1.
You are the system administrator for your organization. You are responsible for access privilege for which of the following control systems?
Correct Answer
A. Mandatory Access Control
Explanation
System administrator is responsible for access control in the MAC model. The owner of the organization will be responsible for DAC. The RBAC is dependent on the role played by the user in the organization.
2.
While assigning access privilege using the DAC, which of the following will you be needing?
Correct Answer
B. Access Control list
Explanation
The information of mapping users to their permissions for resource access would be available in the ACL.
3.
Which of the following statements relating to the MAC model is true? Choose two.
Correct Answer(s)
A. MAC uses static mapping or predefined access privileges
B. MAC cannot allow dynamic sharing of resources
Explanation
MAC uses a static or predefined set of access privileges and hence cannot allow dynamic sharing of resources.
4.
Certificates are best used in which of the following scenarios? Choose all that apply.
Correct Answer(s)
B. Accessing Web sites
D. Intranet login
Explanation
LAN login will be secure if the network policies in the organization follow book rules. It will not require certificates. Certificates are best used during WAN access. For ex: when using web sites that require you to provide confidential information about yourself, or when you are logging in to the Intranet, from an unknown location. The Dial-up connection in itself does not require any authentication except with the service provider.
5.
Which of the following is true about a token system? Choose all that apply.
Correct Answer(s)
A. A token is generated when a user has been successfully authenticated
B. This token is attached to the users session and will be destroyed once the session is terminated
C. This token is attached to the users session and will be destroyed after the user has logged out
Explanation
A token is generated when a user has been successfully authenticated. This token is attached to the users� session and will be destroyed once the session is terminated or after the user has logged out. This token will contain user access permission assigned on the network resources for that user.
6.
To allow access to a campus you would use Kerberos. T/F?
Correct Answer
B. False
Explanation
To allow access to a campus you would use smart cards.
7.
Which of the following are an advantage and a disadvantage with clear text authentication?
Correct Answer(s)
B. Advantage is that it is easy to implement
D. Disadvantage is that it is not secure
Explanation
Clear text authentication is very simple and easy to implement and verify. But a network that has implemented clear text security is not very secure as it is very easy to decipher clear text passwords.
8.
RADIUS is abbreviation for Remote Access Data Inspection User Service. T/F?
Correct Answer
B. False
Explanation
RADIUS is abbreviation for Remote Access Dial In User Service.
9.
Which of the following is a Wireless LAN susceptible to?
Correct Answer
B. Eavesdropping
Explanation
Wireless LANs are most susceptible to eavesdropping as the media here is dependent on frequency for transmission and reception. This makes the media very susceptible to overhearing or eavesdropping as well.
10.
Which of the following can be termed as the Denial of Service Attack?
Correct Answer
C. Your Web server has gone into a loop trying to service a client request.
Explanation
DoS is a way of engaging a Web Server continuously in one specific task by outing it on a loop and ensuring it is unable to respond to any further requests.
11.
You are planning on hosting an eCommerce Web server. You are intent on making the server secure against all external attacks possible. Which of the following would be the best way to test your server for its weaknesses? Choose the best answer.
Correct Answer
B. Simulate a DDoS attack on that server
Explanation
Ping the server will only ensure if the connectivity is proper. Simulating a DoS attack could only test for a very few vulnerabilities on the server. DDoS (Distributed DoS) would test for more vulnerabilities on the server than the DoS would. Checking for patches and antivirus is just a precaution. It is not a process of testing for vulnerabilities.
12.
When debugging an Operating system, a programmer would make use of a front door. T/F?
Correct Answer
B. False
Explanation
A programmer makes use of back doors in the program for the purpose of debugging or observing the performance of the program.
13.
Which of the following protocols help to gain MAC address of a PC on the network?
Correct Answer
A. ARP
Explanation
Address Resolution Protocol (ARP) of the IP protocol suite is responsible for obtaining MAC address of the PC whose IP address is available for communication.
14.
Which of the following is the most popular protocol that is used in dial-up connections?
Correct Answer
D. PPP
Explanation
SLIP and PPP are the only two protocols that can be used for dial-up connections. SLIP is now obsolete. PPTP is a tunneling protocol and POP3 is used for mail retrieval.
15.
Which of the following protocols could a VPN make use of? Choose two.
Correct Answer(s)
A. PPTP
B. L2TP
Explanation
A VPN tunnel requires tunneling protocols. L2TP (Layer 2 Tunneling Protocol) and PPTP (Point to Point Tunneling Protocol) are the only two relevant protocols that relate to VPN. HTTP and NNTP are services that are usually configured on a Web Server.
16.
You are configuring a VPN whose tunnel passes through the public network. You are concerned for the security as your VPN may be connecting across the globe to several networks operating on different platforms. Which of the following would be ideal to secure your VPN? Choose the best answer.
Correct Answer
B. IPSec
Explanation
Since the only protocol that supports cross platform communication is IP, the best way to implement security in this scenario would be through IPSec. PPTP is a tunneling protocol and does not relate to security. Kerberos is a LAN security protocol. Certificates can help in this scenario provided the access limitation is acceptable.
17.
L2TP can work over which of the following networks? Choose all appropriate answers.
Correct Answer(s)
A. IP
B. IPX
C. SNA
Explanation
L2TP (Layer 2 Tunneling Protocol) was created by Cisco as well as Microsoft. It is meant to function over IP, IPX and SNA networks.
18.
Which of the following virus types can be transmitted via email? Choose two most common types that apply.
Correct Answer(s)
A. Worms
B. Trojan horse
Explanation
Usually email attachments are documents, pictures or zip files. EXE files are usually too large to be sent as mail attachments hence EXE file virus is not appropriate. Boot record virus is deposited into a system through floppy media and not via email.
19.
When configuring antivirus for email, which of the following configurations must be applied? Choose two.
Correct Answer(s)
A. Scan before downloading
B. Scan before sending
Explanation
Scan before downloading will ensure the message that is infected will be deleted before actually downloading to the hard disk. Scan before sending will ensure that you are not inadvertently transmitting a virus along with the message tot the destination email Id.
20.
Which of the following port numbers is used by SMTP?
Correct Answer
A. 25
Explanation
SMTP service uses port number 25.
21.
Which of the following statements about an email server is/are true? Choose only answer(s) that apply
Correct Answer(s)
A. Verifies if destination domain is self or not before transmitting a mail
C. Verifies if email is infected or not
Explanation
Before transmitting any email, the mail server is bound to verify the domain in the destination address of the email to see if it the domain name is self or not before it actually sends the mail out. Before receiving any email its primary security function is to ensure that the email is not infected. In case of the email being infected it is supposed to be discarded.
22.
Which of the following statements regarding Infrared communication is true? Choose three.
Correct Answer(s)
A. It requires line of sight
C. It is least secure.
D. Interception is possible if the tapping devices is also in the line of sight
Explanation
Infrared and Radio frequency are two different communication media. The Infrared communication requires line of sight. If the device that intends interception is placed in the line of sight as the main devices then interception will be very easy. This mode of communication is least secure.
23.
Which of the following statements about a Modem are true? Choose two.
Correct Answer(s)
C. It modulates and demodulates signals for the Computer and the telepHone line.
D. It converts Analog signals to digital and vice versa.
Explanation
As the name suggests the modem mainly modulates and demodulates signals. Seated (logically) between the telephone line and the PC, it is responsible for converting the analog signals of the telephone to the digital signals required by the PC and vice versa.
24.
To which layer do the following communicating devices belong? Switch, Ethernet Card.
Correct Answer
B. Datalink layer
Explanation
The mentioned devices� purpose is media access. Media access is the responsibility of Layer 2 or the data link layer. Hence the devices belong to data link layer.
25.
If you wish to block FTP access to your Web server, which of the following Firewall types should you consider?
Correct Answer
C. Packet filtering
Explanation
Stateful inspection is a type of filtering used when complex security is required and header information of packets will have to be read to perform filtering. In the above mentioned scenario, you just need filtering based on port numbers. This type of filtering is done in packet filtering firewall types. Port filtering is a function and not a firewall type. Application filtering is irrelevant.
26.
Which of the following about the Stateful inspection firewall is true? Choose two.
Correct Answer(s)
A. It maintains a state table
C. It functions on the network layer
Explanation
The Stateful inspection firewall, monitors connection status based on the state table. It functions on the network layer and monitors connection status for the entire network.
27.
Stateful inspection firewall will operate on all the 7 layers of the OSI reference model. T/F?
Correct Answer
B. False
Explanation
Stateful Inspection firewall will not operate on all the & layers of OSI reference mode.
28.
Which of the following firewall policies is most restrictive?
Correct Answer
B. Deny all
Explanation
The �deny all� is the most restrictive statement that is implicitly defined in the fireall when no other statement is configured. This will get applied to all packets that do not match with the criteria mentioned in the list above the �deny all� statement.
29.
When faced with an outgoing packet, which of the following header components would a firewall look at first?
Correct Answer
C. Destination address
Explanation
The firewall will first look at the destination address.
30.
If you wish to allow the external users access your Web server you must block port number 110. T/F?
Correct Answer
B. False
Explanation
If you wish to allow the external users access your Web server you must unblock port number 80.
31.
Which of the following can secure your internal server best, against external attacks? Choose all that apply.
Correct Answer(s)
B. Perform OS hardening by verify and terminating all un used service
C. Regularly check for unused usernames and disable or delete them.
D. Ensure you are running a vulnerability check on this server at regular intervals.
Explanation
The best way to preserve an internal server from external attacks is to make sure there are no unnecessary services running on the server, no unused user names are existing in the user database, all vulnerabilities are being verified and monitored at required intervals.
32.
Which of the following is true about providing security to database servers? Choose two.
Correct Answer(s)
A. Do not host a database server on the same server as your web server.
C. Employ a three-tier model
Explanation
It is always safe that you host a database server on a server resource internal to the network rather than on the same server as your Web server. A three-tier model ensures security to your database server as the database server cannot be directly accessed in this model. Centralized or distributed administration will not be a security concern here.
33.
To prevent internal Web servers from being accessed you must block TCP port 20. T/F?
Correct Answer
B. False
Explanation
The port number 443 must also be blocked.
34.
Does NTFS provide file system security?
Correct Answer
A. Yes
Explanation
NTFS supports EFS (Encrypted File System) which allows data stored on a mass storage device to be saved in encrypted format.
35.
Which of the following statements about the SHA (Security Hash Algorithm) are true? Choose two.
Correct Answer(s)
A. SHA is a security hash algorithm that is used with encryption protocols
B. Its latest version is SHA-1
Explanation
SHA is a security hash algorithm that is used with encryption protocols. Its latest version is SHA-1
36.
Which of the following is true about Public/Private key pairs? Choose two.
Correct Answer(s)
A. They form an essential part of Website security
B. They are used by Certificate security system
Explanation
They forma an essential part of Web site security system, as it is the most convenient security system for Web sites considering that clients would be accessing the Web site over the public network. The Certificate security system uses the basic logic of Public/Private key pairs.
37.
RSA is the encryption system used in cellular devices. T/F?
Correct Answer
B. False
Explanation
ECC is the encryption system used in cellular devices.
38.
What is the requirement for cryptography? Choose two.
Correct Answer(s)
A. To avoid unauthorized access of information being stored
C. To avoid unauthorized access of information being transmitted.
Explanation
Network resource access will have to be controlled through access permissions. Server access will have to be controlled through physical security to the server. Unauthorized access prevention of stored information or information being transmitted is the role of cryptography.
39.
Which of the following will be required to perform Cryptanalysis? Choose three.
Correct Answer(s)
A. Mathematical tools
B. Analytical reasoning
C. Pattern finding
Explanation
Cryptanalysis is a process of studying the pattern of secure communication and breaking it. It involves complex combination such as patience and determination combined with skills of pattern finding, mathematical tools and analytical reasoning.
40.
In symmetric-key encryption, one key will be used for encryption and another will be used for decryption to provide maximum security. T/F?
Correct Answer
B. False
Explanation
In symmetric-key encryption, one key will be used for encryption as well as decryption.
41.
When employing Caesar�s Cipher key value of 3, which of the following will be the decrypted equivalent of JGOOQ?
Correct Answer
A. HELLO
Explanation
According to Caesar�s Cipher key value of 3, you would be sliding up the alphabetical value by 3. Hence �H� would be represented as J, �E� as G, �L� as O and �O� as Q.
42.
Which of the following is an advantage of using conventional encryption?
Correct Answer
B. It is very fast
Explanation
When conventional encryption is used for stored data rather than the data being transmitted, encryption and decryption process can be very fast.
43.
The concept of public key cryptography was introduced by Diffie-Hellman. T/F?
Correct Answer
A. True
Explanation
The issues with key distribution faced by conventional encryption, was overcome by the Public-key cryptography concepts introduced by Diffie-Hellman.
44.
Which of the following statements about Public Key Cryptography are true? Choose two.
Correct Answer(s)
B. You do not need an existing security setup
C. Public key can only encrypt and private key can only decrypt.
Explanation
The implementation of Public key cryptography does not need any existing security measure to be implemented. Public key can only encrypt and Private key can only decrypt.
45.
The keys are measured by bytes. T/F?
Correct Answer
B. False
Explanation
Keys are measured by bits.
46.
A digital signature is synonymous to which of the following?
Correct Answer
B. Hand written signature
Explanation
A digital signature is synonymous to hand written signature. A signature though unique to that person varies with the persons� age. Similarly although a digital signature is unique and is used to establish the origin of that signature, it can vary from situation to situation.
47.
Which of the following are the two key-based algorithms?
Correct Answer(s)
A. Symmetric algorithm
B. Asymmetric algorithm
Explanation
There are two types of key-based algorithms. Depending on the key pair types they use, they can be categorized as symmetric or asymmetric algorithms.
48.
Which of the following types of cryptography is possible? Choose two.
Correct Answer(s)
A. CryptograpHy with keys
B. CryptograpHy without keys
Explanation
Cryptography without encryption and before encryption is not cryptography at all. Cryptography is possible with keys and without keys. When used without keys, it will be using simple or complex substitution.
49.
Cryptography without keys is more secure than cryptography with keys. T/F?
Correct Answer
B. False
Explanation
Cryptography without keys is not at all secure as the deciphering program will reside on the same media where the data or message is being received. In case of thest, the data can be stolen along with the deciphering program.
50.
Which of the following is required by the cipher when it is important to maintain a message as a secret?
Correct Answer
C. Generate several cipHer text.
Explanation
To keep a message a secret it is required that the cipher must be able to generate several cipher text.