IA SECURITY 1 - SA 3

0.0(0)
Studied by 0 people
call kaiCall Kai
Locked
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/58

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 1:09 PM on 7/13/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai
Chat

No analytics yet

Send a link to your students to track their progress

59 Terms

1
New cards

It is the connect between the verification of a user's personality and the authorization to utilize a service.

SAML

RADIUS

TACACS

OTP

SAML

2
New cards

It uses a symmetric encryption strategy

SAML

OTP

RADIUS

TACACS

TACACS

3
New cards

Which of the following allows an application to securely authenticate a user by receiving credentials from a web domain?

Kerberos

RADIUS

SAML

TACACS+

SAML

4
New cards

It makes use of port 389.

LDAP

LDAPS

Access control

Directory Services

LDAP

5
New cards

It is an OTP creation algorithm based on event synchronization, and the client and authentication server share the secret key K.

TOTP

HOTP

TACACS

SAML

HOTP

6
New cards

It was accepted by Microsoft as the chosen authentication protocol for Windows 2000 and Active Directory domains that followed.

Kerberos

Layer 2 Tunneling Protocol (L2TP)

Point-to-Point Tunneling Protocol (PPTP)

Tunneling

Kerberos

7
New cards

It provides Single-Sign On (SSO) and works well in the office and over VPN.

LDAP

LDAPS

Active Directory

Directory Services

Active Directory

8
New cards

It is an open standard that permits identity providers (IdP) to pass authorization qualifications to service suppliers.

OTP

TACACS

RADIUS

SAML

SAML

9
New cards

It could be a brief passcode produced by a calculation that uses the current time of day as one of its verification components

HOTP

SAML

TOTP

TACACS

TOTP

10
New cards

It is considered safer since the password keeps on changing, meaning that it isn't vulnerable against replay attacks

OTP

RADIUS

SAML

TACACS

OTP

11
New cards

Which one of the following is NOT a weak password?

Your username

An anagram of your favorite film

Your pet's name

Your favorite football teams

An anagram of your favorite film

12
New cards

It is a document which outlines the requirements for requesting and maintaining an account on computer systems or networks, typically within an organization.

Account Policy

Password complexity

Passwords

Credential management

Account Policy

13
New cards

It is regularly utilized by groups that share comparative functions - known as group-based access - or by casual clients that require access to a system in a restricted capacity

Privileged accounts

Shared account

Service accounts

User account

Shared account

14
New cards

Telling your password to your parents is a good practice on security

True

False

False

15
New cards

Change your password regularly is a good practice on security.

True

False

True

16
New cards

It locks the user's account after a defined number of failed password attempts.

Privileged account

Account policy

Account lockout

Federated identity

Account lockout

17
New cards

It is often used by teams that share similar functions - known as group-based access - or by casual users that need access to a system in a limited capacity.

Service accounts

User account

Privileged accounts

Shared account

Shared account

18
New cards

Create passwords with at least eight characters.

False

True

True

19
New cards

It is a feature of the Microsoft Windows NT family of operating systems that controls the working environment of user accounts and computer accounts.

Account lockout

Credential Management

Complex password

Group Policy

Group Policy

20
New cards

It prevents the user from logging onto the network for a period even if the correct password is entered.

Account policy

Federated identity

Privileged account

Account lockout

Account lockout

21
New cards

This allows others to rely upon signatures or assertions made by the private key that corresponds to the public key that is certified.

CA

PKI

Certificate authentication

Digital certificate

Digital certificate

22
New cards

It contributes to managing the complete lifecycle of cryptographic keys, which includes creation, rotation, deletion, auditing, and support for API's to integrate with various applications.

PKI

HSM

Certificate Store

CRL

HSM

23
New cards

This device protects and manages digital keys and serves as the groundwork for building a secure enterprise PKI infrastructure.

HSM

Certificate Store

PKI

CRL

HSM

24
New cards

It can also be significantly more secure than their public counterparts.

Intermediate CA

Root CA

Public CA

Private CA

Private CA

25
New cards

It is run by the governments as well.

Root CA

Private CA

Intermediate CA

Public CA

Public CA

26
New cards

This permits others to depend upon marks or statements made by the private key that corresponds to the open key that's certified.

Certificate authentication

Digital certificate

CA

PKI

Digital certificate

27
New cards

This is only 'trusted' by users within that organization - and that's okay because it rarely interfaces with outside networks.

Public CA

Intermediate CA

Root CA

Private CA

Private CA

28
New cards

It is a scheme that uses a public key cryptography and digital certificate to authenticate a user.

Certificate authentication

Digital certificate

PKI

CA

Certificate authentication

29
New cards

It is a substance that issues computerized certificates.

Digital certificate

CA

Certificate authentication

PKI

CA

30
New cards

It is utilized to demonstrate a person's character; it can be utilized for verification.

Digital certificate

Certificate authentication

CA

PKI

Digital certificate

31
New cards

In this stage, once they agree on an encryption level, the client generates a session key, encrypts it, and sends it with the public key from the server.

Negotiation

Response

Encryption

Request

Encryption

32
New cards

Certificates contain an expiration date that's specified when they are first issued...

False

True

False

33
New cards

Destroy original key.

Private Key Replacement Process

None of the above

Private Key Restoration Methods

Private Key Protection Methods

Private Key Replacement Process

34
New cards

Every time the certificate is utilized to confirm in this period.

Certificate Issuance

Certificate Validation

Certificate Life Cycle

Certificate Enrollment

Certificate Validation

35
New cards

In these, shorter life cycles permit for reestablishment of more secure certificates.

Certificate Validation

Certificate Life Cycle

Certificate Issuance

Certificate Enrollment

Certificate Life Cycle

36
New cards

Shorter life cycles allow for renewal of more secure certificates in this term.

Certificate Life Cycle

Certificate Enrollment

Certificate Issuance

Certificate Validation

Certificate Life Cycle

37
New cards

A Certificate Revocation is a private key compromised.

False

True

True

38
New cards

In this stage, by trusting another CA that as of now approved the candidate

Certificate Validation

Certificate Enrollment

Certificate Issuance

Certificate Life Cycle

Certificate Enrollment

39
New cards

Request in SSL Enrollment Process means

The server responds by sending its digital certificate and public key to the client.

The server and client then negotiate an encryption level.

Once they agree on an encryption level, the client generates a session key, encrypts it, and sends it with the public key from the server.

The client requests a session with the server.

The client requests a session with the server.

40
New cards

It restores from backup media.

Private Key Replacement Process

Private Key Protection Methods

Key backup

None of the above

Key backup

41
New cards

It is objective of physical security that center on genuine time area following of keys

Safeguarding physical assets

Regulating access to keys

Protecting nothing

Protecting private data

Regulating access to keys

42
New cards

It is goal of physical security that focus on businesses dealing with pharmaceutical drugs

Protecting nothing

Safeguarding physical assets

Protecting private data

Regulating access to keys

Safeguarding physical assets

43
New cards

A component that offers control through a fire alarm or notification system.

Fire suppression

Alarm control panel

Fire

Fire detection

Alarm control panel

44
New cards

It is objective of physical security that center on carrying huge sums of cash or gems on the premises

Safeguarding physical assets

Protecting private data

Protecting nothing

Regulating access to keys

Safeguarding physical assets

45
New cards

A component for keeping a entryway, cover, etc., affixed, regularly worked as it were by a key of a shape.

Locks

Video surveillance

Logging and visitor access

Identification systems

Locks

46
New cards

It senses one or more of the products or phenomena resulting from fire...

Alarm control panel

Fire

Fire detection

Fire suppression

Fire detection

47
New cards

It is objective of physical security that center on buildings and staff

Regulating access to keys

Protecting private data

Safeguarding physical assets

Protecting nothing

Safeguarding physical assets

48
New cards

These are a system of one or more video cameras...

Locks

Identification systems

Video surveillance

Logging and visitor access

Video surveillance

49
New cards

It is goal of physical security that focus on sensitive patient details

Safeguarding physical assets

Regulating access to keys

Protecting private data

Protecting nothing

Protecting private data

50
New cards

They regularly take the form of blurbs...

Simulated attacks

Classroom-based training

Online security awareness training

Visual aids

Visual aids

51
New cards

A separate individual or organization other than the two principals involved.

Agreements

Compliance

Third party

Notifications

Due Diligence

Third party

52
New cards

One of the primary benefits of a BPA is that it can help settle conflicts when they arise

True

False

True

53
New cards

The training in the context of a specific role...

Security awareness

Security Policy Awareness

Role-Based Training

Rule-Based Training

Role-Based Training

54
New cards

These are sham assaults pointed at clients...

Simulated attacks

Online security awareness training

Visual aids

Classroom-based training

Simulated attacks

55
New cards

Developed by us allows you to deliver highly customized training content...

Security Policy Awareness

Role-Based Training

Rule-Based Training

Security awareness

Role-Based Training

56
New cards

They typically take the form of posters...

Classroom-based training

Visual aids (including video)

Online security awareness training

Through simulated attacks

Visual aids (including video)

57
New cards

Participants' reactions to the assaults are observed.

Classroom-based training

Online security awareness training

Simulated attacks

Visual aids

Simulated attacks

58
New cards

In Business Partners. Give total data access to partners.

False

True

False

59
New cards

In Business Partners. Clearly define who owns data.

False

True

True