SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
group policy
CER
hybrid
crossover error rate
2. Using three or more authentication methods
password cracking
corrective
multifactor
CER
3. Preset (key in knob) - deadbolt - combination padlock - cipher
common locks
detective
objects
are
4. Something you know - have - are or location
password types
authentication methods
group policy
asynchronous
5. Identification - authentication - authorization - accountability
access control list
CER
detective
4 steps of access control
6. Information classification is no write up - no read down
group policy
have
synchronous
Biba
7. The most popular form of authentication
access control models
something you know
asynchronous
authentication methods
8. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
Biba
dictionary
Bell La Padula
type I
9. Data - hardware - networks - facility are access control ________
objects
cognitive
asynchronous
type II
10. Tailgating - piggybacking - social engineering
Clark Wilson
something you know
physical access control issues
objects
11. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
password policy
mantrap
something you know
implicit deny
12. ACL stands for...
something you know
are
access control list
type I
13. Security controls that spot and capture details about a security breach - i.e. a log file
4 steps of access control
detective
hybrid
Bell La Padula
14. Authentication method that include pin - password - code words - personal information
objects
Bell La Padula
access control list
something you know
15. Cognitive - dynamic - one-time - passphrase
something you know
password types
Clark Wilson
CER
16. Using any two authentication methods
brute force
password policy
Biba
two factor
17. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
4 steps of access control
access control list
hybrid
type I
18. Token that generates a password based on challenge/response
detective
asynchronous
password cracking
objects
19. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
two factor
type I
ACLs
4 steps of access control
20. User - programs - processes - requesting permissions are access control ________
Bell La Padula
objects
subjects
type I
21. Password length/complexity help defend against this attack
brute force
two factor
implicit deny
corrective
22. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
ACLs
preventative
detective
dictionary
23. CER stands for...
password cracking
4 steps of access control
type I
crossover error rate
24. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
group policy
something you know
type II
hybrid
25. A password attack that tries all possible combinations until the correct password is identified
rainbow table
asynchronous
brute force
access control list
26. Password type that best defends against password attacks - i.e. tokens
multifactor
one time
implicit deny
4 steps of access control
27. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
corrective
systems
one time
Clark Wilson
28. Security controls that thwart a security breach - i.e. require user ID and password
implicit deny
have
authentication methods
preventative
29. Security controls that fix a problem or prevent further damage
hybrid
corrective
Clark Wilson
password cracking
30. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
two factor
have
corrective
password attacks
31. The process of recovering passwords from stored/transmitted data
something you know
password cracking
group policy
CER
32. Dictionary - hybrid - brute force - rainbow table
systems
Bell La Padula
something you know
password attacks
33. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
cognitive
have
asynchronous
Clark Wilson
34. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
password attacks
something you know
Clark Wilson
objects
35. Token that generates a password based on time or event
synchronous
access control models
brute force
authentication methods
36. Information classification is no read up - no write down
password cracking
multifactor
Bell La Padula
asynchronous
37. Procedures -processes - controls that determine access are access control ________
systems
physical access control issues
Bell La Padula
brute force
38. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
type II
Clark Wilson
preventative
dictionary
39. A password attack that uses a look up table containing pre-computed hashes
ACLs
multifactor
Bell La Padula
rainbow table
40. Used by most ACLs - also known as deny by default
dictionary
implicit deny
systems
type I
41. Access control model concerned with information integrity
4 steps of access control
mantrap
synchronous
Biba
42. MAC - DAC - and RBAC
common locks
rainbow table
access control models
type II
43. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
synchronous
brute force
type I
Bell La Padula
44. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
authentication methods
mantrap
group policy
physical access control issues
45. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
two factor
dictionary
access control list
are
