SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
cognitive
mantrap
dictionary
authentication methods
2. Preset (key in knob) - deadbolt - combination padlock - cipher
Bell La Padula
rainbow table
common locks
objects
3. Using any two authentication methods
two factor
CER
systems
preventative
4. Password length/complexity help defend against this attack
something you know
password cracking
corrective
brute force
5. Using three or more authentication methods
multifactor
password attacks
have
Bell La Padula
6. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
one time
type II
CER
ACLs
7. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
cognitive
objects
Clark Wilson
asynchronous
8. Password type that best defends against password attacks - i.e. tokens
something you know
cognitive
one time
objects
9. Information classification is no read up - no write down
preventative
Bell La Padula
brute force
asynchronous
10. Used by most ACLs - also known as deny by default
synchronous
ACLs
detective
implicit deny
11. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
Biba
authentication methods
common locks
mantrap
12. Token that generates a password based on time or event
password cracking
Biba
asynchronous
synchronous
13. Something you know - have - are or location
authentication methods
asynchronous
ACLs
preventative
14. Security controls that fix a problem or prevent further damage
two factor
crossover error rate
CER
corrective
15. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
corrective
Bell La Padula
type I
something you know
16. A password attack that tries all possible combinations until the correct password is identified
ACLs
two factor
brute force
mantrap
17. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
have
ACLs
password cracking
Clark Wilson
18. Identification - authentication - authorization - accountability
physical access control issues
password policy
corrective
4 steps of access control
19. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
type II
password policy
something you know
hybrid
20. Security controls that thwart a security breach - i.e. require user ID and password
are
something you know
password attacks
preventative
21. Token that generates a password based on challenge/response
brute force
CER
asynchronous
have
22. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
objects
brute force
password policy
Biba
23. Dictionary - hybrid - brute force - rainbow table
are
password attacks
implicit deny
Biba
24. Information classification is no write up - no read down
brute force
asynchronous
Biba
CER
25. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
dictionary
Bell La Padula
Clark Wilson
implicit deny
26. User - programs - processes - requesting permissions are access control ________
subjects
hybrid
Bell La Padula
Biba
27. Authentication method that include pin - password - code words - personal information
ACLs
common locks
Bell La Padula
something you know
28. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
brute force
ACLs
password cracking
password attacks
29. ACL stands for...
access control list
Bell La Padula
one time
something you know
30. Data - hardware - networks - facility are access control ________
objects
Bell La Padula
ACLs
synchronous
31. Procedures -processes - controls that determine access are access control ________
systems
something you know
brute force
ACLs
32. The process of recovering passwords from stored/transmitted data
password policy
common locks
something you know
password cracking
33. CER stands for...
password attacks
crossover error rate
hybrid
corrective
34. Cognitive - dynamic - one-time - passphrase
password types
group policy
Biba
asynchronous
35. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
brute force
two factor
mantrap
type I
36. MAC - DAC - and RBAC
4 steps of access control
mantrap
access control models
password policy
37. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
access control models
CER
are
password cracking
38. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
4 steps of access control
hybrid
password cracking
Clark Wilson
39. A password attack that uses a look up table containing pre-computed hashes
mantrap
Clark Wilson
ACLs
rainbow table
40. Tailgating - piggybacking - social engineering
type II
physical access control issues
access control models
dictionary
41. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
hybrid
Clark Wilson
ACLs
authentication methods
42. Access control model concerned with information integrity
Biba
something you know
type II
crossover error rate
43. The most popular form of authentication
something you know
systems
subjects
implicit deny
44. Security controls that spot and capture details about a security breach - i.e. a log file
detective
password cracking
Clark Wilson
multifactor
45. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
access control list
password attacks
crossover error rate
group policy
