Test your basic knowledge |

SSCP: Systems Security Certified Practitioner

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Committing computer crimes in such small doses that they almost go unnoticed.






2. A ______________ is an electronically generated record that ties a user's ID to their public key.






3. What type of software can be used to prevent - detect (and possibly correct) malicious activities on a system?






4. Which auditing practice relates to the controlling of hardware - software - firmware - and documentation to insure it has not been improperly modified?






5. The ultimate goal of a computer forensics specialist is to ___________________.






6. DES - Data Encryption standard has a 128 bit key and is ________






7. Which layer of the OSI model handles encryption?






8. These should be done on a weekly basis






9. The IDEA algorithm (used in PGP) is _______ bits long.






10. Diffie Hellman - RSA - and ___________ are all examples of Public Key cryptography?






11. A one way hash converts a string of random length into a _______________ encrypted string.






12. There are 5 classes of IP addresses available - but only 3 classes are in common use today






13. __________ is the most famous Unix password cracking tool.






14. Consists of checking for Minimum password length - Password aging - Password Strength - Blank Passwords?






15. Each password must have a combination of upper case - lower case - numbers and special characters - 6 character minimum password length - This rule is enforced by ______






16. Ways to deal with risk.






17. The ability to identify and audit a user and his / her actions is known as ____________.






18. A formula used in Quantitative risk analysis






19. A standardized list of the most common security weaknesses and exploits is the __________.






20. Accounting - Authentication - and ____________ are the AAAs of information security.






21. ______________ is a major component of an overall risk management program.






22. ________ is the authoritative entity which lists port assignments






23. Digital Certificates use which protocol?






24. Which of the concepts best describes Availability in relation to computer resources?






25. It is difficult to prosecute a computer criminal if _________ are not deployed






26. A Security Reference Monitor relates to which DoD security standard?






27. Name two types of Intrusion Detection Systems






28. Contracting with an insurance company to cover losses due to information security breaches is known as risk __________.






29. Tiger - TCP Wrappers - TripWire - LogCheck - SATAN






30. ____________ is a file system that was poorly designed and has numerous security flaws.






31. What is the main difference between computer abuse and computer crime?






32. An attempt to break an encryption algorithm is called _____________.






33. An intrusion detection system is an example of what type of countermeasure?






34. Layer 4 in the DoD model overlaps with which layer(s) of the OSI model?






35. EDI (Electronic Data Interchange) differs from e- Commerce in that it ___________________.






36. The __________ is the most dangerous part of a virus program.






37. Types of firewalls: Packet Filtering - Application Proxy - and _________________.






38. __________ attacks capitalize on programming errors and can allow the originator to gain additional privileges on a machine.






39. A type of virus that resides in a Word or Excel document is called a ___________ virus?






40. Is the person who is attempting to log on really who they say they are? What form of access control does this questions stem from?






41. A boot sector virus goes to work when what event takes place?






42. ______________ relates to the concept of protecting data from unauthorized users.






43. Data being delivered from the source to the intended receiver without being altered






44. Identifying specific attempts to penetrate systems is the function of the _______________.






45. ____________ is used in mission critical systems and applications to lock down information based on sensitivity levels (Confidential - Top Secret - etc.






46. The ability to adjust access control to the exact amount of permission necessary is called ______________.






47. Layer 4 of the OSI model corresponds to which layer of the DoD model?






48. If your telephone company suddenly started billing you for caller ID and call forwarding without your permission - this practice is referred to as __________________.






49. __________________ will have weird characters printed at the beginning or end of an email message - what would it be anindication of?






50. Which form of media is handled at the Physical Layer (Layer 1) of the OSI Reference Model?







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:



Major Subjects



Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Most popular tests