Question Results

Score 1 of 1

Question:

Match the following terms and definitions

Response:

Match	User answer	Feedback
Intended to discourage a potential attacker	Deterrent
Intended to avoid an incident from happening	Preventive
Fixes component or systems after an incident has occurred	Corrective
Intended to bring the environment back to production levels	Recovery
Identify an incidents activities	Detective
Alternate measures of control	Compensating

Score 1 of 1

Question:

Which access control includes asset classification?

Response:

	Administrative
	Physical
	Organizational
	Technical
	Owner

Score 1 of 1

Question:

Falsely rejecting an authorized user is:

Response:

	FRR or Type I error
	CER or Type III error
	FAR or Type II error
	FRA or Type IV error

Score 0 of 1

Question:

Which of the following packet switched networks uses HDLC?

Response:

	SONET
	ATM
	Frame Relay
	MPLS
	SMDS

Score 0 of 1

Question:

Determining whether a subject can log into a system is an example of

Response:

	Authorization
	Authentication
	Accountability

Score 1 of 1

Question:

Which classification of fuel type is a computer given?

Response:

	D
	C
	A
	B

Score 1 of 1

Question:

Which access control requires sensitivity labels on all subjects and objects?

Response:

	Role-based access control
	Access List Control
	Discretionary access control
	Mandatory access control
	Manager set control

Score 0 of 1

Question:

Which of the following is a remote authentication system?

Response:

	TACACS
	KERBEROS
	OpenVPN
	SESAME

Score 0 of 1

Question:

Which access control protects the entire system?

Response:

	System Access Controls
	Operating System Controls/Policies
	Access Control Lists
	Firewalls/IPS
	Data Access Controls

Score 1 of 1

Question:

Match the following examples to their definitions

Response:

Match	User answer	Feedback
Unpatched servers	Vulnerability
A virus that relies on unpatched code or OS levels	Risk
The likelihood a threat will be realized, the frequency of natural disasters	Risk
$1M dollars per day downtime	Exposure
A proxy server	Countermeasure

Score 0 of 1

Question:

Which of the following have the best CER?

Response:

	Finger scanning
	Iris Scanning
	Hand scanning
	Badge Scanning

Score 0 of 1

Question:

Match the following control types to their purposes

Response:

Match	User answer	Feedback
Reducing Risk	Compensating
Correcting violations and incidents	Compensating	Corrective controls also help improve existing preventative and detective controls
Discouraging violations	Deterrent
Providing alternate ways of accomplishing a task	Compensating
Restoring systems and information	Recovery

Score 1 of 1

Question:

A LAN is

Response:

	a Local Authentication Node
	a Least Access Notification
	a Local Account Name
	a Linear Applebaum Network diagram
	a Local Area Network

Score 1 of 1

Question:

More key terms from Chapter 2

Response:

Match	User answer	Feedback
Weakness or lack of a countermeasure	Vulnerability
Entity that can exploit a vulnerability	Threat agent
The danger of having a vulnerability exploited	Threat
The probability of a threat being realized	Risk
Presence of a vulnerability which exposes the organization	Exposure

Score 1 of 1

Question:

Which access control includes job rotation?

Response:

	Administrative
	Technical
	Physical
	Organizational