Question 1

Human errors,ignorance,and omissions cause more than half of all security breaches sustained by networks.

Accepted Answer

According to various studies and reports, human errors, ignorance, and omissions are responsible for a significant percentage of security breaches in networks. Some estimates suggest that this could account for up to 90% of all incidents.

Question 2

A ____ attack occurs when a hacker uses programs that try a combination of a user ID and every word in a dictionary to gain access to the network.&#10;A) flashing&#10;B) denial-of-service&#10;C) dictionary&#10;D) brute force

Accepted Answer

A dictionary attack specifically refers to the method where a hacker uses a list of potential passwords (often compiled into a "dictionary") to attempt to gain unauthorized access to a user's account. This contrasts with a brute force attack, which tries every possible combination of characters.

Question 3

A(n)____ is a password-protected and encrypted file that holds an individual's identification information,including a public key.&#10;A) digital certificate&#10;B) authentication file&#10;C) access control list&#10;D) authentication certificate

Accepted Answer

A digital certificate is a file that contains an individual's identification information and public key, and is encrypted and password-protected. It is used to verify the identity of the individual and ensure secure communication. Option B, authentication file, is a generic term and could refer to any file used for authentication, but does not specifically indicate encryption or password-protection. Option C, access control list, is a list that determines which individuals or groups have access to certain resources or systems, but does not contain identification information or encryption. Option D, authentication certificate, is not a common term and does not accurately describe the function and content of a digital certificate.

Question 4

A ____ attack occurs when an Internet chat user sends commands to a victim's machine that cause the screen to fill with garbage characters and requires the victim to terminate their chat sessions.&#10;A) flashing&#10;B) denial-of-service&#10;C) war driving&#10;D) phishing

Accepted Answer

A flashing attack involves sending disruptive commands to a victim's machine, causing the screen to fill with garbage characters, forcing the victim to terminate their chat session.

Question 5

____ software searches a node for open ports.&#10;A) Phishing&#10;B) Sniffing&#10;C) Authentication&#10;D) Port scanner

Accepted Answer

A port scanner software searches for open ports on a node or network. Phishing software attempts to trick individuals into revealing sensitive information, sniffing software intercepts and analyzes network traffic, and authentication software verifies the identity of a user.

Question 6

A router that is not configured to drop packets that match certain suspicious characteristics is an example of a risk associated with ____.&#10;A) people&#10;B) transmission and hardware&#10;C) protocols and software&#10;D) Internet access

Accepted Answer

The answer of A router that is not configured to...

Question 7

____ is a social engineering practice in which a person attempts to glean access or authentication information by posing as someone who needs that information.&#10;A) Cracking&#10;B) Hacking&#10;C) War driving&#10;D) Phishing

Accepted Answer

Phishing is a social engineering technique used to obtain sensitive information (such as usernames, passwords, credit card details) by posing as a trustworthy entity (such as a bank or a reputable company). The attacker sends an email or message designed to trick the recipient into clicking a malicious link or providing their personal information.

Question 8

By default,the 802.11 standard offers substantial security.

Accepted Answer

By default, the 802.11 standard does not offer substantial security. It only provides minimal security through Wired Equivalent Privacy (WEP), which has been found to be easily hackable. It is highly recommended to use additional security mechanisms such as Wi-Fi Protected Access (WPA) or WPA2 to improve security.

Question 9

Encryption is the last means of defense against data theft.

Accepted Answer

Encryption is the process of converting information into a code or cipher, which cannot be understood by unauthorized parties. It is considered the last line of defense against data theft because even if hackers manage to steal encrypted data, they will not be able to read it without the encryption key.

Question 10

A ____ main function is to examine packets and determine where to direct them based on their Network layer addressing information.&#10;A) switch's&#10;B) gateway's&#10;C) router's&#10;D) proxy server's

Accepted Answer

The main function of a router is to examine packets and determine where to direct them based on their Network layer addressing information. Switches are used to direct traffic within a network and do not typically examine Network layer addresses. Gateways and proxy servers can perform similar functions but may not specifically focus on Network layer addressing.

Question 11

The combination of a public key and a private key is known as a ____.&#10;A) key lock&#10;B) key frame&#10;C) key pair&#10;D) key set

Accepted Answer

The answer of The combination of a public key and...

Question 12

In a ____ attack,a person redirects or captures secure transmissions as they occur.&#10;A) denial-of service&#10;B) man-in-the-middle&#10;C) war driving&#10;D) phishing

Accepted Answer

The answer of In a ____ attack,a person redirects or...

Question 13

A ____ attack occurs when a system becomes unable to function because it has been deluged with data transmissions or otherwise disrupted.&#10;A) flashing&#10;B) denial-of-service&#10;C) war driving&#10;D) phishing

Accepted Answer

The answer of A ____ attack occurs when a system...

Question 14

A ____ attack occurs when a hacker tries numerous possible character combinations to find the key that will decrypt encrypted data.&#10;A) flashing&#10;B) denial-of-service&#10;C) dictionary&#10;D) brute force

Accepted Answer

The answer of A ____ attack occurs when a hacker...

Question 15

Network security is more often compromised &#34;from the inside&#34; than from external sources.

Accepted Answer

The answer of Network security is more often compromised &#34;from...

Question 16

A ____ firewall is a router (or a computer installed with software that enables it to act as a router)that examines the header of every packet of data it receives to determine whether that type of packet is authorized to continue to its destination.

A) packet-filtering
B) gateway
C) proxy
D) selective

Accepted Answer

The answer of A ____ firewall is a router (or...

Question 17

An NOS that contains a &#34;back door&#34;is an example of a risk associated with ____.&#10;A) people&#10;B) transmission and hardware&#10;C) protocols and software&#10;D) Internet access

Accepted Answer

The answer of An NOS that contains a &#34;back door&#34;is...

Question 18

____ is a public key encryption system that can verify the authenticity of an e-mail sender and encrypt e-mail data in transmission.&#10;A) PGP&#10;B) SSH&#10;C) IPSec&#10;D) SSL

Accepted Answer

The answer of ____ is a public key encryption system...

Question 19

The use of certificate authorities to associate public keys with certain users is known as ____.&#10;A) PGP&#10;B) PKI&#10;C) IPSec&#10;D) SSL

Accepted Answer

The answer of The use of certificate authorities to associate...

Question 20

A security policy should state exactly which hardware,software,architecture,or protocols will be used to ensure security.

Accepted Answer

The answer of A security policy should state exactly which...

Question 21

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;Software that can react to suspicious activity.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 22

In general,information is ____________________ if it could be used by other parties to impair an organization's functioning,decrease customers' confidence,cause a financial loss,damage an organization's status,or give a significant advantage to a competitor.

Accepted Answer

The answer of In general,information is ____________________ if it could...

Question 23

A(n)____________________ identifies an organization's security risks,levels of authority,designated security coordinator and team members,responsibilities for each team member,and responsibilities for each employee.

Accepted Answer

The answer of A(n)____________________ identifies an organization's security risks,levels of...

Question 24

A VPN ____ authenticates VPN clients and establishes tunnels for VPN connections.&#10;A) router&#10;B) service&#10;C) concentrator&#10;D) certificate authority

Accepted Answer

The answer of A VPN ____ authenticates VPN clients and...

Question 25

A(n)____________________ is a software application on a network host that acts as an intermediary between the external and internal networks,screening all incoming and outgoing traffic.

Accepted Answer

The answer of A(n)____________________ is a software application on a...

Question 26

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;Software that can only detect and log suspicious activity.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 27

____ is a method of encrypting TCP/IP transmissions.&#10;A) PGP&#10;B) IPSec&#10;C) PAP&#10;D) SSL

Accepted Answer

The answer of ____ is a method of encrypting TCP/IP...

Question 28

RADIUS and TACACS belong to a category of protocols known as AAA (____).&#10;A) access, authorization, and accounting&#10;B) authentication, authorization, and accounting&#10;C) authentication, authorization, and authority&#10;D) authentication, authorization, and access

Accepted Answer

The answer of RADIUS and TACACS belong to a category...

Question 29

____________________ is the use of an algorithm to scramble data into a format that can be read only by reversing the algorithm.

Accepted Answer

The answer of ____________________ is the use of an algorithm...

Question 30

A(n)____________________ is a thorough examination of each aspect of the network to determine how it might be compromised.

Accepted Answer

The answer of A(n)____________________ is a thorough examination of each...

Question 31

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;Data is encrypted using a single key.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 32

In ____,both computers verify the credentials of the other.&#10;A) mutual authorization&#10;B) mutual access&#10;C) mutual authentication&#10;D) mutual verification

Accepted Answer

The answer of In ____,both computers verify the credentials of...

Question 33

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;A firewall that can view a data stream.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 34

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;A firewall that can block designated types of traffic based on application data contained within packets.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 35

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;A firewall that protects only the computer on which it is installed.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 36

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;Data is encrypted using two keys.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 37

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;A software application on a network host that acts as an intermediary between the external and internal networks,screening all incoming and outgoing traffic.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 38

MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy server&#10;b.IDS&#10;g.proxy service&#10;c.content filtering&#10;h.public key encryption&#10;d.host-based&#10;i.private key encryption&#10;e.stateful&#10;The host that runs the proxy service.

Accepted Answer

The answer of MATCHING&#10;Match each item with a statement below:&#10;a.IPS&#10;f.proxy...

Question 39

In ____ ,a hacker forges name server records to falsify his host's identity.&#10;A) IP spoofing&#10;B) DNS spoofing&#10;C) ID spoofing&#10;D) DHCP spoofing

Accepted Answer

The answer of In ____ ,a hacker forges name server...

Question 40

____ protocols are the rules that computers follow to accomplish authentication.&#10;A) Access&#10;B) Availability&#10;C) Authority&#10;D) Authentication

Accepted Answer

The answer of ____ protocols are the rules that computers...

Question 41

Describe the three-way handshake used in CHAP.

Accepted Answer

The answer of Describe the three-way handshake used in CHAP....

Question 42

Define and describe PAP.

Accepted Answer

The answer of Define and describe PAP....

Question 43

Describe one potential flaw in CHAP and MS-CHAP authentication and explain how it is resolved.

Accepted Answer

The answer of Describe one potential flaw in CHAP and...

Question 44

Describe the two phases IPSec use to accomplish authentication.

Accepted Answer

The answer of Describe the two phases IPSec use to...

Question 45

Describe who should conduct a security audit and advantages,if any.

Accepted Answer

The answer of Describe who should conduct a security audit...

Question 46

Describe what distinguishes 802.1x from other authentication standards.

Accepted Answer

The answer of Describe what distinguishes 802.1x from other authentication...

Question 47

Describe the SCP (Secure CoPy)utility.

Accepted Answer

The answer of Describe the SCP (Secure CoPy)utility....

Question 48

Define SSH (secure shell)and explain threats it guards against.Include an explanation of the encryption algorithms that may be used with it.

Accepted Answer

The answer of Define SSH (secure shell)and explain threats it...

Question 49

Describe an advantage of using EAP.

Accepted Answer

The answer of Describe an advantage of using EAP....

Question 50

Explain how to block traffic attempting to exit a LAN and discuss why an administrator would want to do this.

Accepted Answer

The answer of Explain how to block traffic attempting to...

Deck 12: Network Security