For more classes visit
www.snaptutorial.com
This Tutorial contains 3 Set of Finals
Question 1 SIP is a ___________ protocol used to support real-time communications.
Question 2 What name is given to a U.S. federal law that requires U.S. government agencies to protect citizens’ private data and have proper security controls in place?
Question 3 This security appliance examines IP data streams for common attack and malicious intent patterns.
For more course tutorials visit
uophelp.com is now newtonhelp.com
www.newtonhelp.com
A trial of adjustments is the examination of the general record. For example an evaluator could get demonstrate by sending a customer an insistence that they owe a receivable. The evaluator will use the data collected from these tests to perceive survey issues
This Tutorial contains 3 Set of Finals
CIS 333 Life of the Mind/newtonhelp.com bellflower3
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance and Probing Using Common Tools
For more classes visit
www.snaptutorial.com
This Tutorial contains 3 Set of Finals
Question 1 SIP is a ___________ protocol used to support real-time communications.
Question 2 What name is given to a U.S. federal law that requires U.S. government agencies to protect citizens’ private data and have proper security controls in place?
Question 3 This security appliance examines IP data streams for common attack and malicious intent patterns.
For more course tutorials visit
uophelp.com is now newtonhelp.com
www.newtonhelp.com
A trial of adjustments is the examination of the general record. For example an evaluator could get demonstrate by sending a customer an insistence that they owe a receivable. The evaluator will use the data collected from these tests to perceive survey issues
This Tutorial contains 3 Set of Finals
CIS 333 Life of the Mind/newtonhelp.com bellflower3
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance and Probing Using Common Tools
CIS 333 Imagine Your Future/newtonhelp.com bellflower45
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance and Probing Using
For more classes visit
www.snaptutorial.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
Cis 359 Enthusiastic Study - snaptutorial.comStephenson01
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
STAYER CIS 359 Midterm Exam Set 3 NEW
Check this A+ tutorial guideline at
http://www.assignmentcloud.com/cis-359-stayer/cis-359-midterm-exam-set-3-new
For more classes visit
http://www.assignmentcloud.com
• Question 1
When using virtualization, it is commonplace to use the term ____ to refer to a virtualized environment operating in or on a host platform.
• Question 2
A(n) ____ backup only archives the files that have been modified since the last backup.
· Question 12 out of 2 pointsOne of the processes design.docxoswald1horne84988
· Question 1
2 out of 2 points
One of the processes designed to eradicate maximum possible security risks is to ________________, which limits access credentials to the minimum required to conduct any activity and ensures that access is authenticated to particular individuals.
Selected Answer:
harden
Correct Answer:
harden
· Question 2
0 out of 2 points
One of seven domains of a typical IT infrastructure is the user domain. Within that domain is a range of user types, and each type has specific and distinct access needs. Which of the following types of users has the responsibility of creating and putting into place a security program within an organization?
Selected Answer:
systems administrators
Correct Answer:
security personnel
· Question 3
2 out of 2 points
Which of the following user types is responsible for audit coordination and response, physical security and building operations, and disaster recovery and contingency planning?
Selected Answer:
security personnel
Correct Answer:
security personnel
· Question 4
0 out of 2 points
Imagine a scenario in which an employee regularly shirks the organization’s established security policies in favor of convenience. What does this employee’s continued violation suggest about the culture of risk management in the organization?
Selected Answer:
that the employee requires further training to gain a deeper knowledge of the policies
Correct Answer:
that the organization lacks a good risk culture wherein employees have “buy in”
· Question 5
0 out of 2 points
Which of the following user groups has both the business needs of being able to access the systems, network, and application to complete contracted services, and access capability that is limited to particular sections of the systems, network, and application?
Selected Answer:
guests and general public
Correct Answer:
vendors
· Question 6
2 out of 2 points
Security policies that clarify and explain how rights are assigned and approved among employees can ensure that people have only the access needed for their jobs. Which of the following is not accomplished when prior access is removed?
Selected Answer:
minimizes future instances of human error
Correct Answer:
minimizes future instances of human error
· Question 7
0 out of 2 points
Aside from human user types, there are two other non-human user groups. Known as account types, ________________ are accounts implemented by the system for the purpose of supporting automated service, and ___________________ are accounts that remain non-human until individuals are assigned access and can use them to recover a system following a major outage.
Selected Answer:
control partners, system accounts
Correct Answer:
system accounts, contingent IDs
· Question 8
2 out of 2 points
Which of the following is the most important reason why data needs to be both retrievable and properly stored?
Selected Answer:
Companies .
For more classes visit
www.snaptutorial.com
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
• Question 2
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more classes visit
www.snaptutorial.com
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more classes visit
www.snaptutorial.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance
CIS 333 Imagine Your Future/newtonhelp.com bellflower45
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance and Probing Using
For more classes visit
www.snaptutorial.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
Cis 359 Enthusiastic Study - snaptutorial.comStephenson01
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more course tutorials visit
www.newtonhelp.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
STAYER CIS 359 Midterm Exam Set 3 NEW
Check this A+ tutorial guideline at
http://www.assignmentcloud.com/cis-359-stayer/cis-359-midterm-exam-set-3-new
For more classes visit
http://www.assignmentcloud.com
• Question 1
When using virtualization, it is commonplace to use the term ____ to refer to a virtualized environment operating in or on a host platform.
• Question 2
A(n) ____ backup only archives the files that have been modified since the last backup.
· Question 12 out of 2 pointsOne of the processes design.docxoswald1horne84988
· Question 1
2 out of 2 points
One of the processes designed to eradicate maximum possible security risks is to ________________, which limits access credentials to the minimum required to conduct any activity and ensures that access is authenticated to particular individuals.
Selected Answer:
harden
Correct Answer:
harden
· Question 2
0 out of 2 points
One of seven domains of a typical IT infrastructure is the user domain. Within that domain is a range of user types, and each type has specific and distinct access needs. Which of the following types of users has the responsibility of creating and putting into place a security program within an organization?
Selected Answer:
systems administrators
Correct Answer:
security personnel
· Question 3
2 out of 2 points
Which of the following user types is responsible for audit coordination and response, physical security and building operations, and disaster recovery and contingency planning?
Selected Answer:
security personnel
Correct Answer:
security personnel
· Question 4
0 out of 2 points
Imagine a scenario in which an employee regularly shirks the organization’s established security policies in favor of convenience. What does this employee’s continued violation suggest about the culture of risk management in the organization?
Selected Answer:
that the employee requires further training to gain a deeper knowledge of the policies
Correct Answer:
that the organization lacks a good risk culture wherein employees have “buy in”
· Question 5
0 out of 2 points
Which of the following user groups has both the business needs of being able to access the systems, network, and application to complete contracted services, and access capability that is limited to particular sections of the systems, network, and application?
Selected Answer:
guests and general public
Correct Answer:
vendors
· Question 6
2 out of 2 points
Security policies that clarify and explain how rights are assigned and approved among employees can ensure that people have only the access needed for their jobs. Which of the following is not accomplished when prior access is removed?
Selected Answer:
minimizes future instances of human error
Correct Answer:
minimizes future instances of human error
· Question 7
0 out of 2 points
Aside from human user types, there are two other non-human user groups. Known as account types, ________________ are accounts implemented by the system for the purpose of supporting automated service, and ___________________ are accounts that remain non-human until individuals are assigned access and can use them to recover a system following a major outage.
Selected Answer:
control partners, system accounts
Correct Answer:
system accounts, contingent IDs
· Question 8
2 out of 2 points
Which of the following is the most important reason why data needs to be both retrievable and properly stored?
Selected Answer:
Companies .
For more classes visit
www.snaptutorial.com
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
• Question 2
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more classes visit
www.snaptutorial.com
CIS 359 Final Exam Set 1
• Question 1
____ are likely in the event of a hacker attack, when the attacker retreats to a chat room and describes in specific detail to his or her associates the method and results of his or her latest conquest.
For more classes visit
www.snaptutorial.com
PLEASE CHECK ALL INCLUDED PRODUCTS IN THIS TUTORIAL AS SOME QUIZ MAY BE MISSING
CIS 333 Week 1 Discussion Providing Security Over Data
CIS 333 Week 2 Discussion Risk Management and Malicious Attacks
CIS 333 Week 2 Lab 1 Performing Reconnaissance
FOR MORE CLASSES VISIT
www.acc564nerd.com
Please check the details below
ACC 564 Week 1 DQ 1 Value of Information and DQ 2 AIS
ACC 564 Week 2 DQ 1 Evaluation of Documentation Tools and DQ 2 David Miller
ACC 564 Week 2 Assignment 1 Information Needs for the AIS (2 Papers)
uop fin 200,uop fin 200,uop fin 200 complete course,uop fin 200 entire course,uop fin 200 week 1,uop fin 200 week2,uop fin 200 week 3,uop fin 200 week 4,uop fin 200 week 5,uop fin 200 week 6,uop fin 200 week 7,uop fin 200 week 8, uop fin 200 week 9,uop fin 200 tutorials,uop fin 200 assignments,fin 200help,fin 200 final exam 5 sets
2024.06.01 Introducing a competency framework for languag learning materials ...Sandy Millin
http://sandymillin.wordpress.com/iateflwebinar2024
Published classroom materials form the basis of syllabuses, drive teacher professional development, and have a potentially huge influence on learners, teachers and education systems. All teachers also create their own materials, whether a few sentences on a blackboard, a highly-structured fully-realised online course, or anything in between. Despite this, the knowledge and skills needed to create effective language learning materials are rarely part of teacher training, and are mostly learnt by trial and error.
Knowledge and skills frameworks, generally called competency frameworks, for ELT teachers, trainers and managers have existed for a few years now. However, until I created one for my MA dissertation, there wasn’t one drawing together what we need to know and do to be able to effectively produce language learning materials.
This webinar will introduce you to my framework, highlighting the key competencies I identified from my research. It will also show how anybody involved in language teaching (any language, not just English!), teacher training, managing schools or developing language learning materials can benefit from using the framework.
Palestine last event orientationfvgnh .pptxRaedMohamed3
An EFL lesson about the current events in Palestine. It is intended to be for intermediate students who wish to increase their listening skills through a short lesson in power point.
Biological screening of herbal drugs: Introduction and Need for
Phyto-Pharmacological Screening, New Strategies for evaluating
Natural Products, In vitro evaluation techniques for Antioxidants, Antimicrobial and Anticancer drugs. In vivo evaluation techniques
for Anti-inflammatory, Antiulcer, Anticancer, Wound healing, Antidiabetic, Hepatoprotective, Cardio protective, Diuretics and
Antifertility, Toxicity studies as per OECD guidelines
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
Francesca Gottschalk - How can education support child empowerment.pptxEduSkills OECD
Francesca Gottschalk from the OECD’s Centre for Educational Research and Innovation presents at the Ask an Expert Webinar: How can education support child empowerment?
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfTechSoup
In this webinar you will learn how your organization can access TechSoup's wide variety of product discount and donation programs. From hardware to software, we'll give you a tour of the tools available to help your nonprofit with productivity, collaboration, financial management, donor tracking, security, and more.
Synthetic Fiber Construction in lab .pptxPavel ( NSTU)
Synthetic fiber production is a fascinating and complex field that blends chemistry, engineering, and environmental science. By understanding these aspects, students can gain a comprehensive view of synthetic fiber production, its impact on society and the environment, and the potential for future innovations. Synthetic fibers play a crucial role in modern society, impacting various aspects of daily life, industry, and the environment. ynthetic fibers are integral to modern life, offering a range of benefits from cost-effectiveness and versatility to innovative applications and performance characteristics. While they pose environmental challenges, ongoing research and development aim to create more sustainable and eco-friendly alternatives. Understanding the importance of synthetic fibers helps in appreciating their role in the economy, industry, and daily life, while also emphasizing the need for sustainable practices and innovation.
Unit 8 - Information and Communication Technology (Paper I).pdfThiyagu K
This slides describes the basic concepts of ICT, basics of Email, Emerging Technology and Digital Initiatives in Education. This presentations aligns with the UGC Paper I syllabus.
1. STRAYER CIS 333 Week 11 Final Exam Set 2 NEW
Check this A+ tutorial guideline at
http://www.assignmentcloud.com/cis-333-strayer/cis-
333-week-11-final-exam-set-2-new
For more classes visit
http://www.assignmentcloud.com
Question 1 ____________ is the amount of time it takes to recover
and make a system, application, and data available for use after
an outage.
Question 2 The requirement to keep information private or
secret is the definition of __________.
Question 3 The _________ Domain connects remote users to the
organization’s IT infrastructure.
Question 4 A ___________ gives priorities to the functions an
organization needs to keep going.
Question 5 ___________ is the process of transforming data from
cleartext into ciphertext.
Question 6 Today, people working in cyberspace must deal
with new and constantly evolving ________.
Question 7 The director of IT security is generally in charge of
ensuring that the ____________ conforms to policy.
Question 8 A ________ is a collection of computers connected to
one another or to a common connection medium.
2. Question 9 The goal and objective of a __________ is to provide a
consistent definition for how an organization should handle
and secure different types of data.
Question 10 Which of the following is the definition of
ciphertext?
Question 11 What term is used to describe streamlining
processes with automation or simplified steps?
Question 12 Audio conferencing is a software-based, real-time
audio conference solution for ________ callers.
Question 13 What is meant by digital subscriber line (DSL)?
Question 14 Medical practices and hospitals realized early on
that ________ provide(s) the ability to provide access to the
necessary information without having to invest in many
computers and network infrastructure.
Question 15 What term is used to describe communication that
doesn’t happen in real time but rather consists of messages
(voice or e-mail) that are stored on a server and downloaded to
endpoint devices?
Question 16 E-commerce systems and applications demand
strict C-I-A ________.
Question 17 If VoIP traffic needs to traverse through a WAN
with congestion, you need ___________.
Question 18 What name is given to a high-speed broadband
networking technology that uses a 53-byte cell to support real-
time voice, video, or data communications?
Question 19 What is meant by application convergence?
3. Question 20 Network devices can implement ___________ to better
support VoIP and SIP IP packets and reduce dropped calls and
delays.
Question 21 What is meant by firewall?
Question 22 When an attacker discovers a __________, he or she
can use it to bypass existing security controls such as
passwords, encryption, and so on.
Question 23 ________ is a type of attack in which the attacker
takes control of a session between two machines and
masquerades as one of them.
Question 24 A _________ has a hostile intent, possesses
sophisticated skills, and may be interested in financial gain.
They represent the greatest threat to networks and
information resources.
Question 25 A software program that collects information
about Internet usage and uses it to present targeted
advertisements to users is the definition of ________.
Question 26 Another type of attacker is called a ________. This is
a person with little or no skill who simply follows directions or
uses a “cookbook” approach to carrying out a cyberattack
without understanding the meaning of the steps he or she is
performing.
Question 27 An attempt to exploit a vulnerability of a computer
or network component is the definition of ________.
Question 28 What name is given to any event that results in a
violation of any of the C-I-A security tenets?
Question 29 What is meant by rootkit?
4. Question 30 What is meant by promiscuous mode?
Question 31 __________ is rapidly becoming an increasingly
important aspect of enterprise computing.
Question 32 ________ is the difference between the security
controls you have in place and the controls you need to have in
place in order to address all vulnerabilities.
Question 33 Which of the following is the definition of business
drivers?
Question 34 When you accept a __________, you take no further
steps to resolve.
Question 35 The first step in risk analysis is to determine what
and where the organization’s _________ are located.
Question 36 Your _________ plan shows that you have examined
risks to your organization and have developed plans to address
each risk.
Question 37 What name is given to any risk that exists but has
a defined response?
Question 38 The goal of ____________ is to quantify possible
outcomes of risks, determine probabilities of outcomes,
identify high-impact risks, and develop plans based on risks.
Question 39 Any organization that is serious about security
will view ___________ as an ongoing process.
Question 40 A ___________ will help identify not only which
functions are critical, but also how quickly essential business
functions must return to full operation following a major
interruption.
5. Question 41 The Bell-La Padula access control model focuses
primarily on ________.
Question 42 Which of the following adequately defines
continuous authentication?
Question 43 ________ is an authorization method in which access
to resources is decided by the user’s formal status.
Question 44 What name is given to an access control method
that bases access control approvals on the jobs the user is
assigned?
Question 45 An organization’s facilities manager might give
you a security card programmed with your employee ID
number, also known as a ________.
Question 46 ________ is an authentication credential that is
generally longer and more complex than a password.
Question 47 What is meant by multi-tenancy?
Question 48 What is meant by physically constrained user
interface?
Question 49 How is decentralized access control defined?
Question 50 A method of restricting resource access to specific
periods of time is called ________.
Question 51 When an information security breach occurs in
your organization, a __________ helps determine what happened
to the system and when.
Question 52 What is meant by certification?
6. Question 53 What term is used to describe a benchmark used
to make sure that a system provides a minimum level of
security across multiple applications and across different
products?
Question 54 What term is used to describe a set of step-by-step
actions to be performed to accomplish a security requirement,
process, or objective?
Question 55 What or who is the individual or team responsible
for performing the security test and evaluation for the system
and for preparing the report for the AO on the risk of operating
the system?
Question 56 The ___________ team’s responsibilities include
handling events that affect your computers and networks and
ultimately can respond rapidly and effectively to any event.
Question 57 The process of managing the baseline settings of a
system device is called ________.
Question 58 Which of the following is the definition of
guideline?
Question 59 Enacting changes in response to reported
problems is called ________.
Question 60 Which of the following is the definition of system
owner?
Question 61 SOC 2 and SOC 3 reports both address primarily
________-related controls.
Question 62 Security audits help ensure that your rules and
__________ are up to date, documented, and subject to change
control procedures.
7. Question 63 One of the best ways to avoid wasting your
organization’s resources is to ensure that you follow the ________
review cycle.
Question 64 What is meant by gray-box testing?
Question 65 The ___________ framework defines the scope and
contents of three levels of audit reports.
Question 66 The primary difference between SOC 2 and SOC 3
reports is ________.
Question 67 _________ was developed for organizations such as
insurance and medical claims processors, telecommunication
service providers, managed services providers, and credit card
transaction processing companies.
Question 68 As your organization evolves and as threats
mature, it is important to make sure your __________ still meet(s)
the risks you face today.
Question 69 ________ gives you the opportunity to review your
risk-management program and to confirm that the program
has correctly identified and reduced (or otherwise addressed)
the risks to your organization.
Question 70 Audits also often look at the current configuration
of a system as a snapshot in time to verify that it complies with
________.
Question 71 The ________ identifies staff reaction and response
times as well as inefficiencies or previously unidentified
vulnerabilities. All members of the staff involved in operations
or procedures participate in the test.
8. Question 72 Forensics and incident response are examples of
___________ controls.
Question 73 A _________ determines the extent of the impact that
a particular incident would have on business operations over
time.
Question 74 A(n) ________ is a measurable occurrence that has
an impact on the business.
Question 75 ___________ is the likelihood that a particular threat
exposes a vulnerability that could damage your organization.
Question 76 An attacker or event that might exploit a
vulnerability is a(n) ____________.
Question 77 ________ attempts to describe risk in financial terms
and put a dollar value on all the elements of a risk.
Question 78 A(n) ________ is an intent and method to exploit a
vulnerability.
Question 79 ___________ refers to the amount of harm a threat can
cause by exploiting a vulnerability.
Question 80 A control involved in the process of developing
and ensuring compliance with policy and procedures is the
definition of ________.
Question 81 Without any knowledge of the key, an attacker
with access to an encrypted message and the decryption cipher
could try every possible key to decode the message. This is
referred to as ________.
9. Question 82 What name is given to random characters that you
can combine with an actual input key to create the encryption
key?
Question 83 _______________ is another symmetric algorithm that
organizations currently use. It is a 64-bit block cipher that has a
variable key length from 32 to 448 bits. It is much faster than
DES or IDEA and is a strong algorithm that has been included in
more than 150 products, as well as v2.5.47 of the Linux kernel.
Its author, Bruce Schneier, placed it in the public domain.
Question 84 Cryptography accomplishes four security goals:
confidentiality, integrity, authentication, and ________________.
Question 85 ________ is the act of unscrambling ciphertext into
plaintext.
Question 86 What name is given to an encryption cipher that is
a product cipher with a 56-bit key consisting of 16 iterations of
substitution and transformation?
Question 87 What name is given to an encryption cipher that
uniquely maps any letter to any other letter?
Question 88 The most scrutinized cipher in history is the
________.
Question 89 A ________ is an encryption key used to encrypt
other keys before transmitting them.
Question 90 What is meant by checksum?
Question 91 Which of the following is the definition of packet-
filtering firewall?
10. Question 92 A _____________ contains rules that define the types of
traffic that can come and go through a network.
Question 93 What name is given to a protocol to implement a
VPN connection between two computers?
Question 94 Which OSI Reference Model layer must translate
the binary ones and zeros of computer language into the
language of the transport medium?
Question 95 Which OSI Reference Model layer is responsible for
transmitting information on computers connected to the same
local area network (LAN)?
Question 96 What term is used to describe the current
encryption standard for wireless networks?
Question 97 ________ allows the computer to get its configuration
information from the network instead of the network
administrator providing the configuration information to the
computer. It provides a computer with an IP address, subnet
mask, and other essential communication information,
simplifying the network administrator’s job.
Question 98 Which OSI Reference Model layer uses Media
Access Control (MAC) addresses? Device manufacturers assign
each hardware device a unique MAC address.
Question 99 A method to restrict access to a network based on
identity or other rules is the definition of ________.
Question 100 A method to restrict access to a network based
on identity or other rules is the definition of ________.
Question 101 In a __________, the attacker uses IP spoofing to
send a large number of packets requesting connections to the
11. victim computer. These appear to be legitimate but in fact
reference a client system that is unable to respond.
Question 102 Whether software or hardware based, a
____________ captures keystrokes, or user entries, and then
forwards that information to the attacker.
Question 103 Which of the following is the definition of logic
bomb?
Question 104 Unrecognized new processes running, startup
messages indicating that new software has been (or is being)
installed (registry updating), unresponsiveness of applications
to normal commands, and unusual redirection of normal Web
requests to unknown sites are all telltale symptoms of a ________.
Question 105 Which of the following is the definition of botnet?
Question 106 The purpose of the ________ is to “make the
Internet work better.” It focuses on the engineering aspects of
Internet communication and attempts to avoid policy and
business questions. It is an open organization, and it has no
membership requirements.
Question 107 Today, _________ standards address a wide variety
of topics, including power generation, power transmission and
distribution, commercial and consumer electrical appliances,
semiconductors, electromagnetics, batteries, solar energy, and
telecommunications. The organization was also instrumental in
the development of standards for electrical measurements,
including the gauss, hertz, and weber.
Question 108 The ________ provides oversight for architecture
for Internet protocols and procedures, processes used to create
standards, editorial and publication procedures for RFCs, and
12. confirmation of IETF chair and technical area directors. It also
provides much of the high-level management and validation of
the processes of conducting IETF business.
Question 109 The _____________ is the preeminent organization
for developing and publishing international standards for
technologies related to electrical and electronic devices and
processes.
Question 110 ________ is a document produced by the IETF that
contains standards as well as other specifications or
descriptive contents.
Question 111 An educational program that is generally
associated with a college or university that provides formal
courses that do not lead to degrees is the definition of ________.
Question 112 The standard bachelor’s degree is a __________
program.
Question 113 ________ refers to an educational institution that
has successfully undergone evaluation by an external body to
determine whether the institution meets applicable standards.
Question 114 The purpose of ________ is to provide formal
training courses that lead to a certificate or professional
certification and not a degree.
Question 115 The four main areas in NIST SP 800-50 are
awareness, training, education, and __________________.
Question 116 Which is the highest level of Check Point
certification for network security?
Question 117 Which is Cisco’s highest level of certification?
13. Question 118 The four main credentials of the ________ are
Systems Security Certified Practitioner (SSCP®), Certified
Information Systems Security Professional (CISSP®), Certified
Authorization Professional (CAP®), and Certified Secure
Software Lifecycle Professional (CSSLP®).
Question 119 The ____________ concentration from (ISC)2 is the
road map for incorporating security into projects, applications,
business processes, and all information systems.
Question 120 CompTIA’s Security+ certification provides
________.
Question 121 The regulating agency for the Family
Educational Rights and Privacy Act is the ________.
Question 122 The ________________ ,enacted as part of the
American Recovery and Reinvestment Act of 2009, was
designed to promote the widespread adoption and
standardization of health information technology.
Question 123 Information regulated under the Gramm-Leach-
Bliley Act is ________.
Question 124 The regulating agency for the Sarbanes-Oxley Act
is the ________.
Question 125 Tier C violations under the HITECH Act are
________.