SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 45 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
rainbow table
Bell La Padula
implicit deny
type I
2. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
implicit deny
subjects
corrective
ACLs
3. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
password policy
dictionary
multifactor
hybrid
4. MAC - DAC - and RBAC
Bell La Padula
access control models
type II
access control list
5. Identification - authentication - authorization - accountability
4 steps of access control
brute force
ACLs
password types
6. Something you know - have - are or location
rainbow table
authentication methods
ACLs
mantrap
7. A password attack that uses a look up table containing pre-computed hashes
Clark Wilson
4 steps of access control
rainbow table
brute force
8. Password length/complexity help defend against this attack
type I
implicit deny
something you know
brute force
9. Security controls that thwart a security breach - i.e. require user ID and password
cognitive
preventative
password attacks
corrective
10. Used by most ACLs - also known as deny by default
preventative
implicit deny
Bell La Padula
detective
11. A password attack that tries all possible combinations until the correct password is identified
type I
something you know
brute force
multifactor
12. Security controls that spot and capture details about a security breach - i.e. a log file
detective
Clark Wilson
access control models
type II
13. Data - hardware - networks - facility are access control ________
objects
Biba
type I
something you know
14. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
have
CER
crossover error rate
type II
15. Tailgating - piggybacking - social engineering
CER
something you know
physical access control issues
crossover error rate
16. Using three or more authentication methods
password types
detective
multifactor
Biba
17. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
brute force
are
multifactor
password policy
18. User - programs - processes - requesting permissions are access control ________
something you know
subjects
Bell La Padula
common locks
19. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
group policy
something you know
have
password attacks
20. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
Biba
mantrap
corrective
objects
21. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
Clark Wilson
access control models
authentication methods
cognitive
22. The most popular form of authentication
systems
access control models
something you know
dictionary
23. Cognitive - dynamic - one-time - passphrase
password types
Clark Wilson
Clark Wilson
mantrap
24. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
authentication methods
Clark Wilson
detective
one time
25. Preset (key in knob) - deadbolt - combination padlock - cipher
mantrap
common locks
one time
Clark Wilson
26. ACL stands for...
Bell La Padula
crossover error rate
rainbow table
access control list
27. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
asynchronous
Bell La Padula
one time
group policy
28. Password type that best defends against password attacks - i.e. tokens
hybrid
one time
access control models
corrective
29. CER stands for...
crossover error rate
systems
password cracking
one time
30. Access control model concerned with information integrity
one time
detective
something you know
Biba
31. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
type II
password attacks
type I
objects
32. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
Biba
Biba
password policy
Clark Wilson
33. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
cognitive
hybrid
synchronous
Clark Wilson
34. Information classification is no read up - no write down
password types
dictionary
Bell La Padula
subjects
35. Authentication method that include pin - password - code words - personal information
password attacks
objects
something you know
type I
36. The process of recovering passwords from stored/transmitted data
corrective
physical access control issues
authentication methods
password cracking
37. Using any two authentication methods
have
4 steps of access control
two factor
brute force
38. Token that generates a password based on challenge/response
asynchronous
authentication methods
one time
access control list
39. Procedures -processes - controls that determine access are access control ________
Biba
systems
access control list
access control models
40. Information classification is no write up - no read down
password attacks
crossover error rate
detective
Biba
41. Security controls that fix a problem or prevent further damage
4 steps of access control
corrective
access control list
multifactor
42. Dictionary - hybrid - brute force - rainbow table
systems
password attacks
detective
two factor
43. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
are
CER
Biba
two factor
44. Token that generates a password based on time or event
synchronous
Biba
password attacks
have
45. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
common locks
password policy
cognitive
objects
