Question 1

the __________ is an entity that verifies the claimant's identity by verifying the claimant's possession and control of one or two authenticators using an authentication protocol.

Accepted Answer

The answer of the __________ is an entity that verifies...

Question 2

____________ authentication involves a single transfer of information from one user (A) intended for another (B).

Accepted Answer

The answer of ____________ authentication involves a single transfer of...

Question 3

__________ is an extension of identity management to multiple security domains such as autonomous internal business units, external business partners and other third party applications and services with the goal of sharing digital identities so that a user can be authenticated a single time and then access applications and resources across multiple domains.

Accepted Answer

Identity federation is the correct answer because it refers to the process of linking and managing identities across multiple systems, networks, and organizations, allowing for single sign-on (SSO) capabilities across different security domains.

Question 4

the authenticator that is used as a possession factor is a __________ .

Accepted Answer

A token is a physical device that is used as a possession factor in authentication processes. It can be something like a security token or a smart card that the user must have on their person to gain access to a system or service.

Question 5

A subject undergoing the processes of enrollment and identity proofing is the __________ .

Accepted Answer

The correct term for a subject undergoing the processes of enrollment and identity proofing is "applicant." This term refers to an individual or entity applying to become a subscriber or user of a service, where their identity needs to be proven before being granted access or credentials.

Question 6

the __________ is a data structure that authoritatively binds an identity and additional attributes to one or more authenticators possessed by a subscriber, and can be verified when presented to the verifier in an authentication transaction.

Accepted Answer

The answer of the __________ is a data structure that...

Question 7

_________ protocols enable communicating parties to satisfy themselves mutually about each other's identity and to exchange session keys.

Accepted Answer

The answer of _________ protocols enable communicating parties to satisfy...

Question 8

A Kerberos _____ is a set of managed nodes that share the same Kerberos database.

Accepted Answer

The answer of A Kerberos _____ is a set of...

Question 9

__________ assign attributes to users, such as roles, access permissions, and employee information.

Accepted Answer

The answer of __________ assign attributes to users, such as...

Question 10

In an unprotected network environment any client can apply to any server for service.the obvious security risk of this is __________ .

Accepted Answer

Impersonation is the obvious security risk in an unprotected network environment where any client can apply to any server for service, as it allows an attacker to assume the identity of a legitimate user and gain unauthorized access to resources.

Question 11

A centralized, automated approach to provide enterprise-wide access to resources by employees and other authorized individuals with a focus of defining an identity for each user, associating attributes with the identity, and enforcing a means by which a user can verify identity is __________ .

Accepted Answer

Identity management focuses on defining an identity for each user, associating attributes with the identity, and enforcing a means by which a user can verify identity, which matches the description given.

Question 12

User __________ is the process of determining whether some user or some application or process acting on behalf of a user is, in fact, who or what it declares itself to be.

Accepted Answer

The answer of User __________ is the process of determining...

Question 13

the __________ is unsuitable for a connectionless type of application because it requires the overhead of a handshake before any connectionless transmission, effectively negating the chief characteristic of a connectionless transaction.

Accepted Answer

The challenge-response approach is unsuitable for a connectionless type of application because it involves a back-and-forth communication (handshake) to verify the identity of the parties involved before any actual data transmission occurs. This process adds overhead and delays, which contradicts the primary advantage of connectionless communication—sending data without the need to establish a connection first.

Question 14

__________ are items that connect to a computer logically or physically in order to authenticate identity.

Accepted Answer

The answer of __________ are items that connect to a...

Question 15

the specific items used during authentication, such as a password or hardware token, are referred to as __________ .

Accepted Answer

The answer of the specific items used during authentication, such...

Question 16

Requiring the user to demonstrate knowledge of secret information and routinely used in single-layer authentication processes, __________ can come in the form of passwords, passphrases, PINs, or answers to secret questions.

Accepted Answer

The answer of Requiring the user to demonstrate knowledge of...

Question 17

A Kerberos __________ is a set of managed nodes that share the same Kerberos database.

Accepted Answer

A Kerberos realm is a set of managed nodes that share the same Kerberos database, defining a network area within which Kerberos authentication is valid and managed.

Question 18

the three authentication factors of authenticating a user's identity are: knowledge factor, possession factor, and __________ factor.

Accepted Answer

The answer of the three authentication factors of authenticating a...

Question 19

An entity that relies upon the subscriber's authenticator(s) and credentials or a verifier's assertion of a claimant's identity, typically to process a transaction or grant access to information or a system is the __________ .

Accepted Answer

The correct term is "relying party." A relying party is an entity that relies on the verification of a claimant's identity, typically provided by an authenticator or a verifier, to grant access to a system or information or to process transactions.

Question 20

Kerberos relies exclusively on __________ .

Accepted Answer

Kerberos relies exclusively on symmetric encryption, where the same key is used for both encryption and decryption of messages.

Quiz 16: User Authentication