Filters
Question type
Study Flashcards

Which access control model that uses access based on a user's job function within an organization?


A) Role Based Access Control
B) Rule Based Access Control
C) Discretionary Access Control
D) Mandatory Access Control

E) None of the above
F) A) and B)

Correct Answer

verifed

verified

A Local Group Policy (LGP)has more options than a Group Policy.

A) True
B) False

Correct Answer

verifed

verified

What kind of attack allows for the construction of LDAP statements based on user input statements,which can then be used to access the LDAP database or modify the database's information?


A) LDAP poisoning
B) Kerberos injection
C) LDAP injection
D) DAP hijacking

E) None of the above
F) C) and D)

Correct Answer

verifed

verified

Discuss the two significant weaknesses of DAC.

Correct Answer

verifed

verified

DAC has two significant weaknesses.First...

View Answer

Although designed to support remote dial-in access to a corporate network,what service below is commonly used with 802.1x port security for both wired and wireless LANs?


A) RADIUS
B) ICMP
C) FTP
D) Telnet

E) All of the above
F) B) and D)

Correct Answer

verifed

verified

What type of computer can forward RADIUS messages between RADIUS clients and RADIUS servers?


A) intermediate proxy
B) remote proxy
C) RADIUS proxy
D) translation proxy

E) A) and D)
F) A) and C)

Correct Answer

verifed

verified

Authentication,authorization,and accounting are sometimes called AAA.

A) True
B) False

Correct Answer

verifed

verified

What is the purpose of an ACL?

Correct Answer

verifed

verified

ACLs provide file system security for pr...

View Answer

Discuss the differences between DAP and LDAP.

Correct Answer

verifed

verified

Unlike X.500 DAP,LDAP was designed to ru...

View Answer

A vulnerable process that is divided between two or more individuals to prevent fraudulent application of the process is known as which of the following?


A) separation of duties
B) process sharing
C) mandatory splitting
D) role reversal

E) A) and D)
F) B) and D)

Correct Answer

verifed

verified

When LDAP traffic is made secure by using Secure Sockets Layer (SSL) or Transport Layer Security (TLS) ,what is this process called?


A) SAML
B) LDAPS
C) TACACS
D) SDML

E) None of the above
F) C) and D)

Correct Answer

verifed

verified

B

List three major access control models.

Correct Answer

verifed

verified

There are five major access control models: Mandatory Access Control (MAC),Discretionary Access Control (DAC),Role Based Access Control (RBAC),Rule Based Access Control (RBAC),and Attribute-Based Access Control (ABAC).

With the Discretionary Access Control (DAC)model,no object has an owner;the system has total control over that object.

A) True
B) False

Correct Answer

verifed

verified

Describe LDAP injection attacks.

Correct Answer

verifed

verified

A weakness of LDAP is that it can be subject to LDAP injection attacks.These attacks,similar to SQL injection attacks,can occur when user input is not properly filtered.This may allow an attacker to construct LDAP statements based on user input statements.The attacker could then retrieve information from the LDAP database or modify its content.The defense against LDAP injection attacks is to examine all user input before processing.

Which access control model is considered to be the least restrictive?


A) Role Based Access Control
B) Mandatory Access Control
C) Rule Based Access Control
D) Discretionary Access Control

E) C) and D)
F) B) and C)

Correct Answer

verifed

verified

Which major types of access involving system resources are controlled by ACLs? (Choose all that apply. )


A) system access
B) remote access
C) user access
D) application access

E) A) and D)
F) B) and C)

Correct Answer

verifed

verified

What is the name for a predefined framework that can be used for controlling access,and is embedded into software and hardware?


A) accounting and access model
B) user control model
C) access control model
D) authorization control model

E) A) and C)
F) A) and B)

Correct Answer

verifed

verified

What policy is designed to ensure that all confidential or sensitive materials,either in paper form or electronic,are removed from a user's workspace and secured when the items not in use or when employees leave their workspace?


A) clean workspace
B) secure workspace
C) clean desk
D) secure desk

E) A) and B)
F) A) and C)

Correct Answer

verifed

verified

A list that specifies which subjects are allowed to access an object and what operations they can perform on it is referred to as a(n) :


A) ACE
B) DAC
C) entity
D) ACL

E) B) and D)
F) A) and D)

Correct Answer

verifed

verified

The action that is taken by a subject over an object is called a(n) :


A) authorization
B) access
C) control
D) operation

E) None of the above
F) A) and D)

Correct Answer

verifed

verified

Showing 1 - 20 of 50

Related Exams

Exam 1

Introduction to Security

50 Questions

Exam 2

Malware and Social Engineering Attacks

50 Questions

Exam 3

Basic Cryptography

50 Questions

Exam 4

Advanced Cryptography and PKI

50 Questions

Exam 5

Networking and Server Attacks

50 Questions

Exam 6

Network Security Devices, Design, and Technology

50 Questions

Exam 7

Administering a Secure Network

50 Questions

Exam 8

Wireless Network Security

50 Questions

Exam 9

Client and Application Security

50 Questions

Exam 10

Mobile and Embedded Device Security

50 Questions

Exam 11

Authentication and Account Management

50 Questions

Exam 13

Vulnerability Assessment and Data Security

50 Questions

Exam 14

Business Continuity

50 Questions

Exam 15

Risk Mitigation

50 Questions

Show Answer