IT Challenge Questions

#1. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

Mandatory Access Control

Rule Based Access Control

Discretionary Access Control

Attribute-Based

#2. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

Transport

Application

Network

Session

#3. Telnet, FTP, SMTP, DNS reside on which layer of the TCP/IP Model

Host to Host

Network Layer

Application

Internet

#4. Which protocol uses a three hand-shake to establish connectivity?

UDP

TCP

ICMP

IGMP

#5. (MAC) Address spoofing takes place and affects which layer of the OSI model?

Application Layer

Data-Link Layer

Presentation Layer

Session Layer

#6. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

Chinese Firewall Model

Clarke-Wilson Model

The Bell–LaPadula Model

The Biba Model

#7. The process of converting plaintext data into ciphertext data to prevent loss of confidentiality is known as?

Hashing

Decryption

Encryption

Code signing

#8. Which of the following is NOT true.

HTTP uses PORT 80

FTP uses PORT 21

SNMP uses PORT 167

TELNET uses PORT 23

#9. Which of the following is NOT accurate in the protocol and port number?

IMAP PORT is 143

FTP PORT 20 - sends the data files between the client and the server.

HTTPS PORT 443 - port 443 is the standard TCP port that is used for website which use SSL

DNS PORT 53 is used for unsecure data transfer between host

#10. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

Internet

Application

Host to Host

Network-Interface

#11. This malware attacks the anti-virus software, attempting to disable the signature library.

Stealth virus

Macro Virus

Retro Virus

Boot-Sector virus

#12. The ___________model provides the most granular level of access control.

Mandatory Access Control (MAC)

Role-Based Access Control (RBAC)

Attribute-Based

Discretionary Access Control (DAC)

#13. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

Symmetric

Hashing

Code signing

Asymmetric

#14. Which of the following is the correct order of the OSI Model?

application,presentation,session,network,transport,data-link,physical

application,presentation,session,transport,network,data-link,physical

application,presentation,session,transport,physical,network,data-link

application,session,presentation,transport,network,data-link,physical

#15. What Authentication technology was designed to prevent a Man in the Middle attack?

SESAME

CHAP

Kerberos

TACACS

#16. This attack looks at blocks of encrypted data to check and see if there is a pattern.

Brute force attacks

Frequency analysis

Birthday attack

Software exploitation

#17. This model is a state machine model used for enforcing access control in government and military applications, it enforces confidentiality. No read up, No write down

The Biba Model

Clarke-Wilson Model

Chinese Firewall Model

The Bell–LaPadula Model

#18. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

Mandatory Access Control

Role-Based Access Control

Rule Based Access Control

Attribute-Based

#19. Which of the following statements is true.

UDP uses protocol number 1, TCP uses protocol number 17

UDP uses protocol number 6, TCP uses protocol number 7

TCP uses protocol number 1, UDP uses protocol number 17

ICMP uses protocol number 1, TCP uses protocol number 6

#20. Which of the following protocols is used in a Fraggle Attack?

FTP

TCP

UDP

SMTP

Results

#1. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

#2. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

#3. Telnet, FTP, SMTP, DNS reside on which layer of the TCP/IP Model

#4. Which protocol uses a three hand-shake to establish connectivity?

#5. (MAC) Address spoofing takes place and affects which layer of the OSI model?

#6. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

#7. The process of converting plaintext data into ciphertext data to prevent loss of confidentiality is known as?

#8. Which of the following is NOT true.

#9. Which of the following is NOT accurate in the protocol and port number?

#10. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

#11. This malware attacks the anti-virus software, attempting to disable the signature library.

#12. The ___________model provides the most granular level of access control.

#13. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

#14. Which of the following is the correct order of the OSI Model?

#15. What Authentication technology was designed to prevent a Man in the Middle attack?

#16. This attack looks at blocks of encrypted data to check and see if there is a pattern.

#17. This model is a state machine model used for enforcing access control in government and military applications, it enforces confidentiality. No read up, No write down

#18. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

#19. Which of the following statements is true.

#20. Which of the following protocols is used in a Fraggle Attack?

Disclaimer

Facebook

IT Challenge Questions

Results

#1. Which Access Control Model uses predefined set of rules used in environments where different levels of security exist.

#2. This Layer of the OSI model provides transparent transfer of data between end systems, or hosts, and is responsible for end-to-end error recovery and flow control. It ensures complete data transfer.

#3. Telnet, FTP, SMTP, DNS reside on which layer of the TCP/IP Model

#4. Which protocol uses a three hand-shake to establish connectivity?

#5. (MAC) Address spoofing takes place and affects which layer of the OSI model?

#6. A Banking institution needs to implement controls to ensure that the job roles and responsibilities do not cause a conflict of interest within the organization. Which model would best help prevent this from happening?

#7. The process of converting plaintext data into ciphertext data to prevent loss of confidentiality is known as?

#8. Which of the following is NOT true.

#9. Which of the following is NOT accurate in the protocol and port number?

#10. What layer(s) on the OSI Model’s Data and Physical layers corresponding to in the TCP/IP model ?

#11. This malware attacks the anti-virus software, attempting to disable the signature library.

#12. The ___________model provides the most granular level of access control.

#13. ______ algorithms provide one-way encryption and are sometimes referred to as one-way functions

#14. Which of the following is the correct order of the OSI Model?

#15. What Authentication technology was designed to prevent a Man in the Middle attack?

#16. This attack looks at blocks of encrypted data to check and see if there is a pattern.

#17. This model is a state machine model used for enforcing access control in government and military applications, it enforces confidentiality. No read up, No write down

#18. You are currently employed as an Security Administrator and need to be able to grant access for a user based on their assigned job role. The role requires the user to access files at a certain time of the day. Which of the following would you use to accomplish this task?

#19. Which of the following statements is true.

#20. Which of the following protocols is used in a Fraggle Attack?

Share this: