Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The geographical storage of your backups-safest place is a different place from where you keep your actual data






2. An attack that forces a user to unintentionally click a link.






3. An attacker redirects an IP address to the MAC address of a computer that is not the intended recipient.






4. Attacker sets up a rogue DNS server that responds to legitimate requests with IP addresses for malicious or non-existent websites.






5. A list of statements used by a router to permit or deny the forwarding of traffic on a network based on one or more criteria.






6. Attack computer systems by transmitting a virus hoax - with a real virus attached. By masking the attack in a seemingly legitimate message - unsuspecting users more readily distribute the message and send the attack on to their co-workers and friends






7. It accepts spoken words for input as if they had been typed on the keyboard.






8. Sending high volumes of ICMP (usually ping) packets to a target.






9. A ____ attack is similar to a passive man-in-the-middle attack.






10. An authentication process that involves three steps.






11. ____ IP addresses are IP addresses that are not assigned to any specific user or organization.






12. A ____ is a network set up with intentional vulnerabilities.






13. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.






14. This attack is where every possible combination of letters - numbers - and characters is used to create encrypted passwords.






15. A user under Role Based Access Control can be assigned only one ____.






16. Sending high volumes of UDP requests to a target.






17. The X.500 standard defines a protocol for a client application to access an X.500 directory called ____.






18. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.






19. The most common protocol suite used today for local area networks (LANs) as well as the Internet is ____.






20. These attacks may allow an attacker to construct LDAP statements based on user input statements.






21. A technology that can help to evenly distribute work across a network.






22. The weakness of passwords centers on ____.






23. Due to the limitations of online guessing - most password attacks today use ____.






24. An attack that intercepts legitimate communication between two victims and captures - analyzes and possibly alters the data packets before sending a fake reply.






25. The act of driving while running a laptop configured to detect and capture wireless data transmissions.






26. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.






27. Sending or posting harmful or cruel text or images using the internet or other digital communication devices.






28. Fingerprints and patterns






29. A means of managing and presenting computer resources by function without regard to their physical layout or location.






30. The ____ attack will slightly alter dictionary words by adding numbers to the end of the password - spelling words backward - slightly misspelling words - or including special characters such as @ - $ - ! - or %.






31. A ____ is a series of instructions that can be grouped together as a single command and are often used to automate a complex set of tasks or a repeated series of tasks.






32. Suitable for what are called "high-volume service control applications" such as dial-in access to a corporate network.






33. A hacker who exposes security flaws in applications and operating systems so manufacturers can fix them before they become widespread problems.






34. ____ involves stealing another person's personal information - such as a Social Security number - and then using the information to impersonate the victim - generally for financial gain.






35. If a user typically accesses his bank's Web site from his home computer on nights and weekends - then this information can be used to establish a ____ of typical access.






36. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.






37. Software attack using special monitoring software to gain access to private communications on the network wire or across a wireless network. (aka sniffing attack)






38. A ____ is a set of software tools used by an attacker to hide the actions or presence of other types of malicious software - such as Trojans - viruses - or worms.






39. A variety of threats such as viruses - worms - and Trojan horses






40. When DNS servers exchange information among themselves it is known as a ____.






41. A security analysis of the transaction within its approved context.






42. A person who uses his knowledge of operating systems and utilities to intentionally damage or destroy data or systems.






43. The process of giving someone permission to do or have something






44. A password-protected and encrypted file that holds an individual's identification information - including a public key and a private key. The individual's public key is used to verify the sender's digital signature - and the private key allows the in






45. Use multiple infrared beams that are aimed across a doorway and positioned so that as a person walks through the doorway some beams are activated.






46. The process of verifying that your backups actually work






47. Can use fingerprints or other unique characteristics of a person's face - hands - or eyes (irises and retinas) to authenticate a user.






48. Hacker who exposes vulnerabilities for financial gain or malicious purpose.






49. The breadth of your back-up (what types of files you will back up-media - documents - OS - etc)






50. A user accessing a computer system must present credentials or ____ when logging on to the system.