Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A method for confirming users' identities






2. A program or device that can monitor data traveling over a network. Sniffers can show - all the data being transmitted over a network - including passwords and sensitive information - tends to be a favorite weapon in the hacker's arsenal






3. Can be accidental or intentional - internal or external. (ex. back-hoe operator performing legitimate construction cuts cables leading into a facility.)






4. Requires mutual authentication used for WLAN encryption using Cisco client software.






5. Indicates when an account is no longer active.






6. An independently rotating large cups affixed to the top of a fence prevent the hands of intruders from gripping the top of a fence to climb over it.






7. The breadth of your back-up (what types of files you will back up-media - documents - OS - etc)






8. Content filtering - encryption - firewalls






9. Mass mailings sent as Instant Messages to users. Often these can feature links to explicit porn sites.






10. These accounts are user accounts that remain active after an employee has left an organization.






11. Although brute force and dictionary attacks were once the primary tools used by attackers to crack an encrypted password - today attackers usually prefer ____.






12. A ____ does not serve clients - but instead routes incoming requests to the correct server.






13. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.






14. ____ is an attack in which an attacker attempts to impersonate the user by using his session token.






15. To create a rainbow table - each ____ begins with an initial password that is encrypted.






16. Use multiple infrared beams that are aimed across a doorway and positioned so that as a person walks through the doorway some beams are activated.






17. ____ are combination locks that use buttons which must be pushed in the proper sequence to open the door.






18. Peering over the shoulder of someone to see the contents on that person's computer or cell phone screen.






19. Due to the limitations of online guessing - most password attacks today use ____.






20. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.






21. There are almost ____ different Microsoft Windows file extensions that could contain a virus.






22. Fingerprints and patterns






23. A ____ is a computer program or a part of a program that lies dormant until it is triggered by a specific logical event.






24. A means of managing and presenting computer resources by function without regard to their physical layout or location.






25. Often used for managing user access to one or more systems.






26. If a user typically accesses his bank's Web site from his home computer on nights and weekends - then this information can be used to establish a ____ of typical access.






27. A user or a process functioning on behalf of the user that attempts to access an object is known as the ____.






28. Web application attacks are considered ____ attacks.






29. ____ IP addresses are IP addresses that are not assigned to any specific user or organization.






30. A ____ virus is loaded into random access memory (RAM) each time the computer is turned on and infects files that are opened by the user or the operating system.






31. Could become a key element in authentication in the future.






32. The perimeter of a protected - internal network where users - both authorized and unauthorized - from external networks can attempt to access it. Firewalls and IDS/IPS systems are typically placed in the DMZ.






33. The time it takes for a key to be pressed and then released.






34. Forwards packets across computer networks.






35. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.






36. Motivated by a desire to cause social change - trying to get media attention by disrupting services - or promoting a message by changing information on public websites.






37. Pretending to be another person.






38. A feature that controls a device's tolerance for unanswered service requests and helps to prevent a DoS attack.






39. An attack that targets a computer's physical components and peripherals. (ie. hard disk - motherboard - cabling - etc.)






40. Can use fingerprints or other unique characteristics of a person's face - hands - or eyes (irises and retinas) to authenticate a user.






41. A variety of threats such as viruses - worms - and Trojan horses






42. An attack that intercepts legitimate communication between two victims and captures - analyzes and possibly alters the data packets before sending a fake reply.






43. A private key and public key






44. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.






45. A technology that can help to evenly distribute work across a network.






46. Using video cameras to transmit a signal to a specific and limited set of receivers is called ____.






47. An attacker slips through a secure area following a legitimate employee.






48. A form of filtering that blocks only sites specified as harmful.






49. The process of giving someone permission to do or have something






50. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.