Question 1

The WiFi standard known as Privacy with message integrity can be described as follows:&#10;A)a way of ensuring the privacy of the individual using WiFi&#10;B)a technique that ensures that the data transmitted using WiFi have not been altered&#10;C)a way of providing mutual authentication between a user and an AS&#10;D)none of the above

Accepted Answer

Privacy with message integrity (PMI) is a WiFi security standard that ensures the data transmitted over the network is not tampered with or altered during transmission. It provides message integrity and data origin authentication, preventing unauthorized access to data packets. However, it does not address user privacy or mutual authentication between the user and the Access Point (AS).

Question 2

An uncontrolled port allows the exchange of PDUs between a supplicant and other systems on the LAN only if the current state of the supplicant authorizes such an exchange.

Accepted Answer

An uncontrolled port allows the exchange of PDUs between a supplicant and other systems on the LAN without any authentication or authorization. Therefore, a supplicant's current state does not affect the exchange of PDUs on an uncontrolled port.

Question 3

Generic decryption (GD)technology enables the antivirus program to easily detect even the most complex polymorphic viruses while maintaining fast scanning speeds.

Accepted Answer

Generic decryption technology is capable of decrypting encrypted code within a virus and analyzing it to understand the virus's behavior. This allows the antivirus program to detect even the most complex polymorphic viruses while maintaining fast scanning speeds.

Question 4

Ipsec is based primarily upon the DES standard.

Accepted Answer

While DES was originally used in IPsec, it has since been deemed insecure and has been replaced by newer algorithms such as AES.

Question 5

IEEE 802.11i consists of two main functions: authentication and access control.

Accepted Answer

The answer of IEEE 802.11i consists of two main functions:...

Question 6

A key logical component of an IDS is:&#10;A)sensors&#10;B)analyzers&#10;C)user interface&#10;D)all of the above

Accepted Answer

All of the above components (sensors, analyzers, and user interface) are essential for an effective IDS. The sensors detect potential threats, the analyzers process the data from the sensors to identify and classify threats, and the user interface allows administrators to view and respond to alerts generated by the IDS. Without any one of these components, the IDS would not be fully functional.

Question 7

Two important SSL concepts are the SSL session and the SSL connection.

Accepted Answer

SSL session and SSL connection are two distinct, but related, concepts in SSL/TLS. An SSL session is established between the client and the server, and may contain multiple SSL connections. The SSL connection is the secure channel over which data is exchanged between the client and server within an SSL session.

Question 8

The primary benefit of a host-based IDS is that it can detect both external and internal intrusions.

Accepted Answer

A host-based IDS can monitor activity at the individual system level, allowing it to detect both external attacks and internal attacks by malicious insiders or compromised accounts. Due to its ability to monitor local activity, it can also detect attacks that bypass perimeter defenses such as firewalls or intrusion prevention systems.

Question 9

A stateful inspection firewall ________.&#10;A)applies a set of rules to each incoming and outgoing IP packet and then forwards or discards the packet&#10;B)controls TCP traffic by creating a directory of outbound TCP connections&#10;C)acts as a relay of application-level traffic&#10;D)sets up two TCP connections,one between itself and a TCP user on an inner host and one between itself and a TCP user on an outside host

Accepted Answer

A stateful inspection firewall monitors the state of active connections and uses this information to determine which network packets to allow through the firewall. It creates a directory of outbound TCP connections to track the state of each connection.

Question 10

Transport mode in IPSec provides protection to the entire IP packet.

Accepted Answer

Transport mode in IPSec only encrypts the payload and ESP trailer; it does not encrypt the entire IP packet. The IP header remains unencrypted.

Question 11

Intrusion detection is based on the assumption that the behavior of the intruder differs from that of a legitimate user in ways that can be quantified.

Accepted Answer

The answer of Intrusion detection is based on the assumption...

Question 12

The higher-layer protocols defined as part of SSL include:&#10;A)handshake protocol&#10;B)change cipher spec protocol&#10;C)alert protocol&#10;D)all of the above

Accepted Answer

The answer of The higher-layer protocols defined as part of...

Question 13

Typically,a firewall is inserted between the premises network and the Internet to establish a controlled link and to erect an outer security wall or perimeter.

Accepted Answer

The answer of Typically,a firewall is inserted between the premises...

Question 14

The Host-based IDS monitors network traffic for particular network segments or devices and analyzes network,transport, and application protocols to identify suspicious activity.

Accepted Answer

The answer of The Host-based IDS monitors network traffic for...

Question 15

IPSec transport mode provides protection primarily for:&#10;A)the Internet layer&#10;B)upper-layer protocols&#10;C)network and link-layer protocols&#10;D)all of the above

Accepted Answer

The answer of IPSec transport mode provides protection primarily for:&#10;A)the...

Question 16

SSL performs encryption first,followed by computing a message authentication code.

Accepted Answer

The answer of SSL performs encryption first,followed by computing a...

Question 17

A typical use of circuit-level gateways is a situation in which the system administrator trusts the internal users.

Accepted Answer

The answer of A typical use of circuit-level gateways is...

Question 18

IPSec provides authentication,encryption,and key exchange functions.

Accepted Answer

The answer of IPSec provides authentication,encryption,and key exchange functions....

Question 19

A security intrusion is defined as a successful attempt by a user to gain access to a system or system resource without proper authorization.

Accepted Answer

The answer of A security intrusion is defined as a...

Question 20

Ports are logical entities defined within the authenticator and refer to physical network connections.

Accepted Answer

The answer of Ports are logical entities defined within the...

Question 21

Most organizations agree that __________ become their worst security problem.&#10;A)their own users&#10;B)intrusions&#10;B)viruses&#10;D)managers

Accepted Answer

The answer of Most organizations agree that __________ become their...

Question 22

At _________ the IP header is exposed and so filtering or firewalls can be applied to IP addresses.&#10;A)layer 1&#10;B)layer 2&#10;C)layer 3&#10;D)layer 4

Accepted Answer

The answer of At _________ the IP header is exposed...

Question 23

A __________ is a security service that monitors and analyzes system events for the purpose of finding,and providing real-time or near-real-time warning of, attempts to access system resources in an unauthorized manner.

Accepted Answer

The answer of A __________ is a security service that...

Question 24

Which of the following is not a central element of a typical antivirus scheme?&#10;A)detection&#10;B)identification&#10;C)removal&#10;D)deterrence

Accepted Answer

The answer of Which of the following is not a...

Question 25

The IPsec Architecture document mandates support for two types of key management: manual and ___________.

Accepted Answer

The answer of The IPsec Architecture document mandates support for...

Question 26

An IDS comprises three logical components: sensors,user interface,and _______.

Accepted Answer

The answer of An IDS comprises three logical components: sensors,user...

Question 27

__________ is a monitored behavior.&#10;A)Attempts to open,view,delete,and / or modify files&#10;B)Attempts to format disk drives and other unrecoverable disk operations&#10;C)Modification to the logic of executable files or macros&#10;D)All of the above

Accepted Answer

The answer of __________ is a monitored behavior.&#10;A)Attempts to open,view,delete,and...

Question 28

Which of the following is a higher-layer protocol defined as part of SSL?&#10;A)the Handshake Protocol&#10;B)the Change Cipher Spec Protocol&#10;C)the Alert Protocol&#10;D)all of the above

Accepted Answer

The answer of Which of the following is a higher-layer...

Question 29

The SSL Record Protocol provides two services for SSL connections: confidentiality and ___________.

Accepted Answer

The answer of The SSL Record Protocol provides two services...

Question 30

The ________________ facility enables communicating nodes to encrypt messages to prevent eavesdropping by third parties.

Accepted Answer

The answer of The ________________ facility enables communicating nodes to...

Question 31

A ____________ is a security event,or a combination of multiple security events, that constitutes a security incident in which an intruder gains,or attempts to gain,access to a system (or system resource)without having authorization to do so.

Accepted Answer

The answer of A ____________ is a security event,or a...

Question 32

The ideal solution to the threat of viruses is:&#10;A)detection&#10;B)prevention&#10;C)identification&#10;D)removal

Accepted Answer

The answer of The ideal solution to the threat of...

Question 33

Which security area is addressed in IEEE 802.11i ?&#10;A)authentication&#10;B)key management&#10;C)data transfer privacy&#10;D)all of the above

Accepted Answer

The answer of Which security area is addressed in IEEE...

Question 34

The 802.11i architecture consists of ________ main ingredients.&#10;A)one&#10;B)two&#10;C)three&#10;D)four

Accepted Answer

The answer of The 802.11i architecture consists of ________ main...

Question 35

IP-level security encompasses three functional areas: authentication, confidentiality,and _________.

Accepted Answer

The answer of IP-level security encompasses three functional areas: authentication,...

Question 36

A(n)__________ looks for user behavior that differs from that expected from a legitimate user.&#10;A)ACK&#10;B)IDS&#10;C)SSL&#10;D)TLS

Accepted Answer

The answer of A(n)__________ looks for user behavior that differs...

Question 37

The _________ mechanism assures that a received packet was,in fact,transmitted by the party identified as the source in the packet header

Accepted Answer

The answer of The _________ mechanism assures that a received...

Question 38

In order to accelerate the introduction of strong security into WLANs,the Wi-Fi Alliance promulgated __________ as a Wi-Fi standard.

Accepted Answer

The answer of In order to accelerate the introduction of...

Question 39

The most complex part of SSL is the ___________ Protocol.&#10;A)Handshake&#10;B)Change Cipher Spec&#10;C)Alert&#10;D)Record

Accepted Answer

The answer of The most complex part of SSL is...

Question 40

_________ mode is used when at least one of the two ends is a security gateway, such as a firewall or router,that implements IPsec.

Accepted Answer

The answer of _________ mode is used when at least...

Question 41

___________ is a set of protocols for providing encryption,authentication,and key management for IP.

Accepted Answer

The answer of ___________ is a set of protocols for...

Question 42

The Secure Sockets Layer (SSL)and the follow-on Internet standard known as __________ provide a reliable end-to-end secure transport service over TCP.

Accepted Answer

The answer of The Secure Sockets Layer (SSL)and the follow-on...

Question 43

A _________ is a hardware or software entity inserted between a system or network to be protected and the Internet or other outside access network to control traffic in both directions to enforce a security policy.

Accepted Answer

The answer of A _________ is a hardware or software...

Question 44

____________ integrates with the operating system of a host computer and monitors program behavior in real time for malicious actions and then blocks potentially malicious actions before they have a chance to affect the system.

Accepted Answer

The answer of ____________ integrates with the operating system of...

Question 45

Malware defense can involve a combination of prevention,__________,and removal.

Accepted Answer

The answer of Malware defense can involve a combination of...

Deck 19: Computer and Network Security Techniques