SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Information Security
Start Test
Study First
Subject
:
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. ____ can be prewired for electrical power as well as wired network connections.
Role
Subject
Locking Cabinets
SSO
2. Type of software attack where an attacker captures network traffic and stores it for retransmission at a later time to gain unauthorized access to a network.
Malicious code
Zone transfer
Replay Attack
Cyberterrorist
3. Legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident <tell people passwords - etc>
Authentication
Insiders
Backup scope
Firewall logs
4. A list of statements used by a router to permit or deny the forwarding of traffic on a network based on one or more criteria.
Media for backups
Ciphertext
Malicious Insiders
ACL (Access Control List)
5. Could become a key element in authentication in the future.
DMS (Demilitarized Zone)
Data
Role
Cognitive biometrics
6. Fire - extreme weather - flooding - extreme temperatures - extreme humidity.
Environmental Threat
Evil Twin
Identity Theft
Wireless security
7. The perimeter of a protected - internal network where users - both authorized and unauthorized - from external networks can attempt to access it. Firewalls and IDS/IPS systems are typically placed in the DMZ.
CardSpace
Floor Guard
DMS (Demilitarized Zone)
Buffer Overflow
8. The ____ attack will slightly alter dictionary words by adding numbers to the end of the password - spelling words backward - slightly misspelling words - or including special characters such as @ - $ - ! - or %.
Rule Based Access Control
DAP
Hybird
Loop Protection
9. A person who uses his knowledge of operating systems and utilities to intentionally damage or destroy data or systems.
Testing
Cracker
Port Scanner
Shoulder Surfing
10. Software written with malicious intent to cause annoyance or damage - need to attach to something (such as an executable file)
Whaling
Web security gateway
Virus
Phishing
11. A ____ is a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic - yet they are actually imitations of real data files.
Honeypot
CardSpace
Subject
Replay Attack
12. When organizations use software that filters content to prevent the transmission of unauthorized information
CCTV
Flaming
Content filtering
Trojan-horse virus
13. Related to the perception - thought process - and understanding of the user.
Cyber Theft
Cognitive biometrics
Logic Bomb
Electronic Activist (hacktivist)
14. Users who access a Web server are usually restricted to the ____ directory.
LEAP
Replay
Phishing
Root
15. The process of giving someone permission to do or have something
Electronic Vandal
Stateful Firewall
Cloud computing
Authorization
16. An attack that uses multiple computers on disparate networks to launch an attack from multiple hosts simultaneously.
White Hat
Distributed Denial of Service (DDoS)
Replicating
Content inspection
17. A commonly used technique by pornography sites where a user gets "locked" in a web site.
Identification
Mouse Trapping
Natural Threat
DLP
18. Password and BioMetric
Identity Theft
Virus
Two factor security
Content filtering
19. The Chinese government uses _____ to prevent Internet content that it considers unfavorable from reaching its citizenry.
Malicious Insiders
DNS poisoning
Tailgate sensors
Standard biometrics
20. How secure the data in your backups is-can use physical security or encryption
Amart card
Content filtering
Role Based Access Control
Security
21. An attack that sends unsolicited messages to Bluetooth-enabled devices.
Bluejacking
Mouse Trapping
Character
Cracker
22. A key encryption technique for wireless networks that uses keys both to authenticate network clients and to encrypt data in transit.
WEP (Wired Equivalent Privacy)
Three-Way Handshake
Hash encoding
Loop Protection
23. A firewall capable of monitoring a data stream from end to end.
Stateful Firewall
Social engineering
SSO
Bluejacking
24. Forwards packets across computer networks.
Router
ACL
Natural Threat
Trusted OS
25. Business ____ theft involves stealing proprietary business information such as research for a new drug or a list of customers that competitors are eager to acquire.
Tailgating
Data
Trusted OS
BioMetric devices
26. Using a single authentication credential that is shared across multiple networks.
Association request
Identity management
Geometric variance
Environmental Threat
27. Form of phishing that targets wealthy individuals.
Whaling
Hacker
Phishing
Stateful packet filtering
28. How often you perform your backups (cost-benefit analysis of backing up)
Role Based Access Control
Backup frequency
Rootkit
Cloud computing
29. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.
Account expiration
Worm
Phishing
Federated identity management
30. These accounts are user accounts that remain active after an employee has left an organization.
Password
Man-made Threat
Chain
Orphaned
31. ____ is an attack in which an attacker attempts to impersonate the user by using his session token.
DAC
Geometric variance
Session hijacking
Dwell Time
32. The weakness of passwords centers on ____.
Human memory
Floor Guard
Port Scanner
Private
33. Use multiple infrared beams that are aimed across a doorway and positioned so that as a person walks through the doorway some beams are activated.
Tailgate sensors
Locking Cabinets
SSO
WEP (Wired Equivalent Privacy)
34. Sifting through a company's garbage to find information to help break into their computers
Logic Bomb
Dumpster Diving
Proximity reader
DNS
35. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.
Cloud computing
Open Port
Roller barrier
Bluesnarfing
36. An independently rotating large cups affixed to the top of a fence prevent the hands of intruders from gripping the top of a fence to climb over it.
Human memory
Drive-by Download
Roller barrier
Trojan-horse virus
37. Content filtering - encryption - firewalls
Hash encoding
Identification
Prevention and detection
CHAP (Challenge Handshake Authentication Protocol)
38. Requires mutual authentication used for WLAN encryption using Cisco client software.
Client_Hello
Password Crackers
LEAP
Replay Attack
39. An attacker redirects an IP address to the MAC address of a computer that is not the intended recipient.
ARP Poisoning
DNS
Access Control
Hacker
40. Terms that can refer to the online enticement of children; rude or threatening messages; slanderous information; or repeated - unwanted messages
computer footprint
Script Kiddie
Cyberstalking/Harassment
Human memory
41. A program or device that can monitor data traveling over a network. Sniffers can show - all the data being transmitted over a network - including passwords and sensitive information - tends to be a favorite weapon in the hacker's arsenal
Sniffer
Biometrics
CHAP (Challenge Handshake Authentication Protocol)
Session hijacking
42. Provides a greater degree of security by implementing port-based authentication.
Operation
Rule Based Access Control
Spimming
IEEE 802.1x
43. Tools used to configure ________: WEP - WPA - MAC address filtering - SSID broadcasting - wireless antennae
Extreme Humidity
Blacklisting Software
Wireless security
Logic Bomb
44. Lock - conduit - card key - video equipment - secured guard
Role
Private
Physical security access control measures
Malicious Insiders
45. A technique that allows private IP addresses to be used on the public Internet.
NAT
Vishing
Identification
Distributed
46. An authentication protocol that operates over PPP and that requires the authenticator to take the first step by offering the other computer a challenge. The requestor responds by combining the challenge with its password - encrypting the new string o
Replicating
Geometric variance
CHAP (Challenge Handshake Authentication Protocol)
Hardware Attack
47. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.
CardSpace
Access Control
Challenge
Cloud computing
48. A program that is automatically downloaded to your computer without your consent or even your knowledge.
Association request
Drive-by Download
Proximity reader
Server-Side
49. A feature of Windows that is intended to provide users with control of their digital identities while helping them to manage privacy.
CardSpace
Worm
Buffer Overflow
SYN Flood
50. A ____ encrypts all data that is transmitted between the remote device and the network.
Worm
Replay
VPN
Account expiration
