Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Suitable for what are called "high-volume service control applications" such as dial-in access to a corporate network.






2. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.






3. Can create entries in a log for all queries that are received.






4. A hacker who exposes security flaws in applications and operating systems so manufacturers can fix them before they become widespread problems.






5. Securing a restricted area by erecting a barrier is called ____.






6. Ensures that messages are not corrupt or tampered with






7. An attempt to discover an encryption key or password by trying numerous possible character combinations. usually - a brute force attack is performed rapidly by a program designed for that purpose.






8. Password and BioMetric






9. Has limited technical knowledge and is motivated by a desire to gain and display technical skills.






10. ____ involves horizontally separating words - although it is still readable by the human eye.






11. Holds the promise of reducing the number of usernames and passwords that users must memorize.






12. A ____ is a series of instructions that can be grouped together as a single command and are often used to automate a complex set of tasks or a repeated series of tasks.






13. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.






14. An attacker slips through a secure area following a legitimate employee.






15. A ____ encrypts all data that is transmitted between the remote device and the network.






16. There are almost ____ different Microsoft Windows file extensions that could contain a virus.






17. Users who access a Web server are usually restricted to the ____ directory.






18. The act of driving while running a laptop configured to detect and capture wireless data transmissions.






19. A technique for crashing by sending too much data to the buffer in a comuter's memory






20. A ____ attack is similar to a passive man-in-the-middle attack.






21. A firewall capable only of examining packets individually. Stateless firewalls perform more quickly than stateful firewalls - but are not as sophisticated.






22. The process of verifying that your backups actually work






23. Permits users to share resources stored on one site with a second site without forwarding their authentication credentials to the other site.






24. A ____ is a network set up with intentional vulnerabilities.






25. These access points are serious threats to network security because they allow attackers to intercept the RF signal and bypass network security to attack the network or capture sensitive data.






26. A ____ virus infects the Master Boot Record of a hard disk drive.






27. Pretending to be another person.






28. An attack that intercepts legitimate communication between two victims and captures - analyzes and possibly alters the data packets before sending a fake reply.






29. When a device receives a beacon frame from an AP - the device then sends a frame known as a ____ frame to the AP.






30. A method for confirming users' identities






31. A form of filtering that blocks only sites specified as harmful.






32. A user or a process functioning on behalf of the user that attempts to access an object is known as the ____.






33. An authentication system developed by the Massachusetts Institute of Technology (MIT) and used to verify the identity of networked users.






34. The ____ attack will slightly alter dictionary words by adding numbers to the end of the password - spelling words backward - slightly misspelling words - or including special characters such as @ - $ - ! - or %.






35. Below 40% or above 50%






36. An operating system that has been reengineered so that it is designed to be secure from the ground up is known as a ____.






37. Using one's social skills to trick people into revealing access credentials or other information valuable to the attacker. <dumpster diving - or looking through people's trash - etc>






38. Attacker sets up a rogue DNS server that responds to legitimate requests with IP addresses for malicious or non-existent websites.






39. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.






40. Generally represent disgruntled employees and alike who are seeking to perform vengeful acts against their current or former employer.






41. A password-protected and encrypted file that holds an individual's identification information - including a public key and a private key. The individual's public key is used to verify the sender's digital signature - and the private key allows the in






42. How many past backups you keep - what you did on your machine etc.






43. A ____ can block malicious content in "real time" as it appears without first knowing the URL of a dangerous site.






44. An attack that forces a user to unintentionally click a link.






45. Using video cameras to transmit a signal to a specific and limited set of receivers is called ____.






46. Can be accidental or intentional - internal or external. (ex. back-hoe operator performing legitimate construction cuts cables leading into a facility.)






47. The most restrictive access control model is ____.






48. Computer crimes involving the theft of money






49. A security attack in which an internet user sends commands to another internet user's machine that cause the screen to fill with garbage characters. A flashing attack causes the user to terminate her session.






50. Allows a single access point to service different types of users.