IT Challenge Questions

#1. What are two primary controls used by access control systems

Identification and authentication

Confidentiality and integrity

Authentication and confidentiality

Integrity and data control

#2. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

Symmetric

Hashing

Code signing

Asymmetric

#3. Well-known Ports are in what range?

0 - 1023

1 - 1024

1024 – 49,151

#4. This attack looks at blocks of encrypted data to check and see if there is a pattern.

Brute force attacks

Frequency analysis

Birthday attack

Software exploitation

#5. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

Chinese Firewall Model

Clarke-Wilson Model

The Bell–LaPadula Model

The Biba Model

#6. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

Mandatory Access Control

Role-Based Access Control

Rule Based Access Control

Attribute-Based

#7. (MAC) Address spoofing takes place and affects which layer of the OSI model?

Application Layer

Data-Link Layer

Presentation Layer

Session Layer

#8. The ___________model provides the most granular level of access control.

Mandatory Access Control (MAC)

Role-Based Access Control (RBAC)

Attribute-Based

Discretionary Access Control (DAC)

#9. This Layer of the OSI model provides independence from differences in data representation (encryption) by translating from application to network format, and vice versa

Application

Transport

Data Link

Presentation

#10. What Authentication technology was designed to prevent a Man in the Middle attack?

SESAME

CHAP

Kerberos

TACACS

#11. Which of the following is the correct order of the OSI Model?

application,presentation,session,network,transport,data-link,physical

application,presentation,session,transport,network,data-link,physical

application,presentation,session,transport,physical,network,data-link

application,session,presentation,transport,network,data-link,physical

#12. Cross-Site Scripting Attacks take place at which level of the OSI model?

Application Layer

Data-Link Layer

Transport Layer

Session Layer

#13. VPN Man-in-the-Middle Attacks take place and affect which layer of the OSI model?

Network Layer

Data-Link Layer

Presentation Layer

Session Layer

#14. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

Transport

Application

Network

Session

#15. Which of the following is NOT accurate in the protocol and port number?

IMAP PORT is 143

FTP PORT 20 - sends the data files between the client and the server.

HTTPS PORT 443 - port 443 is the standard TCP port that is used for website which use SSL

DNS PORT 53 is used for unsecure data transfer between host

#16. This Layer of the OSI model provides switching and routing technologies, creating logical paths, known as virtual circuits, for transmitting data from node to node

Network

Physical

Session

Application

#17. Which part of the TCP/IP model do IP, ICMP, ARP, IGMP operate?

Internet Layer

Network Interface Layer

Host to Host Layer

Application Layer

#18. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

Mandatory Access Control

Rule Based Access Control

Discretionary Access Control

Attribute-Based

#19. Which of the following is NOT true.

HTTP uses PORT 80

FTP uses PORT 21

SNMP uses PORT 167

TELNET uses PORT 23

#20. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

Internet

Application

Host to Host

Network-Interface

Results

#1. What are two primary controls used by access control systems

#2. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

#3. Well-known Ports are in what range?

#4. This attack looks at blocks of encrypted data to check and see if there is a pattern.

#5. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

#6. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

#7. (MAC) Address spoofing takes place and affects which layer of the OSI model?

#8. The ___________model provides the most granular level of access control.

#9. This Layer of the OSI model provides independence from differences in data representation (encryption) by translating from application to network format, and vice versa

#10. What Authentication technology was designed to prevent a Man in the Middle attack?

#11. Which of the following is the correct order of the OSI Model?

#12. Cross-Site Scripting Attacks take place at which level of the OSI model?

#13. VPN Man-in-the-Middle Attacks take place and affect which layer of the OSI model?

#14. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

#15. Which of the following is NOT accurate in the protocol and port number?

#16. This Layer of the OSI model provides switching and routing technologies, creating logical paths, known as virtual circuits, for transmitting data from node to node

#17. Which part of the TCP/IP model do IP, ICMP, ARP, IGMP operate?

#18. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

#19. Which of the following is NOT true.

#20. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

Disclaimer

Facebook

IT Challenge Questions

Results

#1. What are two primary controls used by access control systems

#2. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

#3. Well-known Ports are in what range?

#4. This attack looks at blocks of encrypted data to check and see if there is a pattern.

#5. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

#6. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

#7. (MAC) Address spoofing takes place and affects which layer of the OSI model?

#8. The ___________model provides the most granular level of access control.

#9. This Layer of the OSI model provides independence from differences in data representation (encryption) by translating from application to network format, and vice versa

#10. What Authentication technology was designed to prevent a Man in the Middle attack?

#11. Which of the following is the correct order of the OSI Model?

#12. Cross-Site Scripting Attacks take place at which level of the OSI model?

#13. VPN Man-in-the-Middle Attacks take place and affect which layer of the OSI model?

#14. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

#15. Which of the following is NOT accurate in the protocol and port number?

#16. This Layer of the OSI model provides switching and routing technologies, creating logical paths, known as virtual circuits, for transmitting data from node to node

#17. Which part of the TCP/IP model do IP, ICMP, ARP, IGMP operate?

#18. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

#19. Which of the following is NOT true.

#20. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

Share this: