SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
crossover error rate
CER
type I
password attacks
2. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
mantrap
systems
type I
synchronous
3. Information classification is no write up - no read down
password attacks
Biba
brute force
subjects
4. Token that generates a password based on time or event
mantrap
synchronous
something you know
subjects
5. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
ACLs
mantrap
something you know
preventative
6. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
type II
are
subjects
group policy
7. Procedures -processes - controls that determine access are access control ________
systems
access control models
ACLs
are
8. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
password policy
preventative
type I
rainbow table
9. Using any two authentication methods
CER
common locks
implicit deny
two factor
10. Used by most ACLs - also known as deny by default
are
corrective
implicit deny
multifactor
11. Identification - authentication - authorization - accountability
Biba
4 steps of access control
Biba
mantrap
12. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
dictionary
CER
authentication methods
brute force
13. Tailgating - piggybacking - social engineering
physical access control issues
mantrap
password policy
4 steps of access control
14. A password attack that tries all possible combinations until the correct password is identified
brute force
password policy
have
Clark Wilson
15. User - programs - processes - requesting permissions are access control ________
asynchronous
corrective
subjects
type I
16. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
type I
password cracking
are
access control models
17. Cognitive - dynamic - one-time - passphrase
one time
4 steps of access control
CER
password types
18. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
systems
Bell La Padula
hybrid
dictionary
19. Security controls that spot and capture details about a security breach - i.e. a log file
access control list
Biba
password types
detective
20. Something you know - have - are or location
brute force
type I
authentication methods
two factor
21. Password length/complexity help defend against this attack
something you know
brute force
ACLs
synchronous
22. Using three or more authentication methods
Bell La Padula
access control models
multifactor
corrective
23. MAC - DAC - and RBAC
implicit deny
password types
Bell La Padula
access control models
24. Data - hardware - networks - facility are access control ________
multifactor
objects
synchronous
type I
25. Preset (key in knob) - deadbolt - combination padlock - cipher
brute force
common locks
one time
access control models
26. ACL stands for...
Clark Wilson
systems
access control list
password attacks
27. Security controls that thwart a security breach - i.e. require user ID and password
preventative
Biba
brute force
one time
28. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
systems
Clark Wilson
hybrid
one time
29. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
something you know
access control list
Bell La Padula
Clark Wilson
30. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
asynchronous
have
multifactor
mantrap
31. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
common locks
dictionary
4 steps of access control
type II
32. A password attack that uses a look up table containing pre-computed hashes
access control list
subjects
rainbow table
synchronous
33. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
two factor
Clark Wilson
access control list
asynchronous
34. Token that generates a password based on challenge/response
cognitive
type II
something you know
asynchronous
35. Dictionary - hybrid - brute force - rainbow table
CER
two factor
password attacks
have
36. Information classification is no read up - no write down
are
password types
Bell La Padula
hybrid
37. Authentication method that include pin - password - code words - personal information
hybrid
password cracking
group policy
something you know
38. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
ACLs
have
CER
crossover error rate
39. CER stands for...
are
crossover error rate
rainbow table
mantrap
40. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
cognitive
detective
subjects
Biba
41. Security controls that fix a problem or prevent further damage
Biba
corrective
password policy
hybrid
42. Access control model concerned with information integrity
are
have
Biba
subjects
43. The most popular form of authentication
something you know
password cracking
preventative
hybrid
44. The process of recovering passwords from stored/transmitted data
dictionary
access control list
password attacks
password cracking
45. Password type that best defends against password attacks - i.e. tokens
preventative
one time
mantrap
Clark Wilson
