Test your basic knowledge |

Information Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A hacker who exposes security flaws in applications and operating systems so manufacturers can fix them before they become widespread problems.






2. Web application attacks are considered ____ attacks.






3. If a user typically accesses his bank's Web site from his home computer on nights and weekends - then this information can be used to establish a ____ of typical access.






4. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.






5. Provides a greater degree of security by implementing port-based authentication.






6. Allows a single access point to service different types of users.






7. An AP that is set up by an attacker.






8. Typically used on home routers that allow multiple users to share one IP address received from an Internet service provider (ISP).






9. A program or device that can monitor data traveling over a network. Sniffers can show - all the data being transmitted over a network - including passwords and sensitive information - tends to be a favorite weapon in the hacker's arsenal






10. The perimeter of a protected - internal network where users - both authorized and unauthorized - from external networks can attempt to access it. Firewalls and IDS/IPS systems are typically placed in the DMZ.






11. Software attack using special monitoring software to gain access to private communications on the network wire or across a wireless network. (aka sniffing attack)






12. These access points are serious threats to network security because they allow attackers to intercept the RF signal and bypass network security to attack the network or capture sensitive data.






13. Hides inside other software - usually as an attachment or a downloadable file






14. An independently rotating large cups affixed to the top of a fence prevent the hands of intruders from gripping the top of a fence to climb over it.






15. A device that is around the same size as a credit card - containing embedded technologies that can store information and small amounts of software to perform some limited processing






16. Has limited technical knowledge and is motivated by a desire to gain and display technical skills.






17. Holds the promise of reducing the number of usernames and passwords that users must memorize.






18. An attacker motivated by the ideology to attack computer or infrastructure networks.






19. Suitable for what are called "high-volume service control applications" such as dial-in access to a corporate network.






20. An attack that sends unsolicited messages to Bluetooth-enabled devices.






21. The action that is taken by the subject over the object is called a ____.






22. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.






23. During RADIUS authentication the AP - serving as the authenticator that will accept or reject the wireless device - creates a data packet from this information called the ____.






24. Related to the perception - thought process - and understanding of the user.






25. Securing a restricted area by erecting a barrier is called ____.






26. The time it takes for a key to be pressed and then released.






27. An attack that uses multiple computers on disparate networks to launch an attack from multiple hosts simultaneously.






28. Scrambles information into an alternative form that requires a key or password to decrypt the information






29. Software that comes hidden in free downloadable software and tracks online movements - mines the information stored on a computer - or uses a computer's CPU and storage for some task the user knows nothing about - can cause extremely slow performance






30. A secret combination of letters - numbers - and/or characters that only the user should know.






31. An authentication system developed by the Massachusetts Institute of Technology (MIT) and used to verify the identity of networked users.






32. There are almost ____ different Microsoft Windows file extensions that could contain a virus.






33. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.






34. Floods a Web site with so many requests for service that it slows down or crashes the site






35. ____ is a software program that delivers advertising content in a manner that is unexpected and unwanted by the user.






36. A password-protected and encrypted file that holds an individual's identification information - including a public key and a private key. The individual's public key is used to verify the sender's digital signature - and the private key allows the in






37. The most restrictive access control model is ____.






38. Computer crimes involving the theft of money






39. A technology that can help to evenly distribute work across a network.






40. Tools used to configure ________: WEP - WPA - MAC address filtering - SSID broadcasting - wireless antennae






41. Sifting through a company's garbage to find information to help break into their computers






42. A user under Role Based Access Control can be assigned only one ____.






43. The process of giving someone permission to do or have something






44. A user accessing a computer system must present credentials or ____ when logging on to the system.






45. Terms that can refer to the online enticement of children; rude or threatening messages; slanderous information; or repeated - unwanted messages






46. Use multiple infrared beams that are aimed across a doorway and positioned so that as a person walks through the doorway some beams are activated.






47. A means of managing and presenting computer resources by function without regard to their physical layout or location.






48. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.






49. Type of software attack where an attacker captures network traffic and stores it for retransmission at a later time to gain unauthorized access to a network.






50. Forwards packets across computer networks.