Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Can use fingerprints or other unique characteristics of a person's face - hands - or eyes (irises and retinas) to authenticate a user.






2. The set of letters - symbols - and characters that make up the password are known as a ____ set.






3. Using one's social skills to trick people into revealing access credentials or other information valuable to the attacker. <dumpster diving - or looking through people's trash - etc>






4. A pay-per-use computing model in which customers pay only for the computing resources they need.






5. Keeps a record of the state of a connection between an internal computer and an external device and then makes decisions based on the connection as well as the conditions.






6. Ensures that messages are not corrupt or tampered with






7. Attacker sets up a rogue DNS server that responds to legitimate requests with IP addresses for malicious or non-existent websites.






8. A feature that controls a device's tolerance for unanswered service requests and helps to prevent a DoS attack.






9. These attacks may allow an attacker to construct LDAP statements based on user input statements.






10. Software that can guess passwords






11. An attack that sends unsolicited messages to Bluetooth-enabled devices.






12. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.






13. A ____ attack is similar to a passive man-in-the-middle attack.






14. Sending or posting harmful or cruel text or images using the internet or other digital communication devices.






15. An authentication protocol that operates over PPP and that requires the authenticator to take the first step by offering the other computer a challenge. The requestor responds by combining the challenge with its password - encrypting the new string o






16. Although brute force and dictionary attacks were once the primary tools used by attackers to crack an encrypted password - today attackers usually prefer ____.






17. People very knowledgeable about computers who use their knowledge to invade other people's computers






18. A user accessing a computer system must present credentials or ____ when logging on to the system.






19. ____ is a software program that delivers advertising content in a manner that is unexpected and unwanted by the user.






20. Sending extremely critcal - derogatory - and oftern vulgar email messages or newsgroup postings to other user on the internet or online services






21. ____ uses "speckling" and different colors so that no two spam e-mails appear to be the same.






22. The process of verifying that your backups actually work






23. Can be used to determine whether new IP addresses are attempting to probe the network.






24. The unique data block that results when an original piece of data (such as text) is encrypted (for example - by using a key.)






25. A ____ is a computer program or a part of a program that lies dormant until it is triggered by a specific logical event.






26. An authentication process that involves three steps.






27. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.






28. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.






29. Magnetic tape drives - hard drives - optical media (CD or DVD) - solid-state media (flash drives or SD)






30. An independently rotating large cups affixed to the top of a fence prevent the hands of intruders from gripping the top of a fence to climb over it.






31. Terms that can refer to the online enticement of children; rude or threatening messages; slanderous information; or repeated - unwanted messages






32. Software written with malicious intent to cause annoyance or damage - need to attach to something (such as an executable file)






33. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.






34. An attack where the goal is to extract personal - financial or confidential information from the victim by using services such as the telephone or VOIP.






35. Requires mutual authentication used for WLAN encryption using Cisco client software.






36. A ____ encrypts all data that is transmitted between the remote device and the network.






37. These access points are serious threats to network security because they allow attackers to intercept the RF signal and bypass network security to attack the network or capture sensitive data.






38. When a device receives a beacon frame from an AP - the device then sends a frame known as a ____ frame to the AP.






39. The weakness of passwords centers on ____.






40. Type of software attack where an attacker captures network traffic and stores it for retransmission at a later time to gain unauthorized access to a network.






41. Altering the contents of packets as they travel over the Internet or altering data on computer disks after penetrating a network. For example - an attacker might place a tap on a network line to intercept packets as they leave the computer. The attac






42. Can create entries in a log for all queries that are received.






43. A hacker who exposes security flaws in applications and operating systems so manufacturers can fix them before they become widespread problems.






44. Permits users to share resources stored on one site with a second site without forwarding their authentication credentials to the other site.






45. An attacker motivated by the ideology to attack computer or infrastructure networks.






46. A security attack in which an internet user sends commands to another internet user's machine that cause the screen to fill with garbage characters. A flashing attack causes the user to terminate her session.






47. A firewall capable only of examining packets individually. Stateless firewalls perform more quickly than stateful firewalls - but are not as sophisticated.






48. A person who uses his knowledge of operating systems and utilities to intentionally damage or destroy data or systems.






49. The perimeter of a protected - internal network where users - both authorized and unauthorized - from external networks can attempt to access it. Firewalls and IDS/IPS systems are typically placed in the DMZ.






50. Sending high volumes of UDP requests to a target.