Question Results

Score 1 of 1

Question:

"The strength of the cryptosystem is a function of the keys, not the algorithm" is also known as

Response:

	Kerckhoff's Principle
	Feedback: Auguste Kerckhoff, trying to get the French to clean up their military cryptography back in 1883... seriously kickin' it old school.
	Rijndael's Challenge
	Moore's Law
	Diffe-Hillman's Axiom

Score 0 of 1

Question:

Match the following examples to their definitions

Response:

Match	User answer	Feedback
Unpatched servers	Vulnerability
A virus that relies on unpatched code or OS levels	Threat
The likelihood a threat will be realized, the frequency of natural disasters	Exposure
$1M dollars per day downtime	Risk
A proxy server	Countermeasure

Score 1 of 5

Question:

Match the following cryptology tools and technologies

Response:

Match	User answer	Feedback
One-time pads	Manual	Still in use in some instances. Recall, one-time pads are the most secure approach
Enigma machine	Mechanical	Electrical lights, mechanical crank/spinwheel
AES, RSA Algorithms	Electronic	I know, you wanted to think "digital" but technically, electronic works as well
Cipherdisks	Electro-mechanical	Think ceasar's spin wheel here
Single photon emissions	Quantum cryptography	used to provide secure key negotiation. After the test, go google "einstein spooky action" to see what will keep future CISSP's from sleeping at night

Score 1 of 1

Question:

Which access control includes motion detectors?

Response:

	Authentication
	Organizational
	Physical
	Technical
	Administrative

Score 1 of 1

Question:

Which of the following is primarily focused on identifying violations and incidents?

Response:

	Recovery
	Preventative
	Detective
	Corrective
	Compensating

Score 1 of 1

Question:

Owner-set permissions are an example of:

Response:

	mandatory access control
	role-based access control
	Discretionary access control
	Clark-Wilson

Score 0 of 1

Question:

Clark-Wilson focuses primarily on:

Response:

	Confidentialty
	Authentication
	Address Integrity
	Availability
	Accessibility

Score 1 of 1

Question:

Which of the following is primarily focused on identifying alternate solutions to achieve a task?

Response:

	Corrective
	Detective
	Compensating
	Preventative
	Recovery

Score 1 of 1

Question:

Which access control includes locked doors?

Response:

	Technical
	Organizational
	Physical
	Owner
	Administrative

Score 1 of 1

Question:

Which of the following is the lowest in the OSI model:

Response:

	Data Link
	Network
	Session
	Transport
	Application

Score 1 of 1

Question:

Which of the following have the best CER?

Response:

	Iris Scanning
	Badge Scanning
	Finger scanning
	Hand scanning

Score 1 of 1

Question:

Motion detectors, video cameras, fences, locked doors, guards and dogs are all examples of

Response:

	Administrative controls
	Technical controls
	Both Technical and Administrative controls
	Physical controls

Score 1 of 1

Question:

Work factor is defined as:

Response:

	the amount of effort/time required to maintain an established security plan once it has been implemented
	the amount of effort/time required by an attacker to overcome a protective measure
	the amount of effort/time required by an administrator to establish a reasonable system security plan
	the amount of effort/time required by an algorithm to fully encrypt or decrypt a message

Score 1 of 1

Question:

Encryption, access control mechanisms, access control lists and remote access authentication protocols are all examples of

Response:

	Both Technical and Administrative
	Administrative Controls
	Physical Controls
	Technical controls

Score 1 of 1

Question:

Which access control requires sensitivity labels on all subjects and objects?

Response:

	Discretionary access control
	Mandatory access control
	Role-based access control
	Manager set control
	Access List Control