Access Control11.docx
- 文档编号:3222972
- 上传时间:2022-11-20
- 格式:DOCX
- 页数:80
- 大小:69KB
Access Control11.docx
《Access Control11.docx》由会员分享,可在线阅读,更多相关《Access Control11.docx(80页珍藏版)》请在冰豆网上搜索。
AccessControl11
AccessControlPart1
Yourquizresults:
Hidedetailsinallquestions.
Hidecorrectquestions.
TopofForm
1.Question:
216|Difficulty:
4/5|Relevancy:
3/3
ThereareparallelsbetweenthetrustmodelsinKerberosandinPKI.Whenwecomparethemsidebyside,Kerberosticketscorrespondmostcloselytowhichofthefollowing?
o
publickeys
o
privatekeys
o
public-keycertificates
o
private-keycertificates
C.AKerberosticketisissuedbyatrustedthirdparty;itisanencrypteddatastructurethatincludestheserviceencryptionkey.Inthatsenseitissimilartoapublic-keycertificate.However,theticketisnotakey.Andthereisnosuchthingasaprivatekeycertificate.
Studyareas:
CISSPCBKdomain#1-AccessControl,CISSPCBKdomain#5-Cryptography
Coveredtopics
(2):
Kerberos,X.509Digitalcertificates
Thisquestion©Copyright2003–2006cccure.org.
2.Question:
423|Difficulty:
1/5|Relevancy:
3/3
Whatiscalledapasswordthatisthesameforeachlog-onsession?
o
"one-timepassword"
o
"two-timepassword"
o
staticpassword
o
dynamicpassword
C.Apasswordthatisthesameforeachlog-oniscalledastaticpassword.
Source:
KRUTZ,RonaldL.&VINES,RusselD.,TheCISSPPrepGuide:
MasteringtheTenDomainsofComputerSecurity,2001,JohnWiley&Sons,Page36.
Contributor:
RakeshSud
Studyarea:
CISSPCBKdomain#1-AccessControl
Coveredtopic:
Passwords
Thisquestion©Copyright2003–2006RakeshSud,cccure.org.
3.Question:
88|Difficulty:
1/5|Relevancy:
3/3
Atimelyreviewofsystemaccessauditrecordswouldbeanexampleofwhichofthebasicsecurityfunctions?
o
avoidance.
o
deterrence.
o
prevention.
o
detection.
D.Thecorrectansweris:
detection.
Byreviewingsystemlogsyoucandetecteventsthathaveoccured.
Thefollowinganswersareincorrect:
avoidance.Thisisincorrect,avoidanceisadistractor.Byreviewingsystemlogsyouhavenotavoidedanything.
deterrence.Thisisincorrectbecausesystemlogsareahistoryofpastevents.Youcannotdetersomethingthathasalreadyoccurred.
prevention.Thisisincorrectbecausesystemlogsareahistoryofpastevents.Youcannotpreventsomethingthathasalreadyoccurred.
Lastmodified6/08/2007-J.Hajec
Comment:
Atimelyreviewoftheauditlogswouldprovideearlydetectionofpossibleandintentionalabusesbutdoesnothingtopreventoccurrenceofabuses,ifany.Anearlydetectionwouldleadtopreventionofmuchseriousabuseslateron.Auditingcanbeseenasadetectionexercisemorethanapreventiveexercise.
References:
OIGCBKGlossary(page791)
Contributor:
KamrenLee
Studyarea:
CISSPCBKdomain#1-AccessControl
Coveredtopic:
Account,logandjournalmonitoring
Thisquestion©Copyright2003–2006cccure.org.
4.Question:
1241|Difficulty:
2/5|Relevancy:
3/3
Identificationandauthenticationarethekeystonesofmostaccesscontrolsystems.Identificationestablishes:
o
useraccountabilityfortheactionsonthesystem.
o
topmanagementaccountabilityfortheactionsonthesystem.
o
EDPdepartmentaccountabilityfortheactionsofusersonthesystem.
o
authenticationforactionsonthesystem
A.Identificationandauthenticationarethekeystonesofmostaccesscontrolsystems.Identificationestablishesuseraccountabilityfortheactionsonthesystem.
Source:
KRUTZ,RonaldL.&VINES,RusselD.,TheCISSPPrepGuide:
MasteringtheTenDomainsofComputerSecurity,2001,JohnWiley&Sons,Page36.
Contributors:
RakeshSud,SasaVidanovic
Studyarea:
CISSPCBKdomain#1-AccessControl
Coveredtopic:
Accesscontrolobjectives
Thisquestion©Copyright2003–2006RakeshSud,cccure.org.
5.Question:
438|Difficulty:
2/5|Relevancy:
3/3
Whichofthefollowingbiometriccharacteristicscannotbeusedtouniquelyauthenticateanindividual'sidentity?
o
Retinascans
o
Irisscans
o
Palmscans
o
Skinscans
D.Thefollowingaretypicalbiometriccharacteristicsthatareusedtouniquelyauthenticateanindividual'sidentity:
-Fingerprints
-Retinascans
-Irisscans
-Facialscans
-Palmscans
-Handgeometry
-Voice
-Handwrittensignaturedynamics
Source:
KRUTZ,RonaldL.&VINES,RusselD.,TheCISSPPrepGuide:
MasteringtheTenDomainsofComputerSecurity,2001,JohnWiley&Sons,Page39.
And:
HARRIS,Shon,All-In-OneCISSPCertificationExamGuide,McGraw-Hill/Osborne,2002,chapter4:
AccessControl(pages127-131).
Contributors:
RakeshSud,ChristianVezina,donmurdoch
Studyarea:
CISSPCBKdomain#1-AccessControl
Coveredtopic:
Biometrics
Thisquestion©Copyright2003–2006RakeshSud,cccure.org.
6.Question:
408|Difficulty:
1/5|Relevancy:
3/3
Whatiscalledtheaccessprotectionsystemthatlimitsconnectionsbycallingbackthenumberofapreviouslyauthorizedlo
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- Access Control11
冰豆网所有资源均是用户自行上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作他用。
广东省普通高中学业水平考试数学科考试大纲Word文档下载推荐.docx
-
计算题测试文档格式.docx
-
会计年终总结范文精选10篇Word文件下载.docx
-
基坑支护及降排水方案Word格式文档下载.docx
-
古代诗歌鉴赏一剪梅学案Word文档格式.docx
-
国标舞考级Word文件下载.docx
-
机电工程质量验收规范是什么Word文档下载推荐.docx
-
技术员工作自我评价文档格式.docx
-
交警支队车棚改造工程施工合同文档格式.docx
-
护士变更注册申请审核表与示范文本Word文档下载推荐.docx
-
最新学校新冠肺炎疫情防控应急预案Word文件下载.docx
-
GB50204钢筋规范之欧阳总创编Word格式文档下载.docx
-
《半期整改措施》Word格式.docx
-
诊断 症状学腰背痛关节痛汇总.docx
-
英美文学欣赏The Analysis of Shelleys Ode to the West Wind.docx
-
增值税营改增所得税消费税车购税测试题.docx
-
整理二级建造师管理真题.docx
-
英语三级重点高频词汇导入背单词APP使用.docx
-
浙教版学年九年级数学上册第2章测试题及答案.docx
-
证件照教学设计方案.docx
-
优品课件之《从锁国走向开国的日本》教案.docx
-
整理北京交通大学万用表组装实验报告.docx
-
质量管理计划.docx
-
有机化学鉴别.docx
-
整理照明灯饰灯具行业分类英语词汇.docx
-
濉溪县城市总体规划公示.docx
-
智能化工程质量验收记录表.docx
-
学生会纪检部工作总结.docx
-
幼儿园保教主任发言稿.docx
-
跆拳道协会工作总结.docx
-
中国茶叶店连锁市场竞争分析与竞争战略研究报告.docx
-
学宪法讲宪法主题演讲稿800字精选5篇弘扬宪法精神演讲稿5篇.docx
-
人教版七年级数学下册知识点大全Word下载.docx
-
中国稀土状况与政策白皮书Word格式文档下载.docx
-
个人成长报告范文精选5篇精品Word文档格式.docx
-
陕旅版小学英语六年级下册单元试题 全册Word下载.docx
-
财务报告分析利润表Word格式.docx
-
经典咏流传10首诗词曲第二课堂总教案Word格式.docx
-
特殊平行四边形单元测试题含答案3Word文档下载推荐.docx
-
肉牛养殖场项目建议书Word文档格式.docx
-
电力监理工程质量评估报告Word格式文档下载.docx
-
混凝土搅拌站管理规定Word格式文档下载.docx
-
九年级语文下册第七单元同步测试Word文档格式.docx
-
最新北师大版 九年级历史初三上册全一册教案设计Word文件下载.docx
-
关于感恩节的英文歌Word文件下载.docx
-
生态农业观光旅游采摘园建设项目可行性研究报告Word文件下载.docx
-
贵州省安顺市中考英语试题Word文档下载推荐.docx
-
新药审批办法有关中药部分的修订和补充规定Word文档格式.docx
-
巢湖湖滨水上运动乐园综合旅游开发项目初步可行性报告Word文档格式.docx
-
工程项目验收管理办法Word文档下载推荐.docx
-
苏教版四年级上册教学设计 第4单元 统计表和条形统计图一Word下载.docx
