Access Control Practice Test Questions

Access Control

Please wait while the activity loads.
If this activity does not load, try refreshing your browser. Also, this page requires javascript. Please visit using a browser with javascript enabled. If loading fails, click here to try again

You scored %%SCORE%% out of %%TOTAL%%, %%RATING%%
Your answers are highlighted below.

Question 1

Which technique monitors networks and computer systems for signs of intrusion or misuse?

	IDS
	MAC
	Bell-LaPadula
	TACACS

Question 1 Explanation:An Intrusion Detection System (IDS) monitors networks and computers for signs of intrusion or misuse?

Question 2

Which of the following allows attackers to imitate a different user or system?

	Spamming
	Sniffers
	Crackers
	Spoofing

Question 2 Explanation:Spoofing allows an attacker to imitate a different user or system

Question 3

Which access control technique allows security officers to specify access security policies based on an organization's structure?

	MAC
	DAC
	Lattice
	RBAC

Question 3 Explanation:Role Based Access Control (RBAC) allows officers to specify access security policies based on an organization's structure.

Question 4

Which example is not two factor authentication?

	Palm geometry and iris scan
	Token and password
	Iris scan and token
	Smart card and PIN

Question 5

Which of the following is a centralized access control methodology?

	Lattice
	MAC
	DAC
	RADIUS

Question 5 Explanation:In centralized access control, the organization manages userids, permissions, and groups from a central location.

Question 6

When an attacker sends unsolicited communication, it is an example of:

	Spamming
	Crackers
	Sniffers
	Spoofing

Question 6 Explanation:Unsolicited email sent by an attacker is called Spam

Question 7

Kerberos certificates are susceptible to what kind of attack?

	Replay
	Man-in-the-middle
	Denial of Service
	Social Engineering

Question 8

Which hierarchical access control model is enforced by the operating system and can be difficult to implement?

	Rule-Based Access Control (RBAC)
	Mandatory Access Control (MAC)
	Role-Based Access Control (RBAC)
	Discretionary Access Control (DAC)

Question 9

What is a type of attack that involves trying all possible combinations to break a code or password?

	Penetration attack
	Word search attack
	Dictionary attack
	Brute force attack

Question 9 Explanation:A brute force attack attempts all possible combinations in order to obtain a password

Question 10

What access control model says you can't read up and can't write down?

	Biba
	Bel-LaPadula
	Clark Wilson
	Li-BaPadula

Question 10 Explanation:Bel-LaPadula contains the not read up, no write down rule. Biba and Clark Wilson are also security models. Li-BaPadula is a made up word to confuse you.

Question 11

Which of the following allows attackers to break passwords?

	Spamming
	Sniffers
	Spoofing
	Crackers

Question 11 Explanation:Password cracking involves attackers breaking passwords.

Question 12

Which of the following access control models is most commonly used by firewalls?

	Role-Based Access Control (RBAC)
	Mandatory Access Control (MAC)
	Rule-Based Access Control (RBAC)
	Discretionary Access Control (DAC)

Question 13

Centralized access control provides remote users with all of the following properties except

	Authorization
	Authentication
	Availability
	Accountability

Question 14

Which attack has victims believe they are communicating directly to their intended host when in reality all their messages are being intercepted?

	Man-in-the-middle
	Spoofing
	Replay
	Social engineering

Question 15

Which of the following is a knowledge-based authentication mechinism?

	Password
	Smart card
	Biometrics
	Token

Question 15 Explanation:Knowledge based authentication mechanisms use something the user knows, such as a password, passphrase, or PIN.

Question 16

Which is an example of a decentralized access control methodology?

	NIS
	RADIUS
	RPC
	PAP

Question 17

Which of the following is a table that identifies user access rights for a particular system object?

	ACL
	MAC
	Lattice
	DAC

Question 17 Explanation:An Access Control List (ACL) is a table that identifies user access rights assigned to system objects

Question 18

What are three principals of identification and authentication?

	Something you are, something you have, something you control
	Something you have, something you control, something you know
	Something you know, something you are, something you control
	Something you know, something you are, something you have

Question 18 Explanation:Something you know (such as passwords), something you are (such as biometrics), and something you have (such as a smart card)

Question 19

What type of access control alerts you when an access is violated?

	Deterrent
	Preventative
	Reactive
	Detective

Question 19 Explanation:You could make an argument for Detective or Reactive, but Detective is most correct.

Question 20

A fence is what type of access control?

	Logical
	Administrative
	Physical
	Technical

Question 21

What best describes a Trojan Horse?

	A type of macro virus designed to attack Microsoft Office applications
	Malicious code disguised as or inserted into a legitimate program
	Malicious code inserted into a legitimate program that launches when a specific condition is met
	A fast spreading worm with a destructive payload

Question 22

What are three methods of performing centralized remote authentication access control?

	RADIUS, SSO, and TACACS
	SESAME, RADIUS, and TACACS
	TACACS, RADIUS, and Kerboros
	TACACS, RADIUS, and DIAMETER

Question 22 Explanation:RADIUS, TACACS, and DIAMETER are all considered centralized authentication, authorization, and accounting (AAA) servers.

Question 23

Which access control technique is non discretionary?

	DAC
	Lattice
	MAC
	RBAC

Question 23 Explanation:Mandatory Access Control (MAC) is non discretionary.

Question 24

Background checks are what type of control?

	Logical
	Physical
	Technical
	Administrative

Question 25

Which remote access protocol sends the user ID and password in clear text?

	Kerberos
	PAP
	RADIUS
	CHAP

Question 26

What type of access control avoids access violations?

	Deterrent
	Preventative
	Detective
	Reactive

Question 26 Explanation:Preventative controls, prevent (or avoid) the violation

Question 27

Which access control model allows data owners to control access by modifying Access Control Lists which are enforced by the Operating System?

	Mandatory Access Control (MAC)
	Rule-Based Access Control (RBAC)
	Discretionary Access Control (DAC)
	Role-Based Access Control (RBAC)

Question 28

Which access control technique allows a resource owner to control other user's access to an object?

	MAC
	DAC
	Lattice
	RBAC

Question 28 Explanation:Discretionary Access Control (DAC) allows a resource owner to control other user's access to an object.

Once you are finished, click the button below. Any items you have not completed will be marked incorrect. Get Results

There are 28 questions to complete.

Comments

Tiki says:

May 18, 2011 at 8:27 am

Hi

I have an objection for the answer of question 27. The answer should be (c) RBAC.

According to the Official Guide to the ISSAP CBK page 18 on Access Control System and Methodology, non discretionary access control mechanisms are neither DAC nor MAC. Also note that non discretionary access control mechanisms are more DAC than MAC.

Examples of non discretionary are RBAC, ORCON, DRM, UCON.

Regards,
Tiki

Ignatius Nwaiwu says:

October 26, 2011 at 3:15 pm

Check the naswer marker on number #19 . Marked me WRONG for CORRECT (Last Choice)

- Dinesh says:
  
  December 28, 2011 at 1:01 pm
  
  Firewall Mainly uses only Rule Based access control .

Access Control Practice Test Questions

Access Control

Comments

Speak Your Mind Cancel reply

Free updates

Follow us

Pages

Recent comments

Archives