Question 1

9)All e-mail servers communicate with each other using ____.&#10;A) SSH&#10;B) FTP&#10;C) SMTP&#10;D) HTTP

Accepted Answer

The Simple Mail Transfer Protocol (SMTP) is the standard protocol used for sending and receiving e-mail messages between servers. It specifies how messages should be formatted and transmitted between mail servers, ensuring that messages are delivered reliably and efficiently. SSH, FTP, and HTTP are all protocols used for other types of network communication, but are not used for e-mail communication between servers.

Question 2

15)A ____ is a statement of security the system should enforce when implemented correctly.&#10;A) security policy&#10;B) security model&#10;C) security plan&#10;D) security tree

Accepted Answer

A security policy is a statement of security objectives that an organization wants to achieve and should enforce when implemented correctly. It outlines the rules, regulations, and practices that relate to the protection of information assets and systems. A security model refers to the conceptual representation of the security controls that are necessary to protect the system, but it does not provide a specific statement of security objectives. A security plan is a specific plan for implementing the security policy, and a security tree is not a commonly recognized term in the field of cybersecurity.

Question 3

19)The OSI ____ layer provides switching and routing technologies for transmitting data from node to node.&#10;A) transport&#10;B) network&#10;C) session&#10;D) data link

Accepted Answer

The network layer of the OSI model is responsible for providing switching and routing technologies for transmitting data from node to node.

Question 4

7)A SMTP server listens on a well-known TCP port ____ for an incoming request.&#10;A) 21&#10;B) 25&#10;C) 110&#10;D) 115

Accepted Answer

The Simple Mail Transfer Protocol (SMTP) runs on port 25, which is the well-known port assigned by the Internet Assigned Numbers Authority (IANA) for this service. Port 21 is used for FTP, port 110 is used for POP3, and port 115 is not a registered well-known port.

Question 5

18)The OSI ____ layer provides the mechanisms to establish, manage, and terminate connections between applications.&#10;A) session&#10;B) transport&#10;C) network&#10;D) presentation

Accepted Answer

The session layer of the OSI model is responsible for managing the communication sessions between applications. This includes establishing, maintaining, and terminating connections between applications. The session layer also provides synchronization and recovery services to ensure that data is transmitted accurately and completely. Therefore, option A is the correct answer. The transport layer (option B) is responsible for providing end-to-end data transfer between hosts, and the network layer (option C) is responsible for routing packets between different networks. The presentation layer (option D) is responsible for data translation and formatting.

Question 6

6)____ is a simple text-based protocol where one or more recipients of a message are specified and then the message text is transferred.&#10;A) SMTP&#10;B) TCP&#10;C) IP&#10;D) SSL

Accepted Answer

SMTP (Simple Mail Transfer Protocol) is a simple text-based protocol used for sending email messages. It specifies the transmission of email messages between servers and also between servers and clients, allowing for one or more recipients to be specified and the message text to be transferred.

Question 7

4)PGP and S/MIME is compatible at the protocol level.

Accepted Answer

PGP (Pretty Good Privacy) and S/MIME (Secure/Multipurpose Internet Mail Extensions) use different methods for encryption and digital signatures, making them incompatible at the protocol level.

Question 8

12)The OS provides its services through a well-defined ____.&#10;A) GUI&#10;B) UI&#10;C) command line interface&#10;D) API

Accepted Answer

The OS provides its services through an API (Application Programming Interface), which is a set of protocols and tools for building software applications. The other options are interfaces for humans to interact with the system, but the API is the interface for software developers to interact with the OS.

Question 9

8)The SMTP server supports two common protocols for e-mail retrieval: IMAP and ____.&#10;A) TCP&#10;B) IP&#10;C) ICMP&#10;D) POP

Accepted Answer

The two common protocols for e-mail retrieval are IMAP and POP (Post Office Protocol). Therefore, the correct answer is D, as POP is the missing protocol.

Question 10

13)Users can interact directly with the OS through a user interface such as a command language or a(n) ____.&#10;A) GUI&#10;B) API&#10;C) DLL&#10;D) DBMS

Accepted Answer

GUI (Graphical User Interface) is the type of user interface that allows users to interact with the OS using graphical elements such as windows, icons, buttons, and menus. It provides a more intuitive and user-friendly way to interact with the OS compared to a command language or API. DLL (Dynamic Link Library) and DBMS (Database Management System) are not user interfaces. API (Application Programming Interface) is a way for applications to interact with the OS, but it is not a direct interface for users.

Question 11

Security applies to every aspect of computing.

Accepted Answer

The answer of Security applies to every aspect of computing....

Question 12

2)E-mail is one of the most secure types of communication media.

Accepted Answer

The answer of 2)E-mail is one of the most secure...

Question 13

10)The two common database formats are relational, using constructs such as tables, views, and procedures, and ____, using objects and hierarchy.&#10;A) procedure-oriented&#10;B) object-oriented&#10;C) hierarchy-based&#10;D) view-based

Accepted Answer

The answer of 10)The two common database formats are relational,...

Question 14

5)The DBMS should provide fine-grained access control besides the file permissions that control the OS user's access.

Accepted Answer

The answer of 5)The DBMS should provide fine-grained access control...

Question 15

14)____ and segmentation can provide a way of managing main memory.&#10;A) Sectoring&#10;B) Clustering&#10;C) Paging&#10;D) Partitioning

Accepted Answer

The answer of 14)____ and segmentation can provide a way...

Question 16

20)The OSI ____ layer defines all electrical and physical specifications for devices.&#10;A) network&#10;B) application&#10;C) data link&#10;D) physical

Accepted Answer

The answer of 20)The OSI ____ layer defines all electrical...

Question 17

11)____ is the first step in providing security for databases.&#10;A) Access control&#10;B) ACL&#10;C) Authentication&#10;D) Authorization

Accepted Answer

The answer of 11)____ is the first step in providing...

Question 18

3)E-mail messages are stored in plain, unencrypted text on SMTP servers.

Accepted Answer

The answer of 3)E-mail messages are stored in plain, unencrypted...

Question 19

16)A ____ is a representation of the security policy of the OS.&#10;A) security plan&#10;B) security tree&#10;C) security infrastructure&#10;D) security model

Accepted Answer

The answer of 16)A ____ is a representation of the...

Question 20

17)A ____ is a group of computers and peripherals connected together to communicate with each other and to share information and resources.&#10;A) domain&#10;B) computer network&#10;C) computer cluster&#10;D) computer partition

Accepted Answer

The answer of 17)A ____ is a group of computers...

Question 21

31)A(n) ____________________ is the fundamental component of the computer system.

Accepted Answer

The answer of 31)A(n) ____________________ is the fundamental component of...

Question 22

22)____ is a network layer protocol. It performs tasks such as routing, carrying datagrams, and mapping an Internet address to a physical network address.&#10;A) TCP&#10;B) IP&#10;C) UDP&#10;D) ICMP

Accepted Answer

The answer of 22)____ is a network layer protocol. It...

Question 23

33)What are the scenarios that can result from using SMTP protocol for delivering e-mail messages?

Accepted Answer

The answer of 33)What are the scenarios that can result...

Question 24

36)Describe the mail access vulnerability.

Accepted Answer

The answer of 36)Describe the mail access vulnerability....

Question 25

41)What are the four types of separation supported by an OS?

Accepted Answer

The answer of 41)What are the four types of separation...

Question 26

25)A(n) ____ firewall provides the highest level of security and provides full application layer awareness without interposing a proxy server.&#10;A) application gateway&#10;B) route-filtering&#10;C) packet-filtering&#10;D) proxy

Accepted Answer

The answer of 25)A(n) ____ firewall provides the highest level...

Question 27

29)A(n) ____________________ is a repository or store of data that has an internal organization using a particular format.

Accepted Answer

The answer of 29)A(n) ____________________ is a repository or store...

Question 28

35)Describe the inter-mail server vulnerability.

Accepted Answer

The answer of 35)Describe the inter-mail server vulnerability....

Question 29

26)____ is a set of automated methods for recognizing or verifying the identity of a person based on a physiological or behavioral characteristic.&#10;A) Multifactor authentication&#10;B) Database authentication&#10;C) Biometrics&#10;D) RADIUS

Accepted Answer

The answer of 26)____ is a set of automated methods...

Question 30

30)The term ____________________ is applied to a software product that manages the creation, modification, and deletion of database objects such as databases instances and users.

Accepted Answer

The answer of 30)The term ____________________ is applied to a...

Question 31

28)____________________ is a standard for public key encryption and signing of e-mail encapsulated in MIME.

Accepted Answer

The answer of 28)____________________ is a standard for public key...

Question 32

38)What are the e-mail security problems addressed by asymmetric key encryption used in conjunction with SSL?

Accepted Answer

The answer of 38)What are the e-mail security problems addressed...

Question 33

24)A(n) ____ firewall scans all network packets and blocks all but selected network traffic according to policies set in the firewall.&#10;A) proxy&#10;B) route-filtering&#10;C) application gateway&#10;D) packet-filtering

Accepted Answer

The answer of 24)A(n) ____ firewall scans all network packets...

Question 34

40)Why are the security measures taken by DBMSs unlikely to be sufficient to prevent attacks by themselves?

Accepted Answer

The answer of 40)Why are the security measures taken by...

Question 35

27)____________________ is the de facto standard for e-mail transmission.

Accepted Answer

The answer of 27)____________________ is the de facto standard for...

Question 36

21)____ is a name given to the collection of networking protocols that have been used to construct the global Internet.&#10;A) SSL&#10;B) HTTPS&#10;C) TCP/IP&#10;D) HTTP

Accepted Answer

The answer of 21)____ is a name given to the...

Question 37

39)What are the authentication considerations for network access regarding mobile devices?

Accepted Answer

The answer of 39)What are the authentication considerations for network...

Question 38

23)The ____ attack enables one host to claim that it has the IP address of another. It is most effective where trusted relationships exist between machines networked using TCP/IP.&#10;A) denial of service&#10;B) TCP SYN flood&#10;C) IP spoofing&#10;D) IP session hijacking

Accepted Answer

The answer of 23)The ____ attack enables one host to...

Question 39

34)Describe the process of receiving an e-mail.

Accepted Answer

The answer of 34)Describe the process of receiving an e-mail....

Question 40

37)Briefly describe e-mail identity spoofing.

Accepted Answer

The answer of 37)Briefly describe e-mail identity spoofing....

Question 41

Match between columns&#10;                        Premises: the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;the first program to be loaded in the computer during start-up&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;specifies the application/pkcs7-mime (S/MIME-type &#34;enveloped-data&#34;) type for data enveloping in e-mail&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;ensures that all of the data communications between a user's computer and the e-mail service provider's computer are encrypted&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;every user is assigned a job function (role) and access control is then enforced based on the different roles assigned to a user&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;the basis of OS protection&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;defined in RFC 821 and amended by RFC 1123&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a system of interconnected elements&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;a U.S. law, passed in 2002, to strengthen corporate governance and restore investor confidence&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices&#10;should be used as the first step to address security on mobile devices

Accepted Answer

The Answer of SMTP and Network and SSL and Operating is...

Question 42

What are the steps to develop a secure OS?

Accepted Answer

The answer of What are the steps to develop a...

Deck 11: Security Topics