Set 1 CompTIA Security+ Practice Questions

The Biometrics uses finger prints, retinal scan and some times the DNA structure too to establish user Id.

Router is a gateway and antivirus resides on all systems. Firewall is meant to safe guard the network from external attacks.

The information of mapping users to their permissions for resource access would be available in the ACL.

Biometric will authenticate or establish User ID depending on the physical attribute of the user. For ex: Finger print, hand scan or retina scan.

Certificates are best used during WAN access. For ex: when using web sites that require you to provide confidential information about yourself, or when you are logging in to the Intranet, from an unknown location.

DoS is a way of engaging a Web Server continuously in one specific task by outing it on a loop and ensuring it is unable to respond to any further requests.

MAC uses a static or predefined set of access privileges and hence cannot allow dynamic sharing of resources.

To allow access to a campus you would use smart cards.

System administrator is responsible for access control in the MAC model. The owner will be responsible for DAC. The RBAC is dependent on the role played by the user in the organization.

A programmer makes use of back doors in the program for the purpose of debugging or observing the performance of the program.

To transfer mails between email servers and their respective clients POP3 (Post Office Protocol Version 3) is used.

The Kerberos system requires a Key Distribution Center (KDC) which is responsible for authenticating any network user, Computer or Service. Depending on whether the authentication fails or succeeds the ticket will be granted to the end user, Computer or Service.

Wireless LANs is dependent on frequency for transmission and reception. This makes the media very susceptible to overhearing or eavesdropping.

Clear text authentication is very simple and easy to implement and verify. But a network that has implemented clear text security is not very secure as it is very easy to decipher clear text passwords.

PAP uses clear text and is a two-way handshake protocol.

It is imperative that users be assigned IP addresses for the purpose of connecting to the company resources. This dynamic allocation will be possible only with the help of DHCP service.

A token is generated when a user has been successfully authenticated. This token is attached to the users session and will be destroyed once the session is terminated or after the user has logged out. This token will contain user access permission assigned on the network resources for that user. Token is a system and not a protocol.

RADIUS is a RAS authentication Service.

DDoS (Distributed DoS) would test for more vulnerabilities on the server than the DoS would.

TFTP (trivial File Transfer Protocol) uses UDP for data transfer and hence does not facilitate acknowledgements.