Question Results

Score 1 of 1

Question:

Match the following control types to their purposes

Response:

Match	User answer	Feedback
Reducing Risk	Preventative
Correcting violations and incidents	Detective	Corrective controls also help improve existing preventative and detective controls
Discouraging violations	Deterrent
Providing alternate ways of accomplishing a task	Compensating
Restoring systems and information	Recovery

Score 0 of 1

Question:

Which classification of fuel type is gasoline given?

Response:

	D
	B
	C
	A

Score 1 of 1

Question:

Match the following terms to definitions

Response:

Match	User answer	Feedback
Training, configuration management of documentation, risk management	Administrative controls
Firewalls, IDS, encryption	Technical controls
Lighting, Fencing, guard patrols	Physical Controls

Score 0 of 1

Question:

More key terms from Chapter 2

Response:

Match	User answer	Feedback
Weakness or lack of a countermeasure	Exposure
Entity that can exploit a vulnerability	Threat agent
The danger of having a vulnerability exploited	Risk
The probability of a threat being realized	Vulnerability
Presence of a vulnerability which exposes the organization	Threat

Score 0 of 1

Question:

Match the following examples to their definitions

Response:

Match	User answer	Feedback
Unpatched servers	Exposure
A virus that relies on unpatched code or OS levels	Threat
The likelihood a threat will be realized, the frequency of natural disasters	Risk
$1M dollars per day downtime	Vulnerability
A proxy server	Countermeasure

Score 1 of 1

Question:

Which of the following is immediately above the Transport Layer in the OSI model:

Response:

	Session
	Datalink
	Presentation
	Network

Score 0 of 1

Question:

What is the ideal humidity level for a data center?

Response:

	30-50%
	20-40%
	60-80%
	40-60%

Score 0 of 1

Question:

Which access control requires sensitivity labels on all subjects and objects?

Response:

	Discretionary access control
	Role-based access control
	Access List Control
	Manager set control
	Mandatory access control

Score 0 of 1

Question:

Clark-Wilson focuses primarily on:

Response:

	Authentication
	Confidentialty
	Accessibility
	Availability
	Address Integrity

Score 1 of 1

Question:

Which access control includes job rotation?

Response:

	Physical
	Organizational
	Administrative
	Technical

Score 1 of 1

Question:

Which of the following packet switched networks is best suited for fiber optic networks with sporadic traffic?

Response:

	ATM
	MPLS
	SMDS
	Frame Relay
	SONET

Score 0 of 1

Question:

Which of the following is NOT a RAW authentication protocol?

Response:

	LDAP
	CHAP
	EAP
	PAP

Score 1 of 1

Question:

Match the following terms and definitions

Response:

Match	User answer	Feedback
Intended to discourage a potential attacker	Deterrent
Intended to avoid an incident from happening	Preventive
Fixes component or systems after an incident has occurred	Corrective
Intended to bring the environment back to production levels	Recovery
Identify an incidents activities	Detective
Alternate measures of control	Compensating

Score 0 of 1

Question:

Which access control includes intrusion detection?

Response:

	Techincal
	Technical
	Administrative
	Organizational
	Owner
	Physical

Score 1 of 1

Question:

Which access control includes asset classification?

Response:

	Administrative
	Technical
	Owner
	Organizational
	Physical