Question 1

Traditionally,we have told users that passwords ________.

Accepted Answer

A)  should have a mix of characters (uppercase and lowercase letters, digits, other keyboard characters) 
B)  should be easy to remember 
C)  both A and B 
D)  neither A nor B 
A)  should have a mix of characters (uppercase and lowercase letters, digits, other keyboard characters) 
B)  should be easy to remember 
C)  both A and B 
D)  neither A nor B

Question 2

In a DDoS attack,a ________ sends messages directly to the victim.

Accepted Answer

A)  botmaster 
B)  bot 
C)  command and control server 
D)  all of the above 
A)  botmaster 
B)  bot 
C)  command and control server 
D)  all of the above

Question 3

In distributed DoS attacks,the attacker sends messages directly to ________.

Accepted Answer

A)  bots 
B)  the intended victim of the DoS attack 
C)  a DOS server 
D)  none of the above 
A)  bots 
B)  the intended victim of the DoS attack 
C)  a DOS server 
D)  none of the above

Question 4

The supplicant is ________.

Accepted Answer

A)  the true party 
B)  an impostor 
C)  either A or B 
D)  neither A nor B 
A)  the true party 
B)  an impostor 
C)  either A or B 
D)  neither A nor B

Question 5

Authentication should generally be ________.

Accepted Answer

A)  as strong as possible 
B)  appropriate for a specific resource 
C)  the same for all resources 
D)  different for every different resource 
A)  as strong as possible 
B)  appropriate for a specific resource 
C)  the same for all resources 
D)  different for every different resource

Question 6

Trojan horses can spread by ________.

Accepted Answer

A)  e-mailing themselves to victim computers 
B)  directly propagating to victim computers 
C)  both A and B 
D)  neither A nor B 
A)  e-mailing themselves to victim computers 
B)  directly propagating to victim computers 
C)  both A and B 
D)  neither A nor B

Question 7

Advanced persistent threats are ________.

Accepted Answer

A)  inexpensive for the attacker 
B)  extremely dangerous for the victim 
C)  both A and B 
D)  neither A nor B 
A)  inexpensive for the attacker 
B)  extremely dangerous for the victim 
C)  both A and B 
D)  neither A nor B

Question 8

In general,what should an employer do whenever an employee leaves the firm?

Accepted Answer

A)  Their accounts should be disabled instantly 
B)  They should be given no prior notice that they are being released 
C)  both A and B 
D)  neither A nor B 
A)  Their accounts should be disabled instantly 
B)  They should be given no prior notice that they are being released 
C)  both A and B 
D)  neither A nor B

Question 9

In which type of attack does the attacker gather extensive sensitive personal information about its victim?

Accepted Answer

A)  identity theft 
B)  credit card number theft 
C)  both A and B 
D)  neither A nor B 
A)  identity theft 
B)  credit card number theft 
C)  both A and B 
D)  neither A nor B

Question 10

The supplicant claims to be ________.

Accepted Answer

A)  the true party 
B)  an impostor 
C)  either A or B 
D)  neither A nor B 
A)  the true party 
B)  an impostor 
C)  either A or B 
D)  neither A nor B

Question 11

Facial recognition is controversial because ________.

Accepted Answer

A)  it can be fooled very easily 
B)  it can be used surreptitiously 
C)  both A and B 
D)  neither A nor B 
A)  it can be fooled very easily 
B)  it can be used surreptitiously 
C)  both A and B 
D)  neither A nor B

Question 12

In encryption,what must be kept secret?

Accepted Answer

A)  the cipher 
B)  the key 
C)  both A and B 
D)  neither A nor B 
A)  the cipher 
B)  the key 
C)  both A and B 
D)  neither A nor B

Question 13

In a ________ attack,the attacker encrypts some or all of the victim's hard drive.

Accepted Answer

A)  virus 
B)  DoS 
C)  ransom 
D)  lock 
A)  virus 
B)  DoS 
C)  ransom 
D)  lock

Question 14

Who are the most dangerous types of employees?

Accepted Answer

A)  financial employees 
B)  manufacturing employees 
C)  IT security employees 
D)  former employees 
A)  financial employees 
B)  manufacturing employees 
C)  IT security employees 
D)  former employees

Question 15

A firewall will drop a packet if it ________.

Accepted Answer

A)  is a definite attack packet 
B)  is a highly probable attack packet 
C)  both A and B 
D)  neither A nor B 
A)  is a definite attack packet 
B)  is a highly probable attack packet 
C)  both A and B 
D)  neither A nor B

Question 16

NGFWs ________.

Accepted Answer

A)  can implement different rules for different applications 
B)  base server decisions on port numbers 
C)  both A and B 
D)  neither A nor B 
A)  can implement different rules for different applications 
B)  base server decisions on port numbers 
C)  both A and B 
D)  neither A nor B

Question 17

Antivirus programs are designed to detect ________.

Accepted Answer

A)  viruses 
B)  worms 
C)  both A and B 
D)  neither A nor B 
A)  viruses 
B)  worms 
C)  both A and B 
D)  neither A nor B

Question 18

For reusable passwords,NIST now recommends ________.

Accepted Answer

A)  that passwords be easy to remember 
B)  that passwords be long phrases instead of being about 8-12 characters long 
C)  both A and B 
D)  neither A nor B 
A)  that passwords be easy to remember 
B)  that passwords be long phrases instead of being about 8-12 characters long 
C)  both A and B 
D)  neither A nor B

Question 19

For sensitive assets,reusable passwords ________.

Accepted Answer

A)  should be especially long 
B)  should contain a truly complex mixture of characters 
C)  should be difficult to remember 
D)  should not be used 
A)  should be especially long 
B)  should contain a truly complex mixture of characters 
C)  should be difficult to remember 
D)  should not be used

Question 20

In an SPI firewall,all rules except the last will permit the connection.The last will ________.

Accepted Answer

A)  also permit the connection 
B)  deny the connection 
C)  either A or B 
D)  none of the above 
A)  also permit the connection 
B)  deny the connection 
C)  either A or B 
D)  none of the above

Traditionally,we have told users that passwords ________.

In a DDoS attack,a ________ sends messages directly to the victim.

In distributed DoS attacks,the attacker sends messages directly to ________.

The supplicant is ________.

Authentication should generally be ________.

Trojan horses can spread by ________.

Advanced persistent threats are ________.

In general,what should an employer do whenever an employee leaves the firm?

In which type of attack does the attacker gather extensive sensitive personal information about its victim?

The supplicant claims to be ________.

Facial recognition is controversial because ________.

In encryption,what must be kept secret?

In a ________ attack,the attacker encrypts some or all of the victim's hard drive.

Who are the most dangerous types of employees?

A firewall will drop a packet if it ________.

NGFWs ________.

Antivirus programs are designed to detect ________.

For reusable passwords,NIST now recommends ________.

For sensitive assets,reusable passwords ________.

In an SPI firewall,all rules except the last will permit the connection.The last will ________.

Core Network Concepts and Terminology

Network Standards

Network Management

Ethernet 802.3switched Lans

Wireless Lans I

Wireless Lans II

TCP/IP Internetworking I

TCP/IP Internetworking II

Carrier Wide Area Networks Wans

Networked Applications

Appendix: Managing the Security Process

Filters

Exam 4: Network Security

Traditionally,we have told users that passwords ________.

In a DDoS attack,a ________ sends messages directly to the victim.

In distributed DoS attacks,the attacker sends messages directly to ________.

The supplicant is ________.

Authentication should generally be ________.

Trojan horses can spread by ________.

Advanced persistent threats are ________.

In general,what should an employer do whenever an employee leaves the firm?

In which type of attack does the attacker gather extensive sensitive personal information about its victim?

The supplicant claims to be ________.

Facial recognition is controversial because ________.

In encryption,what must be kept secret?

In a ________ attack,the attacker encrypts some or all of the victim's hard drive.

Who are the most dangerous types of employees?

A firewall will drop a packet if it ________.

NGFWs ________.

Antivirus programs are designed to detect ________.

For reusable passwords,NIST now recommends ________.

For sensitive assets,reusable passwords ________.

In an SPI firewall,all rules except the last will permit the connection.The last will ________.

Core Network Concepts and Terminology

Network Standards

Network Management

Ethernet 802.3switched Lans

Wireless Lans I

Wireless Lans II

TCP/IP Internetworking I

TCP/IP Internetworking II

Carrier Wide Area Networks Wans

Networked Applications

Appendix: Managing the Security Process

Filters