Question 1

One type of attack on the security of a computer system or network that impacts the availability of a system (e.g.destruction of a resource in the system)is referred to as:&#10;A)Interruption&#10;B)Interception&#10;C)Modification&#10;D)All of the above

Accepted Answer

Interruption attacks aim to disrupt the normal functioning of a system or network, by destroying, disabling or making unavailable critical resources, services or devices. Interception attacks focus on the confidentiality of data and involve the unauthorized access, eavesdropping, or theft of information. Modification attacks target the integrity of data and involve the unauthorized alteration, insertion, or deletion of data or software. While all types of attacks can impact the security of a system, only interruption attacks specifically impact the availability. Therefore, the best choice is A) Interruption.

Question 2

Data confidentiality assures that individuals control or influence what information related to them may be collected and stored.

Accepted Answer

Data confidentiality refers to the protection of data from unauthorized access and disclosure, ensuring that only those authorized can access the information. It does not specifically address the control or influence individuals have over the collection and storage of their information; this aspect is more closely related to privacy rights and data protection regulations.

Question 3

A stealth virus is explicitly designed to hide itself from detection by antivirus software.

Accepted Answer

A stealth virus is specifically created to avoid detection and removal by antivirus programs. It does this by actively concealing itself and thus making it difficult for antivirus software to detect and isolate it.

Question 4

All parasitic malware is software that replicates.

Accepted Answer

Parasitic malware, also known as a virus, does not always need to replicate to be considered parasitic. It attaches itself to executable files and spreads to other files and systems, but replication is a characteristic more specific to worms.

Question 5

The type of attack on communications lines and networks known as traffic analysis belongs to the general category of:&#10;A)Active attacks&#10;B)Passive attacks&#10;C)Administrative attacks&#10;D)None of the above

Accepted Answer

Traffic analysis is a type of passive attack, which means that the attacker is simply monitoring and analyzing the traffic on the network rather than actively trying to manipulate it. Active attacks, on the other hand, involve actively injecting or altering data on the network. Administrative attacks typically involve exploiting vulnerabilities in the administrative controls of a system or network, rather than the communication lines themselves.

Question 6

A macro virus is a larger and more self-contained than an ordinary virus.

Accepted Answer

A macro virus is a type of virus that is often spread through macros in programs like Microsoft Word and Excel. Unlike regular viruses, macro viruses are self-contained and do not need an external program to run. They often infect the program they are embedded in and use its features to spread to other documents.

Question 7

Repudiation refers to a user either denying sending data or a user denying receiving or possessing the data.

Accepted Answer

Repudiation can involve denying both sending and receiving/possessing data.

Question 8

Important objectives of computer security include:&#10;A)Confidentiality&#10;B)Integrity&#10;C)Availability&#10;D)All of the above

Accepted Answer

All of the objectives listed (Confidentiality, Integrity, and Availability) are important for computer security. Confidentiality ensures that sensitive information is kept secure and only accessible to those with permission. Integrity ensures that data remains accurate and uncorrupted. Availability ensures that computer systems and data are accessible to authorized users when needed.

Question 9

Which of the following is not an example of intrusion:&#10;A)Guessing and cracking passwords&#10;B)Running a packet sniffer on a workstation to capture user names and passwords&#10;C)Using an unattended,logged-in workstation without permission&#10;D)All of the above are examples of intrusion

Accepted Answer

All of the options (A, B, and C) are examples of intrusion activities.

Question 10

A backdoor is the same as a trapdoor.

Accepted Answer

A backdoor and a trapdoor are two terms used interchangeably to describe a hidden entry point into a computer system or software that allows unauthorized access.

Question 11

Traffic analysis is an active attack.

Accepted Answer

The answer of Traffic analysis is an active attack....

Question 12

An encrypted virus can only be triggered after an external software program is triggered to decrypt the virus.

Accepted Answer

The answer of An encrypted virus can only be triggered...

Question 13

The three key objectives of computer security are confidentiality,integrity,and availability.

Accepted Answer

The answer of The three key objectives of computer security...

Question 14

A virus can be prepended or postpended to an executable program,or it can be embedded in some other fashion.

Accepted Answer

The answer of A virus can be prepended or postpended...

Question 15

A masquerader is a legitimate user who accesses data,programs,or resources for which such access is not authorized.

Accepted Answer

The answer of A masquerader is a legitimate user who...

Question 16

Of the three classes of intruders into computer systems and networks,the clandestine user is typically:&#10;A)An insider to the organization&#10;B)An outsider to the organization&#10;C)Either an insider or an outsider to the organization&#10;D)None of the above

Accepted Answer

The answer of Of the three classes of intruders into...

Question 17

A worm is a program that can replicate itself and send copies from computer to computer across network connections.

Accepted Answer

The answer of A worm is a program that can...

Question 18

Most viruses carry out their work in a manner that is specific to a particular operating system.

Accepted Answer

The answer of Most viruses carry out their work in...

Question 19

A logic bomb is a useful,or apparently useful,program or command procedure containing hidden code that,when invoked,performs some unwanted or harmful function.

Accepted Answer

The answer of A logic bomb is a useful,or apparently...

Question 20

A secret entry point into a program that allows intruders aware of the breached area to gain access and bypass the usual security access procedures is called a:&#10;A)Logic bomb&#10;B)Trojan horse&#10;C)Virus&#10;D)None of the above

Accepted Answer

The answer of A secret entry point into a program...

Question 21

A worm that can attack a variety of OSs rather than a single OS such as Windows is:&#10;A)Multiplatform&#10;B)Multi-exploit&#10;C)Polymorphic&#10;D)Metamorphic

Accepted Answer

The answer of A worm that can attack a variety...

Question 22

The network vehicle used for worm propagation is:&#10;A)Electronic mail facility&#10;B)Remote execution capability&#10;C)Remote login capability&#10;D)All of the above

Accepted Answer

The answer of The network vehicle used for worm propagation...

Question 23

Which of the following statements regarding macro viruses is true:&#10;A)A macro virus is platform independent&#10;B)Macro viruses infect documents,not executable portions of code&#10;C)Macro viruses are easily spread&#10;D)All of the above

Accepted Answer

The answer of Which of the following statements regarding macro...

Question 24

The primary mechanism used in implementing denial-of-service attacks is the:&#10;A)Worm&#10;B)Trojan horse&#10;C)Bot&#10;D)All of the above

Accepted Answer

The answer of The primary mechanism used in implementing denial-of-service...

Question 25

The stage of a virus where it is activated to perform the function for which it was intended is referred to as the:&#10;A)Propagation phase&#10;B)Triggering phase&#10;C)Execution phase&#10;D)None of the above

Accepted Answer

The answer of The stage of a virus where it...

Question 26

Which of the following statements is generally true regarding the original class of email viruses:&#10;A)It sends itself to selected names on the user's email mailing list&#10;B)Arrive in email attachments&#10;C)Usually do no local damage on the infected machine&#10;D)All of the above

Accepted Answer

The answer of Which of the following statements is generally...

Question 27

A virus can be attached to a program by:&#10;A)Prepending&#10;B)Postpending&#10;C)Embedding other than at the beginning or end&#10;D)All of the above

Accepted Answer

The answer of A virus can be attached to a...

Deck 18: Computer and Network Security Threats