Question Results

Score 1 of 1

Question:

In MAC the access policy is set by:

Response:

	the role
	network ACL
	the GPO
	the owner
	the system

Score 1 of 1

Question:

Bell-La Padula focuses primarily on:

Response:

	Data Integrity
	Confidentialty
	Accessibility
	Availability
	Authentication

Score 0 of 1

Question:

Which access control protects the entire system?

Response:

	Access Control Lists
	Firewalls/IPS
	Data Access Controls
	Operating System Controls/Policies
	System Access Controls

Score 0 of 1

Question:

Which of the following packet switched networks is best suited for fiber optic networks with sporadic traffic?

Response:

	Frame Relay
	ATM
	MPLS
	SMDS
	SONET

Score 1 of 1

Question:

What OSI Layer includes data encryption?

Response:

	Presentation
	Transport
	Datalink
	Application
	Network

Score 0 of 1

Question:

Match the following control types to their purposes

Response:

Match	User answer	Feedback
Reducing Risk	Preventative
Correcting violations and incidents	Preventative	Corrective controls also help improve existing preventative and detective controls
Discouraging violations	Preventative
Providing alternate ways of accomplishing a task	Compensating
Restoring systems and information	Recovery

Score 0 of 1

Question:

Encryption, access control mechanisms, access control lists and remote access authentication protocols are all examples of

Response:

	Technical controls
	Both Technical and Administrative
	Administrative Controls
	Physical Controls

Score 1 of 1

Question:

Which of the following is the highest in the OSI model:

Response:

	Network
	Transport
	Data Link
	Presentation
	Physical

Score 1 of 1

Question:

How many levels are there in the latest (June 2013) OSI model?

Response:

	8
	6
	5
	10
	7

Score 1 of 1

Question:

Match the following terms and definitions

Response:

Match	User answer	Feedback
Intended to discourage a potential attacker	Deterrent
Intended to avoid an incident from happening	Preventive
Fixes component or systems after an incident has occurred	Corrective
Intended to bring the environment back to production levels	Recovery
Identify an incidents activities	Detective
Alternate measures of control	Compensating

Score 0 of 1

Question:

Clark-Wilson focuses primarily on:

Response:

	Address Integrity
	Authentication
	Accessibility
	Confidentialty
	Availability

Score 1 of 1

Question:

Match the following key terms

Response:

Match	User answer	Feedback
Availability	Reliable and timely access to data and resources
Confidentiality	Necessary level of secrecy, unauthorized disclosure is prevented
Shoulder surfing	Unauthorized viewing of information (screen peeking)
Social Engineering	Tricking someone into giving sensitive information (to gain unauthorized access)

Score 1 of 1

Question:

Which of the following is primarily focused on identifying alternate solutions to achieve a task?

Response:

	Corrective
	Compensating
	Recovery
	Preventative
	Detective

Score 1 of 1

Question:

Match the following examples to their definitions

Response:

Match	User answer	Feedback
Unpatched servers	Vulnerability
A virus that relies on unpatched code or OS levels	Threat
The likelihood a threat will be realized, the frequency of natural disasters	Risk
$1M dollars per day downtime	Exposure
A proxy server	Countermeasure

Score 1 of 1

Question:

Which of the following is primarily focused on identifying violations and incidents?

Response:

	Preventative
	Corrective
	Recovery
	Compensating
	Detective