Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A ____ attack is similar to a passive man-in-the-middle attack.






2. A ____ is designed to separate a nonsecured area from a secured area.






3. Computer crimes involving the theft of money






4. Hurricanes - tornadoes - flooding and earthquakes are all examples of this.






5. In a ____ attack - attackers can attackers use hundreds or thousands of computers in an attack against a single computer or network.






6. Hides inside other software - usually as an attachment or a downloadable file






7. When organizations use software that filters content to prevent the transmission of unauthorized information






8. A key encryption technique for wireless networks that uses keys both to authenticate network clients and to encrypt data in transit.






9. An independently rotating large cups affixed to the top of a fence prevent the hands of intruders from gripping the top of a fence to climb over it.






10. Hacker who exposes vulnerabilities for financial gain or malicious purpose.






11. Email attack that targets only specific users and has familiar information in it - making it more tempting to click the links in the message.






12. Sifting through a company's garbage to find information to help break into their computers






13. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.






14. The most common protocol suite used today for local area networks (LANs) as well as the Internet is ____.






15. Legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident <tell people passwords - etc>






16. A ____ does not serve clients - but instead routes incoming requests to the correct server.






17. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.






18. This attack is where every possible combination of letters - numbers - and characters is used to create encrypted passwords.






19. Sending extremely critcal - derogatory - and oftern vulgar email messages or newsgroup postings to other user on the internet or online services






20. Using a single authentication credential that is shared across multiple networks.






21. The Chinese government uses _____ to prevent Internet content that it considers unfavorable from reaching its citizenry.






22. Content filtering - encryption - firewalls






23. Allows a single access point to service different types of users.






24. Four interrelated aspects to _________:Access - data - infrastructure - computers






25. An authentication protocol that operates over PPP and that requires the authenticator to take the first step by offering the other computer a challenge. The requestor responds by combining the challenge with its password - encrypting the new string o






26. An authentication process that involves three steps.






27. Due to the limitations of online guessing - most password attacks today use ____.






28. Hardware and/or software that guards a private network by analyzing the information leaving and entering the network






29. Could become a key element in authentication in the future.






30. A group of piconets in which connections exist between different piconets is called a ____.






31. The weakness of passwords centers on ____.






32. A ____ tester has an in-depth knowledge of the network and systems being tested - including network diagrams - IP addresses - and even the source code of custom applications.






33. A means of managing and presenting computer resources by function without regard to their physical layout or location.






34. Suitable for what are called "high-volume service control applications" such as dial-in access to a corporate network.






35. Can be used to determine whether new IP addresses are attempting to probe the network.






36. Provides a greater degree of security by implementing port-based authentication.






37. A variety of threats such as viruses - worms - and Trojan horses






38. Software that searches a server - switch - router - or other device for open ports - which can be vulnerable to attack.






39. These accounts are user accounts that remain active after an employee has left an organization.






40. Software that can guess passwords






41. Motivated by a desire to cause social change - trying to get media attention by disrupting services - or promoting a message by changing information on public websites.






42. Holds the promise of reducing the number of usernames and passwords that users must memorize.






43. A person who uses his knowledge of operating systems and utilities to intentionally damage or destroy data or systems.






44. A firewall that can block designated types of traffic from entering a protected network.






45. A pay-per-use computing model in which customers pay only for the computing resources they need.






46. Indicates when an account is no longer active.






47. An attack where the goal is to extract personal - financial or confidential information from the victim by using services such as the telephone or VOIP.






48. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.






49. Form of phishing that targets wealthy individuals.






50. A user accessing a computer system must present credentials or ____ when logging on to the system.