

Answer 260

192.133.219.1

Answer 261

192.31.7.1

Answer 262

192.167.10.10

Answer 263

192.168.5.5

Answer 264

172.16.4.4

Answer 265

172.32.5.2

Answer 266

ACLs can control which areas a host can access on a network.

Answer 267

ACLs provide a basic level of security for network access.

Answer 268

Standard ACLs can restrict access to specific applications and ports.

Answer 269

ACLs can permit or deny traffic based upon the MAC address originating on the router.

Answer 270

ACLs assist the router in determining the best path to a destination.

Answer 271

passive mode

Answer 272

security mode

Answer 273

channel setting

Answer 274

active mode

Answer 275

route that is learned via OSPF

Answer 276

route that is learned via EIGRP

Answer 277

route that is manually entered by a network administrator

Answer 278

directly connected interface

Answer 279

local route interface

Answer 280

perimeter security boundary

Answer 281

internal network

Answer 282

untrusted network

Answer 283

to detect patterns of malicious traffic by the use of signature files

Answer 284

to filter traffic based on defined rules and connection context

Answer 285

to filter traffic based on Layer 7 information

Answer 286

to enforce access control policies based on packet content

Answer 287

SIP support

Answer 288

password encryption

Answer 289

802.1X support

Answer 290

separate authentication and authorization processes

Answer 291

utilization of transport layer protocols

Answer 292

AAA connectivity via UDP

Answer 293

compatibility with previous TACACS protocols

Answer 294

authorization on a per-user or per-group basis

Answer 295

password encryption without encrypting the packet

Answer 296

the destination service requested

Answer 297

the destination IP address

Answer 298

the destination host name

Answer 299

the destination MAC address

Answer 300

NTP servers at stratum 1 are directly connected to an authoritative time source.

Answer 301

NTP servers ensure an accurate time stamp on logging and debugging information.

Answer 302

There can only be one NTP server on an enterprise network.

Answer 303

All NTP servers synchronize directly to a stratum 1 time source.

Answer 304

NTP servers control the mean time between failures (MTBF) for key network devices.

Answer 305

Physical topologies display the IP addressing scheme of each network.

Answer 306

Logical topologies refer to how a network transfers data between devices.

Answer 307

The logical topology is always the same as the physical topology.

Answer 308

Physical topologies are concerned with how a network transfers frames.

Answer 309

distribution

Answer 310

uses signatures to detect patterns in network traffic

Answer 311

drops or forwards traffic based on packet header information

Answer 312

connects to remote servers on behalf of clients

Answer 313

filters IP traffic between bridged interfaces

Answer 314

aggregating access layer connections

Answer 315

providing high speed connection to the network edge

Answer 316

providing secure access to the Internet

Answer 317

providing direct access to the network

Answer 318

active mode

Answer 319

mixed mode

Answer 320

passive mode

Answer 321

It utilizes UDP to provide more efficient packet transfer.

Answer 322

It hides passwords during transmission using PAP and sends the rest of the packet in plaintext.

Answer 323

It encrypts the entire body of the packet for more secure communications.

Answer 324

It combines authentication and authorization as one process.

Answer 325

source MAC address

Answer 326

protocol type

Answer 327

source IP address

Answer 328

source TCP port

Answer 329

Trojan horse

Answer 330

to gain access to a device without being detected

Answer 331

to do reconnaissance

Answer 332

to reverse engineer binary files

Answer 333

to try to guess a password

Answer 334

cybercriminal

Answer 335

script kiddie

Answer 336

vulnerability broker

Answer 337

hacktivist

Answer 338

Extreme quantities of data are sent to a particular network device interface.

Answer 339

An electronic dictionary is used to obtain a password to be used to infiltrate a key network device.

Answer 340

Too much information is destined for a particular memory block, causing additional memory areas to be affected.

Answer 341

Malware is contained in a seemingly legitimate executable program.

Answer 342

a group of web servers that provide load balancing and fault tolerance

Answer 343

an online video game intended for multiple players

Answer 344

a network that allows users to bring their own technology

Answer 345

a network of infected computers that are controlled as a group

Answer 346

data-sending

Answer 347

to prevent the target server from being able to handle additional requests

Answer 348

to scan the data on the target server

Answer 349

to facilitate access to external networks

Answer 350

to obtain all addresses in the address book within the server

Answer 351

to prevent other users from accessing the system

Answer 352

to scan for accessible networks

Answer 353

to gather information about the network

Answer 354

to retrieve data

Answer 355

launching a security countermeasure to mitigate a Trojan horse

Answer 356

attempting to write more data to a memory location than that location can hold

Answer 357

sending repeated connections such as Telnet to a particular device, thus denying other data sources

Answer 358

sending too much information to two or more interfaces of the same device, thereby causing dropped packets

Answer 359

downloading and installing too many software updates at one time

Answer 360

Trojan horse

Answer 361

ransomware

Answer 362

target phishing

Answer 363

spear phishing

Answer 364

packet sniffer attack

Answer 365

denial of service attack

Answer 366

buffer overflow attack

Answer 367

brute-force attack

Answer 368

port redirection attack

Answer 369

IP spoofing attack

Answer 370

They are infected machines that carry out a DDoS attack.

Answer 371

They are maliciously formed code segments used to replace legitimate applications.

Answer 372

They target specific individuals to gain corporate or personal information.

Answer 373

They probe a group of machines for open ports to learn which services are running

Answer 374

encryption

Answer 375

access attack

Answer 376

resource exhaustion

Answer 377

to retrieve and modify data

Answer 378

to scan for accessibility

Answer 379

to escalate access privileges

Answer 380

to prevent other users from accessing the system

Answer 381

to gather information about the network and devices

Answer 382

pretexting

Answer 383

buffer overflow

Answer 384

man-in-the-middle

Answer 385

sending junk email

Answer 386

port redirection

Answer 387

trust exploitation

Answer 388

buffer overflow

Answer 389

man in the middle

Answer 390

The computer emits a hissing sound every time the pencil sharpener is used.

Answer 391

The computer freezes and requires reboots.

Answer 392

No sound emits when an audio CD is played.

Answer 393

The computer gets increasingly slower to respond.

Answer 394

The computer beeps once during the boot process.

Answer 395

ransomware

Answer 396

reconnaissance

Answer 397

Virus malware is only distributed over the Internet.

Answer 398

Once installed on a host system, a virus will automatically propagate itself to other systems.

Answer 399

A virus is triggered by an event on the host system.

Answer 400

A virus can execute independently of the host system

Answer 401

fine tuning network devices to improve their performance and efficiency

Answer 402

taking advantage of any vulnerability for illegal personal gain

Answer 403

studying operating systems of various platforms to develop a new system

Answer 404

discovering weaknesses of networks and systems to improve the security level of these systems

Answer 405

a network scanning technique that indicates the live hosts in a range of IP addresses.

Answer 406

a query and response protocol that identifies information about a domain, including the addresses that are assigned to that domain.

Answer 407

a software application that enables the capture of all network packets that are sent across a LAN.

Answer 408

a scanning technique that examines a range of TCP or UDP port numbers on a host to detect listening services

Answer 409

an enabling vulnerability

Answer 410

a propagation mechanism

Answer 411

a probing mechanism

Answer 412

a penetration mechanism

Answer 413

an infecting vulnerability

Answer 414

network tap

Answer 415

StealWatch

Answer 416

IP address spoofing

Answer 417

DHCP starvation

Answer 418

CAM table attack

Answer 419

DHCP spoofing

Answer 420

Network analysts are able to access network device log files and to monitor network behavior.

Answer 421

Statistics on packets flowing through Cisco routers and multilayer switches can be captured.

Answer 422

Traffic exiting and entering a switch is copied to a network monitoring device.

Answer 423

Real-time reporting and long-term analysis of security events are enabled.

Answer 424

amplification and reflection

Answer 425

cache poisoning

Answer 426

Confidential information is stolen.

Answer 427

Network clients experience a denial of service.

Answer 428

Data is modified in transit or malicious data is inserted in transit.

Answer 429

Multiple subdomains are created.

Answer 430

brute force

Answer 431

reducing the volume of event data by consolidating duplicate event records

Answer 432

searching logs and event records of multiple sources for more complete forensic analysis

Answer 433

presenting correlated and aggregated event data in real-time monitoring

Answer 434

increasing speed of detection and reaction to security threats by examining logs from many systems and applications

Answer 435

HTTP or HTTPS

Answer 436

domain generation algorithms

Answer 437

reflection

Answer 438

forensic analysis

Answer 439

correlation

Answer 440

aggregation

Answer 441

reset attack

Answer 442

session hijacking attack

Answer 443

port scan attack

Answer 444

SYN flood attack

Answer 445

ARP cache poisoning

Answer 446

DNS amplification and reflection

Answer 447

DNS cache poisoning

Answer 448

domain generation

Answer 449

A more secure protocol should be used.

Answer 450

The total length (TL) field indicates an unsecure Layer 4 protocol is being used.

Answer 451

The person accessing the server should never access it from a device using a private IP address.

Answer 452

The person accessing the server should use the private IP address of the server.

Answer 453

ICMP redirect

Answer 454

address spoofing

Answer 455

inside an options field that is part of the IPv6 packet header

Answer 456

inside the Flow Label field

Answer 457

inside the payload carried by the IPv6 packet

Answer 458

inside an extension header attached to the main IPv6 packet header

Answer 459

Cross-site scripting

Answer 460

SQL injection

Answer 461

buffer overflow

Answer 462

XML injection

Answer 463

port mirroring

Answer 464

network tap

Answer 465

availability

Answer 466

confidentiality

Answer 467

scalability

Answer 468

password policies

Answer 469

identification and authentication policies

Answer 470

remote access policies

Answer 471

acceptable use policies

Answer 472

User access to data is based on object attributes.

Answer 473

Users are granted rights on an as-needed approach.

Answer 474

Users are granted the strictest access control possible to data.

Answer 475

Users control access to data they own.

Answer 476

RADIUS is supported by the Cisco Secure ACS software whereas TACACS+ is not.

Answer 477

RADIUS encrypts only the password whereas TACACS+ encrypts all communication.

Answer 478

RADIUS separates authentication and authorization whereas TACACS+ combines them as one process.

Answer 479

RADIUS uses TCP whereas TACACS+ uses UDP.

Answer 480

It is used to create a security policy.

Answer 481

It is used to implement security policies, setting, and software configurations on mobile devices.

Answer 482

It is used by threat actors to penetrate the system.

Answer 483

It is used to identify potential mobile device vulnerabilities.

Answer 484

authentication

Answer 485

authorization

Answer 486

accounting

Answer 487

automation

Answer 488

accounting

Answer 489

authentication

Answer 490

authorization

Answer 491

Trusted automated exchange of indicator information (TAXII)

Answer 492

Structured threat information expression (STIX)

Answer 493

Automated indicator sharing (AIS)

Answer 494

Common vulnerabilities and exposures (CVE)

Answer 495

availability

Answer 496

confidentiality

Answer 497

scalability

Answer 498

intervention

Answer 499

scalability

Answer 500

availability

Answer 501

confidentiality

Answer 502

authorization

Answer 503

authentication

Answer 504

accounting

Answer 505

Encrypt the data.

Answer 506

Fragment the data.

Answer 507

Add a checksum to the end of the data.

Answer 508

Assign it a username and password.

Answer 509

number of systems on each network

Answer 510

network baseline data

Answer 511

data analysis trends

Answer 512

hardware used by applications

Answer 513

important applications used

Answer 514

autoconfiguration

Answer 515

automation

Answer 516

authorization

Answer 517

authentication

Answer 518

autobalancing

Answer 519

accounting

Answer 520

BYOD provides flexibility in where and how users can access network resources.

Answer 521

BYOD requires organizations to purchase laptops rather than desktops.

Answer 522

BYOD users are responsible for their own network security, thus reducing the need for organizational security policies.

Answer 523

BYOD devices are more expensive than devices that are purchased by an organization.

Answer 524

AutoSecure

Answer 525

role-based CLI access

Answer 526

authentication, authorization, and accounting

Answer 527

Simple Network Management Protocol

Answer 528

Cisco Configuration Professional communities

Answer 529

access layer switch

Answer 530

internal router

Answer 531

edge router

Answer 532

assets that need protection

Answer 533

location of attacker or attackers

Answer 534

total number of devices that attach to the wired and wireless network

Answer 535

threats to assets

Answer 536

vulnerabilities in the system

Answer 537

past security breaches

Answer 538

statement of authority

Answer 539

statement of scope

Answer 540

campus access policy

Answer 541

Internet access policy

Answer 542

identification and authentication policy

Answer 543

acceptable use policy

Answer 544

mandatory access control (MAC)

Answer 545

discretionary access control (DAC)

Answer 546

attribute-based access control (ABAC)

Answer 547

Non-discretionary access control

Answer 548

HTTPS traffic can carry a much larger data payload than HTTP can carry.

Answer 549

HTTPS traffic is much faster than HTTP traffic.

Answer 550

HTTPS traffic does not require authentication.

Answer 551

HTTPS traffic enables end-to-end encryption.

Answer 552

hashing algorithms

Answer 553

digital signatures

Answer 554

symmetric keys

Answer 555

PKI certificates

Answer 556

Complex inputs will produce complex hashes.

Answer 557

Hash functions can be duplicated for authentication purposes.

Answer 558

The hash function is one way and irreversible.

Answer 559

The input for a particular hash algorithm has to have a fixed size.

Answer 560

The output is a fixed length.

Answer 561

HMAC uses a secret key that is only known to the sender and defeats man-in-the-middle attacks.

Answer 562

HMAC uses protocols such as SSL or TLS to provide session layer confidentiality.

Answer 563

HMAC uses a secret key as input to the hash function, adding authentication to integrity assurance.

Answer 564

HMAC is based on the RSA hash function.

Answer 565

They are commonly used with VPN traffic.

Answer 566

They use a pair of a public key and a private key.

Answer 567

They are commonly implemented in the SSL and SSH protocols.

Answer 568

They provide confidentiality, integrity, and availability.

Answer 569

They are referred to as a pre-shared key or secret key.

Answer 570

Email security is provided by the vendor, not by a certificate.

Answer 571

A vendor must issue only one class of certificates when acting as a CA.

Answer 572

A class 5 certificate is more trustworthy than a class 4 certificate.

Answer 573

The lower the class number, the more trusted the certificate.

Answer 574

developing secret codes

Answer 575

breaking encrypted codes

Answer 576

implementing encrypted codes

Answer 577

hiding secret codes

Answer 578

The users must obtain the certificate of the CA and then their own certificate.

Answer 579

The CA is always required, even after user verification is complete.

Answer 580

CA certificates are retrieved out-of-band using the PSTN, and the authentication is done in-band over a network.

Answer 581

After user verification is complete, the CA is no longer required, even if one of the involved certificates expires.

Answer 582

The key space is increased by 3 times.

Answer 583

The key space is increased by 8 times.

Answer 584

The key space is increased by 15 times.

Answer 585

The key space is increased by 16 times.

Answer 586

symmetric encryption algorithms

Answer 587

certificate authority

Answer 588

intrusion prevention system

Answer 589

digital certificates

Answer 590

pre-shared key generation

Answer 591

the private key of the retailer

Answer 592

the digital signatures

Answer 593

the unique shared secret known only by the retailer and the customer

Answer 594

the public key of the retailer

Answer 595

It uses a 112-bit encryption key.

Answer 596

It requires more CPU resources than software-based AES does.

Answer 597

It is an example of an asymmetric algorithm.

Answer 598

SEAL is a stream cipher.

Answer 599

a super CA

Answer 600

a subordinate CA

Answer 601

a backup root CA

Answer 602

encryption

Answer 603

asymmetric key algorithm

Answer 604

digital signature

Answer 605

hash algorithm

Answer 606

accounting

Answer 607

authenticity

Answer 608

compression

Answer 609

nonrepudiation

Answer 610

encryption

	Creado por Good Guy Beket hace más de 5 años

Siguiente

Fundamentals of Information Security [State Exam | Part 1]

Descripción

Resumen del Recurso

Pregunta 1

Pregunta 2

Pregunta 3

Pregunta 4

Pregunta 5

Pregunta 6

Pregunta 7

Pregunta 8

Pregunta 9

Pregunta 10

Pregunta 11

Pregunta 12

Pregunta 13

Pregunta 14

Pregunta 15

Pregunta 16

Pregunta 17

Pregunta 18

Pregunta 19

Pregunta 20

Pregunta 21

Pregunta 22

Pregunta 23

Pregunta 24

Pregunta 25

Pregunta 26

Pregunta 27

Pregunta 28

Pregunta 29

Pregunta 30

Pregunta 31

Pregunta 32

Pregunta 33

Pregunta 34

Pregunta 35

Pregunta 36

Pregunta 37

Pregunta 38

Pregunta 39

Pregunta 40

Pregunta 41

Pregunta 42

Pregunta 43

Pregunta 44

Pregunta 45

Pregunta 46

Pregunta 47

Pregunta 48

Pregunta 49

Pregunta 50

Pregunta 51

Pregunta 52

Pregunta 53

Pregunta 54

Pregunta 55

Pregunta 56

Pregunta 57

Pregunta 58

Pregunta 59

Pregunta 60

Pregunta 61

Pregunta 62

Pregunta 63

Pregunta 64

Pregunta 65

Pregunta 66

Pregunta 67

Pregunta 68

Pregunta 69

Pregunta 70

Pregunta 71

Pregunta 72

Pregunta 73

Pregunta 74

Pregunta 75

Pregunta 76