Authentication

7 Questions | Total Attempts: 51

SettingsSettingsSettings
Please wait...
Network Security Quizzes & Trivia

Think you know something about how to fix common issues with web site authentication? Let's find out!


Questions and Answers
  • 1. 
    Which defense helps stop username harvesting?
    • A. 

      Display generic login messages

    • B. 

      Ensure login attempts are of the same average delay time

    • C. 

      Assign usernames to users

    • D. 

      All of the above

    • E. 

      None of the above

  • 2. 
    Which attack type does multi-factor authentication help prevent?
    • A. 

      Username harvesting

    • B. 

      Brute force attack

    • C. 

      Password storage attacks

    • D. 

      Network sniffing

    • E. 

      JavaScript attacks

  • 3. 
    What is the theory behind good password storage?
    • A. 

      Verifiable and reversible

    • B. 

      Not verifiable or reversible

    • C. 

      Verifiable but not reversable

    • D. 

      Not verifiable and reversible

  • 4. 
    Which of the following algorithms are good for password storage as part of user authentication?
    • A. 

      MD5

    • B. 

      SHA-2

    • C. 

      BCRYPT

    • D. 

      MD4

    • E. 

      PBKDF2

    • F. 

      REEFISH

    • G. 

      AES

    • H. 

      BLOWFISH

  • 5. 
    Which of the following will help stop session fixation?
    • A. 

      At login time, redirect user if session is inactive

    • B. 

      Allow for support of session identifiers in URL's

    • C. 

      Discard current session and create a new one on login

    • D. 

      Invalidate session during change password

  • 6. 
    Which cookie attribute will help stop session theft?
    • A. 

      Xpath

    • B. 

      HTTPOnly

    • C. 

      Content

    • D. 

      Secure

  • 7. 
    Which of the following should cause your session to end?
    • A. 

      Absolute Timeout

    • B. 

      Predictive Timeout

    • C. 

      Idle Timeout

    • D. 

      Regenerative Timeout

    • E. 

      Logout