Security+ Chapter 4 Review Questions

Réussis tes devoirs et examens dès maintenant avec Quizwiz!

20. _____ is a protocol for securely accessing a remote computer. A. Transport Layer Security (TLS) B. Secure Shell (SSH) C. Secure Sockets Layer (SSL) D. Secure Hypertext Transport Protocol (SHTTP)

B. Secure Shell (SSH)

4. _____ are symmetric keys to encrypt and decrypt information exchanged during the session and to verify its integrity. A. Encrypted signatures B. Session keys C. Digital certificates D. Digital digests

B. Session keys

7. A digital certificate associates _____. A. a user's public key with his private key B. the user's identity with his public key C. a user's private key with the public key D. a private key with a digital signature

B. the user's identity with his public key

14. Which trust model has multiple CAs, one of which acts as a facilitator? A. Bridge B. Hierarchical C. Distributed D. Web

A. Bridge

2. Which of the following block ciphers XORs each block of plaintext with the previous block of ciphertext before being encrypted? A. Electronic Code Book (ECB) B. Galois/Counter (GCM) C. Counter (CTR) D. Cipher Block Chaining (CBC)

D. Cipher Block Chaining (CBC)

3. What entity calls in crypto modules to perform cryptographic tasks? A. Certificate Authority (CA) B. OCSP Chain C. Intermediate CA D. Crypto service provider

D. Crypto service provider

1. Which of the following is NOT a method for strengthening a key? A. Randomness B. Cryptoperiod C Length D. Variability

D. Variability

17. A(n) _____ is a published set of rules that govern the operation of a PKI. A. signature resource guide (SRG) B. enforcement certificate (EF) C. certificate practice statement (CPS) D. certificate policy (CP)

D. certificate policy (CP)

6. The strongest technology that would assure Alice that Bob is the sender of a message is a(n) _____. A. digital signature B. encrypted signature C. digest D. digital certificate

D. digital certificate

12. What is a value that can be used to ensure that hashed plaintext will not consistently result in the same digest? A. algorithm B. initialization vector (IV) C. nonce D. salt

D. salt

15. Which statement is NOT true regarding hierarchical trust models? A. It is designed for use on a large scale. B. The root signs all digital certificate authorities with a single key. C. It assigns a single hierarchy with one master CA. D. The master CA is called the root.

A. It is designed for use on a large scale.

5. Which of these is considered the strongest cryptographic transport protocol? A. TLS v1.2 B. TLS v1.0 C. SSL v2.0 D. SSL v2.0

A. TLS v1.2

8. Digital certificates can be used for each of these EXCEPT _____. A. to verify the authenticity of the Registration Authorizer B. to encrypt channels to provide secure communication between clients and servers C. to verify the identity of clients and servers on the Web D. to encrypt messages for secure email communications

A. to verify the authenticity of the Registration Authorizer

13. Which digital certificate displays the name of the entity behind the website? A. Online Certificate Status Certificate B. Extended Validation (EV) Certificate C. Session Certificate D. X.509 Certificate

B. Extended Validation (EV) Certificate

19. _____ refers to a situation in which keys are managed by a third party, such as a trusted CA. A. Key authorization B. Key escrow C. Remote key administration D. Trusted key authority

B. Key escrow

9. An entity that issues digital certificates is a _____. A. Certificate Signatory (CS) B. Digital Signer (DS) C. Certificate Authority (CA) D. Signature Authority (SA)

C. Certificate Authority (CA)

10. A centralized directory of digital certificates is called a(n) _____. A. Digital Signature Permitted Authorization (DSPA) B. Digital Signature Approval List (DSAP) C. Certificate Repository (CR) D. Authorized Digital Signature (ADS)

C. Certificate Repository (CR)

11. _____ performs a real-time lookup of a digital certificate's status. A. Certificate Revocation List (CRL) B. Real-Time CA Verification (RTCAV) C. Online Certificate Status Protocol (OCSP) D. CA Registry Database (CARD)

C. Online Certificate Status Protocol (OCSP)

18. Which of these is NOT part of the certificate life cycle? A. expiration B. revocation C. authorization D. creation

C. authorization

16. Public key infrastructure (PKI) _____. A. generates public/private keys automatically B. creates private key cryptography C. is the management of digital certificates D. requires the use of an RA instead of a CA

C. is the management of digital certificates


Ensembles d'études connexes

Java Chapter 3, Ch3 CheckPoint-Introduction to Java Programming, Includes Data Structures, Eleventh Edition, Y. Daniel Liang Chapter 3 Check Point Questions, Introduction to Java - Ch. 1 - Ch.3, Ch2 Vocab -Introduction to Java Programming, Includes D...

View Set

7B And Probability: Independent Events

View Set

A R A L I N G P A N L I P U N A N

View Set