Deck 15: Computer Security Techniques

A password cracker is a password guessing program.

The success of the digital immune system depends on the ability of the virus analysis machine to detect new and innovative virus strains.

Passwords serve to authenticate the ID of the individual logging on to the system.

Once a worm is resident on a machine, antivirus software cannot be used to detect it.

An important feature of Windows security is that applications can make use of the Windows security framework for user-defined objects.

DAC is a concept that evolved out of requirements for military information security.

For user authentication to computer, the most important category of smart token is the smart card.

An effective IDS can serve as a deterrent, thus acting to prevent intrusions.

Rootkits are easy to detect and neutralize.

When a file containing a polymorphic virus is executed, the virus must decrypt itself to activate.

Memory cards can store and process data.

In the case of a challenge-response protocol the token generates a unique password periodically.

A user only needs a password in order to log on to a UNIX system.

Traditional DAC systems define the access rights of individual users and groups of users.

A __________ authentication system attempts to authenticate an individual based on his or her unique physical characteristics.

Virtually all multiuser systems, network-based servers, Web-based e-commerce sites, and other similar services require that a user provide not only a name or identifier (ID) but also a _________ .

Authentication protocols used with smart tokens are classified into three categories: static, dynamic password generator, and __________ .

__________ add a specialized layer of security software to vulnerable or sensitive systems; examples include database servers and administrative systems.

__________ controls access based on the roles that users have within the system and on rules stating what accesses are allowed to users in given roles.

An __________ dictates what types of access are permitted, under what circumstances, and by whom.

__________ technology enables the antivirus program to easily detect even the most complex polymorphic viruses while maintaining fast scanning speeds.

_________ is a procedure that allows communicating parties to verify that the contents of a received message have not been altered and that the source is authentic.

The motivation for the development of the __________ has been the rising threat of Internet-based virus propagation.

Objects that a user possesses for the purpose of user authentication are called _________ .

The two broad categories of approaches to dealing with buffer overflow attacks are run-time defenses and __________ .

One of the best known protection mechanisms is __________ , which is a compiler extension that inserts additional function entry and exit code.

_________ define the type and contents of a security descriptor.

The key ingredients of an access matrix are __________ , objects, and access rights.

The two types of audit records that may be used in an IDS are detection specific audit records and _________ .