Question 1

A vulnerable process that is divided between two or more individuals to prevent fraudulent application of the process is known as:

Accepted Answer

A) Separation of duties 
B) Job rotation 
C) Mandatory vacation 
D) Role reversal 
A) Separation of duties 
B) Job rotation 
C) Mandatory vacation 
D) Role reversal

Question 2

To prevent one individual from having too much control, employees can ____________ job responsibilities within their home department or across positions in other departments.

Accepted Answer

The answer of To prevent one individual from having too...

Question 3

Discuss the two significant weaknesses of DAC.

Accepted Answer

DAC has two significant weaknesses. Firs

Question 4

The strength of RADIUS is that messages are always directly sent between the wireless device and the RADIUS server.

Accepted Answer

A) True 
 B)False

Question 5

A shield icon warns users if they attempt to access any feature that requires UAC permission.

Accepted Answer

A) True 
 B)False

Question 6

List two of the most common types of authentication and AA servers.

Accepted Answer

The most common type of authentication a

Question 7

List two major access control models.

Accepted Answer

There are four major access co

Question 8

The X.500 standard defines a protocol for a client application to access an X.500 directory known as which of the following options?

Accepted Answer

A) DIB 
B) DAP 
C) DIT 
D) LDAP 
A) DIB 
B) DAP 
C) DIT 
D) LDAP

Question 9

What authentication service commonly used on UNIX devices involves communicating user authentication information to a centralized server?

Accepted Answer

A) TACACS 
B) RADIUS 
C) Kerberos 
D) FTP 
A) TACACS 
B) RADIUS 
C) Kerberos 
D) FTP

Question 10

The capability to look up information by name under the X.500 standard is known as a(n) ____________________-pages service.

Accepted Answer

The answer of The capability to look up information by...

Question 11

Describe LDAP injection attacks.

Accepted Answer

A weakness of LDAP is that it can be sub

Question 12

Authorization and access are viewed as synonymous and in access control, they are the same step.

Accepted Answer

A) True 
 B)False

Question 13

What kind of attack allows for the construction of LDAP statements based on user input statements, which can then be used to access the LDAP database or modify the database's information?

Accepted Answer

A) LDAP poisoning 
B) Kerberos injection 
C) LDAP injection 
D) DAP hijacking 
A) LDAP poisoning 
B) Kerberos injection 
C) LDAP injection 
D) DAP hijacking

Question 14

Matching
-The act of moving individuals from one job responsibility to another.​

Accepted Answer

A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction 
A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction

Question 15

Describe the Bell-LaPadula model.

Accepted Answer

Although this model is very similar to t

Question 16

What access control model below is considered to be the most restrictive access control model, and involves assigning access controls to users strictly according to the custodian?

Accepted Answer

A) Mandatory Access Control 
B) Role Based Access Control 
C) Discretionary Access Control 
D) Rule Based Access Control 
A) Mandatory Access Control 
B) Role Based Access Control 
C) Discretionary Access Control 
D) Rule Based Access Control

Question 17

Matching
-The second version of the Terminal Access Control Access Control System (TACACS) authentication service.​

Accepted Answer

A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction 
A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction

Question 18

Matching
-The least restrictive access control model in which the owner of the object has total control over it.​

Accepted Answer

A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction 
A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction

Question 19

Matching
-​The process of setting a user's account to expire

Accepted Answer

A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction 
A) Account expiration 
B) Discretionary access control (DA
C)  
C) Extended TACACS (XTACACS) 
D) Job rotation 
E) LDAP injection attack
F)Least privilege
G)Mandatory access control (MA
C) 
H)Separation of duties
I)TACACS+
J)Time-of-day restriction

Question 20

Discuss the differences between DAP and LDAP.

Accepted Answer

Unlike X.500 DAP, LDAP was designed to r

A vulnerable process that is divided between two or more individuals to prevent fraudulent application of the process is known as:

To prevent one individual from having too much control, employees can ____________ job responsibilities within their home department or across positions in other departments.

Discuss the two significant weaknesses of DAC.

The strength of RADIUS is that messages are always directly sent between the wireless device and the RADIUS server.

A shield icon warns users if they attempt to access any feature that requires UAC permission.

List two of the most common types of authentication and AA servers.

List two major access control models.

The X.500 standard defines a protocol for a client application to access an X.500 directory known as which of the following options?

What authentication service commonly used on UNIX devices involves communicating user authentication information to a centralized server?

The capability to look up information by name under the X.500 standard is known as a(n) ____________________-pages service.

Describe LDAP injection attacks.

Authorization and access are viewed as synonymous and in access control, they are the same step.

What kind of attack allows for the construction of LDAP statements based on user input statements, which can then be used to access the LDAP database or modify the database's information?

Matching -The act of moving individuals from one job responsibility to another.

Describe the Bell-LaPadula model.

What access control model below is considered to be the most restrictive access control model, and involves assigning access controls to users strictly according to the custodian?

Matching -The second version of the Terminal Access Control Access Control System (TACACS) authentication service.

Matching -The least restrictive access control model in which the owner of the object has total control over it.

Matching -The process of setting a user's account to expire

Discuss the differences between DAP and LDAP.

Introduction to Security

Malware and Social Engineering Attacks

Application and Networking-Based Attacks

Host, Application, and Data Security

Basic Cryptography

Advanced Cryptography

Network Security

Administering a Secure Network

Wireless Network Security

Mobile Device Security

Authentication and Account Management

Business Continuity

Risk Mitigation

Vulnerability Assessment and Third Party Integration

Filters

Exam 11: Access Control Fundamentals

A vulnerable process that is divided between two or more individuals to prevent fraudulent application of the process is known as:

To prevent one individual from having too much control, employees can ____________ job responsibilities within their home department or across positions in other departments.

Discuss the two significant weaknesses of DAC.

The strength of RADIUS is that messages are always directly sent between the wireless device and the RADIUS server.

A shield icon warns users if they attempt to access any feature that requires UAC permission.

List two of the most common types of authentication and AA servers.

List two major access control models.

The X.500 standard defines a protocol for a client application to access an X.500 directory known as which of the following options?

What authentication service commonly used on UNIX devices involves communicating user authentication information to a centralized server?

The capability to look up information by name under the X.500 standard is known as a(n) ____________________-pages service.

Describe LDAP injection attacks.

Authorization and access are viewed as synonymous and in access control, they are the same step.

What kind of attack allows for the construction of LDAP statements based on user input statements, which can then be used to access the LDAP database or modify the database's information?

Matching -The act of moving individuals from one job responsibility to another.​

Describe the Bell-LaPadula model.

What access control model below is considered to be the most restrictive access control model, and involves assigning access controls to users strictly according to the custodian?

Matching -The second version of the Terminal Access Control Access Control System (TACACS) authentication service.​

Matching -The least restrictive access control model in which the owner of the object has total control over it.​

Matching -​The process of setting a user's account to expire

Discuss the differences between DAP and LDAP.

Introduction to Security

Malware and Social Engineering Attacks

Application and Networking-Based Attacks

Host, Application, and Data Security

Basic Cryptography

Advanced Cryptography

Network Security

Administering a Secure Network

Wireless Network Security

Mobile Device Security

Authentication and Account Management

Business Continuity

Risk Mitigation

Vulnerability Assessment and Third Party Integration

Filters

Matching -The act of moving individuals from one job responsibility to another.

Matching -The second version of the Terminal Access Control Access Control System (TACACS) authentication service.

Matching -The least restrictive access control model in which the owner of the object has total control over it.

Matching -The process of setting a user's account to expire