Download cis333 pretest docs. and more Quizzes Information and Communications Technology (ICT) in PDF only on Docsity!
1 out of 1 points
is the process of transforming data from cleartext into ciphertext. Answer
Selected Answer:
Encrypti
on
Correct Answer:
Encrypti
on
- Question 2
1 out of 1 points
What term is used to describe the amount of time that an IT system, application, or data is not available to users?
Answer
Selected
Answer:
downti me
Correct Answer:
downti me
- Question 3
0 out of 1 points
The tunnel can be created between a remote workstation using the public Internet and a VPN router or a secure browser and Web site. Answer
Selected Answer: Hypertext Transfer Protocol (HTTP)
Correct Answer: Secure Sockets Layer virtual private network (SSL-VPN)
- Question 4
0 out of 1 points
A examines the network layer address and routes packets based on routing protocol path determination decisions. Answer
Selected Answer: proxy server
Correct Answer: Layer 3 switch
- Question 5
Which of the following is the definition of ciphertext? Answer
Selected
1 out of 1 points
Answer: The opposite of cleartext. Data sent as ciphertext is not visible and not decipherable.
Correct Answer: The opposite of cleartext. Data sent as ciphertext is not visible and not decipherable.
- Question 6
What fills security gaps and software weaknesses? Answer
Selected Answer: Cybersecurity
Correct Answer: Testing and quality
assurance
- Question 7
- out of 1 points
- out of 1 points
- Question 10 0 out of 1 points
A is a collection of computers connected to one
another or to a common connection medium.
Answer
Selected Answer: virtual private network
(VPN)
Correct Answer: local area network (LAN)
- Question 11 - out of 1 points
What term is used to describe streamlining processes with
automation or simplified steps?
Answer
Selected Answer: protocol convergence
Correct Answer: business process engineerin g
- Question 12 - out of 1 points
E-commerce changed how businesses sell, and the
changed how they market.
Answer
Selected
Answer:
Correct
Intern et
Answer: Intern et
- Question 13
1 out of 1 points
A common DSL service is , where the bandwidth is different for downstream and upstream traffic. Answer
Selected Answer: asymmetric^ digital subscriber line (ADSL)
Correct Answer: asymmetric digital subscriber line (ADSL)
- Question 14
What is meant by DS0? Answer
Selected
0 out of 1 points
Answer: A strategy that uses a device to provide electrical power for IP phones from the RJ-45 8-pin jacks directly to the workstation outlet.
Correct Answer: A basic digital signaling rate that corresponds to one voice- frequency-equivalent channel.
- Question 15
1 out of 1 points
Voice and unified communications are applications that use 64-byte IP packets. Answer
Selected
Answer: (^) real- time
Correct Answer:
real- time
- Question 16
1 out of 1 points
Answer: asynchronous transfer mode
(ATM)
Correct Answer: frame relay
- Question 20
0 out of 1 points
As users upgrade LANs to GigE or 10GigE, switches must support and data IP traffic. Answer
Selected
Answer:
networ ks
Correct Answer: voice
- Question 21
A is a software program that performs one of two
1 out of 1 points
functions: brute-force password attack to gain unauthorized access to a system, or recovery of passwords stored in a computer system. Answer
Selected Answer:
pas sw ord cra cke r
Correct Answer: password cracker
- Question 22
Prior to VoIP, attackers would use wardialers to. Answer
Selected
Answer: all of the above
Correct Answer: all of the above
- Question 23
Malicious software can be hidden in a. Answer
Selected Answer: all^ of^ the^ above
1 out of 1 points
1 out of 1 points
Correct Answer: all of th e ab ov e
- Question 24
1 out of 1 points
Black-hat hackers generally poke holes in systems, but do not attempt to disclose they find to the administrators of those systems.
Answer
Selected Answer:
vuln erabi lit ies
0 out of 1 points
A protocol analyzer or is a software program that enables a computer to monitor and capture network traffic. Answer
Selected Answer:
cookie
Correct Answer:
packet sniffer
- Question 28
1 out of 1 points
In popular usage and in the media, the term often describes someone who breaks into a computer system without authorization. Answer
Selected
Answer: hack er
Correct Answer:
hack er
- Question 29 - out of 1 points
What name is given to any event that results in a violation of any of the C-I-A security tenets? Answer
Selected
Answer:
attack Correct
Answer:
security
breach
- Question 30 - out of 1 points
What term is used to describe an attack in which the attacker gets between two parties and intercepts messages before
transferring them on to their intended destination?
Answer
Selected Answer: man-in-the- middle attack
Correct Answer: man-in-the- middle attack
- Question 31
0 out of 1 points
What name is given to a risk-analysis method that uses
relative ranking to provide further definition of the identified
risks in order to determine responses to them?
Answer
Selected Answer:
quantitati ve risk analysis
Correct Answer:
qualitati ve risk analysis
- Question 32
0 out of 1 points
A parallel test evaluates the effectiveness of the by
enabling full processing capability at an alternate data center
without interrupting the primary data center.
Answer
Selected Answer:
security
plan
Correct Answer:
DRP
- Question 33
0 out of 1 points
What name is given to a comparison of security controls in
place and the controls that are needed to address all identified
threats?
0 out of 1 points
is the proportion of value of a particular asset likely to be destroyed by a given risk, expressed as a percentage. Answer
Selected Answer: Annual rate of occurrence
(ARO)
Correct Answer: Exposure factor (EF)
- Question 37
The process of managing risks starts by identifying. Answer
Selected (^) Answer:
standa rds
Correct Answer:
risks
- Question 38
0 out of 1 points
0 out of 1 points
Risks apply to specific assets. If you multiply the risk
by the cost of the asset, the result is the exposure to a specific
risk.
Answer
Selected
Answer:
threat
Correct Answer:
pr ob ab ili ty
- Question 39
0 out of 1 points
The first step in risk analysis is to determine what and
where the organization’s are located.
Answer
Selected
Answer:
resourc es
Correct Answer:
assets
- Question 40 - out of 1 points
is rapidly becoming an increasingly important
aspect of enterprise computing.
Answer
Selecte d (^) Answer:
Risk management
Correct Answer:
Disaster
recovery
- Question 41 - out of 1 points
Two-factor should be the minimum requirement for
valuable resources as it provides a higher level of security than
card
- Question 44
1 out of 1 points
is the process of dividing a task into a series of unique activities performed by different people, each of whom is allowed to execute only one part of the overall task. Answer
Selected Answer:
Separa tion of duties
Correct Answer: Separation of duties
- Question 45
How is decentralized access control defined? Answer
Selected
1 out of 1 points
Answer: A system that puts access control into the hands of people such as department managers who are closest to system users; there is no one centralized entity to process access requests in this system.
Correct Answer: A system that puts access control into the hands of people such as department managers who are closest to system users; there is no one centralized entity to process access requests in this system.
- Question 46
1 out of 1 points
What is meant by multi-tenancy? Answer
Selected Answer: A database feature that allows different groups of users to access the database without being able to access each other’s data.
Correct
Answer: A database feature that allows different groups of users to access the database without being able to access each other’s data.
- Question 47
1 out of 1 points
What term is used to describe associating actions with users
for later reporting and research?
Answer
Selected Answer:
acco unta bi lity
Correct Answer:
acco unta bi lity
- Question 48
1 out of 1 points
is an authorization method in which access to
resources is decided by the user’s formal status.
Answer
Selected Answer:
Authorit y-level policy
Correct Answer:
Authorit y-level policy
- Question 49
0 out of 1 points
What term is used to describe a device used as a logon
authenticator for remote users of a network?
Answer
Selected Answer: physically constrained user
interface
Answer
Selected Answer:
Pro ced ure con trol
Correct Answer:
Change control
- Question 54
One of the most popular types of attacks on computer systems
1 out of 1 points
involves. These attacks deceive or use people to get around security controls. The best way to avoid this risk is to ensure that employees know how to handle such attacks. Answer
Selected
Answer: social engineering
Correct Answer:
social engineering
- Question 55
1 out of 1 points
For all the technical solutions you can devise to secure your systems, the remains your greatest challenge. Answer
Selected
Answer:
human element
Correct Answer:
human
element
- Question 56
1 out of 1 points
Because personnel are so important to solid security, one of the best security controls you can develop is a strong securityand awareness program. Answer
Selected
Answer: traini ng
Correct Answer:
traini ng
- Question 57
1 out of 1 points
Enacting changes in response to reported problems is called. Answer
Selected Answer: reactive change managem ent
Correct Answer: reactive change management
- Question 58
Which of the following is the definition of system owner? Answer
Selected
1 out of 1 points
Answer: The person responsible for the daily operation of a system and for ensuring that the system continues to operate in compliance with the conditions set out by the AO.
Correct Answer: The person responsible for the daily operation of a system and for ensuring that the system continues to operate in compliance with the conditions set out
