Question 1

A digital certificate is standardized as ____ under IETF RFC 2459.

Accepted Answer

A)  X.501 
B)  X.509 
C)  X.512 
D)  X.529 
A)  X.501 
B)  X.509 
C)  X.512 
D)  X.529

Question 2

____ is defined as the exchange of information over an unsecured medium that allows each of two parties, the sender and the recipient, to compute a value that will be used to construct a secret key for a symmetric cipher during the rest of the communication.

Accepted Answer

A)  Message authentication code 
B)  Digital certificate 
C)  Key agreement 
D)  Keyed hashes 
A)  Message authentication code 
B)  Digital certificate 
C)  Key agreement 
D)  Keyed hashes

Question 3

____ is a set of computer networking standards developed by the International Standard Organization (ISO) and covering electronic directory services.

Accepted Answer

A)  ASCII 
B)  ASN.1 
C)  PKCS 
D)  X.500 
A)  ASCII 
B)  ASN.1 
C)  PKCS 
D)  X.500

Question 4

What are the prerequisites for a hash function to be classified as a secure cryptographic hash function?

Accepted Answer

While there is no formal definition on t

Question 5

In ____, the source IP address in a packet is faked to make recipients suppose that packets are coming from trustworthy IP addresses.

Accepted Answer

A)  tampering 
B)  snooping 
C)  sniffing 
D)  spoofing 
A)  tampering 
B)  snooping 
C)  sniffing 
D)  spoofing

Question 6

____________________ is the assurance that an entity is who it claims to be.

Accepted Answer

The answer of ____________________ is the assurance that an entity...

Question 7

____________________ means the assurance of data privacy-ensuring that no one can read the data except for the specific entity or entities intended.

Accepted Answer

The answer of ____________________ means the assurance of data privacy-ensuring...

Question 8

What information does a certificate contain?

Accepted Answer

A certificate typically contains the fol

Question 9

The two primary types of symmetric ciphers are stream ciphers and ____ ciphers.

Accepted Answer

A)  bit 
B)  character 
C)  block 
D)  byte 
A)  bit 
B)  character 
C)  block 
D)  byte

Question 10

What are the main advantages and disadvantages of Electronic Codebook (ECB)?

Accepted Answer

ECB is straightforward but has an obviou

Question 11

A software system is only as secure as its weakest link.

Accepted Answer

A) True 
 B)False

Question 12

____ was designed by IBM in the 1970s and is the most widely used symmetric cipher.

Accepted Answer

A)  RC4 
B)  RC5 
C)  DES 
D)  AES 
A)  RC4 
B)  RC5 
C)  DES 
D)  AES

Question 13

Describe the CBC rollover problem.

Accepted Answer

While CBC is by far the most popular mod

Question 14

____ ensure(s) the integrity of a message sent between two parties who are unknown to each other.

Accepted Answer

A)  3DES-EDE 
B)  Digital signatures 
C)  Symmetric encryption 
D)  Block ciphers 
A)  3DES-EDE 
B)  Digital signatures 
C)  Symmetric encryption 
D)  Block ciphers

Question 15

A ____ is a piece of structured data that uses a digital signature to bind a public key with an identity.

Accepted Answer

A)  private key certificate 
B)  private key signature 
C)  public key signature 
D)  public key certificate 
A)  private key certificate 
B)  private key signature 
C)  public key signature 
D)  public key certificate

Question 16

Encryption always ensures data integrity.

Accepted Answer

A) True 
 B)False

Question 17

For communication among former unknown parties, ____________________ refers to any method for distributing a secret amongst a group of participants in cryptography.

Accepted Answer

The answer of For communication among former unknown parties, ____________________...

Question 18

A(n) ____ is the unique string of numbers that identifies a computer or server on the Internet.

Accepted Answer

A)  IP address 
B)  ARP address 
C)  MAC address 
D)  DN 
A)  IP address 
B)  ARP address 
C)  MAC address 
D)  DN

Question 19

____ was originally designed as part of the International Telecommunication Union's Open Standards Interconnect (OSI) effort as a general description language for the OSI protocol.

Accepted Answer

A)  PKCS 
B)  OID 
C)  ASN.1 
D)  ASCII 
A)  PKCS 
B)  OID 
C)  ASN.1 
D)  ASCII

Question 20

____ is the process of performing a comprehensive search on the possible solution space by throwing all computational power an attacker can gather at breaking the system.

Accepted Answer

A)  Brute force 
B)  Dictionary attack 
C)  Meet-in-the-middle 
D)  Man-in-the-middle 
A)  Brute force 
B)  Dictionary attack 
C)  Meet-in-the-middle 
D)  Man-in-the-middle

A digital certificate is standardized as ____ under IETF RFC 2459.

____ is defined as the exchange of information over an unsecured medium that allows each of two parties, the sender and the recipient, to compute a value that will be used to construct a secret key for a symmetric cipher during the rest of the communication.

____ is a set of computer networking standards developed by the International Standard Organization (ISO) and covering electronic directory services.

What are the prerequisites for a hash function to be classified as a secure cryptographic hash function?

In ____, the source IP address in a packet is faked to make recipients suppose that packets are coming from trustworthy IP addresses.

____________________ is the assurance that an entity is who it claims to be.

____________________ means the assurance of data privacy-ensuring that no one can read the data except for the specific entity or entities intended.

What information does a certificate contain?

The two primary types of symmetric ciphers are stream ciphers and ____ ciphers.

What are the main advantages and disadvantages of Electronic Codebook (ECB)?

A software system is only as secure as its weakest link.

____ was designed by IBM in the 1970s and is the most widely used symmetric cipher.

Describe the CBC rollover problem.

____ ensure(s) the integrity of a message sent between two parties who are unknown to each other.

A ____ is a piece of structured data that uses a digital signature to bind a public key with an identity.

Encryption always ensures data integrity.

For communication among former unknown parties, ____________________ refers to any method for distributing a secret amongst a group of participants in cryptography.

A(n) ____ is the unique string of numbers that identifies a computer or server on the Internet.

____ was originally designed as part of the International Telecommunication Union's Open Standards Interconnect (OSI) effort as a general description language for the OSI protocol.

____ is the process of performing a comprehensive search on the possible solution space by throwing all computational power an attacker can gather at breaking the system.

Software Engineering and Security

Essential Public Key Infrastructure

Trust and Threat Model

Java Programming Security

Java Api-Level Security Features

Authentication and Authorization With Java

Secure Programming With C and Openssl

Secure Programming With Perl

Identity Management

Security Topics

Filters

Exam 1: Introduction to Security Concepts

A digital certificate is standardized as ____ under IETF RFC 2459.

____ is defined as the exchange of information over an unsecured medium that allows each of two parties, the sender and the recipient, to compute a value that will be used to construct a secret key for a symmetric cipher during the rest of the communication.

____ is a set of computer networking standards developed by the International Standard Organization (ISO) and covering electronic directory services.

What are the prerequisites for a hash function to be classified as a secure cryptographic hash function?

In ____, the source IP address in a packet is faked to make recipients suppose that packets are coming from trustworthy IP addresses.

____________________ is the assurance that an entity is who it claims to be.

____________________ means the assurance of data privacy-ensuring that no one can read the data except for the specific entity or entities intended.

What information does a certificate contain?

The two primary types of symmetric ciphers are stream ciphers and ____ ciphers.

What are the main advantages and disadvantages of Electronic Codebook (ECB)?

A software system is only as secure as its weakest link.

____ was designed by IBM in the 1970s and is the most widely used symmetric cipher.

Describe the CBC rollover problem.

____ ensure(s) the integrity of a message sent between two parties who are unknown to each other.

A ____ is a piece of structured data that uses a digital signature to bind a public key with an identity.

Encryption always ensures data integrity.

For communication among former unknown parties, ____________________ refers to any method for distributing a secret amongst a group of participants in cryptography.

A(n) ____ is the unique string of numbers that identifies a computer or server on the Internet.

____ was originally designed as part of the International Telecommunication Union's Open Standards Interconnect (OSI) effort as a general description language for the OSI protocol.

____ is the process of performing a comprehensive search on the possible solution space by throwing all computational power an attacker can gather at breaking the system.

Software Engineering and Security

Essential Public Key Infrastructure

Trust and Threat Model

Java Programming Security

Java Api-Level Security Features

Authentication and Authorization With Java

Secure Programming With C and Openssl

Secure Programming With Perl

Identity Management

Security Topics

Filters