Question 1

Which of the following is true about database access control?

Accepted Answer

A) to access a database the SQL Server login must be mapped to a database user 
B) members of the sysadmin server role don't have access to databases by default 
C) once a user logs in to the SQL Server, they have automatic access to underlying database objects 
D) the database user login name must be different from the server login name 
A) to access a database the SQL Server login must be mapped to a database user 
B) members of the sysadmin server role don't have access to databases by default 
C) once a user logs in to the SQL Server, they have automatic access to underlying database objects 
D) the database user login name must be different from the server login name

Question 2

What SQL function should you use to encrypt an individual data item in a column that lets you choose the encryption algorithm?

Accepted Answer

A) EncryptByPhrase 
B) EncryptColumn 
C) EncryptSymmetric 
D) EncryptByKey 
A) EncryptByPhrase 
B) EncryptColumn 
C) EncryptSymmetric 
D) EncryptByKey

Question 3

Which of the following is an authentication mode supported by SQL Server 2012?

Accepted Answer

A) Server-instance authentication 
B) System level authentication 
C) Hybrid authentication mode 
D) Mixed authentication mode 
A) Server-instance authentication 
B) System level authentication 
C) Hybrid authentication mode 
D) Mixed authentication mode

Question 4

Which environments must use SQL Server authentication because Windows authentication cannot be used?

Accepted Answer

A) Active Directory domains 
B) Windows-only networks 
C) Web applications 
D) multi-domain forests 
A) Active Directory domains 
B) Windows-only networks 
C) Web applications 
D) multi-domain forests

Question 5

Which method of securing client/server connections used by SQL Server 2012 requires implementing a policy on the server and client computers?

Accepted Answer

A) SSL 
B) PPTP 
C) IPSec 
D) L2TP 
A) SSL 
B) PPTP 
C) IPSec 
D) L2TP

Question 6

How is a user granted permission to access a database?

Accepted Answer

Other than members of the sysadmin fixed

Question 7

Match between columns
                        Premises: a type of key that uses the same key to encrypt and decrypt data
the various objects in a database and a SQL Server instance that can be secured
a column value that is unique to the row and is used in conjunction with the key to secure the data being encrypted
a symmetric key used to protect asymmetric private keys and certificates that are stored in the database
it is established using Windows authentication
a user identifier from the Windows operating system that is created when the user initially logs on
a reversible process involving the use of a key or passcode and an algorithm to convert data into an unreadable form
an external entity that issues and verifies digital certificates used for encrypting data
a parameter used in conjunction with a cryptographic algorithm to encrypt data
a cryptographic algorithm used in conjunction with a key to encrypt data

Accepted Answer

The Answer of authenticator and symmetric key and encryption and is...

Question 8

What is a permission? Provide examples of permissions for database access.

Accepted Answer

A permission is a right to perform a par

Question 9

All server-level principals have access to the SQL databases.

Accepted Answer

A) True 
 B)False

Question 10

How do secure Internet transactions use encryption keys?

Accepted Answer

In a secure Internet transaction, initia

Question 11

How is authentication performed using security principals?

Accepted Answer

Authentication is performed during logon

Question 12

Which of the following is NOT true about roles?

Accepted Answer

A) there are several predefined database level roles 
B) the scope of a role is confined to each table in a database 
C) a single user can be assigned to a role 
D) roles are used to manage permissions for groups of users 
A) there are several predefined database level roles 
B) the scope of a role is confined to each table in a database 
C) a single user can be assigned to a role 
D) roles are used to manage permissions for groups of users

Question 13

_____________ is designed to render data in the physical data and log files unusable should someone gain unauthorized access.

Accepted Answer

Transparen

Question 14

Which of the following is true about asymmetric encryption algorithms?

Accepted Answer

A) they use a secret key 
B) the same key is used to encrypt and encrypt data 
C) the performance is slower than with symmetric algorithms 
D) it is the most commonly used form of encryption 
A) they use a secret key 
B) the same key is used to encrypt and encrypt data 
C) the performance is slower than with symmetric algorithms 
D) it is the most commonly used form of encryption

Question 15

What should you reduce in order to limit the number of security vulnerabilities in a system?

Accepted Answer

A) password complexity 
B) the number of logins 
C) surface area 
D) antivirus programs 
A) password complexity 
B) the number of logins 
C) surface area 
D) antivirus programs

Question 16

Which action does a user perform that requires the user to provide credentials?

Accepted Answer

A) decryption of data 
B) system logon 
C) reading a data record 
D) shutting down a system 
A) decryption of data 
B) system logon 
C) reading a data record 
D) shutting down a system

Question 17

What is the IPSec protocol and under what conditions is its use most appropriate?

Accepted Answer

IPSec is a protocol that has been integr

Question 18

What is the Service Master Key?

Accepted Answer

Service master key (SMK)is created the f

Question 19

What is a symmetric key and what are its advantages and disadvantages?

Accepted Answer

Symmetric keys (also known as secret key

Question 20

__________ authentication mode includes both Windows and SQL Server authentication.

Accepted Answer

The answer of __________ authentication mode includes both Windows and...

Which of the following is true about database access control?

What SQL function should you use to encrypt an individual data item in a column that lets you choose the encryption algorithm?

Which of the following is an authentication mode supported by SQL Server 2012?

Which environments must use SQL Server authentication because Windows authentication cannot be used?

Which method of securing client/server connections used by SQL Server 2012 requires implementing a policy on the server and client computers?

How is a user granted permission to access a database?

What is a permission? Provide examples of permissions for database access.

All server-level principals have access to the SQL databases.

How do secure Internet transactions use encryption keys?

How is authentication performed using security principals?

Which of the following is NOT true about roles?

_____________ is designed to render data in the physical data and log files unusable should someone gain unauthorized access.

Which of the following is true about asymmetric encryption algorithms?

What should you reduce in order to limit the number of security vulnerabilities in a system?

Which action does a user perform that requires the user to provide credentials?

What is the IPSec protocol and under what conditions is its use most appropriate?

What is the Service Master Key?

What is a symmetric key and what are its advantages and disadvantages?

__________ authentication mode includes both Windows and SQL Server authentication.

Introduction to SQL Server 2012

Deploying SQL Server 2012

Architecture and Configuration

Creating SQL Server 2012 Databases

Transact:SQL Primer

Performance Monitoring and Optimization

Backup and Recovery

Data Integration

Monitoring SQL Server 2012

Filters

Exam 6: SQL Server Security

Which of the following is true about database access control?

What SQL function should you use to encrypt an individual data item in a column that lets you choose the encryption algorithm?

Which of the following is an authentication mode supported by SQL Server 2012?

Which environments must use SQL Server authentication because Windows authentication cannot be used?

Which method of securing client/server connections used by SQL Server 2012 requires implementing a policy on the server and client computers?

How is a user granted permission to access a database?

What is a permission? Provide examples of permissions for database access.

All server-level principals have access to the SQL databases.

How do secure Internet transactions use encryption keys?

How is authentication performed using security principals?

Which of the following is NOT true about roles?

_____________ is designed to render data in the physical data and log files unusable should someone gain unauthorized access.

Which of the following is true about asymmetric encryption algorithms?

What should you reduce in order to limit the number of security vulnerabilities in a system?

Which action does a user perform that requires the user to provide credentials?

What is the IPSec protocol and under what conditions is its use most appropriate?

What is the Service Master Key?

What is a symmetric key and what are its advantages and disadvantages?

__________ authentication mode includes both Windows and SQL Server authentication.

Introduction to SQL Server 2012

Deploying SQL Server 2012

Architecture and Configuration

Creating SQL Server 2012 Databases

Transact:SQL Primer

Performance Monitoring and Optimization

Backup and Recovery

Data Integration

Monitoring SQL Server 2012

Filters