Network Security | Chapter 9 Review Questions

Which of the following is NOT designed to prevent individuals from entering sensitive areas but instead is intended to direct traffic flow? a. Barricade b. Fencing c. Roller barrier d. Type V controls

a. Barricade

Which of the following is NOT a characteristic of an alarmed carrier PDS? a. Requires periodic visual inspections b. Uses continuous monitoring c. Carrier can be hidden above the ceiling d. Eliminates the need to seal connections

a. Requires periodic visual inspections

How can an SDIO card be made secure? a. Using the security mechanisms on a standard Wi-Fi network. b. Turning on patch updates to the SDIO card. c. Requiring a username before accessing the SDIO card. d. SDIO cards are natively secure and no security settings are needed.

a. Using the security mechanisms on a standard Wi-Fi network.

Which model uses a sequential design process? a. Waterfall model b. Rigid model c. Agile model d. Secure model

a. Waterfall model

Which of the following can be used to secure a laptop or mobile device? a. Mobile connector b. Cable lock c. Mobile chain d. Security tab

b. Cable lock

Which of the following types of testing uses unexpected or invalid inputs? a. Stress testing b. Dynamic analysis c. Static analysis d. Runtime testing

b. Dynamic analysis

Which statement about a mantrap is true? a. It is illegal in the United States . b. It monitors and controls two interlocking doors to a room. c. It is a special keyed lock. d. It requires the use of a cipher lock.

b. It monitors and controls two interlocking doors to a room.

Which type of residential lock is most often used for keeping out intruders? a. Encrypted key lock b. Keyed entry lock c. Privacy lock d. Passage lock

b. Keyed entry lock

Which type of operating system runs on a firewall, router, or switch? a. Server OS b. Network OS c. Device OS d. Resource OS

b. Network OS

What allows for a single configuration to be set and then deployed to many or all users? a. Snap-In Replication (SIR) b. Active Directory c. Group Policy d. Command Configuration

c. Group Policy

Which of the following is NOT a motion detection method? a. Magnetism b. Radio frequency c. Moisture d. Infrared

c. Moisture

How does heuristic detection detect a virus? a. A virtualized environment is created and the code is executed in it. b. A string of bytes from the virus is compared against the suspected file. c. The bytes of a virus are placed in different "piles" and then used to create a profile. d. The virus signature file is placed in a suspended chamber before streaming to the CPU.

c. The bytes of a virus are placed in different "piles" and then used to create a profile.

Which of the following is NOT an advantage to an automated patch update service? a. Administrators can approve or decline updates for client systems, force updates to install by a specific date, and obtain reports on what updates each computer needs. b. Downloading patches from a local server instead of using the vendor's online update service can save bandwidth and time because each computer does not have to connect to an external server. c. Users can disable or circumvent updates just as they can if their computer is configured to use the vendor's online update service. d. Specific types of updates that the organization does not test, such as hotfixes, can be automatically installed whenever they become available.

c. Users can disable or circumvent updates just as they can if their computer is configured to use the vendor's online update service.

Which of the following is NOT a typical OS security configuration? a. Employing least functionality b. Restricting patch management c. Disabling default accounts/passwords d. Disabling unnecessary ports and services

b. Restricting patch management

Which of the following is a cumulative package of all patches? a. Rollup b. Service pack c. Patch d. Hotfix

b. Service pack

Which stage is a "quality assurance" test that verifies the code functions as intended? a. Production stage b. Testing stage c. Staging stage d. Development stage

b. Testing stage c. Staging stage

Which of these is a list of approved email senders? a. Blacklist b. Whitelist c. Bluelist d. Yellowlist

b. Whitelist

A lock that extends a solid metal bar into the door frame for extra security is the ______. a. triple bar lock b. deadman's lock c. full bar lock d. deadbolt lock

d. Deadbolt lock

Which of the following is NOT a reason why supply chain infections are considered especially dangerous? a. If the malware is planted in the ROM firmware of the device this can make it difficult or sometimes even impossible to clean an infected device. b. Users are receiving infected devices at the point of purchase and are completely unaware that a brand new device may be infected. c. It is virtually impossible to closely monitor every step in the supply chain. d. Supply chains take advantage of the trusted "chain of trust" concept.

d. Supply chains take advantage of the trusted "chain of trust" concept.

Which of the following is NOT a memory vulnerability? a. DLL injection b. Pointer deference c. Buffer overflow d. Variable overflow

d. Variable overflow