Question 1

Passwords that are transmitted can be captured by what type of software?

Accepted Answer

A) application analyzer 
B) system analyzer 
C) function analyzer 
D) protocol analyzer 
A) application analyzer 
B) system analyzer 
C) function analyzer 
D) protocol analyzer D

Question 2

Matching
-​A random string that is used in hash algorithms.

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token H

Question 3

Matching
-A password hashing algorithm that requires significantly more time than standard hashing algorithms to create the digest.​

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token F

Question 4

Discuss the types of shortcuts that users take to help them recall their passwords.

Accepted Answer

Because of the burdens that passwords pl

Question 5

Matching
-​Five elements that can prove the genuineness of a user: what you know, what you have, what you are, what you do, and where you are.

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token

Question 6

Discuss the weaknesses of OpenID.

Accepted Answer

One weakness is that OpenID depends on t

Question 7

​Which hashing algorithm below is used with NTLMv2's Hashed Message Authentication Code?

Accepted Answer

A) ​SHA-1 
B) ​SHA-256 
C) ​MD4 
D) ​MD5 
A) ​SHA-1 
B) ​SHA-256 
C) ​MD4 
D) ​MD5

Question 8

​A U.S. Department of Defense (DoD) smart card that is used for identification of active-duty and reserve military personnel along with civilian employees and special contractors is called:

Accepted Answer

A) ​Common Access Card (CA
C)  
B) ​Identity Validation Card (IV
C)  
C) ​Credential Validation Card (CV
C)  
D) ​Personal Credential Card (PC
C)  
A) ​Common Access Card (CA
C)  
B) ​Identity Validation Card (IV
C)  
C) ​Credential Validation Card (CV
C)  
D) ​Personal Credential Card (PC
C)

Question 9

Matching
-​A small device that can be affixed to a keychain with a window display that shows a code to be used for authentication.

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token

Question 10

Matching
-A password attack in which every possible combination of letters, numbers, and characters is used to create encrypted passwords that are matched against those in a stolen password file.​

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token

Question 11

Why do passwords place a heavy load on human memory?

Accepted Answer

First, long and complex passwords (the m

Question 12

Explain how an attacker can use a resetting attack.

Accepted Answer

If an attacker can gain physical access

Question 13

Matching
-A password attack that creates encrypted versions of common dictionary words and compares them against those in a stolen password file.​

Accepted Answer

A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token 
A) Authentication factors 
B) Bcrypt 
C) Brute force attack 
D) Dictionary attack 
E) Hybrid attack
F)Key stretching
G)NTLM (New Technology LAN Manager) hash
H)Salt
I)Single sign-on
J)Token

Question 14

Geolocation is the identification of the location of a person or object using technology, and can be used as part of an authentication method.​

Accepted Answer

A) True 
 B)False

Question 15

Token credentials can be revoked at any time by the user without affecting other token credentials issued to other sites.

Accepted Answer

A) True 
 B)False

Question 16

​A list of the available nonkeyboard characters can be seen in Windows by opening what utility?

Accepted Answer

A) ​charmap.exe 
B) ​charlist.exe 
C) ​chardump.exe 
D) ​listchar.exe 
A) ​charmap.exe 
B) ​charlist.exe 
C) ​chardump.exe 
D) ​listchar.exe

Question 17

The use of a single authentication credential that is shared across multiple networks is called:

Accepted Answer

A) Access management 
B) Authorization management 
C) Identity management 
D) Risk management 
A) Access management 
B) Authorization management 
C) Identity management 
D) Risk management

Question 18

What can be used to increase the strength of hashed passwords?​

Accepted Answer

A) ​Salt 
B) ​Key stretching 
C) ​Double hashing 
D) Crypting 
A) ​Salt 
B) ​Key stretching 
C) ​Double hashing 
D) Crypting

Question 19

What type of attack involves an attacker stealing a file containing password digests and comparing the digests with digests created by the attacker?

Accepted Answer

A) offline cracking 
B) online cracking 
C) hash replay 
D) token replay 
A) offline cracking 
B) online cracking 
C) hash replay 
D) token replay

Question 20

​Select below the decentralized open-source FIM that does not require specific software to be installed on the desktop:

Accepted Answer

A) ​OAuth 
B) ​OpenID 
C) ​Windows Live ID 
D) ​OpenPass 
A) ​OAuth 
B) ​OpenID 
C) ​Windows Live ID 
D) ​OpenPass

Passwords that are transmitted can be captured by what type of software?

Matching -A random string that is used in hash algorithms.

Matching -A password hashing algorithm that requires significantly more time than standard hashing algorithms to create the digest.

Discuss the types of shortcuts that users take to help them recall their passwords.

Matching -Five elements that can prove the genuineness of a user: what you know, what you have, what you are, what you do, and where you are.

Discuss the weaknesses of OpenID.

Which hashing algorithm below is used with NTLMv2's Hashed Message Authentication Code?

A U.S. Department of Defense (DoD) smart card that is used for identification of active-duty and reserve military personnel along with civilian employees and special contractors is called:

Matching -A small device that can be affixed to a keychain with a window display that shows a code to be used for authentication.

Matching -A password attack in which every possible combination of letters, numbers, and characters is used to create encrypted passwords that are matched against those in a stolen password file.

Why do passwords place a heavy load on human memory?

Explain how an attacker can use a resetting attack.

Matching -A password attack that creates encrypted versions of common dictionary words and compares them against those in a stolen password file.

Geolocation is the identification of the location of a person or object using technology, and can be used as part of an authentication method.

Token credentials can be revoked at any time by the user without affecting other token credentials issued to other sites.

A list of the available nonkeyboard characters can be seen in Windows by opening what utility?

The use of a single authentication credential that is shared across multiple networks is called:

What can be used to increase the strength of hashed passwords?

What type of attack involves an attacker stealing a file containing password digests and comparing the digests with digests created by the attacker?

Select below the decentralized open-source FIM that does not require specific software to be installed on the desktop:

Introduction to Security

Malware and Social Engineering Attacks

Application and Networking-Based Attacks

Host, Application, and Data Security

Basic Cryptography

Advanced Cryptography

Network Security

Administering a Secure Network

Wireless Network Security

Mobile Device Security

Access Control Fundamentals

Business Continuity

Risk Mitigation

Vulnerability Assessment and Third Party Integration

Filters

Exam 12: Authentication and Account Management

Passwords that are transmitted can be captured by what type of software?

Matching -​A random string that is used in hash algorithms.

Matching -A password hashing algorithm that requires significantly more time than standard hashing algorithms to create the digest.​

Discuss the types of shortcuts that users take to help them recall their passwords.

Matching -​Five elements that can prove the genuineness of a user: what you know, what you have, what you are, what you do, and where you are.

Discuss the weaknesses of OpenID.

​Which hashing algorithm below is used with NTLMv2's Hashed Message Authentication Code?

​A U.S. Department of Defense (DoD) smart card that is used for identification of active-duty and reserve military personnel along with civilian employees and special contractors is called:

Matching -​A small device that can be affixed to a keychain with a window display that shows a code to be used for authentication.

Matching -A password attack in which every possible combination of letters, numbers, and characters is used to create encrypted passwords that are matched against those in a stolen password file.​

Why do passwords place a heavy load on human memory?

Explain how an attacker can use a resetting attack.

Matching -A password attack that creates encrypted versions of common dictionary words and compares them against those in a stolen password file.​

Geolocation is the identification of the location of a person or object using technology, and can be used as part of an authentication method.​

Token credentials can be revoked at any time by the user without affecting other token credentials issued to other sites.

​A list of the available nonkeyboard characters can be seen in Windows by opening what utility?

The use of a single authentication credential that is shared across multiple networks is called:

What can be used to increase the strength of hashed passwords?​

What type of attack involves an attacker stealing a file containing password digests and comparing the digests with digests created by the attacker?

​Select below the decentralized open-source FIM that does not require specific software to be installed on the desktop:

Introduction to Security

Malware and Social Engineering Attacks

Application and Networking-Based Attacks

Host, Application, and Data Security

Basic Cryptography

Advanced Cryptography

Network Security

Administering a Secure Network

Wireless Network Security

Mobile Device Security

Access Control Fundamentals

Business Continuity

Risk Mitigation

Vulnerability Assessment and Third Party Integration

Filters

Matching -A random string that is used in hash algorithms.

Matching -A password hashing algorithm that requires significantly more time than standard hashing algorithms to create the digest.

Matching -Five elements that can prove the genuineness of a user: what you know, what you have, what you are, what you do, and where you are.

Which hashing algorithm below is used with NTLMv2's Hashed Message Authentication Code?

A U.S. Department of Defense (DoD) smart card that is used for identification of active-duty and reserve military personnel along with civilian employees and special contractors is called:

Matching -A small device that can be affixed to a keychain with a window display that shows a code to be used for authentication.

Matching -A password attack in which every possible combination of letters, numbers, and characters is used to create encrypted passwords that are matched against those in a stolen password file.

Matching -A password attack that creates encrypted versions of common dictionary words and compares them against those in a stolen password file.

Geolocation is the identification of the location of a person or object using technology, and can be used as part of an authentication method.

A list of the available nonkeyboard characters can be seen in Windows by opening what utility?

What can be used to increase the strength of hashed passwords?

Select below the decentralized open-source FIM that does not require specific software to be installed on the desktop: