0 [{"id":412051,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which design concept limits access to systems from outside users while protecting\r\nusers and systems inside the LAN?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":6,"explanation":"Demilitarized zone (DMZ) structures act as a buffer zone between the Internet and\r\nan intranet, establishing a protected barrier. DMZs also allow for the placement of\r\npublicly accessible resources such as web servers in a semi-secure area.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412049,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"What type of exercise is conducted with full knowledge of the target environment?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":4,"explanation":"White-box testing is done with full knowledge of the target environment. Black-box\r\ntesting is done with very little or no information. Gray box is performed with limited\r\ninformation somewhere between black and white.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412052,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"In the key recovery process, which key must be recoverable?","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":7,"explanation":"The escrow key is a key held by a third party used to perform cryptographic\r\noperations.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412047,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which of the following is a mechanism for managing digital certificates through a\r\nsystem of trust?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":2,"explanation":"Public-key infrastructure (PKI) is a system designed to control the distribution of\r\nkeys and management of digital certificates.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412053,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which kind of attack is designed to overload a system or resource, taking it\r\ntemporarily or permanently offline?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":8,"explanation":"SYN floods are a form of denial of service (DoS). Attacks of this type are designed to\r\noverwhelm a resource for a period of time.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412057,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which mechanism is used by PKI to allow immediate verification of a certificate\u2019s validity?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":12,"explanation":"The Online Certificate Status Protocol (OCSP) is used to allow immediate verification of certificates\u2019 validity as opposed to the older certificate revocation list (CRL) method, which allows for lags in detection.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412055,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"What is the process of making an operating system secure from attack called?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":10,"explanation":"Hardening is designed to remove nonessential services, applications, and other items from a system with the intent of making it fit a specific role as well as reducing its attack surface.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412056,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"The integrity component provides which feature of the CIA triad?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":11,"explanation":"Integrity ensures that information is kept reliable and accurate and also allows a party to examine the information to detect a change.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412054,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which component of an NIDS collects data?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":9,"explanation":"Sensors can be placed in different locations around a network with the intention of collecting information and returning it to a central location for analysis and viewing.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412048,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which protocol is used to create a secure environment in a wireless network?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":3,"explanation":"Wi-Fi Protected Access (WPA) is designed to protect wireless transmissions.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412050,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"You want to establish a network connection between two LANs using the Internet.\r\nWhich technology would best accomplish that for you?","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":5,"explanation":"Layer 2 Tunneling Protocol (L2TP) is a VPN technology used to establish secure\r\nconnections over an insecure medium such as the Internet.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412058,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"Which of the following is used to create a VLAN from a physical security perspective?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":13,"explanation":"A switch allows for the creation of VLANs.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412046,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"What kind of physical access device restricts access to a single individual at any one\r\ntime?\r","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":1,"explanation":"Mantraps are phone booth\u2013sized devices designed to prevent activities such as\r\npiggybacking and tailgating.","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412045,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"What is the focus of a security audit or vulnerability assessment?","questionTimeSeconds":"0","questionTimeMinutes":"1","questionImagePath":null,"position":0,"explanation":" A vulnerability assessment is focused on uncovering vulnerabilities or weaknesses\ufeff in an environment but by definition does not exploit those vulnerabilities","question_score_id":null,"lang":null,"questionAudioPath":null},{"id":412059,"quiz_id":"20924","answer_id":null,"answerType_id":"0","created_at":"2018-03-20 20:19:00","updated_at":"2018-03-20 22:11:11","questionName":"A user has just reported that he downloaded a file from a prospective client using IM. The user indicates that the file was called account.doc. The system has been behaving unusually since he downloaded the file. What is the most likely event that occurred?","questionTimeSeconds":"0","questionTimeMinutes":"2","questionImagePath":null,"position":14,"explanation":"The file is a Microsoft Word file and as such can have VBA macros embedded into it that can be used to deliver macro viruses.","question_score_id":null,"lang":null,"questionAudioPath":null}]

block

Which design concept limits access to systems from outside users while protecting users and systems inside the LAN?

Select the correct answer(s).  

(0/0)

Explanation

Demilitarized zone (DMZ) structures act as a buffer zone between the Internet and an intranet, establishing a protected barrier. DMZs also allow for the placement of publicly accessible resources such as web servers in a semi-secure area.

---

DMZ

I&A

VLAN

Router

none

What type of exercise is conducted with full knowledge of the target environment?

Select the correct answer(s).  

(0/0)

Explanation

White-box testing is done with full knowledge of the target environment. Black-box testing is done with very little or no information. Gray box is performed with limited information somewhere between black and white.

---

Gray box

Glass box

White box

Black box

none

In the key recovery process, which key must be recoverable?

Select the correct answer(s).  

(0/0)

Explanation

The escrow key is a key held by a third party used to perform cryptographic operations.

---

Previous key

Escrow key

Secret key

Rollover key

none

Which of the following is a mechanism for managing digital certificates through a system of trust?

Select the correct answer(s).  

(0/0)

Explanation

Public-key infrastructure (PKI) is a system designed to control the distribution of keys and management of digital certificates.

---

SSL

ISA

PKI

PKCS

none

Which kind of attack is designed to overload a system or resource, taking it temporarily or permanently offline?

Select the correct answer(s).  

(0/0)

Explanation

SYN floods are a form of denial of service (DoS). Attacks of this type are designed to overwhelm a resource for a period of time.

---

Man in the middle

SYN flood

Spoofing

Trojan

none

Which mechanism is used by PKI to allow immediate verification of a certificate’s validity?

Select the correct answer(s).  

(0/0)

Explanation

The Online Certificate Status Protocol (OCSP) is used to allow immediate verification of certificates’ validity as opposed to the older certificate revocation list (CRL) method, which allows for lags in detection.

---

CRL

MD5

OCSP

SSHA

none

What is the process of making an operating system secure from attack called?

Select the correct answer(s).  

(0/0)

Explanation

Hardening is designed to remove nonessential services, applications, and other items from a system with the intent of making it fit a specific role as well as reducing its attack surface.

---

Tuning

Locking down

Hardening

Sealing

none

The integrity component provides which feature of the CIA triad?

Select the correct answer(s).  

(0/0)

Explanation

Integrity ensures that information is kept reliable and accurate and also allows a party to examine the information to detect a change.

---

Verification that information is accurate

Verification that ethics are properly maintained

Establishment of clear access control of data

Verification that data is kept private and secure

none

Which component of an NIDS collects data?

Select the correct answer(s).  

(0/0)

Explanation

Sensors can be placed in different locations around a network with the intention of collecting information and returning it to a central location for analysis and viewing.

---

Sensor

Data source

Event

Analyzer

none

Which protocol is used to create a secure environment in a wireless network?

Select the correct answer(s).  

(0/0)

Explanation

Wi-Fi Protected Access (WPA) is designed to protect wireless transmissions.

---

WPA

WTLS

WAP

WML

none

You want to establish a network connection between two LANs using the Internet. Which technology would best accomplish that for you?

Select the correct answer(s).  

(0/0)

Explanation

Layer 2 Tunneling Protocol (L2TP) is a VPN technology used to establish secure connections over an insecure medium such as the Internet.

---

PPP

IPSec

SLIP

L2TP

none

Which of the following is used to create a VLAN from a physical security perspective?

Select the correct answer(s).  

(0/0)

Explanation

A switch allows for the creation of VLANs.

---

Switch

Hub

Router

Firewall

none

What kind of physical access device restricts access to a single individual at any one time?

Select the correct answer(s).  

(0/0)

Explanation

Mantraps are phone booth–sized devices designed to prevent activities such as piggybacking and tailgating.

---

Checkpoint

Mantrap

Security zones

Perimeter security

none

What is the focus of a security audit or vulnerability assessment?

Select the correct answer(s).  

(0/0)

Explanation

A vulnerability assessment is focused on uncovering vulnerabilities or weaknesses in an environment but by definition does not exploit those vulnerabilities

---

Enacting threats

Exploiting vulnerabilities

Locating vulnerabilities

Locating threats

none

A user has just reported that he downloaded a file from a prospective client using IM. The user indicates that the file was called account.doc. The system has been behaving unusually since he downloaded the file. What is the most likely event that occurred?

Select the correct answer(s).  

(0/0)

Explanation

The file is a Microsoft Word file and as such can have VBA macros embedded into it that can be used to deliver macro viruses.

---

Your user may have accidently changed a setting on the system.

The system is unstable due to the use of IM

Your user inadvertently downloaded a macro virus using IM

Your user may have downloaded a rootkit