Test your basic knowledge |

Information Security

Subject : it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.
Identity management
Cognitive biometrics
Bluesnarfing
DAP

2. A firewall capable of monitoring a data stream from end to end.
Stateful Firewall
Bluejacking
Rule Based Access Control
Eavesdropping Attack

3. Tools used to configure ________: WEP - WPA - MAC address filtering - SSID broadcasting - wireless antennae
Wireless security
Bluejacking
Backup scope
Loop Protection

4. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.
Separation of duties
Bluejacking
Port Scanner
Electronic Activist (hacktivist)

5. A group of piconets in which connections exist between different piconets is called a ____.
Testing
Buffer Overflow
Scatternet
Token

6. A program that is automatically downloaded to your computer without your consent or even your knowledge.
Role Based Access Control
Web security gateway
Drive-by Download
Shoulder Surfing

7. The breadth of your back-up (what types of files you will back up-media - documents - OS - etc)
Eavesdropping Attack
Backup scope
Web security gateway
Vishing

8. An attacker motivated by the ideology to attack computer or infrastructure networks.
Cyber Theft
Cyberterrorist
SYN Flood
Fencing

9. Email attack that targets only specific users and has familiar information in it - making it more tempting to click the links in the message.
Cognitive biometrics
Load balancing
Spear Phishing
Distributed storage

10. A random string of text issued from one computer to another in some forms of authentication. It is used - along with the password (or other credential) - in a response to verify the computer's credentials.
Trojan-horse virus
Challenge
Macro
Wireless VLANs

11. Keeps a record of the state of a connection between an internal computer and an external device and then makes decisions based on the connection as well as the conditions.
PAT
Firewalls
Stateful packet filtering
Physical security access control measures

12. A technology that can help to evenly distribute work across a network.
BioMetric devices
Account expiration
Spoofing
Load balancing

13. Forwards packets across computer networks.
Router
Flashing
Malicious Insiders
DAC

14. A ____ virus is loaded into random access memory (RAM) each time the computer is turned on and infects files that are opened by the user or the operating system.
Macro
Resident
Private
Authentication

15. A ____ virus infects the Master Boot Record of a hard disk drive.
Roller barrier
Reverse proxy
Boot
Cyberterrorist

16. Fire - extreme weather - flooding - extreme temperatures - extreme humidity.
Macro
Environmental Threat
Extreme Humidity
DNS Log

17. During RADIUS authentication the AP - serving as the authenticator that will accept or reject the wireless device - creates a data packet from this information called the ____.
Content filtering
Authentication request
Character
DLP

18. A framework for transporting authentication protocols instead of the authentication protocol itself.
Two factor security
Human memory
Client_Hello
EAP

19. An AP that is set up by an attacker.
Two factor security
Reverse proxy
Evil Twin
Brute Force Attack

20. Form of phishing that targets wealthy individuals.
Rule Based Access Control
DNS
Whaling
Mantrap

21. ____ are a loose-knit network of attackers - identity thieves - and financial fraudsters.
Cybercriminals
Media for backups
Social engineering
Identity management

22. A ____ attack is similar to a passive man-in-the-middle attack.
Replay
Ciphertext
Bluesnarfing
Rogue

23. A key encryption technique for wireless networks that uses keys both to authenticate network clients and to encrypt data in transit.
WEP (Wired Equivalent Privacy)
Electronic Vandal
CHAP (Challenge Handshake Authentication Protocol)
Spoofing

24. ____ are combination locks that use buttons which must be pushed in the proper sequence to open the door.
Word Splitting
Whaling
Insiders
Cipher locks

25. A database - organized as a hierarchy or tree - of the name of each site on the Internet and its corresponding IP number.
CardSpace
Bluejacking
Distributed Denial of Service (DDoS)
DNS

26. Permits users to share resources stored on one site with a second site without forwarding their authentication credentials to the other site.
Hacker
Federated identity management
OAuth
Content filtering

27. ____ is a software program that delivers advertising content in a manner that is unexpected and unwanted by the user.
Denial of service attack
Adware
EAP
Mouse Trapping

28. A ____ is a set of software tools used by an attacker to hide the actions or presence of other types of malicious software - such as Trojans - viruses - or worms.
Malicious code
Amart card
Rootkit
Electronic Vandal

29. It is able to code and decode data
Symmetric encryption
Hash encoding
Trojan-horse virus
RADIUS

30. A firewall that can block designated types of traffic from entering a protected network.
Content inspection
Content-Filtering Firewall
Macro
Impersonation

31. ____ is an image spam that is divided into multiple images.
Replay
GIF Layering
Stateful packet filtering
Federated identity management

32. The most common protocol suite used today for local area networks (LANs) as well as the Internet is ____.
Spoofing
DNS poisoning
TCP/IP
DNS Log

33. An attack that uses multiple computers on disparate networks to launch an attack from multiple hosts simultaneously.
Distributed Denial of Service (DDoS)
Wireless VLANs
Flashing
Vishing

34. ____ can be prewired for electrical power as well as wired network connections.
DAP
Virtualization
Locking Cabinets
Firewalls

35. A program or device that can monitor data traveling over a network. Sniffers can show - all the data being transmitted over a network - including passwords and sensitive information - tends to be a favorite weapon in the hacker's arsenal
Authentication request
Fencing
Two factor security
Sniffer

36. Ensures that messages are not corrupt or tampered with
Sniffer
Hash encoding
DLP
Subject

37. An attack where the goal is to extract personal - financial or confidential information from the victim by using services such as the telephone or VOIP.
CardSpace
Firewalls
Vishing
Wireless VLANs

38. The ____ model is the least restrictive.
Sniffer
DAC
Hash encoding
Cloud computing

39. A private key and public key
Client_Hello
What is asymmetic encryption?
Reverse proxy
Cipher locks

40. A pay-per-use computing model in which customers pay only for the computing resources they need.
Content inspection
Cloud computing
LDAP injection
Packet filtering

41. The set of letters - symbols - and characters that make up the password are known as a ____ set.
Character
Password
Virtualization
Brute Force

42. Set of rules that allow or deny traffic
Packet filtering
Distributed storage
Three-Way Handshake
Root

43. A device that is around the same size as a credit card - containing embedded technologies that can store information and small amounts of software to perform some limited processing
Rainbow Tables
Virtualization
PAT
Amart card

44. Hardware and/or software that guards a private network by analyzing the information leaving and entering the network
Firewalls
Clickjacking
Ciphertext
Natural Threat

45. Holds the promise of reducing the number of usernames and passwords that users must memorize.
Identity management
SSO
CardSpace
OAuth

46. Using a single authentication credential that is shared across multiple networks.
Cognitive biometrics
Trusted OS
Identity management
Server-Side

47. A ____ is a computer program or a part of a program that lies dormant until it is triggered by a specific logical event.
Extreme temperatures
Logic Bomb
Electronic eavesdropping
Spoofing

48. A password-protected and encrypted file that holds an individual's identification information - including a public key and a private key. The individual's public key is used to verify the sender's digital signature - and the private key allows the in
Digital Certificate
Bluejacking
Encryption
computer footprint

49. Securing a restricted area by erecting a barrier is called ____.
Impersonation
Fake Antivirus
Media for backups
Fencing

50. ____ attacks are responsible for half of all malware delivered by Web advertising.
Chain
Roller barrier
Fake Antivirus
Malicious Insiders