| 1. | What is the process of transforming information (plaintext or cleartext) using an algorithm (called cipher) to make it unreadable to anyone else except those that know the cipher and key?
 | A. | Decryption | | B. | Encryption | | C. | Topping | | D. | Rights management |
|
| 2. | What is a digital code that can be attached to an electronically transmitted message that uniquely identifies the sender?
| A. | Digital envelope | | B. | Digital signature | | C. | Digital certificate | | D. | Certificate authority |
|
| 3. | Which of the following is used primarily to verify the identity of a person or device, authenticate a service, or encrypt files?
| A. | Digital envelope | | B. | Digital signature | | C. | Digital certificate | | D. | Certificate authority |
|
| 4. | What is the entity that issues digital certificates for use by other parties as part of a public key infrastructure (PKI)?
| A. | Digital envelope | | B. | Digital signature | | C. | Digital certificate | | D. | Certificate authority |
|
| 5. | Which type of encryption uses a single key for both encryption and decryption?
| A. | Symmetric cryptography | | B. | Asymmetric cryptography | | C. | Hash function | | D. | Certificate encryption |
|
| 6. | Which type of encryption uses one key for encryption and another key for decryption?
| A. | Symmetric cryptography | | B. | Asymmetric cryptography | | C. | Hash function | | D. | Certificate encryption |
|
| 7. | What is the most widely used digital certificate?
| A. | X.400 | | B. | X.200 | | C. | X.509 | | D. | LDAP |
|
| 8. | What protocol is used to encrypt data being sent over a public network?
| A. | HTTP | | B. | Stateful firewall | | C. | EFS | | D. | IPsec |
|
| 9. | Which of the following can be used to authenticate and encrypt IP (Internet Protocol) traffic?
| A. | ESP (Encapsulating Security Payload) | | B. | S/MIME (Secure Multipurpose Internet Mail Extensions) | | C. | IPsec (Internet Protocol Security) | | D. | IPv2 (Internet Protocol version 2) |
|
| 10. | Your company wants to inexpensively create more secure communications between its remote offices. What is the best recommendation that you can make to management to accomplish this?
| A. | Implement Remote Access Service (RAS) and modems at each office | | B. | Encrypt all communications using the MS-CHAP protocol | | C. | Use VoIP communications | | D. | Implement a VPN that connects all the offices |
|
| 11. | You are ready to donate your corporate computers to charity. What should you do before you donate your computers?
| A. | Wipe your hard drives with special software that overwrites the entire hard drive multiple times | | B. | Remove your excess RAM | | C. | Format the RAM | | D. | Replace the CMOS battery |
|
| 12. | What is one way to completely remove data from a hard disk drive?
| A. | Partition and completely reformat the drive | | B. | Reinstall the operating system over the existing OS structure | | C. | Delete all the files on the drive and perform a disk defrag operation | | D. | Physically destroy the drive’s platters with a hammer or acid |
|
| 13. | What is one way to completely remove data from a hard disk drive?
| A. | Reformat the drive | | B. | Perform a low-level format | | C. | Run the chkdsk command with the –r option | | D. | Run a defrag |
|
| 14. | What is one way to completely remove data from a hard disk drive?
| A. | Reformat the drive with Disk Manager | | B. | Use special software to write 0s and 1s | | C. | Delete and re-create the partitions | | D. | Reformat the drive with the format command and the /u option |
|
| 15. | What software, hardware device, or system is designed to prevent unauthorized access to or from a private network or computer?
| A. | Firewall | | B. | Certificate server | | C. | AES | | D. | EFS |
|
| 16. | Which firewall feature blocks a packet based on a protocol?
| A. | Packet filtering | | B. | Stateful filtering | | C. | Stateless filtering | | D. | Signature blocking |
|
| 17. | Which firewall feature blocks a packet based on previous conversations or packets?
| A. | Packet filtering | | B. | Stateful filtering | | C. | Stateless filtering | | D. | Signature blocking |
|
| 18. | Which software included with Windows Vista will automatically block most network services unless it is configured to allow those network services to proceed?
| A. | Windows Defender | | B. | Chkdsk | | C. | Scandisk | | D. | Windows Firewall |
|
| 19. | You have a computer that is part of the corporate domain. You frequently work from home and travel. Which of the following are two wireless security policy items that you should implement to safeguard your data? (Select two.)
| A. | Use an IPSec VPN for remote connectivity | | B. | Use an HTTPS captive portal | | C. | Use a personal firewall on this laptop | | D. | Use a protocol analyzer on this laptop to sniff WLAN traffic for risks | | E. | Use 802.1X/PEAPv0 to connect to the office network |
|
| 20. | You have a Windows XP computer with SP3. You start a network service, but it cannot communicate with a server. What should you do?
| A. | Stop and restart the service | | B. | Uninstall Service Pack 3 | | C. | Add the port number and name of the service to the Exceptions list in Windows Firewall | | D. | Reboot the computer |
|
| 21. | Which of the following terms best defines the ability to verify the identity of a user, system, or system element?
| A. | Encryption | | B. | Hashing | | C. | Authentication | | D. | Authorization |
|
| 22. | What is the default authentication method for Windows XP connected to a domain?
| A. | Username and password | | B. | Username and PIN | | C. | Username and finger scan | | D. | Username and smart card |
|
| 23. | Which of the following would be considered a strong password?
| A. | Tsr.34PR | | B. | Password | | C. | John.Smith | | D. | HelloThere |
|
| 24. | For which of the following can biometrics be used?
| A. | Accountability | | B. | Certification | | C. | Authorization | | D. | Authentication |
|
| 25. | Which of the following is not a form of biometrics?
| A. | Finger scan | | B. | Retina scan | | C. | Voice recognition | | D. | PIN |
|
| 26. | Which of the following statements are true? (Choose two answers.)
| A. | You should always use strong passwords. | | B. | You should change your password often. | | C. | You should choose passwords that are easy to remember. | | D. | You should change usernames from time to time. |
|
| 27. | What security service is provided by using a smart card containing a private key when you log onto a workstation?
| A. | Authentication | | B. | Confidentiality | | C. | Integrity | | D. | Non-repudiation |
|
| 28. | One of your customers has research work on his notebook PC that he wants to protect. In the event that the notebook is stolen, he wants more authentication than a simple user name and password login for his PC. What can you recommend that will be easy to implement, will be cost effective, and will adequately protect the information on his notebook?
| A. | Employ an encryption algorithm for login | | B. | Install a retinal scanner on the PC | | C. | Employ a Shared Secret login scenario | | D. | Install a fingerprint scanner on the notebook |
|
| 29. | What type of authentication provides an additional layer of security when memorized passwords are not strong enough?
| A. | Mutual | | B. | Multi-factor | | C. | Biometric | | D. | Certificate |
|
| 30. | Why do social engineering attacks often succeed?
| A. | Strong passwords are not required. | | B. | There is a lack of security awareness. | | C. | Multiple logins are allowed. | | D. | Audit logs are not monitored frequently. |
|
| 31. | In which of the following would an attacker impersonate a dissatisfied customer of a company and request a password change on the customer’s account?
| A. | Hostile code | | B. | Social engineering | | C. | IP (Internet Protocol) spoofing | | D. | Man in the middle attack |
|
| 32. | Which of the following is the most effective defense against a social engineering attack?
| A. | Marking of documents | | B. | Escorting of guests | | C. | Badge security system | | D. | Training and awareness |
|
| 33. | Which of the following attacks are the most common and most successful when network security is properly implemented and configured?
| A. | Logical attacks | | B. | Physical attacks | | C. | Social engineering attacks | | D. | Trojan horse attacks |
|
| 34. | Which of the following is a characteristic of Mandatory Access Control (MAC)?
| A. | Uses levels of security to classify users and data | | B. | Allows owners of documents to determine who has access to specific documents | | C. | Uses access control lists that specify a list of authorized users | | D. | Uses access control lists that specify a list of unauthorized users |
|
| 35. | Which of the following access control methods relies on user security clearance and data classification?
| A. | RBAC (Role-Based Access Control) | | B. | NDAC (Non-Discretionary Access Control) | | C. | MAC (Mandatory Access Control) | | D. | DAC (Discretionary Access Control) |
|
| 36. | Windows uses what kind of security model?
| A. | RBAC (Role-Based Access Control) | | B. | NDAC (Non-Discretionary Access Control) | | C. | MAC (Mandatory Access Control) | | D. | DAC (Discretionary Access Control) |
|
| 37. | You have received a file from your supervisor marked “Confidential—Your Eyes Only.” When you save this file to your hard drive, you want to protect it by encrypting it. Where do you set up file encryption in your Windows XP desktop PC?
| A. | Select Encryption from the File menu and click Encrypt This File. | | B. | Create a new folder, right-click it, and then select the Encrypt option from its Properties menu. Move the file into the encrypted folder. | | C. | Right-click the file in Windows Explorer, select Properties, select the Advanced button, and check Encrypt Contents to Secure Data check box. | | D. | Navigate to the Control Panel/Administrative Tools/Computer Management console and click the Disk Management option. Then select a drive and choose Encrypt Files on This Drive. |
|
