Final-Exam-NetSec

1.

1 point

In information security a(n) __________ is the likelihood that a threat agent will exploit a vulnerability.

risk

attack

exploitation

threat

2.

1 point

A threat agent __________.

does not include natural disasters

something that cannot be determined in advance

is any person or thing with the power to carry out a threat against an asset

is limited to attacks using viruses and worms

3.

1 point

Each of the following is a convergence security vulnerability except __________.

convergence resource attacks (CRA)

VoIP protocols

spam

lack of encryption

4.

1 point

__________ are a loose-knit network of attackers, identity thieves, and financial fraudsters.

Script kiddies

Spies

Hackers

Cybercriminals

5.

1 point

Which of the following is not an approach to trust?

Trust authorized individuals only.

Trust some people some of the time.

Trust all people all the time.

Trust everyone all of the time.

6.

1 point

A __________ is a collection of suggestions that should be implemented.

standard

policy

code

guideline

7.

1 point

__________ attacks come from multiple sources instead of a single source.

Distributed

Script resource malware (SRM)

Isolated

Form resource

8.

1 point

__________ ensures that only authorized parties can view the information.

Confidentiality

Availability

Integrity

ICA

9.

1 point

__________ is a systematic and structured approach to managing the potential for loss that is related to a threat.

Asset management

Risk management

Threat mitigation

Risk assessment (RA)

10.

1 point

A firewall using __________ is the most secure type of firewall.

network intrusion detection system replay

stateful packet filtering

stateless packet filtering

reverse proxy analysis

11.

1 point

Which of the following is not true regarding TCP SYN port scanning?

Instead of using the operating system’s network functions, the port scanner generates IP packets itself and monitors for responses.

This scan type is also known as “half-open scanning” because it never actually opens a full TCP connection.

The scanner host closes the connection before the handshake is completed.

It uses FIN messages that can pass through firewalls and avoid detection.

12.

1 point

A __________ attack takes advantage of vulnerabilities that have not been previously revealed.

signature-based attack

zero day

quick vulnerability assessment (QVA)

glamour

13.

1 point

The term __________ is commonly used in a generic sense to identify anyone who illegally breaks into a computer system

Internet Exploiter

cyberrogue

hacker

cyberterrorist

14.

1 point

A honeypot is used for each of the following except __________.

provide early warning of new attacks

examine attacker techniques

deflect attention away from real servers

filter packets before they reach the network

15.

1 point

A protocol analyzer places the computer’s network interface card (NIC) adapter into __________ mode

stealth

promiscuous

authenticator

supplicant

16.

1 point

The __________ establishes the action that a firewall takes on a packet.

packet outline

rule base

host cache

syntax table

17.

1 point

The principle known as __________ in access control means that each user should only be given the minimal amount of privileges necessary for that person to perform their job function.

Enterprise Security

least privilege

Mandatory Limitations

deny all

18.

1 point

The amendment to add 5.5 Mbps and 11 Mbps to the IEEE 802.11 standard is __________.

IEEE 802.11b

IEEE 802.11a

IEEE 802.11n

IEEE 802.11g

19.

1 point

Another name for a packet filter is a __________.

DMZ

firewall

proxy server

honeypot

20.

1 point

If a device is determined to have an out-of-date virus signature file then Network Access Control (NAC) can redirect that device to a network by __________.

a Trojan horse

Address Resolution Protocol (ARP) poisoning

DHCP man-in-the-middle

TCP/IP hijacking

21.

1 point

Each of the following is a goal of information security except __________.

decrease user productivity

prevent data theft

avoid legal consequences

foil cyberterrorism

22.

1 point

Separate __________ can be used to support low-security guest Internet access and high security administrators on the same access point.

wireless virtual local area networks (VLANs

separated wireless streams (SWS)

segmented access points

proxy security servers

23.

1 point

A process functioning on behalf of the user that attempts to access a file is known as a(n) __________.

resource

operation check

object

subject

24.

1 point

A user entering her username would correspond to the __________ action in access control.

authentication

authorization

access

identification

25.

1 point

Which of the following is NOT a password policy defense against an attacker stealing a Windows password file?

Disable all necessary accounts.

Physically lock the computer case so that it cannot be opened

Ensure that all servers and computers are regularly patched.

Password-protect the ROM BIOS.

26.

1 point

An example of a(n) __________ is a software defect in an operating system that allows an unauthorized user to gain access to a computer without a password.

threat agent threat agent

threat

vulnerability

asset exploit (AE)

27.

1 point

A virtual LAN (VLAN) allows devices to be grouped __________.

logically

based on subnets

only around core switches

directly to routers

28.

1 point

Each of the following is a successive layer in which information security is achieved except __________.

people

products

procedures

Intrusion Wormhole Defense (IWD)

29.

1 point

The Service Set Identifier (SSID) __________.

is optional on all networks

is only used on IEEE 802.11g networks

is used only with closed system authentication

serves as the network name for a WLAN

30.

1 point

A(n) __________ intercepts internal user requests and then processes that request on behalf
of the user.

intrusion prevention device

proxy server

content filter

host detection server

31.

1 point

Each of the following is a reason why it is difficult to defend against today’s attackers except __________.

delays in patching hardware and software products

speed of attacks

complexity of attack tools

greater sophistication of attacks

32.

1 point

Access to the wireless network can be restricted by __________.

ARP resolution

TKIP encryption

MAC address filtering

WEP authentication

33.

1 point

Each of the following is a state of a port that can be returned by a port scanner except __________.

busy

closed

blocked

open

34.

1 point

Subnetting __________.

logically

directly to routers

only around core switches

based on subnets

35.

1 point

A __________ watches for attacks but only takes limited action when one occurs.

network intrusion detection system (NIDS)

network intrusion prevention system (NIPS)

firewall

proxy intrusion device