Question 1

From the options below, which of them is not a threat to information security?&#10;A)disaster&#10;B)eavesdropping&#10;C)information leakage&#10;D)unchanged default password

Accepted Answer

Unchanged default password is a vulnerability, not a threat.

Question 2

Compromising confidential information comes under __________________________________________&#160;&#10;A)bug&#10;B)threat&#10;C)vulnerability&#10;D)attack

Accepted Answer

Compromising confidential information is considered a threat, as it represents a potential negative action or event that could harm the system or organization by exploiting vulnerabilities.

Question 3

Which of the following are not security policies?&#10;A)regulatory&#10;B)advisory&#10;C)availability&#10;D)user policies

Accepted Answer

Availability is not a security policy; it is a goal of security measures, often part of the CIA triad (Confidentiality, Integrity, Availability), rather than a policy type itself. Security policies are guidelines or rules set by an organization to protect its resources, and they typically include regulatory, advisory, and specific user policies.

Question 4

Examples of User Policies is/are:&#10;A)password policies&#10;B)internet usage&#10;C)system use&#10;D)all of the above

Accepted Answer

All of the options listed (password policies, internet usage, and system use) are examples of user policies. These policies guide how users interact with and access various IT resources, ensuring security and compliance.

Question 5

____________________________Policy ensures that the organization is maintaining standards set by specific industry regulation.&#10;A)regulatory&#10;B)advisory&#10;C)availability&#10;D)user policies

Accepted Answer

Regulatory policy ensures that an organization adheres to standards set by specific industry regulations, ensuring compliance with legal and industry standards.

Question 6

____________________________&#160;&#160;Policy is like standards rules and regulations set by the management to advise their employees on their activity or behavior&#10;A)regulatory&#10;B)advisory&#10;C)availability&#10;D)user policies

Accepted Answer

Advisory policy is the correct term as it refers to guidelines set by management to advise employees on their behavior or activities, rather than enforcing strict rules or regulations.

Question 7

What defines the restrictions on employees such as usage?&#10;A)regulatory&#10;B)advisory&#10;C)availability&#10;D)user policies

Accepted Answer

User policies define the restrictions on employees such as usage, outlining acceptable and unacceptable behaviors and actions while using company resources.

Question 8

The full form of OSI is OSI model is ____________________________&#10;A)open systems interconnection&#10;B)open software interconnection&#10;C)open systems internet&#10;D)open software internet

Accepted Answer

The full form of OSI in OSI model is "Open Systems Interconnection." It is a conceptual framework used to understand and standardize the functions of a telecommunication or computing system without regard to its underlying internal structure and technology.

Question 9

In layer, vulnerabilities are directly associated with physical access to networks and hardware.&#10;A)physical&#10;B)data-link&#10;C)network&#10;D)application

Accepted Answer

Physical layer vulnerabilities are directly associated with the actual physical access to networks and hardware, such as the risk of someone gaining unauthorized physical access to routers, switches, and other networking equipment.

Question 10

Which of the following attack can actively modify communications or data?&#10;A)both active and passive attacks&#10;B)neither active and passive attacks&#10;C)active attacks&#10;D)passive attacks

Accepted Answer

Active attacks involve the attacker actively modifying the communications or data, unlike passive attacks where the attacker only monitors or intercepts data without altering it.

Question 11

Release of Message Content and Traffic analysis are type of :&#10;A)both active and passive attacks&#10;B)neither active and passive attacks&#10;C)active attacks&#10;D)passive attacks

Accepted Answer

The answer of Release of Message Content and Traffic analysis...

Question 12

If communication between 2 people is overheard by a third person without manipulation of any data, it is called as:&#10;A)release of message content-passive attack&#10;B)traffic analysis -passive attacks&#10;C)release of message content- active attacks&#10;D)traffic analysis -active attacks

Accepted Answer

The answer of If communication between 2 people is overheard...

Question 13

If communication between 2 people is overheard by a third person without extraction of any data, it is called as:&#10;A)release of message content-passive attack&#10;B)traffic analysis -passive attacks&#10;C)release of message content- active attacks&#10;D)traffic analysis -active attacks

Accepted Answer

The answer of If communication between 2 people is overheard...

Question 14

____________________________&#160;&#160;means when an attacker pretends to be authentic user&#10;A)masquerade&#10;B)replay&#10;C)modification&#10;D)traffic analysis

Accepted Answer

The answer of ____________________________&#160;&#160;means when an attacker pretends to be...

Question 15

______________&#160;attack is when original data is modified and malicious data is inserted&#10;A)masquerade&#10;B)replay(rewrite)&#10;C)modification&#10;D)traffic analysis

Accepted Answer

The answer of ______________&#160;attack is when original data is modified...

Question 16

When original data is changed to make it non-meaningful by attacker it is known as&#10;A)masquerade&#10;B)replay&#10;C)modification of messages&#10;D)traffic analysis

Accepted Answer

The answer of When original data is changed to make...

Question 17

Which is the type of attack when Network is made unavailable for user&#10;A)masquerade&#10;B)replay&#10;C)modification&#10;D)denial of service

Accepted Answer

The answer of Which is the type of attack when...

Question 18

Modification of Data is done in:&#10;A)both active and passive attacks&#10;B)neither active and passive attacks&#10;C)active attacks&#10;D)passive attacks

Accepted Answer

The answer of Modification of Data is done in:&#10;A)both active...

Question 19

The information that gets transformed in encryption is&#10;A)plain text&#10;B)parallel text&#10;C)encrypted text&#10;D)decrypted text

Accepted Answer

The answer of The information that gets transformed in encryption...

Question 20

A process of making the encrypted text readable again.&#10;A)decryption&#10;B)encryption&#10;C)network security&#10;D)information hiding

Accepted Answer

The answer of A process of making the encrypted text...

Question 21

A unique piece of information that is used in encryption.&#10;A)cipher&#10;B)plain text&#10;C)key&#10;D)cipher.

Accepted Answer

The answer of A unique piece of information that is...

Question 22

Assurance that authentic user is taking part in communication is:&#10;A)authentication&#10;B)authorization&#10;C)access control&#10;D)auditing

Accepted Answer

The answer of Assurance that authentic user is taking part...

Question 23

ATM pin while withdrawing money is an example of using:&#10;A)authentication&#10;B)authorization&#10;C)access control&#10;D)auditing

Accepted Answer

The answer of ATM pin while withdrawing money is an...

Question 24

Study of creating a d using encryption and decryption techniques.&#10;A)cipher&#10;B)cryptography&#10;C)encryption&#10;D)decryption

Accepted Answer

The answer of Study of creating a d using encryption...

Deck 4: Information Security and Encryption