Give us your feedback!
Question:
Account administration, policies and standards, asset classification and reviews of audit trails are all examples of
Response:
Both technical and administrative controls
Technical controls
Physical controls
Administrative controls
Which OSI layer includes the LLC and MAC sub-layers?
Network
Transport
Session
Data Link
Physical
More key terms from Chapter 2
Weakness or lack of a countermeasure
Vulnerability
Entity that can exploit a vulnerability
Threat agent
The danger of having a vulnerability exploited
Threat
The probability of a threat being realized
Risk
Presence of a vulnerability which exposes the organization
Exposure
Which access control includes asset classification?
Administrative
Owner
Technical
Organizational
Encryption, access control mechanisms, access control lists and remote access authentication protocols are all examples of
Administrative Controls
Both Technical and Administrative
Physical Controls
Match the following examples to their definitions
Unpatched servers
A virus that relies on unpatched code or OS levels
The likelihood a threat will be realized, the frequency of natural disasters
$1M dollars per day downtime
A proxy server
Countermeasure
Which classification of fuel type is gasoline given?
B
A
D
C
What OSI Layer includes data compression?
Application
Presentation
Datalink
Which of the following is NOT an example of biometric identification?
Retinal imagery
Ear shape/pattern
Voice
Hand shape/pattern
Which access control includes job rotation?
Which access control includes audit trails?
Which of the following packet switched networks is best suited for fiber optic networks with sporadic traffic?
SONET
SMDS
Frame Relay
ATM
MPLS
Which of the following is immediately above the Data Link Layer in the OSI model:
Match the following key terms
Availability
Reliable and timely access to data and resources
Confidentiality
Necessary level of secrecy, unauthorized disclosure is prevented
Shoulder surfing
Unauthorized viewing of information (screen peeking)
Social Engineering
Tricking someone into giving sensitive information (to gain unauthorized access)
Which classification of fuel type is grease given?
