problem1. Administrators currently use telnet to remotely manage several servers. Security policy dictates that passwords and administrative activities must not be communicated in clear text. Which of the following is the best alternative to using telnet?
A. DES (Data Encryption Standard)
B. PKI (Public Key Infrastructure)
C. SSH (Secure Shell)
D. S-Telnet
problem2. The goal of TCP (Transmission Control Protocol) hijacking is:
A. identifying the TCP (Transmission Control Protocol) port for future exploitation
B. identifying source addresses for malicious use
C. taking over a legitimate TCP (Transmission Control Protocol) connection
D. predicting the TCP (Transmission Control Protocol) sequence number
problem3. In order for User A to send User B an e-mail message that only User B can read, User A must encrypt the e-mail with which of the following keys?
A. User A's private key
B. User B's private key
C. User A's public key
D. User B's public key
problem4. A block cipher is an ex of which of the following encryption algorithms?
A. symmetric key
B. public key
C. asymmetric key
D. unkeyed
problem5. A need to know security policy would grant access based on:
A. loss of privilege
B. less privilege
C. least privilege
D. single privilege
problem6. What is the major reason that social engineering attacks succeed?
A. multiple logins are allowed
B. lack of security awareness
C. strong passwords are not required
D. audit logs are not monitored frequently
problem7. One purpose of a proxy server is to:
A. translate IP (Internet Protocol) addresses into user friendly names
B. hide the public network from internal hosts
C. use one public IP (Internet Protocol) address on the internal network as a name server
D. hide internal hosts from the public network
problem8. What is the name of an encryption system which uses the same key to encrypt and decrypt a message?
A. Diffie-Hellman
B. IDEA
C. SHA
D. MD5
problem9. The originator of a message derives a hash and encrypts it with its private key. The encrypted hash is attached to the message and forwarded to the remote end. At the remote end, the encrypted hash is decrypted using the originator's public key. If the decrypted hash matches the re-computed hash, the message is genuine. What is being described?
A. The use of a digital signature for origin authentication
B. The incorrect use of a hash
C. Use of digital signature for data encryption
D. Public key encryption for enhanced secrecy of data
problem10. Which access control security model supports the following statement? “If user A has a lower security level than the clearance level of the object, the user has no access to the object.”
A. Discretionary Access Control
B. Role Based Access Control
C. Mandatory Access Control
D. Non-Discretionary Access Control