Tag: security

Questions Related to security

Which of the following requires that a user or process be granted access to only those resources necessary to perform assigned functions.
technology security

  1. Discretionary access control

  2. Separation of duties

  3. Least privilege

  4. Rotation of duties

Show answer
Correct Option: C

In mandatory access control, the system controls access and the owner determines:
technology security

  1. Validation

  2. Need to know

  3. Consensus

  4. Verification

Show answer
Correct Option: B

Which is a fundamental disadvantage of biometrics?
technology security

  1. Revoking credentials

  2. Encryption

  3. Communications

  4. Placement

Show answer
Correct Option: A

A disadvantage of single sign-on is:
technology security

  1. Consistent time-out enforcement across platforms

  2. A compromised password exposes all authorized resources

  3. Use of multiple passwords to remember

  4. Password change control

Show answer
Correct Option: B

Availability makes information accessible by protecting from each of the following except:
technology security

  1. Denial of services

  2. Fires, floods, and hurricanes

  3. Unreadable backup tapes

  4. Unauthorized transactions

Show answer
Correct Option: D

Asymmetric key cryptography is used for all of the following except:
technology security

  1. Encryption of data

  2. Access controls

  3. Nonrepudiation

  4. Steganography

Show answer
Correct Option: D

One of the most important principles in the secure use of a public key algorithm is:
technology security

  1. Protection of the private key

  2. Distribution of the shared key

  3. Integrity of the message

  4. History of session keys

Show answer
Correct Option: A

Secure distribution of a confidential message can be performed by:
technology security

  1. Encrypting the message with the receiver's public key

  2. Encrypting a hash of the message

  3. Having the message authenticated by a certificate authority

  4. Using a password-protected file format

Show answer
Correct Option: A

When a user needs to provide message integrity, what options may be best?
technology security

  1. Send a digital signature of the message to the recipient

  2. Encrypt the message with a symmetric algorithm and send it

  3. Encrypt the message with a private key so the recipient can decrypt with the corresponding public key

  4. Send an encrypted hash of the message along with the message to the recipient

Show answer
Correct Option: D

The two methods of encrypting data are
technology security

  1. Substitution and transposition

  2. Block and stream

  3. Symmetric and asymmetric

  4. DES and AES

Show answer
Correct Option: B