CMGT/430 Weeks 3-4 QUIZ
CMGT/430 Weeks 3 & 4 QUIZ Questions
Faculty: Vijay Jonnalagadda
Question # | Question | Your Answer |
1
Chapter 3 Computer Security: Principles and Practice, Second Edition, by William Stallings and Lawrie Brown. Published by Prentice Hall. Copyright © 2012 by Pearson Education, Inc. | What are the means of authenticating a user’s identity?
A. Something the individual knows B. Something the individual possesses C. Something the individual is D. Something the individual does E. All of the above F. None of the above |
|
2
Chapter 3 | Lower the false match rate, better the quality of the security application
True False
|
|
3
Chapter 3 | Countermeasure for the theft of system password file
A. Lockout all passwords B. Fast reissuance of all passwords C. Enforce a password policy that makes very difficult to guess password D. User training E. All of the above
|
|
4
Chapter 3 | List basic techniques to avoid guessable passwords
_____________________ _____________________ _____________________ _____________________ |
|
5
Chapter 3 | Smart card contains
A. Microprocessor B. Small database of password and user information C. A self-erase mechanism in case of suspected misuse D. All of the above
|
|
6
Chapter 3 | Biometric system can authorize an user to use a computer system, but it cannot authenticate
True False |
|
7
Chapter 3 | The function of processor in ATM architecture
____________________________ |
|
8
Chapter 4 Computer Security: Principles and Practice, Second Edition, by William Stallings and Lawrie Brown. Published by Prentice Hall. Copyright © 2012 by Pearson Education, Inc. | Type of Access control based on how sensitive and important the Object is
A. DAC – Discretionary Access Control B. MAC – Mandatory Access Control C. RBAC – Role based Access Control D. All of the above
|
|
9
Chapter 4
| Kind of constraint that stipulates that a user can be assigned to a role only if that user was already given another role.
A. Cardinality B. Mutually Exclusive C. Prerequisite D. Any one of the above
|
|
10
Chapter 4
| Match the following
A. Subject 1) That can create resource B. Object 2) That accesses objects C. Owner 3) Subjects to give minimal access D. World 4) Entity whose access to control
|
|
11
Chapter 4
| Write down the main difference between Core RBAC and Hierarchical RBAC
----------------------------------------------------
|
|
12
Chapter 10
| The protection mechanism that detects potential attack and alerts the administrators
A. Firewalls B. Port Scanner C. TACACS D. IDPS E. All of the above
|
|
13
Chapter 10
Management of Information Security, Third Edition Chapter 10: Protection Mechanisms ISBN: 9781435488847 Authors: Michael Whitman Ph.D., CISM, CISSP, Herbert Mattord Copyright © Cengage Learning (2010)
| The protection mechanism used to authenticate remote users
A. Firewalls B. Port Scanner C. TACACS D. IDPS E. All of the above
|
|
14
Week 3
Chapter 10 | Administrators can use this tool to check what Servers are offering what services and are vulnerable to what type of attacks
A. Firewalls B. Port Scanner C. TACACS D. IDPS E. All of the above
|
|
15 Week 3 Chapter 10 | Following technology (technologies) help to secure emails
A. PGP B. S/MIME C. PEM D. Digital Certificate E. All of the above |
|
16
Chapter 10 | Following technology (technologies) help to secure general web browsing and web-based applications such as this class
A. SET B. SSL C. SHTTP D. SSH E. All of the above |
|
17 Week4 Chapter 23 Computer Security: Principles and Practice, Second Edition, by William Stallings and Lawrie Brown. Published by Prentice Hall. Copyright © 2012 by Pearson Education, Inc.
| Which one of the following is User authentication protocol
A. X.509 B. Kerboros C. S/MIME D. All of the above
|
|
18
Week4
Chapter 23
| Write down the improvements made in Version 5 Kerboros
________________________________________
________________________________________
|
|
19 Chapter 23
| Which one of the following is Directory authentication protocol
A. X.509 B. Kerboros C. S/MIME D. All of the above
|
|
20
Chapter 23
| This Language support remote procedure calls involving complex data objects
A. XML B. SOAP C. WS-Security D. SAML E. All of the above |
|
21
Chapter 23
| This Language helps to exchange security information between desperate systems.
A. XML B. SOAP C. WS-Security D. SAML E. All of the above |
|
22
Chapter 23
| List the elements of Public Key Infrastructure (PKIX) Model
__________________________________ __________________________________ __________________________________ __________________________________ __________________________________
|
|
11 years ago
Purchase the answer to view it

- cmgt430_week_3_and_4_quiz_all_correct.docx