SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A password attack that uses a look up table containing pre-computed hashes
password types
subjects
rainbow table
Bell La Padula
2. Information classification is no read up - no write down
Bell La Padula
common locks
corrective
detective
3. Tailgating - piggybacking - social engineering
brute force
physical access control issues
CER
authentication methods
4. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
access control list
Clark Wilson
synchronous
asynchronous
5. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
type I
authentication methods
dictionary
something you know
6. Using any two authentication methods
two factor
implicit deny
synchronous
something you know
7. CER stands for...
multifactor
group policy
one time
crossover error rate
8. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
access control models
cognitive
one time
something you know
9. Password length/complexity help defend against this attack
Biba
Clark Wilson
brute force
multifactor
10. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
password types
group policy
type I
ACLs
11. Security controls that thwart a security breach - i.e. require user ID and password
common locks
preventative
password policy
one time
12. A password attack that tries all possible combinations until the correct password is identified
password policy
dictionary
have
brute force
13. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
Biba
are
physical access control issues
group policy
14. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
one time
detective
type II
brute force
15. Data - hardware - networks - facility are access control ________
type I
objects
Biba
something you know
16. Preset (key in knob) - deadbolt - combination padlock - cipher
preventative
dictionary
have
common locks
17. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
rainbow table
objects
hybrid
dictionary
18. Security controls that fix a problem or prevent further damage
something you know
systems
CER
corrective
19. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
subjects
common locks
are
Bell La Padula
20. Using three or more authentication methods
multifactor
ACLs
password policy
rainbow table
21. Cognitive - dynamic - one-time - passphrase
corrective
password types
Biba
group policy
22. Password type that best defends against password attacks - i.e. tokens
cognitive
one time
Clark Wilson
something you know
23. Token that generates a password based on challenge/response
brute force
asynchronous
Biba
authentication methods
24. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
objects
authentication methods
dictionary
implicit deny
25. Procedures -processes - controls that determine access are access control ________
two factor
hybrid
systems
access control list
26. Identification - authentication - authorization - accountability
password policy
4 steps of access control
corrective
access control models
27. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
one time
brute force
mantrap
two factor
28. Authentication method that include pin - password - code words - personal information
something you know
ACLs
Biba
Clark Wilson
29. Used by most ACLs - also known as deny by default
implicit deny
brute force
objects
password types
30. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
access control list
password attacks
something you know
CER
31. Dictionary - hybrid - brute force - rainbow table
physical access control issues
synchronous
password attacks
something you know
32. Something you know - have - are or location
password cracking
Clark Wilson
something you know
authentication methods
33. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
corrective
have
Bell La Padula
one time
34. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
implicit deny
password policy
asynchronous
type II
35. Token that generates a password based on time or event
access control models
dictionary
corrective
synchronous
36. Information classification is no write up - no read down
something you know
subjects
detective
Biba
37. MAC - DAC - and RBAC
type I
access control models
type II
are
38. ACL stands for...
Biba
access control list
cognitive
preventative
39. User - programs - processes - requesting permissions are access control ________
detective
ACLs
rainbow table
subjects
40. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
rainbow table
authentication methods
type I
have
41. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
password attacks
dictionary
are
Clark Wilson
42. The most popular form of authentication
two factor
objects
something you know
group policy
43. Access control model concerned with information integrity
multifactor
Biba
something you know
type I
44. The process of recovering passwords from stored/transmitted data
password cracking
Biba
are
implicit deny
45. Security controls that spot and capture details about a security breach - i.e. a log file
Biba
corrective
Biba
detective
