Question 1

DoS attackers generally use fake source IP addresses, making it harder to identify the DoS messages.

Accepted Answer

A) True 
 B)False

Question 2

_______________ describes how an asset can be compromised by one specific threat.

Accepted Answer

A) Threat scenarios 
B) Threat plans 
C) Threat hacks 
D) Threat contingencies 
E) Threat attacks 
A) Threat scenarios 
B) Threat plans 
C) Threat hacks 
D) Threat contingencies 
E) Threat attacks

Question 3

A certificate authority is a trusted organization that can vouch for the authenticity of a person or organization.

Accepted Answer

A) True 
 B)False

Question 4

Some people think that CERT's posting of security alerts causes more break ins than it prevents.What are the pros and cons of this argument? Do you think CERT should continue to post security holes?

Accepted Answer

The argument that CERT's posting of secu

Question 5

A __________ is a router or special purpose computer that examines packets flowing into and out of a network and restricts access to the organization's network.

Accepted Answer

A) firewall 
B) token system 
C) ANI 
D) call-back modem 
E) firefighter 
A) firewall 
B) token system 
C) ANI 
D) call-back modem 
E) firefighter

Question 6

An) _________ is a type of application level firewall that is transparent so that no other computer notices that it is on the network.

Accepted Answer

A) ANI system 
B) NAT firewall 
C) IP spoofing bridge 
D) packet level firewall 
E) smart hub 
A) ANI system 
B) NAT firewall 
C) IP spoofing bridge 
D) packet level firewall 
E) smart hub

Question 7

We can calculate the relative ___________, by multiplying the impact score by the likelihood.

Accepted Answer

A) rootkit 
B) authentication 
C) risk score 
D) risk assessment 
E) risk event 
A) rootkit 
B) authentication 
C) risk score 
D) risk assessment 
E) risk event

Question 8

An intruder uses TCP spoofing to send packets to a target computer requesting certain privileges be granted to some user.

Accepted Answer

A) True 
 B)False

Question 9

Which of the following is not a method for deterring intrusion?

Accepted Answer

A) training end users not to divulge passwords 
B) using a smart card in conjunction with a password to gain access to a computer system 
C) using biometric devices to gain access to a computer system 
D) using a security software package that logs out users if that user is 'idle' for a certain amount of time 
E) performing social engineering 
A) training end users not to divulge passwords 
B) using a smart card in conjunction with a password to gain access to a computer system 
C) using biometric devices to gain access to a computer system 
D) using a security software package that logs out users if that user is 'idle' for a certain amount of time 
E) performing social engineering

Question 10

The most common access point used by attackers to gain access to an organization's network is the dial-up access via a modem.

Accepted Answer

A) True 
 B)False

Question 11

Controls are mechanisms that reduce or eliminate threats to network security.

Accepted Answer

A) True 
 B)False

Question 12

What are the most important servers to protect on a network and why?

Accepted Answer

The most important servers to protect on

Question 13

The most common authentication protocol used today is Kerberos.

Accepted Answer

A) True 
 B)False

Question 14

Preventive controls mitigate or stop a person from acting or an event from occurring.

Accepted Answer

A) True 
 B)False

Question 15

An asset can be compromised by more than one threat, so it is common to have more than one threat scenario for each asset.

Accepted Answer

A) True 
 B)False

Question 16

An) ____________, is an information system that is critical to the survival of an organization.

Accepted Answer

A) network plan 
B) accounting system 
C) IDS 
D) mission critical application 
E) firewall 
A) network plan 
B) accounting system 
C) IDS 
D) mission critical application 
E) firewall

Question 17

Developing _______ helps develop a secure network.

Accepted Answer

A) rules 
B) controls 
C) network maps 
D) vendor documentation 
E) service level agreements 
A) rules 
B) controls 
C) network maps 
D) vendor documentation 
E) service level agreements

Question 18

Encryption is the process of:

Accepted Answer

A) transmission of information over secure lines in analog form to prevent illegal access 
B) detecting errors in messages by means of mathematical rules 
C) correcting errors in message by means of mathematical rules 
D) disguising information by the use of mathematical rules, known as algorithms 
E) preventing errors in messages by means of logical rules 
A) transmission of information over secure lines in analog form to prevent illegal access 
B) detecting errors in messages by means of mathematical rules 
C) correcting errors in message by means of mathematical rules 
D) disguising information by the use of mathematical rules, known as algorithms 
E) preventing errors in messages by means of logical rules

Question 19

An) _________ is something of value and can be either hardware or software.

Accepted Answer

A) asset 
B) service level agreement 
C) threat 
D) security plan 
E) network design 
A) asset 
B) service level agreement 
C) threat 
D) security plan 
E) network design

Question 20

A way to prevent intrusion by disguising information through algorithms is:

Accepted Answer

A) spoofing 
B) call-back access 
C) encryption 
D) disk elevatoring 
E) disk mirroring 
A) spoofing 
B) call-back access 
C) encryption 
D) disk elevatoring 
E) disk mirroring

DoS attackers generally use fake source IP addresses, making it harder to identify the DoS messages.

_______________ describes how an asset can be compromised by one specific threat.

A certificate authority is a trusted organization that can vouch for the authenticity of a person or organization.

Some people think that CERT's posting of security alerts causes more break ins than it prevents.What are the pros and cons of this argument? Do you think CERT should continue to post security holes?

A __________ is a router or special purpose computer that examines packets flowing into and out of a network and restricts access to the organization's network.

An) _________ is a type of application level firewall that is transparent so that no other computer notices that it is on the network.

We can calculate the relative ___________, by multiplying the impact score by the likelihood.

An intruder uses TCP spoofing to send packets to a target computer requesting certain privileges be granted to some user.

Which of the following is not a method for deterring intrusion?

The most common access point used by attackers to gain access to an organization's network is the dial-up access via a modem.

Controls are mechanisms that reduce or eliminate threats to network security.

What are the most important servers to protect on a network and why?

The most common authentication protocol used today is Kerberos.

Preventive controls mitigate or stop a person from acting or an event from occurring.

An asset can be compromised by more than one threat, so it is common to have more than one threat scenario for each asset.

An) ____________, is an information system that is critical to the survival of an organization.

Developing _______ helps develop a secure network.

Encryption is the process of:

An) _________ is something of value and can be either hardware or software.

A way to prevent intrusion by disguising information through algorithms is:

Introduction to Data Communications

Application Layer

Physical Layer

Data Link Layer

Network and Transport Layers

Network Design

Wired and Wireless Local Area Networks

Backbone Networks

Wide Area Networks

The Internet

Network Management

Filters

Exam 11: Network Security

DoS attackers generally use fake source IP addresses, making it harder to identify the DoS messages.

_______________ describes how an asset can be compromised by one specific threat.

A certificate authority is a trusted organization that can vouch for the authenticity of a person or organization.

Some people think that CERT's posting of security alerts causes more break ins than it prevents.What are the pros and cons of this argument? Do you think CERT should continue to post security holes?

A __________ is a router or special purpose computer that examines packets flowing into and out of a network and restricts access to the organization's network.

An) _________ is a type of application level firewall that is transparent so that no other computer notices that it is on the network.

We can calculate the relative ___________, by multiplying the impact score by the likelihood.

An intruder uses TCP spoofing to send packets to a target computer requesting certain privileges be granted to some user.

Which of the following is not a method for deterring intrusion?

The most common access point used by attackers to gain access to an organization's network is the dial-up access via a modem.

Controls are mechanisms that reduce or eliminate threats to network security.

What are the most important servers to protect on a network and why?

The most common authentication protocol used today is Kerberos.

Preventive controls mitigate or stop a person from acting or an event from occurring.

An asset can be compromised by more than one threat, so it is common to have more than one threat scenario for each asset.

An) ____________, is an information system that is critical to the survival of an organization.

Developing _______ helps develop a secure network.

Encryption is the process of:

An) _________ is something of value and can be either hardware or software.

A way to prevent intrusion by disguising information through algorithms is:

Introduction to Data Communications

Application Layer

Physical Layer

Data Link Layer

Network and Transport Layers

Network Design

Wired and Wireless Local Area Networks

Backbone Networks

Wide Area Networks

The Internet

Network Management

Filters