# Course: CS 585 03f ####################################### :TYPE:MC:1:0:C :TITLE: Ticket Granting Ticket :QUESTION:H Does the user requesting a service issue a ticket granting ticket? :ANSWER1:100:T no :ANSWER2:0:T yes :CAT:test5_tf ####################################### :TYPE:MC:1:0:C :TITLE: Certificate Chains :QUESTION:H Which of the following would be most appropriate for establishing the amount of trust associated with a certificate chain? :ANSWER1:0:T Use the average amount of trust between a pair of successive links. :ANSWER2:0:T Use the largest amount of trust between a pair of successive links. :ANSWER3:100:T Use the smallest amount of trust between a pair of successive links. :ANSWER4:0:T Use the trust in the first element in the chain. :ANSWER5:0:T Use the trust of the last element in the chain. :CAT:test5_mc ####################################### :TYPE:MC:1:0:C :TITLE: BAN Logic :QUESTION:H BAN logic is most often used to compare the relative performance of security protocols. :ANSWER1:100:T false :ANSWER2:0:T true :CAT:test5_tf ####################################### :TYPE:MC:1:0:C :TITLE: VPNs :QUESTION:H Which of the following protocols would be most appropriate for creating a VPN? :ANSWER1:100:T IPSec :ANSWER2:0:T Needham-Schroeder :ANSWER3:0:T TLS :ANSWER4:0:T X.509 :CAT:test5_tf ####################################### :TYPE:MC:1:0:C :TITLE: Postscript :QUESTION:H The most likely form of malware associated with a Postscript program would be a: :ANSWER1:100:T Virus :ANSWER2:0:T Worm :CAT:test5_tf ####################################### :TYPE:MC:1:0:C :TITLE: Biometrics :QUESTION:H Biometrics would be best classified as which of the following? :ANSWER1:0:T something you know :ANSWER2:0:T something you have :ANSWER3:100:T something you are :ANSWER4:0:T someplace you are :CAT:test5_tf ####################################### :TYPE:MC:1:0:C :TITLE: Revocation Lists :QUESTION:H Which of the following protocols utilizes revocation lists? :ANSWER1:0:T IPSec :ANSWER2:0:T Needham-Schroeder :ANSWER3:0:T TLS :ANSWER4:100:T X.509 :CAT:test5_mc ####################################### :TYPE:MC:1:0:C :TITLE: Kerberos :QUESTION:H Which of the following protocols is most similar to the one used as a part of Kerberos? :ANSWER1:0:T IPSec :ANSWER2:100:T Needham-Schroeder :ANSWER3:0:T TLS :ANSWER4:0:T X.509 :CAT:test5_mc ####################################### :TYPE:MC:N:1:C :TITLE: IPSec :QUESTION:H Choose two of the following which best match the two modes in IPSec? The choices are simplified, so they will not exactly match. :ANSWER1:-50:T a mode to provide confidentiality and integrity for just the IP headers :ANSWER2:50:T a mode to provide confidentiality and integrity for the entire IP packet :ANSWER3:-50:T a mode to provide integrity for just the IP contents :ANSWER4:50:T a mode to provide integrity for the entire IP packet :CAT:test5_mc ####################################### :TYPE:MC:1:0:C :TITLE: Passwords :QUESTION:H Suppose that a login system recognizes an alphabet of 8 characters and that it allows a login attempt once per second. How long would it take for an attacker to try all passwords of exactly 6 characters? :ANSWER1:0:T 8 to the 6th power times 60 seconds :ANSWER2:0:T 8 times 60 times 6 seconds :ANSWER3:0:T 2 to the 6th power seconds :ANSWER4:100:T 2 to the 18th power seconds :CAT:test5_mc ####################################### :TYPE:MC:1:0:C :TITLE: Dictionary attack :QUESTION:H Suppose an attacker is trying to compromise a password of any user on the system using a dictionary attack. A salt of n bits is used and there are m users, how much protection does the use of a salt provide. :ANSWER1:0:T It multiplies the attacker's work by m. :ANSWER2:0:T It multiplies the attacker's work by n. :ANSWER3:0:T It multiplies the attacker's work by the max of m and n. :ANSWER4:100:T It multiplies the attacker's work by the min of m and n. :ANSWER5:0:T It provides no additional protection. :CAT:test5_mc ####################################### :TYPE:MC:1:0:C :TITLE: Dictionary attack :QUESTION:H Suppose an attacker is trying to compromise a password of one specific user on the system using a dictionary attack. A salt of n bits is used and there are m users, how much protection does the use of a salt provide. :ANSWER1:0:T It multiplies the attacker's work by m. :ANSWER2:0:T It multiplies the attacker's work by n. :ANSWER3:0:T It multiplies the attacker's work by the max of m and n. :ANSWER4:0:T It multiplies the attacker's work by the min of m and n. :ANSWER5:100:T It provides no additional protection. :CAT:test5_mc ####################################### :TYPE:MC:N:1:C :TITLE: Identity and Authentication :QUESTION:H When you login to a machine which part corresponds to the identity and which corresponds to the authentication? :ANSWER1:50:T password corresponds to authentication :ANSWER2:-50:T password corresponds to identification :ANSWER3:-50:T username corresponds to authentication :ANSWER4:50:T username corresponds to identification :CAT:test5_mc ####################################### :TYPE:P :TITLE: Challenge Response :QUESTION:H:60:30 How can a challenge response system use a nonce, and is it a useful idea? :CAT:test5_p ####################################### :TYPE:P :TITLE: Authentication Systems :QUESTION:H:60:30 Describe the relationship between complementary functions and authentication functions in an authentication system. :CAT:test5_p ####################################### :TYPE:P :TITLE: Ticket Lifetimes :QUESTION:H:60:30 Two ways of ensuring that tickets are not compromised for a long period of time are to have short ticket lifetimes and to use revocation lists. Which solution is more compatible with the design principles discussed in class and why? :CAT:test5_p ####################################### :TYPE:MC:N:1:C :TITLE: Public Key Crypto :QUESTION:H Public key cryptography and symmetric key cryptography can be used together, which is the most likely combination :ANSWER1:50:T public key used for interchange key :ANSWER2:-50:T public key used for session key :ANSWER3:-50:T symmetric key used for interchange key :ANSWER4:50:T symmetric key used for session :CAT:test5b_mc ####################################### :TYPE:MC:N:1:C :TITLE: Feistel :QUESTION:H Check the following (if any) cipher(s) that are use a feistel structure. :ANSWER1:-50:T AES :ANSWER2:50:T DES :ANSWER3:-50:T Hill :ANSWER4:50:T Triple DES :CAT:test5b_mc ####################################### :TYPE:MC:N:1:C :TITLE: Bell LaPadula Dual :QUESTION:H Which model is referred to as the dual of the Bell LaPadula model? :ANSWER1:100:T Biba :ANSWER2:-25:T Chinese Wall :ANSWER3:-25:T Clark Wilson :ANSWER4:-25:T Schematic Protection :CAT:test5b_mc ####################################### :TYPE:MC:1:1:C :TITLE:Z gains c :QUESTION:H Consider the image shown , which of the following must be true for Z to be able to gain right c over W. A represents a set of rights. :ANSWER1:-25:T A must contain c :ANSWER2:-25:T A must contain g :ANSWER3:-25:T X must be a subject :ANSWER4:-25:T all of the above :ANSWER5:-25:T none of the above, A can be anything :ANSWER6:100:T none of the above, it is not possible :CAT:test5b_mc ####################################### :TYPE:MC:1:1:C :TITLE:Information Transfer Path :QUESTION:H Which model uses the concept of an information transfer path :ANSWER1:100:T Biba :ANSWER2:-25:T Chinese Wall :ANSWER3:-25:T Clark Wilson :ANSWER4:-25:T Clinical Information System :ANSWER5:-25:T all of the above :ANSWER6:-25:T none of the above :CAT:test5b_mc