Final Quiz - Cybersecurity Essentials - en 0118

12/15/2019 Final Quiz: Cybersecurity Essentials - EN 0118
Final Quiz
Due No due date Points 100 Questions 50 Time Limit 60 Minutes
Allowed Attempts 2
Instructions
This quiz covers all of the content in Cybersecurity Essentials 1.1. It is designed to test the skills and
knowledge presented in the course.
There are multiple task types that may be available in this quiz.
NOTE: Quizzes allow for partial credit scoring on all item types to foster learning. Points on quizzes can
also be deducted for answering incorrectly.
Forms 32901 - 23908
Take the Quiz Again
Attempt History
Attempt Time Score
LATEST Attempt 1 29 minutes 94.67 out of 100
Score for this attempt: 94.67 out of 100

Submitted Dec 15 at 1:29am
This attempt took 29 minutes.
Question 1 2 / 2 pts
Which type of cybercriminal is the most likely to create malware to

compromise an organization by stealing credit card information?
Correct!
black hat hackers
white hat hackers
gray hat hackers
https://82252856.netacad.com/courses/608007/quizzes/5337980 1/32
script kiddies
Refer to curriculum topic: 1.2.1

Malware is a tool used by certain types of hackers to steal
information.
A cybersecurity specialist is asked to identify the potential criminals known to

attack the organization. Which type of hackers would the cybersecurity
specialist be least concerned with?
gray hat hackers
black hat hackers
Correct! white hat hackers
script kiddies

Hackers are classified by colors to help define the purpose of their
break-in activities.
Which statement best describes a motivation of hacktivists?
They are trying to show off their hacking skills.
They are interested in discovering new exploits.
Correct!
They are part of a protest group behind a political cause.
They are curious and learning hacking skills.

Each type of cybercriminal has a distinct motivation for his or her
actions.
Which framework should be recommended for establishing a comprehensive

information security management system in an organization?
NIST/NICE framework
ISO OSI model
CIA Triad
Correct!
ISO/IEC 27000

A cybersecurity specialist needs to be familiar with the different
frameworks and models for managing information security.
Which type of networks poses increasing challenges to cybersecurity

specialists due to the growth of BYOD on campus?
wired networks
sneaker net
virtual networks
Correct! wireless networks

A cybersecurity specialist must be familiar with the types of
technologies used to store, transmit, and process data.
A security specialist is asked for advice on a security measure to prevent

unauthorized hosts from accessing the home network of employees. Which
measure would be most effective?
Implement intrusion detection systems.
Implement a VLAN.
Correct! Implement a firewall.
Implement RAID.

Protecting data confidentiality requires an understanding of the
technologies used to protect data in all three data states.
Which technology should be used to enforce the security policy that a

computing device must be checked against the latest antivirus update before
the device is allowed to connect to the campus network?
Correct! NAC
NAS
VPN
SAN

A cybersecurity specialist must be aware of the technologies available
to enforce its organization's security policy.
What are three states of data during which data is vulnerable? (Choose
three.)
data encrypted
Correct! data in-process
Correct! stored data
Correct! data in-transit
purged data
data decrypted

A cybersecurity specialist must be aware of each of the three states of
data to effectively protect data and information. Purged data was
stored data. Encrypted and decrypted data can be in any of the three
states.
What type of attack has an organization experienced when an employee

installs an unauthorized device on the network to view network traffic?
spamming
phishing
spoofing
Correct! sniffing

A cybersecurity specialist needs to be familiar with the characteristics
of the different types of malware and attacks that threaten an
organization.
Users report that the database on the main server cannot be accessed. A
database administrator verifies the issue and notices that the database file is
now encrypted. The organization receives a threatening email demanding
payment for the decryption of the database file. What type of attack has the
organization experienced?
man-in-the-middle attack
Trojan horse
DoS attack
Correct!
ransomeware

organization.
What are the two most effective ways to defend against malware? (Choose
two.)
Implement network firewalls.
Implement a VPN.
Implement RAID.
Implement strong passwords.
Correct!
Install and update antivirus software.
Correct!
Update the operating system and other application software.

A cybersecurity specialist must be aware of the technologies and
measures that are used as countermeasures to protect the
organization from threats and vulnerabilities.
What is an impersonation attack that takes advantage of a trusted

relationship between two systems?
sniffing
man-in-the-middle
Correct!
spoofing
spamming

organization.
Question 13 0.67 / 2 pts
What three best practices can help defend against social engineering
attacks? (Choose three.)
You Answered
Enable a policy that states that the IT department should supply information
over the phone only to managers.
orrect Answer Educate employees regarding policies.
Correct!
Do not provide password resets in a chat window.
Deploy well-designed firewall appliances.
Add more security guards.
Correct!
Resist the urge to click on enticing web links.

A cybersecurity specialist must be aware of the technologies and
measures that are used as countermeasures to protect the
organization from threats and vulnerabilities.
A cyber criminal sends a series of maliciously formatted packets to the

database server. The server cannot parse the packets and the event causes
the server crash. What is the type of attack the cyber criminal launches?
packet Injection
man-in-the-middle
SQL injection
Correct! DoS

organization.
The employees in a company receive an email stating that the account

password will expire immediately and requires a password reset within 5
minutes. Which statement would classify this email?
You Answered It is a piggy-back attack.
orrect Answer It is a hoax.
It is an impersonation attack.
It is a DDoS attack.

Social engineering uses several different tactics to gain information
from victims.
An organization plans to implement security training to educate employees

about security policies. What type of access control is the organization trying
to implement?
logical
Correct! administrative
physical
technological

Access control prevents an unauthorized user from gaining access to
sensitive data and networked systems. There are several
technologies used to implement effective access control strategies.
Smart cards and biometrics are considered to be what type of access

control?
Correct! logical
technological
physical
administrative

Which statement describes a characteristics of block ciphers?
Block ciphers are faster than stream ciphers.
Block ciphers result in compressed output.
Correct!
Block ciphers result in output data that is larger than the input data most of the
time.
Block ciphers encrypt plaintext one bit at a time to form a block.

Encryption is an important technology used to protect confidentiality. It
is important to understand the characteristics of the various encryption
methodologies.
In which situation would a detective control be warranted?
when the organization cannot use a guard dog, so it is necessary to consider

an alternative
when the organization needs to repair damage
Correct!
when the organization needs to look for prohibited activity
after the organization has experienced a breach in order to restore everything

back to a normal state

Which algorithm will Windows use by default when a user intends to encrypt
files and folders in an NTFS volume?
RSA
3DES
Correct!
AES
DES

methodologies.
Alice and Bob are using public key encryption to exchange a message.
Which key should Alice use to encrypt a message to Bob?
You Answered
the private key of Alice
orrect Answer the public key of Bob
the private key of Bob
the public key of Alice

methodologies.
Before data is sent out for analysis, which technique can be used to replace
sensitive data in nonproduction environments to protect the underlying
information?
steganography
software obfuscation
Correct!
data masking substitution
steganalysis

Technologies exist to confuse attackers by changing data and using
techniques to hide the original data.
A user has a large amount of data that needs to be kept confidential. Which
algorithm would best meet this requirement?
Correct!
3DES
RSA
ECC
Diffie-Hellman

methodologies.
What kind of integrity does a database have when all its rows have a unique
identifier called a primary key?
Correct!
entity integrity
referential integrity
domain integrity
user-defined integrity

Data integrity is one of the three guiding security principles.
A cybersecurity specialist should be familiar with the tools and
technologies that are used to ensure data integrity.
Your organization will be handling market trades. You will be required to

verify the identify of each customer who is executing a transaction. Which
technology should be implemented to authenticate and verify customer
electronic transactions?
symmetrical encryption
Correct!
digital certificates
data hashing
asymmetrical encryption

Digital certificates protect the parties involved in secure
communications.
What technique creates different hashes for the same password?
HMAC
Correct! salting
SHA-256
CRC

Data integrity is one of the three guiding security principles. A
cybersecurity specialist should be familiar with the tools and
technologies used ensure data integrity.
Alice and Bob are using a digital signature to sign a document. What key
should Alice use to sign the document so that Bob can make sure that the
document came from Alice?
username and password from Alice
private key from Bob
Correct! private key from Alice
public key from Bob

Alice and Bob are used to explain asymmetric cryptography used in
digital signatures. Alice uses a private key to encrypt the message
digest. The message, encrypted message digest, and the public key
are used to create the signed document and prepare it for
transmission.
An organization has determined that an employee has been cracking

passwords on administrative accounts in order to access very sensitive
payroll information. Which tools would you look for on the system of the
employee? (Choose three)
password digest
Correct! lookup tables
Correct! rainbow tables
algorithm tables
rouge access points
Correct! reverse lookup tables

Tables that contain possible password combinations are used to crack
passwords.
You have been asked to work with the data collection and entry staff in your
organization in order to improve data integrity during initial data entry and
data modification operations. Several staff members ask you to explain why
the new data entry screens limit the types and size of data able to be entered
in specific fields. What is an example of a new data integrity control?
a limitation rule which has been implemented to prevent unauthorized staff

from entering sensitive data
Correct!
a validation rule which has been implemented to ensure completeness,
accuracy, and consistency of data
data encryption operations that prevent any unauthorized users from

accessing sensitive data
data entry controls which only allow entry staff to view current data

Data integrity deals with data validation.
You have been asked to describe data validation to the data entry clerks in
accounts receivable. Which of the following are good examples of strings,
integers, and decimals?
Correct!
female, 9866, $125.50
yes/no 345-60-8745, TRF562
male, $25.25, veteran
800-900-4560, 4040-2020-8978-0090, 01/21/2013

A string is a group of letters, numbers and special characters. An
integer is whole number. A decimal is a number that is not a fraction.
A VPN will be used within the organization to give remote users secure
access to the corporate network. What does IPsec use to authenticate the
origin of every packet to provide data integrity checking?
CRC
password
Correct!
HMAC
salting

HMAC is an algorithm used to authenticate. The sender and receiver
have a secret key that is used along with the data to ensure the
message origin as well as the authenticity of the data.
What is it called when an organization only installs applications that meet its
guidelines, and administrators increase security by eliminating all other
applications?
asset classification
asset identification
asset availability
Correct!
asset standardization

An organization needs to know what hardware and software are
present as a prerequisite to knowing what the configuration
parameters need to be. Asset management includes a complete
inventory of hardware and software. Asset standards identify specific
hardware and software products that the organization uses and
supports. When a failure occurs, prompt action helps to maintain both
access and security.
What are two incident response phases? (Choose two.)
mitigation and acceptance
prevention and containment
risk analysis and high availability
Correct!
containment and recovery
confidentiality and eradication
Correct!
detection and analysis

When an incident occurs, the organization must know how to respond.
An organization needs to develop an incident response plan that
includes several phases.
Being able to maintain availability during disruptive events describes which of

the principles of high availability?
uninterruptible services
fault tolerance
Correct!
system resiliency
single point of failure

High availability can be achieved by eliminating or reducing single
points of failure, by implementing system resiliency, and by designing
for fault tolerance.
What approach to availability provides the most comprehensive protection

because multiple defenses coordinate together to prevent attacks?
diversity
obscurity
Correct! layering
limiting

Defense in depth utilizes multiple layers of security controls.
An organization has recently adopted a five nines program for two critical
database servers. What type of controls will this involve?
Correct! improving reliability and uptime of the servers
remote access to thousands of external users
stronger encryption systems
limiting access to the data on these systems

System and data availability is a critical responsibility of a
cybersecurity specialists. It is important to understand the
technologies, process, and controls used to provide high availability.
An organization wants to adopt a labeling system based on the value,

sensitivity, and criticality of the information. What element of risk
management is recommended?
asset standardization
asset availability
asset identification
Correct! asset classification

One of the most important steps in risk management is asset
classification.
The awareness and identification of vulnerabilities is a critical function of a

cybersecurity specialist. Which of the following resources can be used to
identify specific details about vulnerabilities?
Correct! CVE national database
ISO/IEC 27000 model
NIST/NICE framework
Infragard

A cybersecurity specialist needs to be familiar with the resources such
as the CVE database, Infragard, and the NIST/NISE framework. All
can be used to help plan and implement effective an information
security management system.
The team is in the process of performing a risk analysis on the database

services. The information collected includes the initial value of these assets,
the threats to the assets and the impact of the threats. What type of risk
analysis is the team performing by calculating the annual loss expectancy?
qualitative analysis
protection analysis
Correct! quantitative analysis
loss analysis

A qualitative or quantitative risk analysis is used to identify and
prioritize threats to the organization.
Which two values are required to calculate annual loss expectancy? (Choose
two.)
quantitative loss value
Correct! single loss expectancy
Correct! annual rate of occurrence
frequency factor
asset value
exposure factor

Single loss expectancy, annualized rate of occurrence, and
annualized loss expectancy are used in a quantitative risk analysis
In a comparison of biometric systems, what is the crossover error rate?
rate of acceptability and rate of false negatives
rate of rejection and rate of false negatives
rate of false positives and rate of acceptability
Correct! rate of false negatives and rate of false positives

In comparing biometric systems, there are several important factors to
consider including accuracy, speed or throughput rate, and
acceptability to users.
Which wireless standard made AES and CCM mandatory?
WEP
WEP2
WPA
Correct! WPA2

Wireless security depends on several industry standards and has
progressed from WEP to WPA and finally WPA2.
Which protocol would be used to provide security for employees that access
systems remotely from home?
Telnet
SCP
WPA
Correct! SSH

Various application layer protocols are used to for communications
between systems. A secure protocol provides a secure channel over
an unsecured network.
What describes the protection provided by a fence that is 1 meter in height?
The fence deters determined intruders.
It prevents casual trespassers because of its height.
Correct! It deters casual trespassers only.
It offers limited delay to a determined intruder.

Security standards have been developed to assist organizations in
implementing the proper controls to mitigate potential threats. The
height of a fence determines the level of protection from intruders
Which utility uses the Internet Control Messaging Protocol (ICMP)?
DNS
RIP
NTP
Correct! ping

ICMP is used by network devices to send error messages.
Which of the following products or technologies would you use to establish a

baseline for an operating system?
MS Baseliner
SANS Baselining System (SBS)
CVE Baseline Analyzer
Correct! Microsoft Security Baseline Analyzer

There are many tools that a cybersecurity specialist uses to evaluate
the potential vulnerabilities of an organization.
Which technology can be used to protect VoIP against eavesdropping?
strong authentication
ARP
Correct! encrypted voice messages
SSH

Many advanced technologies such as VoIP, streaming video, and
electronic conferencing require advanced countermeasures.
Which cybersecurity weapon scans for use of default passwords, missing

patches, open ports, misconfigurations, and active IP addresses?
packet analyzers
password crackers
packet sniffers
Correct! vulnerability scanners

There are many tools that a cybersecurity specialist uses to evaluate
the potential vulnerabilities of an organization.
Which threat is mitigated through user awareness training and tying security
awareness to performance reviews?
Correct! user-related threats
device-related threats
physical threats
cloud-related threats

Cybersecurity domains provide a framework for evaluating and
implementing controls to protect the assets of an organization. Each
domain has various countermeasures available to manage threats.
Which website offers guidance on putting together a checklist to provide

guidance on configuring and hardening operating systems?
The Advanced Cyber Security Center
Correct! The National Vulnerability Database website
CERT
Internet Storm Center

There are several cybersecurity information websites that a
cybersecurity specialist uses to evaluate the potential vulnerabilities of
an organization. Some of these websites are the National Vulnerability
Database, CERT, the Internet Storm Center, and the Advanced Cyber
Security Center.
Quiz Score: 94.67 out of 100

Final Quiz - Cybersecurity Essentials - en 0118

Enviado por

Dados do documento

Título original

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

Final Quiz - Cybersecurity Essentials - en 0118

Enviado por

Direitos autorais:

Formatos disponíveis

12/15/2019 Final Quiz: Cybersecurity Essentials - EN 0118

Take the Quiz Again

Score for this attempt: 94.67 out of 100

Which type of cybercriminal is the most likely to create malware to

white hat hackers

gray hat hackers

Refer to curriculum topic: 1.2.1

A cybersecurity specialist is asked to identify the potential criminals known to

gray hat hackers

black hat hackers

Correct! white hat hackers

Refer to curriculum topic: 1.2.1

Which statement best describes a motivation of hacktivists?

They are trying to show off their hacking skills.

They are interested in discovering new exploits.

They are curious and learning hacking skills.

Refer to curriculum topic: 1.2.1

Which framework should be recommended for establishing a comprehensive

ISO OSI model

Refer to curriculum topic: 2.5.1

Which type of networks poses increasing challenges to cybersecurity

Correct! wireless networks

Refer to curriculum topic: 2.3.2

A security specialist is asked for advice on a security measure to prevent

Implement intrusion detection systems.

Correct! Implement a firewall.

Refer to curriculum topic: 2.4.1

Which technology should be used to enforce the security policy that a

Refer to curriculum topic: 2.4.1

Correct! data in-process

Correct! stored data

Correct! data in-transit

Refer to curriculum topic: 2.3.1

What type of attack has an organization experienced when an employee

Refer to curriculum topic: 3.3.1

Refer to curriculum topic: 3.1.1

Implement network firewalls.

Implement strong passwords.

Refer to curriculum topic: 3.1.1

What is an impersonation attack that takes advantage of a trusted

Refer to curriculum topic: 3.3.1

Question 13 0.67 / 2 pts

orrect Answer Educate employees regarding policies.

Deploy well-designed firewall appliances.

Add more security guards.

Refer to curriculum topic: 3.2.2

A cyber criminal sends a series of maliciously formatted packets to the

Refer to curriculum topic: 3.3.1

The employees in a company receive an email stating that the account

You Answered It is a piggy-back attack.

orrect Answer It is a hoax.

Refer to curriculum topic: 3.2.2

An organization plans to implement security training to educate employees

Refer to curriculum topic: 4.2.1

Smart cards and biometrics are considered to be what type of access

Refer to curriculum topic: 4.2.1

Which statement describes a characteristics of block ciphers?

Block ciphers are faster than stream ciphers.

Block ciphers result in compressed output.

Block ciphers encrypt plaintext one bit at a time to form a block.

Refer to curriculum topic: 4.1.2

In which situation would a detective control be warranted?

when the organization cannot use a guard dog, so it is necessary to consider