SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Access
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer
45
questions in
20 minutes
.
2 minutes extra for reading the instructions.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Error caused by biometrics where the system rejects authorized individuals - also know as false rejection rate (FRR)
password attacks
are
type I
mantrap
2. Information classification is no read up - no write down
group policy
Bell La Padula
brute force
Clark Wilson
3. A small room with two authentication doors - after gaining access to the 1st door the subject is locked in until access to granted to the 2nd door
brute force
have
mantrap
authentication methods
4. Error caused by biometrics where the system accepts impostors - also know as false acceptance rate (FAR)
something you know
Biba
type II
Clark Wilson
5. Something you know - have - are or location
physical access control issues
authentication methods
have
detective
6. Cognitive - dynamic - one-time - passphrase
mantrap
Clark Wilson
password types
access control list
7. The point at which the false rejection rate equals the false acceptance rate - used to determine the accuracy of biometric systems - low value = high accuracy
Biba
CER
Clark Wilson
type I
8. A password attack that encrypts all the words in the dictionary and compares the resulting hash values with those of the password
dictionary
detective
subjects
Clark Wilson
9. Builds on the dictionary attack by adding numbers and special characters and does some common substitution
password cracking
access control models
password types
hybrid
10. The most popular form of authentication
dictionary
are
something you know
synchronous
11. Password type based on fact or opinion based information - best for authentication that users do not use often - easy to remember
access control models
cognitive
dictionary
implicit deny
12. Token that generates a password based on time or event
are
synchronous
implicit deny
something you know
13. Set of rules enforced by an OS to enhance security by forcing users to employ strong passwords
password types
Biba
authentication methods
password policy
14. CER stands for...
password types
mantrap
crossover error rate
access control models
15. Identification - authentication - authorization - accountability
4 steps of access control
ACLs
corrective
one time
16. A password attack that tries all possible combinations until the correct password is identified
ACLs
brute force
hybrid
access control models
17. Form of physical authentication - id/smart card - atm card - token - key - passport - something you __________
CER
Clark Wilson
have
something you know
18. Security controls that thwart a security breach - i.e. require user ID and password
preventative
mantrap
password attacks
objects
19. The process of recovering passwords from stored/transmitted data
password cracking
corrective
password policy
one time
20. Security controls that fix a problem or prevent further damage
corrective
multifactor
password cracking
have
21. Dictionary - hybrid - brute force - rainbow table
Bell La Padula
password attacks
4 steps of access control
Clark Wilson
22. User - programs - processes - requesting permissions are access control ________
implicit deny
something you know
4 steps of access control
subjects
23. MAC - DAC - and RBAC
ACLs
Clark Wilson
access control models
authentication methods
24. Access control model that does not allow data to be accessed directly - concerned with separation of duty or function
authentication methods
Clark Wilson
detective
type II
25. Preset (key in knob) - deadbolt - combination padlock - cipher
cognitive
Biba
hybrid
common locks
26. Security controls that spot and capture details about a security breach - i.e. a log file
are
Clark Wilson
common locks
detective
27. Data can only be accessed through applications - designed to prevent unauthorized modification - errors and fraud
two factor
something you know
brute force
Clark Wilson
28. Procedures -processes - controls that determine access are access control ________
systems
4 steps of access control
authentication methods
synchronous
29. Password length/complexity help defend against this attack
hybrid
corrective
authentication methods
brute force
30. Data - hardware - networks - facility are access control ________
objects
Biba
corrective
group policy
31. ACL stands for...
password policy
access control list
Clark Wilson
something you know
32. Using any two authentication methods
something you know
have
two factor
objects
33. Form of authentication that relies on human characteristic - fingerprint - hand geometry - facial recognition - eye scan - voice print - DNA - something you _________
access control models
something you know
Clark Wilson
are
34. Information classification is no write up - no read down
access control list
Biba
rainbow table
detective
35. Access control model designed to prevent authorized access to classified information - concerned with information confidentiality
have
Bell La Padula
one time
corrective
36. Authentication method that include pin - password - code words - personal information
something you know
detective
brute force
password types
37. Lists of permission associated with objects - used in the DAC model - typically include a implicit deny rule
dictionary
group policy
ACLs
brute force
38. Password type that best defends against password attacks - i.e. tokens
one time
dictionary
are
authentication methods
39. A password attack that uses a look up table containing pre-computed hashes
physical access control issues
rainbow table
brute force
corrective
40. Token that generates a password based on challenge/response
crossover error rate
password cracking
asynchronous
something you know
41. Used by most ACLs - also known as deny by default
common locks
one time
implicit deny
physical access control issues
42. Feature of an OS that allows for logical access control by grouping subjects with common characteristics
password policy
group policy
type I
4 steps of access control
43. Tailgating - piggybacking - social engineering
something you know
authentication methods
one time
physical access control issues
44. Access control model concerned with information integrity
crossover error rate
CER
have
Biba
45. Using three or more authentication methods
brute force
authentication methods
multifactor
subjects
