WGU Course C836 - Fundamentals of
Information Security Practice Exam
Questions with Correct Answers | Graded
A+ Study Guide
The science of breaking through encryption is known as _____.
A Cryptology
B Cryptography
C Cryptanalysis
D Ciphertext ✔️Answer✔️C
We are somewhat limited in our ability to protect which type of data?
A Data in use
B Data at rest
C Data in motion ✔️Answer✔️A
Some standards are not mandated by law but are managed and
enforced by the industry, often via a council or committee. Which of
the options below is an example of this industry compliance?
A FISMA
,B PCI DSS
C SOX
D HIPAA
E GLBA ✔️Answer✔️B
______ sets limits on the use and disclosure of patient information and
grants individuals rights over their own health records.
A HIPAA
B SOX
C GLBA
D FERPA
E PCI DSS ✔️Answer✔️A
Which cybersecurity term is defined as the potential for an attack on a
resource?
A Impact
B Vulnerability
C Risk
D Threat ✔️Answer✔️D
,Which security type deliberately exposes a system's vulnerabilities or
resources to an attacker?
A Intrusion detection
B Firewalls
C Honeypots
D Intrusion prevention ✔️Answer✔️C
Which tool can be used to map devices on a network, along with their
operating system types and versions?
A Packet sniffer
B Packet filter
C Port scanner
D Stateful firewall ✔️Answer✔️C
Which web attack is a server-side attack?
A Clickjacking
B Cross-site scripting
C SQL injection
D Cross-site request forgery ✔️Answer✔️C
, An organization employs a VPN to safeguard its information.
Which security principle is protected by a VPN?
A Data in motion
B Data at rest
C Data in use
D Data in storage ✔️Answer✔️A
A malicious hacker was successful in a denial of service (DoS) attack
against an institution's mail server. Fortunately, no data was lost or
altered while the server was offline.
Which type of attack is this?
A Modification
B Fabrication
C Interception
D Interruption ✔️Answer✔️D
A company has had several successful denial of service (DoS) attacks on
its email server.
Information Security Practice Exam
Questions with Correct Answers | Graded
A+ Study Guide
The science of breaking through encryption is known as _____.
A Cryptology
B Cryptography
C Cryptanalysis
D Ciphertext ✔️Answer✔️C
We are somewhat limited in our ability to protect which type of data?
A Data in use
B Data at rest
C Data in motion ✔️Answer✔️A
Some standards are not mandated by law but are managed and
enforced by the industry, often via a council or committee. Which of
the options below is an example of this industry compliance?
A FISMA
,B PCI DSS
C SOX
D HIPAA
E GLBA ✔️Answer✔️B
______ sets limits on the use and disclosure of patient information and
grants individuals rights over their own health records.
A HIPAA
B SOX
C GLBA
D FERPA
E PCI DSS ✔️Answer✔️A
Which cybersecurity term is defined as the potential for an attack on a
resource?
A Impact
B Vulnerability
C Risk
D Threat ✔️Answer✔️D
,Which security type deliberately exposes a system's vulnerabilities or
resources to an attacker?
A Intrusion detection
B Firewalls
C Honeypots
D Intrusion prevention ✔️Answer✔️C
Which tool can be used to map devices on a network, along with their
operating system types and versions?
A Packet sniffer
B Packet filter
C Port scanner
D Stateful firewall ✔️Answer✔️C
Which web attack is a server-side attack?
A Clickjacking
B Cross-site scripting
C SQL injection
D Cross-site request forgery ✔️Answer✔️C
, An organization employs a VPN to safeguard its information.
Which security principle is protected by a VPN?
A Data in motion
B Data at rest
C Data in use
D Data in storage ✔️Answer✔️A
A malicious hacker was successful in a denial of service (DoS) attack
against an institution's mail server. Fortunately, no data was lost or
altered while the server was offline.
Which type of attack is this?
A Modification
B Fabrication
C Interception
D Interruption ✔️Answer✔️D
A company has had several successful denial of service (DoS) attacks on
its email server.
