3d052 Vol 1: The Ultimate Cyber Systems Operation Quiz

1. Knowledge-based identification and authentication methods require the user to providesomething you

Know.

Have.

Need.

Read.

2. What is the primary unclassified public key infrastructure (PKI) token for individual PKIkeys and certificates in the Air Force?

Hardware token.

Software token.

Common access card.

Identification (ID) key.

3. What are three primary ways to authenticate one-self?

Finger and voiceprints, or retinal scans.

Passwords, finger prints, or identification cards.

Passwords, fortezza cards, or identification cards.

Something you know, something you have, or something are.

4. What type of network environments consist of computer systems from different vendors that run different operating systems and communication protocols?

Internetwork.

Intranetwork.

Homogeneous network.

Heterogeneous network.

5. What is the preferred method of sanitizing magnetic media?

Degaussing.

Overwriting.

Formatting.

Deleting.

6. What is the minimum number of computers needed for a computer network?

1.

2.

5.

10.

7. What type of network is made up of components from the same vendor or compatibleequipment that all run under the same operating system or network operating system?

Internetwork.

Intranetwork.

Homogeneous network.

Heterogeneous network.

8. What type of communications network links different interconnected networks over anunlimited geographical region?

Global area network (GAN).

Local area network (LAN).

Metropolitan area network. (MAN).

Wide area network. (WAN).

9. What color on the systems management automated report tracking system (SMARTS)alarm log indicates one or more events?

Blue.

Orange.

Purple.

Yellow.

10. A base web-server that interfaces with the public must be placed in what area of a basenetwork?

At the core.

None are allowed

Outside the base network.

De-militarized zone (DMZ).

11. What network management area is concerned with controlling access points to information?

Configuration.

Performance.

Accounting.

Security.

12. Which component of the public key infrastructure (PKI) is responsible for establishing,authenticating, maintaining, and revoking certificates?

Certificate policy manager.

Registration authority.

Certificate authority.

Certificate repository.

13. Sustained communications support becomes a part of the deployment if it exceeds

15 days.

30 days.

45 days.

90 days.

14. What network device performs rigorous examinations of systems to identify weaknessesthat might allow security violations?

Network management software.

Intrusion detection devices.

Vulnerability scanners.

Firewalls.

15. What is used to identify network nodes on a physically connected network?

Media access control address.

Network server name.

Subnet mask address.

Node serial number.

16. What is the process of erasing magnetic media by reducing the magnetic flux to virtual zeroby applying a reverse magnetizing field?

Degausser.

Degaussing.

Destroying.

Sanitizing.

17. What is a communications network that serves users within a confined geographical area?

Global area network (GAN).

Local area network (LAN).

Metropolitan area network. (MAN).

Wide area network. (WAN).

18. An information system on your network that is not set to require the use of a commonaccess card (CAC) or password would be considered a

Threat.

Vulnerability.

Compromise.

Risk.

19. What network architecture has a network management platform on one computer system ata location that is responsible for all network management duties?

Centralized.

Distributed.

Hierarchical.

Hybrid.

20. What is a collection of computing environments connected by one or more internalnetworks under the control of a single approval authority and security policy?

Enclave.

Bastion.

Circuits.

Base.

21. What is the process of physically damaging the media to render it unusable in a computerand render the data on the media irretrievable by any known exploitation methods?

Destroying.

Degaussing.

Sanitizing.

Overwriting.

22. Which standard form is used to annotate storage media has been sanitized?

700.

701.

711.

712.

23. How many users are normally in a peer-to-peer network?

2-10.

10-50.

50-250.

250-1,000.

24. How many users are in a multi-server high-speed backbone network?

2-10.

10-50.

50-250.

250-1,000.

25. What series of Air Force instruction series covers communications and information?

10

29

30

33

26. What documentation is required to permanently connect to the global information grid(GIG) system?

Denial of authorization to operation (DATO).

Interim authorization to operate (IATO).

Authorization to operate (ATO).

Interim authorization to test (IATT).

27. Which public key algorithm is exclusively a key establishment protocol?

Rivest-Shamir-Adleman (RSA).

Diffie and Hellman.

Elliptic curve digital signature algorithm (ECDSA).

Elliptic curve Diffie-Hellman (ECDH).

28. The Air Force requires a network password to be at least how many characters long?

6

7

8

9

29. What is a cryptographic key and certificate delivery system that makes possible secureelectronic transactions and exchanges of sensitive information between relative strangers?

Public key cryptography.

Public key infrastructure (PKI).

Key distribution center.

Asymmetric key infrastructure.

30. According to the Air Force network structure, what tier is the Air Force network operationscenter (AFNOSC)?

1

2

3

4

31. What documentation signifies that a system is not allowed to connect to the globalinformation grid (GIG)?

Denial of authorization to operation (DATO).

Interim authorization to operate (IATO).

Authorization to operate (ATO).

Interim authorization to test (IATT).

32. What do you call a current and perceived capability, intention, or attack, directed to causedenial of service?

Vulnerability.

Threat.

Compromise.

Tunneling.

33. What operational simple network management protocol (SNMP) message is an unsolicitedmessage from an agent to the manager?

Get.

Set.

Trap.

GetNext.

34. What is the intrusion practice of encapsulating a message that would be rejected by thefirewall inside a second message that will pass through the firewall?

Tunneling.

Identification spoofing.

Application-based attacks.

Second message encryption.

35. What is a measure used to verify the eligibility of a subject and the ability of the subject toaccess certain information?

Authentication.

Recertification.

Accreditation.

Identification.

36. What is a privately-owned network whose access is restricted to authorized personnel iscalled?

Homogeneous network.

Internetwork.

Intranetwork.

Local area network (LAN).

37. What operational simple network management protocol (SNMP) message is used to modifythe value of one or more instances of management information?

Get.

Set.

Trap.

GetNext.

38. What is the binary equivalent to the dotted decimal number 96?

01100000.

01100110.

00001100.

10000001.

39. Which agency must approve all information protection tools prior to their use?

Defense Information System Agency (DISA).

Air Force Communication Agency (AFCA).

Air Force computer emergency response team (AFCERT).

Headquarters United States Air Force (HQ USAF).

40. What are examples of network attacks that bypass the firewall?

Identification spoofing and tunneling.

Tunneling and application-based attacks.

Second message encryption and identification spoofing.

Application-based attacks and second message encryption.

41. Who provides uninterrupted flow of mission critical information to field and in-garrisonunits for the duration of a contingency?

Open system standards teams.

Combat integrated system teams.

Initial communications support teams.

Sustained communications support teams.

42. What type of communications network links geographically dispersed offices in other citiesor around the globe?

Local area network (LAN).

Metropolitan area network (MAN).

Multi-server high-speed backbone network.

Enterprise network.

43. What is an electronic document that officially links together a user's identity with his publickey?

Token.

Public key.

Private key.

Public key infrastructure (PKI) certificate.

44. What type of firewall consists of a screening router and a set of rules that accept or reject amessage based on information in the message's header (a packet): the source address, thedestination address, and the port?

Proxy.

Bastion host.

Packet filtering.

Intrusion detection.

45. What are the three types of systems management automated report tracking system(SMARTS) notifications?

Compound events, alarm, and trend.

Compound events, problems, and network.

Auto-discovery, compound, and symptomatic events.

Compound events, problems, and symptomatic events.

46. What is the network id of internet protocol (IP) address 131.10.230.120/24?

0.0.0.120.

0.10.230.0.

131.10.230.0.

255.255.255.0.

47. Which function of performance management tracks historical data by tracking activities onthe network?

Tuning.

Analyzing.

Gathering.

Monitoring.

48. What type of communications network links a broad geographical region?

Global area network (GAN).

Local area network (LAN).

Metropolitan area network. (MAN).

Wide area network. (WAN).

49. How many users are in a multi-server network?

2-10.

10-50.

50-250.

250-1,000.

50. What type of malicious logic can form large networks that can be used to launch a varietyof attacks without an information system owner's knowledge?

Virus.

Trojan horse.

Worm.

Bot.

51. What operational simple network management protocol (SNMP) message asks for aspecific instance of management information?

Get.

Set.

Trap.

GetNext.

52. What component of the systems management automated report tracking system (SMARTS)application contains knowledge of available domain managers?

Broker.

Clients.

Probes.

Consoles.

53. The two ways key establishment can occur are key

Transfer and agreement.

Transfer and interchange.

Generation and agreement.

Generation and interchange.

54. How many octets is the standard internet protocol broken down into?

2

4

6

8

55. Which team provides a communication link between forces securing the area and setting up support facilities?

Open system standards teams.

Combat integrated system teams.

Initial communications support teams.

Sustained communications support teams

56. What program is known as a state of the art ground-to-ground communicationsinfrastructure designed to provide base level full spectrum communications to the commander and all agencies on base?

Commercial-off-the-shelf (COTS).

Combat integrated systems.

Theater deployable communications (TDC).

Integrated communications access package (ICAP).

57. What Air Force instruction provides policy, direction, and structure for the Air Force globalinformation grid (AF-GIG)?

AFPD 33–1.

AFI 33–112.

AFI 33–115v1.

AFI 29–2603v2.

58. What network entity provides reliable, secure networks and network services for base levelcustomers?

Network control center (NCC).

Network control center-deployable (NCC-D).

Network operations center (NOSC).

Air Force network operations center (AFNOSC).

59. Who can declassify storage media that has been sanitized?

Information assurance officer (IAO).

Designated approval authority (DAA).

Information system security officer.

Information owner.

60. Network management protocols are designed (in most cases) to reside above what layer ofthe operational system interface (OSI) model?

Session.

Transport.

Presentation.

Application.

61. A program that replicates by attaching itself to a program is a

Virus.

Trojan horse

Worm.

Bot.

62. What device is placed outside the boundary protection mechanism to monitor all attemptedattacks?

Intrusion detection system (IDS).

De-militarized zone (DMZ).

Vulnerability scanner.

Firewall.

63. What is the type of probe that collects inter-device connectivity information usingproprietary topology management information bases (MIB)?

Virtual local area network (VLAN) probe.

Neighbor probe.

Containment probe.

System information probe.

64. How many users are in a single-server network?

2-10.

10-50.

50-250.

250-1,000.

65. Storage media that retains data after power is removed is considered

Classified.

Volatile.

Sensitive.

Sanitized.

66. What simple network management protocol (SNMP) node is responsible for monitoring,collecting and reporting management data to the management system?

Primary domain controller (PDC).

Backup domain controller.

Manager.

Agent.

67. What operational simple network management protocol (SNMP) message is used to retrievemultiple pieces of information with minimal overhead?

Get.

Set.

Trap.

GetNext.

68. What provides information concerning the bandwidth utilization and the number ofconnections that are related to specific nodes?

Media access control (MAC)

Connection statistics.

Protocol statistics.

Node discovery.

69. What is the database of record for registering all systems and applications?

Security, interoperability, supportability, sustainability, and usability (SISSU).

Enterprise information technology data repository (EITDR).

Department of Defense Information Technology System Certification and AccreditationProcess (DITSCAP).

Department of Defense Information Assurance Certification and Accreditation Process(DIACAP).

70. What is the simplest and least expensive way to stop inappropriate network addresses?

Proxy.

Bastion host.

Packet filtering.

Intrusion detection.

71. What is the host id of internet protocol (IP) address 131.10.230.120/24?

0.0.0.120.

0.10.230.0.

131.10.230.0.

255.255.255.0.

72. What do you call the consolidated list of requirements that a program office must adhere towhen fielding a system?

Enterprise information technology data repository (EITDR).

Security, interoperability, supportability, sustainability, and usability (SISSU).

Department of Defense Information Technology System Certification and AccreditationProcess (DITSCAP).

Department of Defense Information Assurance Certification and Accreditation Process(DIACAP).

73. Which of the following are the three most common network management architectures?

Centralized, hierarchical, and distributed.

Centralized, hybrid and distributed.

Centralized, hierarchical, and hybrid.

Hybrid, hierarchical, and distributed.

74. What area of the simple network management protocol (SNMP) tree structure is reservedfor vendors related label and leaf objects associated with specific manufactured equipment?

Management.

Private.

Directory.

Experimental.

75. How many different categories of information does the performance monitor provide youabout your network?

7

14

19

21

76. How many non-secure internet protocol router network (NIPRNet) gateways does the AirForce possess?

15

16

32

36

77. What is the established to distinguish between errors that fall within a normal range andexcessive errors because of a fault?

Fault parameters.

Tolerance parameters.

Low-level software alarms.

Low-level hardware alarms.

78. Performance management can be broke into what two separate functional categories?

Monitoring and analyzing.

Monitoring and replacing.

Monitoring and tuning.

Analyzing and tuning.

79. What provides information concerning the network utilization and frame errors that arerelated to a specific protocol?

Media access control (MAC) node statistics.

Connection statistics.

Protocol statistics.

Node discovery.

80. What type of firewall is used to separate secure sites, networks, or network segments fromless secure areas?

Proxy.

Bastion host.

Packet filtering

Intrusion detection.

81. What is a file that is kept with you and will allow you to decrypt files encrypted specificallyfor you using your openly available encryption code?

Token.

Public key.

Private key.

Public key infrastructure (PKI) certificate.

82. What network architecture uses multiple systems for network management, with one systemacting as a central server and the others working as clients?

Centralized.

Distributed.

Hierarchical.

Hybrid.

83. What regulation covers remanence security?

AFPD 33–2.

AFSSI 8580

AFSSI 5020

AFI 33–115v1.

84. What is a hierarchical structured format that defines the network management informationavailable from network devices?

Object identifier.

Network device map.

Network protocol list.

Management information base.

85. What reports errors that occur at the physical layer such as bad frame check sequence(FCS), short frames, and jabbers?

Media access control (MAC) node statistics.

Connection statistics.

Protocol statistics.

Node discovery.

86. What is a formal declaration by a designated approving official (DAA) that an informationsystem is approved to operate in a particular security mode using a prescribed set of safeguards at an acceptable level of risk?

Department of Defense Information Assurance Certification and Accreditation Process(DIACAP).

Plan of action & milestones (POA&M).

Accreditation.

Certification.

87. What automatically runs in the background when the protocol analyzer application isactivated?

Media access control (MAC)

Connection statistics.

Protocol statistics.

Node discovery.

88. What can be used to encrypt a message so that it can only be decrypted by the recipient?

Token.

Public key.

Private key.

Public key infrastructure (PKI) certificate.

89. What is the centerpiece of a systems management automated report tracking system(SMARTS) application?

Broker.

Clients.

Map console.

Domain manager.

90. What is defined as a bundle of application software designed to significantly improvenetwork efficiency and productivity?

Fault management server.

Network management server.

Performance management server.

Security management server.

91. What level of network management activity are you working at when the automatedmonitoring of components provides problem analysis, giving a root cause alarm for the problem at-hand?

Inactive.

Reactive.

Interactive.

Proactive.

92. What is the Department of Defense process for certifying and accrediting informationsystems to operate on the global information grid (GIG)?

Enterprise information technology data repository (EITDR).

Security, interoperability, supportability, sustainability, and usability (SISSU).

Department of Defense Information Technology System Certification and AccreditationProcess (DITSCAP).

Department of Defense Information Assurance Certification and Accreditation Process(DIACAP).

93. What level of network management activity are you working at when you as the networkmanager are monitoring and troubleshooting components to eliminate the side-effect alarms and isolate problems to a root cause?

Inactive.

Interactive.

Proactive.

Reactive.

94. What process, along with AFI 33–210, Air Force Certification and Accreditation (C&A)Program (AFCAP), provides the basic framework of the certification & accreditation (C&A)?

Information technology (IT) lean reengineering.

Enterprise information technology data repository (EITDR).

Security, interoperability, supportability, sustainability, and usability (SISSU).

Department of Defense information assurance certification and accreditation process(DIACAP).

95. What type of firewall generates audit trails of all network-related activity for monitoringand intrusion detection purposes?

Intrusion detection.

Packet filtering.

Bastion host.

Proxy.

96. How many bits are typically covered in an internet protocol version 6 (IPv6) subnet mask?

24

48

64

128

97. What action represents one of the greatest vulnerabilities to internal networks?

Personnel that continue to misuse the network by surfing the web.

Access to the network through backdoors left by system administrators.

Network-connected desktop systems with modems that make calls to the public-switchednetwork.

Network-connected computer systems with modems that make calls to and accept calls fromthe public-switched network.

98. What device provides a capability for digital network diagnostics and developingcommunications software?

Systems management automated report tracking system (SMARTS).

Protocol analyzer.

Network root router.

Windows advanced server.

99. What is a comprehensive evaluation and validation of an Air Force information system (IS)to establish the degree to which it complies with assigned information assurance (IA) controls based on standardized procedures?

Department of Defense Information Assurance Certification and Accreditation Process(DIACAP).

Plan of action & milestones (POA&M).

Accreditation.

Certification.

100. What type of malicious logic can become active on an information system without the needto infect a file?

Virus.

Trojan horse.

Worm.

Bot.