Question 1

A deny-by-default stance is less strict than an allow-by-default stance.

Accepted Answer

A deny-by-default stance is stricter than an allow-by-default stance.

Question 2

Knowledge factor authentication is also referred to as Type I authentication factor.

Accepted Answer

Knowledge factor authentication, which relies on something the user knows (like a password or PIN), is indeed referred to as Type I authentication factor.

Question 3

Passwords are considered weaker than passphrases.

Accepted Answer

Passwords are typically shorter and often rely on a complex mix of characters, making them harder to remember and potentially easier to crack than passphrases, which are longer and can be more complex due to their use of multiple words, making them both more secure and user-friendly.

Question 4

Smart cards are less expensive to implement than memory cards.

Accepted Answer

Smart cards are more expensive to implement than memory cards.

Question 5

Retina scans have a higher accuracy than any other biometric scan.

Accepted Answer

Iris scans have a higher accuracy than any other biometric scan.

Question 6

Type I errors are more dangerous than Type II errors.

Accepted Answer

Type II errors are more dangerous than Type I errors.

Question 7

When considering FAR, FRR, and CER, smaller values are better.

Accepted Answer

FAR (False Acceptance Rate), FRR (False Rejection Rate), and CER (Crossover Error Rate) are metrics used to evaluate the performance of biometric systems. Smaller values indicate better performance, as they imply lower rates of incorrect acceptances, rejections, and a lower point where the rates of false acceptances and rejections cross over, respectively.

Question 8

Content-dependent access control is based on subject or object attributes or environmental characteristics.

Accepted Answer

Content-dependent access control makes access decisions based on the data contained within the object. Context-dependent access control is based on subject or object attributes or environmental characteristics.

Question 9

A network-based IDS is the most common IDS and monitors network traffic on a local network segment.

Accepted Answer

A network-based IDS (Intrusion Detection System) is indeed one of the most common types of IDS and is specifically designed to monitor and analyze network traffic for suspicious activities on a local network segment, helping to detect potential security breaches or attacks.

Question 10

Pharming and phishing are password attacks.

Accepted Answer

Pharming and phishing are social engineering attacks, not password attacks. Brute force attacks and dictionary attacks are password attacks.

Question 11

Which concept ensures that data is protected from unauthorized modification or data corruption?&#10;A) Confidentiality&#10;B) Integrity&#10;C) Availability&#10;D) Identification

Accepted Answer

The answer of Which concept ensures that data is protected...

Question 12

Which of the following is an example of three-factor authentication?&#10;A) Username, password, smart card&#10;B) Password, smart card, PIN&#10;C) Password, smart card, iris scan&#10;D) Smart card, iris scan, keystroke dynamics

Accepted Answer

The answer of Which of the following is an example...

Question 13

Of the options given, which biometric consideration is MOST important?&#10;A) FAR&#10;B) Enrollment time&#10;C) Throughput rate&#10;D) FRR

Accepted Answer

The answer of Of the options given, which biometric consideration...

Question 14

What defines the method for identifying and authenticating users and the level of access that is granted to users?&#10;A) Least privilege&#10;B) Dual controls&#10;C) Separation of duties&#10;D) Access control policy

Accepted Answer

The answer of What defines the method for identifying and...

Question 15

Which accountability mechanism reviews facility and perimeter protections?&#10;A) Physical vulnerability assessment&#10;B) Personnel vulnerability assessment&#10;C) Clipping level&#10;D) Blind test

Accepted Answer

The answer of Which accountability mechanism reviews facility and perimeter...

Question 16

In which access control category do fire extinguishers fall?&#10;A) Detective&#10;B) Corrective&#10;C) Preventive&#10;D) Compensative

Accepted Answer

The answer of In which access control category do fire...

Question 17

Which of the following are physical access controls?&#10;A) Security policies&#10;B) Baselines&#10;C) Badges&#10;D) Audit trails

Accepted Answer

The answer of Which of the following are physical access...

Question 18

In which access control model is all that is not expressly permitted is forbidden?&#10;A) MAC&#10;B) RBAC&#10;C) Rule-based access control&#10;D) DAC

Accepted Answer

The answer of In which access control model is all...

Question 19

Which type of IDS analyzes traffic and compares it to normal traffic to determine whether said traffic is a threat?&#10;A) Anomaly-based&#10;B) Signature-based&#10;C) Rule-based&#10;D) Pattern-matching

Accepted Answer

The answer of Which type of IDS analyzes traffic and...

Question 20

Which malicious software collects private user data?&#10;A) Virus&#10;B) Spyware&#10;C) Worm&#10;D) Trojan horse

Accepted Answer

The answer of Which malicious software collects private user data?&#10;A)...

Deck 2: Access Control