SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
rainbow table
dictionary
password policy
ACLs
2. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
corrective
authentication methods
Bell La Padula
cognitive
3. Security controls that fix a problem or prevent further damage
corrective
subjects
access control list
type II
4. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
group policy
something you know
CER
Biba
5. Security controls that thwart a security breach - i.e. require user ID and password
type I
preventative
password attacks
corrective
6. Cognitive - dynamic - one-time - passphrase
Biba
password types
are
systems
7. CER stands for...
Bell La Padula
authentication methods
crossover error rate
cognitive
8. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
hybrid
asynchronous
detective
implicit deny
9. Tailgating - piggybacking - social engineering
Biba
type I
physical access control issues
are
10. Data - hardware - networks - facility are access control ________
two factor
Clark Wilson
brute force
objects
11. A password attack that tries all possible combinations until the correct password is identified
two factor
Bell La Padula
group policy
brute force
12. A password attack that uses a look up table containing pre-computed hashes
password types
type II
password attacks
rainbow table
13. Something you know - have - are or location
group policy
one time
authentication methods
cognitive
14. Security controls that spot and capture details about a security breach - i.e. a log file
detective
common locks
access control models
one time
15. User - programs - processes - requesting permissions are access control ________
objects
subjects
systems
Bell La Padula
16. Token that generates a password based on challenge/response
authentication methods
password types
asynchronous
dictionary
17. Information classification is no read up - no write down
Biba
brute force
Bell La Padula
detective
18. The process of recovering passwords from stored/transmitted data
password cracking
one time
access control list
crossover error rate
19. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
physical access control issues
are
cognitive
synchronous
20. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
group policy
mantrap
Clark Wilson
synchronous
21. Used by most ACLs - also known as deny by default
CER
subjects
implicit deny
cognitive
22. ACL stands for...
rainbow table
access control list
have
implicit deny
23. Dictionary - hybrid - brute force - rainbow table
access control list
implicit deny
cognitive
password attacks
24. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
one time
mantrap
password cracking
dictionary
25. Password length/complexity help defend against this attack
dictionary
detective
password types
brute force
26. Access control model concerned with information integrity
mantrap
Biba
dictionary
group policy
27. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
password types
Bell La Padula
have
detective
28. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
Bell La Padula
mantrap
rainbow table
type II
29. The most popular form of authentication
Bell La Padula
are
group policy
something you know
30. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
mantrap
password policy
access control models
password attacks
31. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
access control list
cognitive
group policy
password policy
32. Procedures -processes - controls that determine access are access control ________
objects
password attacks
systems
synchronous
33. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
Biba
access control models
type I
Clark Wilson
34. Identification - authentication - authorization - accountability
subjects
4 steps of access control
access control list
are
35. Password type that best defends against password attacks - i.e. tokens
one time
Biba
objects
multifactor
36. Using any two authentication methods
authentication methods
implicit deny
something you know
two factor
37. Authentication method that include pin - password - code words - personal information
something you know
CER
crossover error rate
authentication methods
38. Preset (key in knob) - deadbolt - combination padlock - cipher
Clark Wilson
cognitive
common locks
Biba
39. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
dictionary
objects
type II
hybrid
40. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
type I
Clark Wilson
group policy
password cracking
41. Information classification is no write up - no read down
Bell La Padula
type I
hybrid
Biba
42. Token that generates a password based on time or event
Clark Wilson
Clark Wilson
synchronous
physical access control issues
43. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
brute force
Biba
group policy
Clark Wilson
44. Using three or more authentication methods
brute force
Biba
multifactor
CER
45. MAC - DAC - and RBAC
something you know
physical access control issues
subjects
access control models
