Topics

Explore all topics

Universities

uni logo
University of North Carolina at Chapel Hill
uni logo
University of Notre Dame
uni logo
Clemson University
Explore all Universities

Professors

Overall Quality
-/5
c c
Overall Quality
-/5
Billt Camp
Overall Quality
-/5
mathio g
Explore all Professors
Add Browser Extension
Start Free Trial
Need Help? Contact us
title
Textbook Solutions
Step-by-step solutions verified by experts
title
24/7 Homework Help
Complete assignments with the help of our community
title
Flashcards
Stimulate your visual memory & walk into test day with confidence
title
DocuAssist
Upload your study materials and we’ll help fill in the answers.
title
Campus Reps
Become a Campus Rep and earn up to 20% commission, plus weekly and monthly cash prizes.
title
My Courses
Add the courses you're enrolled in for tailored study material to meet your requirements
Explore all services
Add Browser Extension
Start Free Trial
Need Help? Contact us
back arrowfull exam logo
العربية
search
ai logoChat with AI
Servicesarrow
Textbook Solutions icon
Textbook Solutions
24/7 Homework Help icon
24/7 Homework Help
Flashcards icon
Flashcards
DocuAssist icon
DocuAssist
Campus Reps icon
Campus Reps
My Courses icon
My Courses
Mobile App icon
Mobile App
Explore All Services
Discoverarrow

Topics

Explore All Services

Universities

uni logo
University of North Carolina at Chapel Hill
uni logo
University of Notre Dame
uni logo
Clemson University
Explore all Universities

professors

/5
c c
/5
Billt Camp
/5
mathio g
Explore all Professors
Explore all topics
Discover more topics
HomeSchoolingAsk a question

Deck 3: Network Security

Full screen (f)
exit full mode
Question
Users typically can eliminate a vulnerability in one of their programs by ________.

A)installing a patch
B)doing a zero-day installation
C)using an antivirus program
D)all of the above
Use Space or
up arrow
down arrow
to flip the card.
Question
The generic name for evil software is ________.

A)viruses
B)worms
C)exploits
D)malware
Question
A compromise is an attempted attack.
Question
The threat environment includes ________.

A)attackers
B)attacks
C)both A and B
D)neither A nor B
Question
Which phase of the plan-protect-respond cycle takes the largest amount of work?

A)plan
B)protect
C)respond
D)Each phase requires about equal effort.
Question
A ________ is a flaw in a program that permits a specific attack or set of attacks against this problem.

A)malware
B)security error
C)vulnerability
D)security fault
Question
Which of the following attach themselves to other programs?

A)viruses
B)worms
C)both A and B
D)neither A nor B
Question
An attack that occurs before a patch is available is called a zero-day attack.
Question
Which of the following can spread more rapidly?

A)directly-propagating viruses
B)directly-propagating worms
C)Both of the above can spread with approximately equal speed.
Question
An action that will stop many viruses is ________.

A)installing a firewall
B)the use of an antivirus program
C)both A and B
D)neither A nor B
Question
The generic name for a security flaw in a program is a ________.

A)virus
B)malware
C)security fault
D)vulnerability
Question
Viruses most commonly spread from one computer to another ________.

A)via e-mail
B)by propagating directly by themselves
C)through obfuscation
D)all of the above
Question
Universal malware requires a vulnerability to succeed.
Question
Compromises also are called ________.

A)breaches
B)incidents
C)both A and B
D)neither A nor B
Question
Malware is a generic name for evil software.
Question
Which of the following is a propagation vector for some worms?

A)e-mail
B)direct propagation
C)both A and B
D)neither A nor B
Question
Which of the following sometimes uses direct propagation between computers?

A)viruses
B)worms
C)both A and B
D)neither A nor B
Question
An action that will stop many viruses is ________.

A)installing patches
B)the use of an antivirus program
C)both A and B
D)neither A nor B
Question
Viruses propagate within a computer by infecting other programs in that computer.
Question
Firewalls typically stop viruses.
Question
Which of the following can thwart directly-propagating worms?

A)applying patches
B)firewalls
C)both A and B
D)neither A nor B
Question
A program that can capture passwords as you enter them is ________.

A)a keystroke logger
B)data mining software
C)both A and B
D)neither A nor B
Question
Scripts are likely to be dangerous primarily if a computer has a vulnerability.
Question
Spam can be used to ________.

A)implement a fraud
B)cause the reader to go to a website that will download malware to the victim's computer
C)both A and B
D)neither A nor B
Question
Scripts normally are bad.
Question
Pieces of code that are executed after the virus or worm has spread are called ________.

A)vulnerabilities
B)exploits
C)compromises
D)payloads
Question
An attack in which an authentic-looking e-mail or website entices a user to enter his or her username,password,or other sensitive information is called ________.(Select the most specific answer.)

A)phishing
B)identity theft
C)social engineering
D)a spyware attack
Question
Which of the following can thwart directly-propagating worms?

A)firewalls
B)antivirus programs
C)both A and B
D)neither A nor B
Question
The general name for malware on a user's PC that collects sensitive information and sends this information to an attacker is ________.

A)keystroke loggers
B)anti-privacy software
C)spyware
D)data mining software
Question
Trojan horses can get onto computers by ________.

A)viruses
B)hackers
C)both A and B
D)neither A nor B
Question
Antivirus programs can usually stop directly-propagating worms.
Question
Trojan horses can get onto computers by ________.

A)self-propagation
B)hackers
C)both A and B
D)neither A nor B
Question
Malware programs that masquerade as system files are called ________.

A)viruses
B)scripts
C)payloads
D)Trojan horses
Question
________ is lying to get victims to do something against financial self interest.

A)Social engineering
B)Fraud
Question
Scripts may execute commands when a webpage is downloaded.
Question
Credit card number thieves are called ________.(Pick the most precise answer.)

A)numbers racketeers
B)fraudsters
C)identity thieves
D)carders
Question
Tricking users into doing something against their interests is ________.

A)social engineering
B)hacking
C)both A and B
D)neither A nor B
Question
Mobile code is another name for ________.

A)virus
B)worm
C)both A and B
D)neither A nor B
Question
Identity theft is stealing credit card numbers,in order to make unauthorized purchases.
Question
Unsolicited commercial e-mail is better known as ________.

A)spam
B)adware
C)social engineering
D)identity theft
Question
What does a hacker usually do IMMEDIATELY after downloading a hacker toolkit?

A)install a Trojan horse
B)create a backdoor
C)execute an exploit
D)delete log files
Question
Attack programs that can be remotely controlled by an attacker are ________.

A)bots
B)DoS programs
C)exploits
D)sock puppets
Question
Hackers send probe packets to identify ________.

A)IP addresses with active hosts
B)hosts running certain applications
C)both A and B
D)neither A nor B
Question
What are the most dangerous types of employees?

A)financial employees
B)manufacturing employees
C)IT security employees
D)former employees
Question
The last stage in a hacking attack is ________.

A)scanning
B)the break-in
C)creating a back door
D)none of the above
Question
Methods that hackers use to break into computers are ________.

A)cracks
B)magics
C)exploits
D)compromises
Question
Hackers identify possible victim computers by sending ________.

A)scouts
B)probe packets
C)exploits
D)Mocking Jays
Question
A way back into a system that an attacker can use to get into the compromised computer later is called a ________.(Choose the most specific answer.)

A)backdoor
B)Trojan horse
C)compromise
D)rootkit
Question
The last stage in a hacking attack is the break-in.
Question
DoS attacks attempt to ________.

A)hack a computer
B)reduce the availability of a computer
C)both A and B
D)neither A nor B
Question
It is still hacking if a person unintentionally accesses unauthorized computer information.
Question
Cyberwar attacks are made by national governments or organized terrorists.
Question
Which of the following can be a type of backdoor?

A)A new account
B)A Trojan horse
C)both A and B
D)neither A nor B
Question
It is generally illegal to write malware.
Question
Which of the following can be upgraded after it is installed on a victim computer? (Choose the most specific answer.)

A)Trojan horses
B)bots
C)viruses
D)worms
Question
Which of the following tends to be more damaging to the victim?

A)credit card theft
B)identity theft
C)Both are about equally damaging to the victim.
Question
In distributed DoS attacks,the attacker sends messages directly to ________.

A)bots
B)the intended victim of the DoS attack
C)backdoors
D)DOS servers
Question
Most hackers today are driven by curiosity,a sense of power,and,sometimes,a desire to increase their reputation among peers.
Question
What type of attacker are most attackers today?

A)disgruntled employees and ex-employees
B)criminals
C)hackers motivated by a sense of power
D)cyberterrorists
Question
After a break-in,the first step usually is to ________.

A)do damage manually
B)delete log files
C)create a backdoor
D)download a hacker toolkit
Question
Implementation guidance is less specific than _______.

A)policy
B)implementation
C)standards
D)none of the above
Question
An attacker must break through two firewalls to get to a host.This illustrates the principle called ________.(Select the most specific answer.)

A)comprehensive security
B)risk assurance
C)having a DMZ
D)defense in depth
Question
A policy specifies ________.

A)what should be done
B)how to do it
C)both A and B
D)neither A nor B
Question
The goal of security is to eliminate risk.
Question
Attacking your own firm occurs in ________.

A)vulnerability testing
B)auditing
C)both A and B
D)neither A nor B
Question
Which of the following specifies what should be done?

A)policies
B)implementation
C)both A and B
D)neither A nor B
Question
Which of the following is true?

A)guidelines must be followed
B)guidelines must be considered
C)both A and B
D)neither A nor B
Question
Access control involves ________.

A)limiting access to each resource
B)limiting the permissions of users to each resource
C)both A and B
D)neither A nor B
Question
Actions that people are allowed to take on a resource comes under the heading of ________.

A)hacks
B)permissions
C)exploits
D)risks
Question
Balancing threats against protection costs is called ________.

A)economic justification
B)risk analysis
C)comprehensive security
D)defense in depth
Question
Oversight helps ensure that a policy is implemented faithfully.
Question
Policies are separated by implementation to take advantage of ________.

A)implementer knowledge
B)the delegation of work principle
C)minimum permissions
Question
Vulnerabilities are occasionally found in even the best security products.Consequently,companies must ________.

A)have comprehensive security
B)have defense in depth
C)do risk analysis
D)only give minimum permissions
Question
What type of attacker can do the most damage?

A)criminal attackers
B)hackers driven by curiosity
C)employees and ex-employees
D)national governments
Question
Security is primarily a management issue.
Question
Attackers only need to find a single weakness to break in.Consequently,companies must ________.

A)have comprehensive security
B)have insurance
C)do risk analysis
D)only give minimum permissions
Question
Oversight activities include ________.

A)vulnerability testing
B)creating guidelines
C)both A and B
D)neither A nor B
Question
In general,authenticated users should be given maximum permissions in a resource so that they can do their jobs with few restrictions.
Question
Which of the following must be followed?

A)standards
B)guidelines
C)both A and B
D)neither A nor B
Question
Which of the following is not one of the four major security planning principles?

A)perimeter defense
B)risk analysis
C)comprehensive security
D)defense in depth
Unlock Deck
Sign up to unlock the cards in this deck!
Unlock Deck
Unlock Deck
1/152
auto play flashcards
Play
simple tutorial
Full screen (f)
exit full mode
Deck 3: Network Security
1
Users typically can eliminate a vulnerability in one of their programs by ________.

A)installing a patch
B)doing a zero-day installation
C)using an antivirus program
D)all of the above
A
2
The generic name for evil software is ________.

A)viruses
B)worms
C)exploits
D)malware
D
3
A compromise is an attempted attack.
False
4
The threat environment includes ________.

A)attackers
B)attacks
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
5
Which phase of the plan-protect-respond cycle takes the largest amount of work?

A)plan
B)protect
C)respond
D)Each phase requires about equal effort.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
6
A ________ is a flaw in a program that permits a specific attack or set of attacks against this problem.

A)malware
B)security error
C)vulnerability
D)security fault
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
7
Which of the following attach themselves to other programs?

A)viruses
B)worms
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
8
An attack that occurs before a patch is available is called a zero-day attack.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
9
Which of the following can spread more rapidly?

A)directly-propagating viruses
B)directly-propagating worms
C)Both of the above can spread with approximately equal speed.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
10
An action that will stop many viruses is ________.

A)installing a firewall
B)the use of an antivirus program
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
11
The generic name for a security flaw in a program is a ________.

A)virus
B)malware
C)security fault
D)vulnerability
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
12
Viruses most commonly spread from one computer to another ________.

A)via e-mail
B)by propagating directly by themselves
C)through obfuscation
D)all of the above
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
13
Universal malware requires a vulnerability to succeed.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
14
Compromises also are called ________.

A)breaches
B)incidents
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
15
Malware is a generic name for evil software.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
16
Which of the following is a propagation vector for some worms?

A)e-mail
B)direct propagation
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
17
Which of the following sometimes uses direct propagation between computers?

A)viruses
B)worms
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
18
An action that will stop many viruses is ________.

A)installing patches
B)the use of an antivirus program
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
19
Viruses propagate within a computer by infecting other programs in that computer.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
20
Firewalls typically stop viruses.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
21
Which of the following can thwart directly-propagating worms?

A)applying patches
B)firewalls
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
22
A program that can capture passwords as you enter them is ________.

A)a keystroke logger
B)data mining software
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
23
Scripts are likely to be dangerous primarily if a computer has a vulnerability.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
24
Spam can be used to ________.

A)implement a fraud
B)cause the reader to go to a website that will download malware to the victim's computer
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
25
Scripts normally are bad.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
26
Pieces of code that are executed after the virus or worm has spread are called ________.

A)vulnerabilities
B)exploits
C)compromises
D)payloads
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
27
An attack in which an authentic-looking e-mail or website entices a user to enter his or her username,password,or other sensitive information is called ________.(Select the most specific answer.)

A)phishing
B)identity theft
C)social engineering
D)a spyware attack
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
28
Which of the following can thwart directly-propagating worms?

A)firewalls
B)antivirus programs
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
29
The general name for malware on a user's PC that collects sensitive information and sends this information to an attacker is ________.

A)keystroke loggers
B)anti-privacy software
C)spyware
D)data mining software
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
30
Trojan horses can get onto computers by ________.

A)viruses
B)hackers
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
31
Antivirus programs can usually stop directly-propagating worms.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
32
Trojan horses can get onto computers by ________.

A)self-propagation
B)hackers
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
33
Malware programs that masquerade as system files are called ________.

A)viruses
B)scripts
C)payloads
D)Trojan horses
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
34
________ is lying to get victims to do something against financial self interest.

A)Social engineering
B)Fraud
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
35
Scripts may execute commands when a webpage is downloaded.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
36
Credit card number thieves are called ________.(Pick the most precise answer.)

A)numbers racketeers
B)fraudsters
C)identity thieves
D)carders
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
37
Tricking users into doing something against their interests is ________.

A)social engineering
B)hacking
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
38
Mobile code is another name for ________.

A)virus
B)worm
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
39
Identity theft is stealing credit card numbers,in order to make unauthorized purchases.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
40
Unsolicited commercial e-mail is better known as ________.

A)spam
B)adware
C)social engineering
D)identity theft
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
41
What does a hacker usually do IMMEDIATELY after downloading a hacker toolkit?

A)install a Trojan horse
B)create a backdoor
C)execute an exploit
D)delete log files
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
42
Attack programs that can be remotely controlled by an attacker are ________.

A)bots
B)DoS programs
C)exploits
D)sock puppets
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
43
Hackers send probe packets to identify ________.

A)IP addresses with active hosts
B)hosts running certain applications
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
44
What are the most dangerous types of employees?

A)financial employees
B)manufacturing employees
C)IT security employees
D)former employees
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
45
The last stage in a hacking attack is ________.

A)scanning
B)the break-in
C)creating a back door
D)none of the above
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
46
Methods that hackers use to break into computers are ________.

A)cracks
B)magics
C)exploits
D)compromises
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
47
Hackers identify possible victim computers by sending ________.

A)scouts
B)probe packets
C)exploits
D)Mocking Jays
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
48
A way back into a system that an attacker can use to get into the compromised computer later is called a ________.(Choose the most specific answer.)

A)backdoor
B)Trojan horse
C)compromise
D)rootkit
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
49
The last stage in a hacking attack is the break-in.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
50
DoS attacks attempt to ________.

A)hack a computer
B)reduce the availability of a computer
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
51
It is still hacking if a person unintentionally accesses unauthorized computer information.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
52
Cyberwar attacks are made by national governments or organized terrorists.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
53
Which of the following can be a type of backdoor?

A)A new account
B)A Trojan horse
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
54
It is generally illegal to write malware.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
55
Which of the following can be upgraded after it is installed on a victim computer? (Choose the most specific answer.)

A)Trojan horses
B)bots
C)viruses
D)worms
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
56
Which of the following tends to be more damaging to the victim?

A)credit card theft
B)identity theft
C)Both are about equally damaging to the victim.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
57
In distributed DoS attacks,the attacker sends messages directly to ________.

A)bots
B)the intended victim of the DoS attack
C)backdoors
D)DOS servers
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
58
Most hackers today are driven by curiosity,a sense of power,and,sometimes,a desire to increase their reputation among peers.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
59
What type of attacker are most attackers today?

A)disgruntled employees and ex-employees
B)criminals
C)hackers motivated by a sense of power
D)cyberterrorists
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
60
After a break-in,the first step usually is to ________.

A)do damage manually
B)delete log files
C)create a backdoor
D)download a hacker toolkit
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
61
Implementation guidance is less specific than _______.

A)policy
B)implementation
C)standards
D)none of the above
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
62
An attacker must break through two firewalls to get to a host.This illustrates the principle called ________.(Select the most specific answer.)

A)comprehensive security
B)risk assurance
C)having a DMZ
D)defense in depth
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
63
A policy specifies ________.

A)what should be done
B)how to do it
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
64
The goal of security is to eliminate risk.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
65
Attacking your own firm occurs in ________.

A)vulnerability testing
B)auditing
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
66
Which of the following specifies what should be done?

A)policies
B)implementation
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
67
Which of the following is true?

A)guidelines must be followed
B)guidelines must be considered
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
68
Access control involves ________.

A)limiting access to each resource
B)limiting the permissions of users to each resource
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
69
Actions that people are allowed to take on a resource comes under the heading of ________.

A)hacks
B)permissions
C)exploits
D)risks
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
70
Balancing threats against protection costs is called ________.

A)economic justification
B)risk analysis
C)comprehensive security
D)defense in depth
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
71
Oversight helps ensure that a policy is implemented faithfully.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
72
Policies are separated by implementation to take advantage of ________.

A)implementer knowledge
B)the delegation of work principle
C)minimum permissions
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
73
Vulnerabilities are occasionally found in even the best security products.Consequently,companies must ________.

A)have comprehensive security
B)have defense in depth
C)do risk analysis
D)only give minimum permissions
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
74
What type of attacker can do the most damage?

A)criminal attackers
B)hackers driven by curiosity
C)employees and ex-employees
D)national governments
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
75
Security is primarily a management issue.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
76
Attackers only need to find a single weakness to break in.Consequently,companies must ________.

A)have comprehensive security
B)have insurance
C)do risk analysis
D)only give minimum permissions
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
77
Oversight activities include ________.

A)vulnerability testing
B)creating guidelines
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
78
In general,authenticated users should be given maximum permissions in a resource so that they can do their jobs with few restrictions.
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
79
Which of the following must be followed?

A)standards
B)guidelines
C)both A and B
D)neither A nor B
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
80
Which of the following is not one of the four major security planning principles?

A)perimeter defense
B)risk analysis
C)comprehensive security
D)defense in depth
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
Unlock Deck
k this deck
locked card icon
Unlock Deck
Unlock for access to all 152 flashcards in this deck.
QuizPlus
surly
Quizplus
Work With Us
Policies
Download the App
Scan to downloadDownload the App
qr-code
Links
Links
Work With Us
Download the App
surly
English
English
العربية
Scan to downloadDownload the App
qr-code

English
English
العربية
Copyright © 2025 Quizplus LLC.
  • facebook-footer
  • instagram-footer
  • x-footer
  • tiktok
  • Linktree