SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Vocab
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The intercepting of conversations by unintended recipients
Probing
Content dependant
Qualitative
Eavesdropping
2. Ethernet - Cat5 - Twisted to allow for longer runs.
Cookies
Twisted pair
Man trap
l0pht
3. This is an open international standard for applications that use wireless communications.
Due Care
ISDN (Integrated Services Digital Network)
WAP (Wireless Application Protocol)
Hackers
4. This is the file on a UNIX system where usernames to password MD5 hash outputs are stored. The system uses this file to determine if the password entered for a given username is correct.
Encryption
Expert System
/etc/passwd
ActiveX Object Linking and Embedding
5. The government required overwrite rate if you are formatting a drive in such a manner as to make it nearly impossible to retrieve data from it
AES (Advanced Encryption Standard)
SQL (Structured Query Language)
Format 7 times
Service packs
6. The process of reducing your risks to an acceptable level based on your risk analysis
Risk Mitigation
Macro
Session Hijacking
Classes of IP networks
7. A site that is ready and available within minutes or hours to continue processing. This is a site that is fully configured and ready to go.
Transposition
Hot Site
Finger printing
CHAP
8. An AAA (Authentication - Authorization - and Accounting) protocol for applications such as network access or IP mobility. It is intended to work in both local and roaming situations.
Twisted pair
RADIUS (Remote authentication dial-in user service)
Hacker
/etc/passwd
9. The process of developing a planned approach to change in an organization. Typically the objective is to maximize the collective benefits for all people involved in the change and minimize the risk of failure of implementing the change.
Hubs
Change management
War dialing
Packet Sniffing
10. A formula - practice - process - design - instrument - pattern - or compilation of information used by a business to obtain an advantage over competitors within the same industry or profession.
Senior Management
Trade Secret
Biometrics
NAT
11. RFC 1918 defined the following addresses as the private addressing ranges: 192.168.x.x - 10.x.x.x - 172.16.x.x - 172.31.x.x
Technical - Administrative - Physical
Software librarian
Private Addressing
Out of band
12. A specialized version of a data warehouse. Like data warehouses - data marts contain a snapshot of operational data that helps business people to strategize based on analyses of past trends and experiences. The key difference is that the creation of
Multipartite
Switches / Bridges
Data Mart
Technical - Administrative - Physical
13. Reasonable doubt
Burden of Proof
Security Perimeter
Authentication
Data remanence
14. When one key of a two-key pair has more encryption pattern than the other
Two-Factor Authentication
Telnet
Back door/ trap door/maintenance hook
Asymmetric
15. A hidden value or set of values that allows access to a program - computer system - or data. It is sometimes erroneously confused with a backdoor - which (in a computer system) is a method of bypassing normal authentication or securing remote access
TCB
Trap Door
MOM
Digest
16. Virtual memory is an area of 'memory' that is not in physical memory (RAM) but on the disk system to allow for extra 'memory' processing area above what is available through RAM. This is the pagefile.sys file on a Windows system. Many Windows OSs req
Virtual Memory/Pagefile.sys
Artificial Neural Networks (ANN)
Throughput of a Biometric System
Active attacks
17. An agreement that you make with another company to be able to use their facilities in the event of a disaster. The least expensive - and not usually enforceable.
Out of band
Dumpster diving
Reciprocal agreement
MOM
18. The illegal practice of stealing money repeatedly in extremely small quantities - usually by taking advantage of rounding to the nearest cent (or other monetary unit) in financial transactions. Salami slicing is most often performed by employees of t
Patriot Act
Salami Slicing
Separation of duties
CCTV
19. Federal law with many aspects designed to curb terrorist activities; impacts real estate transactions because of disclosure requirements imposed on escrow agents regarding transfer of title and deposits of cash; imposes new disclosure and signature r
Debug
Owner
Skipjack
Patriot Act
20. In cryptography - a substitution cipher is a method of encryption by which units of plaintext are substituted with ciphertext according to a regular system; the 'units' may be single letters (the most common) - pairs of letters - triplets of letters
Hubs
Substitution
Packet Sniffing
Skipjack
21. Testing a company's network to test for vulnerabilities in their systems so that weaknesses can be fixed. This testing does not actually fix anything.
Penetration testing
Brewer-Nash model
UUEncode
Tort
22. Packet sniffers (also known as network or protocol analyzers or Ethernet sniffers) are computer software (usually) or computer hardware that can intercept and log traffic passing over a digital network or part of a network. As data streams travel bac
Symmetric
Packet Sniffing
/etc/passwd
Biometrics
23. A team of individuals at the highest level of organizational management who have the day-to-day responsibilities of managing a corporation. And don't forget - they are always the ones ultimately responsible for due diligence / due care. They are also
Tokens
Senior Management
Joke
Cyphertext only
24. When security is managed at a central point in an organization
Throughput of a Biometric System
Encryption
Centralized
OLE
25. Base 64 is a positional numeral system using a base of 64. It is the largest power of two base that can be represented using only printable ASCII characters. This has led to its use as a transfer encoding for e-mail among other things.
Script
Base-64
Repeaters
Enticement
26. Setting up the user to access the honeypot for reasons other than the intent to harm.
Covert channels
Entrapment
Content dependant
Toneloc
27. A chipset that was developed and promoted by the U.S. Government as an encryption device to be adopted by telecommunications companies for voice transmission.
Masquerade
ROT-13
Tort
Clipper Chip
28. In classical cryptography - a transposition cipher changes one character from the plaintext to another (to decrypt the reverse is done). That is - the order of the characters is changed. Mathematically a bijective function is used on the characters'
Quantitative
l0pht
Clipper Chip
Transposition
29. The idea is that a computer program may be seen as comprising a collection of individual units - or objects - that act on each other - as opposed to a traditional view in which a program may be seen as a collection of functions - or simply as a list
Polymorphic
Exit interview
Clipper Chip
Object Oriented Programming
30. Object Linking and Embedding. The ability of an object to be embedded into another object.
OLE
Active attacks
Trade Secret
Java
31. An audit trail is a chronological sequence of audit records - each of which contains evidence directly pertaining to and resulting from the execution of a business process or system function. Audit records typically result from activities such as tra
Audit Trail
War driving
OLE
Non-repudiation
32. A card that holds information that must be authenticated to before it can reveal the information that it is holding
Smart cards
SSH
Macro
Fiber optic
33. A network that uses proprietary protocols
VPN (Virtual Private Network)
TACACS (Terminal access controller access control system)
Risk Transferring
Closed network
34. Someone whose hacking is primarily targeted at the phone systems
Debug
Phreaker
User
Digital certificates
35. A simple authentication protocol used to authenticate a user to a remote access server or Internet service provider (ISP). Almost all NOS remote servers support PAP. PAP transmits unencrypted ASCII passwords over the network and is therefore consider
Owner
Guards
PAP (Password Authentication Protocol)
ROM (Read-only memory)
36. Animals with teeth. Not as discriminate as guards
Eavesdropping
Dogs
War dialing
ALE (Annualized Loss Expectancy)
37. Refers to any of the various programs by which a computer controls aspects of its operations - such as those for translating data from one form to another - as contrasted with hardware - which is the physical equipment comprising the installation.
NAT
Fraggle
Software
Asset Value
38. Packet sniffers (also known as Network Analyzers or Ethernet Sniffers) are software programs that can see the traffic passing over a network or part of a network. As data streams travel back and forth over the network - the program captures each pack
Scanning
Custodian
Sniffing
Phreaker
39. Also known as Rijndael - is a block cipher adopted as an encryption standard by the US government. It is expected to be used worldwide and analyzed extensively - as was the case with its predecessor - the Data Encryption Standard (DES). AES was adopt
Keystroke logging
AES (Advanced Encryption Standard)
Callback Security/Call Forwarding
Malware
40. Business Impact Analysis. A BIA is a functional analysis in which a team collects data through interviews and documentary sources. It documents business functions - activities - and transactions.
Worm
AES (Advanced Encryption Standard)
BIA
Software development lifecycle
41. A name given to a system implemented by the FBI that is analogous to wiretapping except in this case - e-mail and other communications are being tapped instead of telephone conversations. Carnivore was essentially a customizable packet sniffer that c
Carnivore
TACACS (Terminal access controller access control system)
Spoofing
Promiscuous mode
42. Countermeasure to put fake stuff into a database so if someone is reading it they will get the wrong info.
Session Hijacking
Noise & perturbation
Virtual machine
Boot-sector Virus
43. A network that mimics the brain
Repeaters
Reciprocal agreement
Motion detector
Artificial Neural Networks (ANN)
44. Data storage formats and equipment that allow the stored data to be accessed in any order
Macro
Tort
Debug
RAM (Random-access memory)
45. The person that controls access to the data
Two-Factor Authentication
Custodian
Hubs
OLE
46. When you have a certain amount of access and you change jobs and you keep that access from the previous position. Also known as enlargement of permission and privilege escalation.
Authorization creep
Service packs
Cryptanalysis
RAM (Random-access memory)
47. Relating to quality or kind. This assigns a level of importance to something.
Qualitative
Username/password
Echelon
Hoax
48. Be at least 8 foot tall and have three strands of barbed wire.
Warm Site
TACACS (Terminal access controller access control system)
Fences
Eavesdropping
49. In computing - Secure Shell or SSH is a set of standards and an associated network protocol that allows establishing a secure channel between a local and a remote computer. It uses public-key cryptography to authenticate the remote computer and (opti
Biometrics
FAR/FRR/CER
SSH
Multitasking
50. Hardware - software - and firmware elements of a TCB that implement the fundamental security procedures for controlling access to system resources
Security kernel
Fire extinguisher
Key Escrow
IAB
