Question 1

If getting users to log off when they go home at night is a problem, which option should you modify in the figure above?

Accepted Answer

The answer of  If getting users to log off...

Question 2

Which option in the figure above turns Kerberos encryption on and off?

Accepted Answer

The option "Enforce user logon restrictions" controls the use of Kerberos authentication and encryption. When this option is enabled, Kerberos encryption is turned on, and when it is disabled, Kerberos encryption is turned off.

Question 3

Is MD4 incorporated into Microsoft's MS-CHAP v2 hashing algorithm?

Accepted Answer

The answer of Is MD4 incorporated into Microsoft's MS-CHAP v2...

Question 4

What form of encryption is being enabled in the figure above?

Accepted Answer

The answer of  What form of encryption is being...

Question 5

Which authentication method is a physical device that enables the generation of a unique password each time a user logs on to a server or network?

Accepted Answer

A security token is a physical device that generates a unique password (or code) each time a user logs on to a server or network. This helps to ensure that only authorized users can access the system, and makes it much more difficult for hackers to guess or steal passwords. SSH is a protocol used for secure remote access, digital certificates are used to verify the identity of a user or device, and a session is a period of time during which a user is logged in to a system. None of these options are specifically related to the use of a security token as an authentication method.

Question 6

Which authentication method is used in Internet and network communications, and employs a handshaking protocol for authentication plus RSA for encryption?

Accepted Answer

The answer of Which authentication method is used in Internet...

Question 7

Is the maximum size of the private key in AES 256 bits in length?

Accepted Answer

Yes, the maximum size of the private key in AES is 256 bits in length.

Question 8

_____ is a set of IP-based secure communications and encryption standards created by the IETF, and was developed to provide secure network communications.

Accepted Answer

IPSec is a set of IP-based secure communications and encryption standards created by the IETF, and was developed to provide secure network communications. SSL, PPTP, and LDAP are all different protocols or systems for specific purposes, but they do not provide the same level of IP-based network security as IPSec.

Question 9

Which authentication method is used on networks and in remote communications, typically employing Remote Authentication Dial-in User Servers and is compatible with many encryption methods?

Accepted Answer

The authentication method described in the question is EAP (Extensible Authentication Protocol). It is commonly used in networks and remote communications and supports a variety of encryption methods. SSL (Secure Sockets Layer) and TLS (Transport Layer Security) are encryption protocols but not authentication methods. Kerberos is a network authentication protocol predominantly used in Active Directory environments.

Question 10

Are user passwords in Red Hat Linux encrypted using 3DES and stored in the /etc/passwd file?

Accepted Answer

User passwords in Red Hat Linux are encrypted using a one-way hash function and stored in the /etc/shadow file, not in the /etc/passwd file. The hash function used can vary depending on the system configuration, but it is not 3DES.

Question 11

What does SSH use to authenticate a communications session that uses passwords?

Accepted Answer

SSH uses both digital certificates and RSA (Rivest-Shamir-Adleman) to authenticate a communications session that uses passwords. Digital certificates help in establishing the identity of the parties involved, while RSA, a public-key cryptography algorithm, is used for secure data transmission.

Question 12

What size of keys can be used with SSL authentication?

Accepted Answer

SSL authentication can support three key sizes: 40 bit, 56 bit, and 128 bit. While 40 bit and 56 bit keys are no longer considered secure and are vulnerable to attacks, 128 bit keys provide a much stronger level of security and are currently recommended for use with SSL authentication. Choosing option C allows for the use of both obsolete and insecure options as well as the recommended one, but it ultimately allows for the strongest level of security.

Question 13

With which version(s) of IP is IPSec compatible?

Accepted Answer

The answer of With which version(s) of IP is IPSec...

Question 14

Why is SSH particularly suited to UNIX/Linux systems?

Accepted Answer

SSH is particularly suited to UNIX/Linux systems because it uses pipes, which are a fundamental feature of UNIX/Linux for inter-process communication.

Question 15

At what TCP/IP layer does IPSec secure communications?

Accepted Answer

IPSec is implemented at the Network layer of TCP/IP protocol stack.

Question 16

What authentication method was designed using SSL as a model and is supported by the IETF as an Internet standard for secure communications?

Accepted Answer

TLS (Transport Layer Security) was designed using SSL (Secure Sockets Layer) as a model and is a protocol for secure communication over the internet. It is supported by the IETF (Internet Engineering Task Force) as an internet standard for secure communications. The other options are not related to SSL or TLS authentication. EAP (Extensible Authentication Protocol) is a framework for authenticating users in a network. SSL+ is not a recognized protocol or authentication method. IPSec (Internet Protocol Security) is a protocol for secure communication at the network layer.

Question 17

Which authentication method authenticates by using tickets to verify client and server communications, and employs private-key encryption?

Accepted Answer

Kerberos is an authentication protocol that uses tickets to verify the identity of clients and servers in a networked environment. It employs private-key encryption to ensure that communication is secure. Digital certificates and Secure Sockets Layer (SSL) are also forms of authentication, but they use different methods than Kerberos. Security tokens can be used to provide additional authentication factors, but they are not a specific method of authentication on their own like the other options.

Question 18

Which authentication method employs a unique set of digital information or a digital signature with a communication or a file as a means to verify the source and uses public-key asymmetrical encryption?

Accepted Answer

Digital certificates use public-key asymmetrical encryption to create a unique set of digital information or a digital signature, which can be used to verify the source of a communication or a file. SSL and TLS are cryptographic protocols used for securing internet communication, while Kerberos is a network authentication protocol.

Question 19

Did the original version of DES use a 56-bit encryption key combined with 8-bit parity?

Accepted Answer

Yes, the original version of DES used a 56-bit encryption key combined with 8-bit parity.

Question 20

Was AES originally developed for the U.S. National Security Agency?

Accepted Answer

AES (Advanced Encryption Standard) was developed through a public competition run by the U.S. National Institute of Standards and Technology (NIST), not specifically for the National Security Agency (NSA).

Quiz 3: Security Through Authentication and Encryption