Question 1

Unless logs are studied, they are useless.

Accepted Answer

A) True 
 B)False  True

Question 2

In, ________ the verifier determines whether the supplicant is a particular person.

Accepted Answer

A)  verification 
B)  acceptance 
C)  supplicant scanning 
D)  match index 
A)  verification 
B)  acceptance 
C)  supplicant scanning 
D)  match index A

Question 3

A(n) ________ is made of plastic and is approximately the size of a credit or debit card.

Accepted Answer

A)  access card 
B)  biometric card 
C)  token 
D)  RFID 
A)  access card 
B)  biometric card 
C)  token 
D)  RFID A

Question 4

During enrollment in a biometric authentication system, step 1 is that the ________.

Accepted Answer

A)  reader scans each person's biometric data 
B)  reader processes the enrollment scan data 
C)  reader sends key feature data to the database 
D)  key feature data is used as a template 
A)  reader scans each person's biometric data 
B)  reader processes the enrollment scan data 
C)  reader sends key feature data to the database 
D)  key feature data is used as a template

Question 5

The labor costs of provisioning are very expensive.

Accepted Answer

A) True 
 B)False

Question 6

Assigning least permissions means that the system tends to fail safely.

Accepted Answer

A) True 
 B)False

Question 7

________ refers to accuracy when a supplicant is not trying to deceive the system.

Accepted Answer

A)  Error rate 
B)  Supplicant scanning 
C)  Acceptance 
D)  Match index 
A)  Error rate 
B)  Supplicant scanning 
C)  Acceptance 
D)  Match index

Question 8

Usernames and passwords are rarely a target for hackers due to the difficulty in cracking them.

Accepted Answer

A) True 
 B)False

Question 9

It is rarely safe to accept a digital certificate from a supplicant.

Accepted Answer

A) True 
 B)False

Question 10

Trust means that one directory server will accept information from another.

Accepted Answer

A) True 
 B)False

Question 11

If a systems administrator assigns access permissions to a group, the accounts of the individual members of that group automatically inherit those permissions.

Accepted Answer

A) True 
 B)False

Question 12

A(n) ________ is something that represents something else.

Accepted Answer

A)  access card 
B)  RFID 
C)  token 
D)  template 
A)  access card 
B)  RFID 
C)  token 
D)  template

Question 13

Authentication servers communicate with directory servers using ________.

Accepted Answer

A)  MS-Chap 
B)  LDAP 
C)  RADIUS 
D)  Kerberos 
A)  MS-Chap 
B)  LDAP 
C)  RADIUS 
D)  Kerberos

Question 14

Which of the following is FALSE about log files?

Accepted Answer

A)  Automatic alerts should be established. 
B)  Log files should be read regularly. 
C)  External auditing should be conducted periodically. 
D)  Reading log files is an easy and minimally time-consuming process. 
A)  Automatic alerts should be established. 
B)  Log files should be read regularly. 
C)  External auditing should be conducted periodically. 
D)  Reading log files is an easy and minimally time-consuming process.

Question 15

In regard to COBIT, entry must be all of the following EXCEPT ________.

Accepted Answer

A)  authorized 
B)  logged 
C)  monitored 
D)  visually recorded 
A)  authorized 
B)  logged 
C)  monitored 
D)  visually recorded

Question 16

Microsoft's directory server product is called ________.

Accepted Answer

A)  MS-Chap 
B)  AD 
C)  RADIUS 
D)  Kerberos 
A)  MS-Chap 
B)  AD 
C)  RADIUS 
D)  Kerberos

Question 17

In a hierarchical database system, O represents ________ and OU represents ________.

Accepted Answer

A)  organization; organizational unit 
B)  organization; organized understanding 
C)  one-time; one-time user 
D)  organized; organized user 
A)  organization; organizational unit 
B)  organization; organized understanding 
C)  one-time; one-time user 
D)  organized; organized user

Question 18

Which of the following passwords is NOT in the top five most common for two real-world data breaches mentioned in the text?

Accepted Answer

A)  111111 
B)  123456 
C)  qwerty 
D)  iloveyou 
A)  111111 
B)  123456 
C)  qwerty 
D)  iloveyou

Question 19

________ occurs if a system will not enroll a user.

Accepted Answer

A)  TGT 
B)  FTE 
C)  RFID 
D)  PKI 
A)  TGT 
B)  FTE 
C)  RFID 
D)  PKI

Question 20

Which of the following is NOT one of the rules for working in secure areas?

Accepted Answer

A)  Electronic devices that can record or copy mass amounts of information should be forbidden in secure areas. 
B)  When no one is in a secure area, it should be locked and verified periodically. 
C)  Unsupervised work in secure areas should be avoided. 
D)  No one should be allowed to work in secure areas for more than seven hours to align with security rules. 
A)  Electronic devices that can record or copy mass amounts of information should be forbidden in secure areas. 
B)  When no one is in a secure area, it should be locked and verified periodically. 
C)  Unsupervised work in secure areas should be avoided. 
D)  No one should be allowed to work in secure areas for more than seven hours to align with security rules.

Unless logs are studied, they are useless.

In, ________ the verifier determines whether the supplicant is a particular person.

A(n) ________ is made of plastic and is approximately the size of a credit or debit card.

During enrollment in a biometric authentication system, step 1 is that the ________.

The labor costs of provisioning are very expensive.

Assigning least permissions means that the system tends to fail safely.

________ refers to accuracy when a supplicant is not trying to deceive the system.

Usernames and passwords are rarely a target for hackers due to the difficulty in cracking them.

It is rarely safe to accept a digital certificate from a supplicant.

Trust means that one directory server will accept information from another.

If a systems administrator assigns access permissions to a group, the accounts of the individual members of that group automatically inherit those permissions.

A(n) ________ is something that represents something else.

Authentication servers communicate with directory servers using ________.

Which of the following is FALSE about log files?

In regard to COBIT, entry must be all of the following EXCEPT ________.

Microsoft's directory server product is called ________.

In a hierarchical database system, O represents and OU represents .

Which of the following passwords is NOT in the top five most common for two real-world data breaches mentioned in the text?

________ occurs if a system will not enroll a user.

Which of the following is NOT one of the rules for working in secure areas?

The Threat Environment

Planning and Policy

Cryptography

Secure Networks

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters

Exam 5: Access Control

Unless logs are studied, they are useless.

In, ________ the verifier determines whether the supplicant is a particular person.

A(n) ________ is made of plastic and is approximately the size of a credit or debit card.

During enrollment in a biometric authentication system, step 1 is that the ________.

The labor costs of provisioning are very expensive.

Assigning least permissions means that the system tends to fail safely.

________ refers to accuracy when a supplicant is not trying to deceive the system.

Usernames and passwords are rarely a target for hackers due to the difficulty in cracking them.

It is rarely safe to accept a digital certificate from a supplicant.

Trust means that one directory server will accept information from another.

If a systems administrator assigns access permissions to a group, the accounts of the individual members of that group automatically inherit those permissions.

A(n) ________ is something that represents something else.

Authentication servers communicate with directory servers using ________.

Which of the following is FALSE about log files?

In regard to COBIT, entry must be all of the following EXCEPT ________.

Microsoft's directory server product is called ________.

In a hierarchical database system, O represents ________ and OU represents ________.

Which of the following passwords is NOT in the top five most common for two real-world data breaches mentioned in the text?

________ occurs if a system will not enroll a user.

Which of the following is NOT one of the rules for working in secure areas?

The Threat Environment

Planning and Policy

Cryptography

Secure Networks

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters

In a hierarchical database system, O represents and OU represents .