Question 1

___________is a form of eavesdropping used to pick up telecommunication signals by monitoring the electromagnetic fields produced by the signals.

Accepted Answer

A) Reverse engineering 
B) Magneto resistive head technology 
C) Van Eck phreaking 
D) Electronic data processing (EDP) 
A) Reverse engineering 
B) Magneto resistive head technology 
C) Van Eck phreaking 
D) Electronic data processing (EDP) C

Question 2

Which of the following is true of improper error handling?

Accepted Answer

A) Attackers can use error messages to extract specific information from a system. 
B) Attackers can use unexpected errors to knock an application off line, creating a denial-of- service attack. 
C) Unexpected errors can provide an attacker with a buffer or stack overflow condition that sets the stage for an arbitrary code execution. 
D) All of the above. 
A) Attackers can use error messages to extract specific information from a system. 
B) Attackers can use unexpected errors to knock an application off line, creating a denial-of- service attack. 
C) Unexpected errors can provide an attacker with a buffer or stack overflow condition that sets the stage for an arbitrary code execution. 
D) All of the above. D

Question 3

In what type of attack does an intruder manipulate a URL in such a way that the Web server executes or reveals the contents of a file anywhere on the server, including those lying outside the document root directory?

Accepted Answer

A) Cross-site scripting 
B) Command injection 
C) SQL injection 
D) Path traversal attacks 
A) Cross-site scripting 
B) Command injection 
C) SQL injection 
D) Path traversal attacks D

Question 4

Which of the following is NOT recommended for securing Web applications against authenticated users?

Accepted Answer

A) Client-side data validation 
B) Filtering data with a default deny regular expression 
C) Running the application under least privileges necessary 
D) Using parameterized queries to access a database 
A) Client-side data validation 
B) Filtering data with a default deny regular expression 
C) Running the application under least privileges necessary 
D) Using parameterized queries to access a database

Question 5

__________ is an electronic or paper log used to track computer activity.

Accepted Answer

A) Traceroute 
B) Cookie 
C) Weblog 
D) Audit trail 
A) Traceroute 
B) Cookie 
C) Weblog 
D) Audit trail

Question 6

This is the name for a group of programmers who are hired to expose errors or security holes in new software or to find out why a computer network's security is being broken.

Accepted Answer

A) ERM group 
B) Computer emergency response tea 
C) Tiger team 
D) Silicone cockroach 
A) ERM group 
B) Computer emergency response tea 
C) Tiger team 
D) Silicone cockroach

Question 7

This is an assault on the integrity of a security system in which the attacker substitutes a section of cipher text (encrypted text) with a different section that looks like (but is not the same as) the one removed.

Accepted Answer

A) Trojan horse 
B) Hashing 
C) Switching fabric 
D) Cut and paste attack 
A) Trojan horse 
B) Hashing 
C) Switching fabric 
D) Cut and paste attack

Question 8

A false positive can be defined as…

Accepted Answer

A) An alert that indicates nefarious activity on a system that, upon further inspection, turns out to represent legitimate network traffic or behavior. 
B) An alert that indicates nefarious activity on a system that is not running on the network. 
C) The lack of an alert for nefarious activity. 
D) Both a. and b. 
A) An alert that indicates nefarious activity on a system that, upon further inspection, turns out to represent legitimate network traffic or behavior. 
B) An alert that indicates nefarious activity on a system that is not running on the network. 
C) The lack of an alert for nefarious activity. 
D) Both a. and b.

Question 9

In which of the following exploits does an attacker add SQL code to a Web form input box to gain access to resources or make changes to data?

Accepted Answer

A) Cross-site scripting 
B) Command injection 
C) SQL injection 
D) Buffer overflow 
A) Cross-site scripting 
B) Command injection 
C) SQL injection 
D) Buffer overflow

Question 10

This technology is used to measure and analyze human body characteristics for authentication purposes.

Accepted Answer

A) Footprinting 
B) Biometrics 
C) JBOD 
D) Anthropomorphism 
A) Footprinting 
B) Biometrics 
C) JBOD 
D) Anthropomorphism

Question 11

What is the purpose of a shadow honeypot?

Accepted Answer

A) To flag attacks against known vulnerabilities 
B) To help reduce false positives in a signature-based IDS. 
C) To randomly check suspicious traffic identified by an anomaly detection system. 
D) To enhance the accuracy of a traditional honeypot. 
A) To flag attacks against known vulnerabilities 
B) To help reduce false positives in a signature-based IDS. 
C) To randomly check suspicious traffic identified by an anomaly detection system. 
D) To enhance the accuracy of a traditional honeypot.

Question 12

Which of the following is characteristic of spyware?

Accepted Answer

A) Blocking access to antivirus and antispyware updates 
B) Aggregating surfing habits across multiple users for advertising 
C) Customizing search results based on an advertiser's needs 
D) All of the above 
A) Blocking access to antivirus and antispyware updates 
B) Aggregating surfing habits across multiple users for advertising 
C) Customizing search results based on an advertiser's needs 
D) All of the above

Question 13

This is a mechanism for ensuring that only authorized users can copy or use specific software applications.

Accepted Answer

A) Authorized program analysis report 
B) Private key 
C) Service level agreement 
D) Dongle 
A) Authorized program analysis report 
B) Private key 
C) Service level agreement 
D) Dongle

Question 14

This is an encryption/decryption key known only to the party or parties that exchange secret messages.

Accepted Answer

A) E-signature 
B) Digital certificate 
C) Private key 
D) Security token 
A) E-signature 
B) Digital certificate 
C) Private key 
D) Security token

Question 15

This enables users of a basically unsecure public network such as the Internet to securely and privately exchange data and money through the use of a public and a private cryptographic key pair that is obtained and shared through a trusted authority.

Accepted Answer

A) Security Identifier (SI
D)  
B) Public key infrastructure (PKI) 
C) Internet Assigned Numbers Authority (IAN
A)  
D) Private Branch Exchange (PBX) 
A) Security Identifier (SI
D)  
B) Public key infrastructure (PKI) 
C) Internet Assigned Numbers Authority (IAN
A)  
D) Private Branch Exchange (PBX)

Question 16

This is a series of messages sent by someone attempting to break into a computer to learn which computer network services the computer provides.

Accepted Answer

A) Bit robbing 
B) Web services description language (WSDL) 
C) Jabber 
D) Port scan 
A) Bit robbing 
B) Web services description language (WSDL) 
C) Jabber 
D) Port scan

Question 17

This is a Peripheral Component Interconnect (PCI) card that offloads SSL processing to speed up secure transactions on e-commerce Web sites.

Accepted Answer

A) PCMCIA card 
B) Smart card 
C) Server accelerator card 
D) Network interface card 
A) PCMCIA card 
B) Smart card 
C) Server accelerator card 
D) Network interface card

Question 18

At which two traffic layers do most commercial IDSes generate signatures?

Accepted Answer

A) Application layer 
B) Network layer 
C) Session layer 
D) Transport layer 
A) Application layer 
B) Network layer 
C) Session layer 
D) Transport layer

Question 19

An IDS follows a two-step process consisting of a passive component and an active component. Which of the following is part of the active component?

Accepted Answer

A) Inspection of password files to detect inadvisable passwords 
B) Mechanisms put in place to reenact known methods of attack and record system responses 
C) Inspection of system to detect policy violations 
D) Inspection of configuration files to detect inadvisable settings 
A) Inspection of password files to detect inadvisable passwords 
B) Mechanisms put in place to reenact known methods of attack and record system responses 
C) Inspection of system to detect policy violations 
D) Inspection of configuration files to detect inadvisable settings

Question 20

"Semantics-aware" signatures automatically generated by Nemean are based on traffic at which two layers?

Accepted Answer

A) Application layer 
B) Network layer 
C) Session layer 
D) Both a and c 
A) Application layer 
B) Network layer 
C) Session layer 
D) Both a and c

___________is a form of eavesdropping used to pick up telecommunication signals by monitoring the electromagnetic fields produced by the signals.

Which of the following is true of improper error handling?

In what type of attack does an intruder manipulate a URL in such a way that the Web server executes or reveals the contents of a file anywhere on the server, including those lying outside the document root directory?

Which of the following is NOT recommended for securing Web applications against authenticated users?

__________ is an electronic or paper log used to track computer activity.

This is the name for a group of programmers who are hired to expose errors or security holes in new software or to find out why a computer network's security is being broken.

This is an assault on the integrity of a security system in which the attacker substitutes a section of cipher text (encrypted text) with a different section that looks like (but is not the same as) the one removed.

A false positive can be defined as…

In which of the following exploits does an attacker add SQL code to a Web form input box to gain access to resources or make changes to data?

This technology is used to measure and analyze human body characteristics for authentication purposes.

What is the purpose of a shadow honeypot?

Which of the following is characteristic of spyware?

This is a mechanism for ensuring that only authorized users can copy or use specific software applications.

This is an encryption/decryption key known only to the party or parties that exchange secret messages.

This enables users of a basically unsecure public network such as the Internet to securely and privately exchange data and money through the use of a public and a private cryptographic key pair that is obtained and shared through a trusted authority.

This is a series of messages sent by someone attempting to break into a computer to learn which computer network services the computer provides.

This is a Peripheral Component Interconnect (PCI) card that offloads SSL processing to speed up secure transactions on e-commerce Web sites.

At which two traffic layers do most commercial IDSes generate signatures?

An IDS follows a two-step process consisting of a passive component and an active component. Which of the following is part of the active component?

"Semantics-aware" signatures automatically generated by Nemean are based on traffic at which two layers?

Cybersecurity and Cryptography

Filters

Exam 1: Cybersecurity and Technology

___________is a form of eavesdropping used to pick up telecommunication signals by monitoring the electromagnetic fields produced by the signals.

Which of the following is true of improper error handling?

In what type of attack does an intruder manipulate a URL in such a way that the Web server executes or reveals the contents of a file anywhere on the server, including those lying outside the document root directory?

Which of the following is NOT recommended for securing Web applications against authenticated users?

__________ is an electronic or paper log used to track computer activity.

This is the name for a group of programmers who are hired to expose errors or security holes in new software or to find out why a computer network's security is being broken.

This is an assault on the integrity of a security system in which the attacker substitutes a section of cipher text (encrypted text) with a different section that looks like (but is not the same as) the one removed.

A false positive can be defined as…

In which of the following exploits does an attacker add SQL code to a Web form input box to gain access to resources or make changes to data?

This technology is used to measure and analyze human body characteristics for authentication purposes.

What is the purpose of a shadow honeypot?

Which of the following is characteristic of spyware?

This is a mechanism for ensuring that only authorized users can copy or use specific software applications.

This is an encryption/decryption key known only to the party or parties that exchange secret messages.

This enables users of a basically unsecure public network such as the Internet to securely and privately exchange data and money through the use of a public and a private cryptographic key pair that is obtained and shared through a trusted authority.

This is a series of messages sent by someone attempting to break into a computer to learn which computer network services the computer provides.

This is a Peripheral Component Interconnect (PCI) card that offloads SSL processing to speed up secure transactions on e-commerce Web sites.

At which two traffic layers do most commercial IDSes generate signatures?

An IDS follows a two-step process consisting of a passive component and an active component. Which of the following is part of the active component?

"Semantics-aware" signatures automatically generated by Nemean are based on traffic at which two layers?

Cybersecurity and Cryptography

Filters