WGU D430 / C836 (Modules 1 -4) Fundamentals of
Information Security – Examination Sample Prep Questions
and Answers; Certified for Accuracy 2025/2026
what is Multifactor Authentication correct answer an authentication mechanism that
requires more than two means of authentication such as what the user knows (PIN) and
what the user has (ATM card)
What is mutual authentication correct answer an authentication mechanism in which
both parties authenticate one another.
What is a "man-in-the-middle" attack correct answer An attack in which a malicious
user inserts itself into the original connection between a server and client, intercepting
their communications and forwarding their messages
What is brute force cracking correct answer trying every possible combination of
characters that the password could be composed of, in sequence, until they have all
been tried.
How can one mitigate a brute force attack correct answer by limiting the number of
attempts before the user is locked out
In which two ways can biometrics be used correct answer for verification and for
identification
What happens in the enrollment process of a biometric system correct answer
recording the chosen biometric data from the user and storing the characteristic in the
system
What is one problem with biometrics today correct answer the lack of laws protecting a
user's data
,What are the seven characteristics that define biometric factors correct answer
universality, uniqueness, permanence, collectability, performance, acceptability, and
circumvention
What does universality stipulate correct answer the chosen biometric ought to be
found in the majority of people enrolled in the system
What does uniqueness measure correct answer how peculiar a particular
characteristic is among individuals
What does permanence test correct answer how well a characteristic resists change
over time and with advancing age
What does collectability measure correct answer how easy it is to acquire a
characteristic with which to authenticate the user
What does performance measure in the context of biometrics correct answer how well
a given system functions in regard to its speed, accuracy, and error rate
What does acceptability measure correct answer to what degree the users of the
system will tolerate the system
What does circumvention refer to correct answer how well the system can be tricked
by a false biometric identifier
What does the principle of least privilege dictate correct answer a party should have
only the bare minimum of access needed to allow it to perform the functionality required
of it
what does allowing access accomplish correct answer it gives access to a particular
resource to a particular party
, what does denying access do correct answer it prevents access of a particular
resource by a particular party
what does limiting access do correct answer it allows access of our resource to a
certain extent
what is a sandbox correct answer a set of resources devoted to a program, process, or
similar entity outside of which the entity cannot operate
what does revoking access do correct answer it takes away access formerly given to a
party
What is blackholing correct answer the practice of applying large scale filtering ranging
from blocking individual IP addresses to ranges, to the IT space of whole organizations,
IPS, or even countries in order to block out known attacks, spammers, or other
undesirable traffic
How many ports are there correct answer 65536
what is a socket the combination of a source IP address and port number or a
destination IP address and port number
what is the basic principle of ACL security correct answer restricting and granting
access based on whether the entity requesting access has approved resource, identity,
or set of permissions
What are three common credentials used in a ACL security model correct answer IP
Address, Port, Socket
what is a disadvantage of using an IP address or MAC address for ACL security correct
answer one can easily falsify these addresses
Information Security – Examination Sample Prep Questions
and Answers; Certified for Accuracy 2025/2026
what is Multifactor Authentication correct answer an authentication mechanism that
requires more than two means of authentication such as what the user knows (PIN) and
what the user has (ATM card)
What is mutual authentication correct answer an authentication mechanism in which
both parties authenticate one another.
What is a "man-in-the-middle" attack correct answer An attack in which a malicious
user inserts itself into the original connection between a server and client, intercepting
their communications and forwarding their messages
What is brute force cracking correct answer trying every possible combination of
characters that the password could be composed of, in sequence, until they have all
been tried.
How can one mitigate a brute force attack correct answer by limiting the number of
attempts before the user is locked out
In which two ways can biometrics be used correct answer for verification and for
identification
What happens in the enrollment process of a biometric system correct answer
recording the chosen biometric data from the user and storing the characteristic in the
system
What is one problem with biometrics today correct answer the lack of laws protecting a
user's data
,What are the seven characteristics that define biometric factors correct answer
universality, uniqueness, permanence, collectability, performance, acceptability, and
circumvention
What does universality stipulate correct answer the chosen biometric ought to be
found in the majority of people enrolled in the system
What does uniqueness measure correct answer how peculiar a particular
characteristic is among individuals
What does permanence test correct answer how well a characteristic resists change
over time and with advancing age
What does collectability measure correct answer how easy it is to acquire a
characteristic with which to authenticate the user
What does performance measure in the context of biometrics correct answer how well
a given system functions in regard to its speed, accuracy, and error rate
What does acceptability measure correct answer to what degree the users of the
system will tolerate the system
What does circumvention refer to correct answer how well the system can be tricked
by a false biometric identifier
What does the principle of least privilege dictate correct answer a party should have
only the bare minimum of access needed to allow it to perform the functionality required
of it
what does allowing access accomplish correct answer it gives access to a particular
resource to a particular party
, what does denying access do correct answer it prevents access of a particular
resource by a particular party
what does limiting access do correct answer it allows access of our resource to a
certain extent
what is a sandbox correct answer a set of resources devoted to a program, process, or
similar entity outside of which the entity cannot operate
what does revoking access do correct answer it takes away access formerly given to a
party
What is blackholing correct answer the practice of applying large scale filtering ranging
from blocking individual IP addresses to ranges, to the IT space of whole organizations,
IPS, or even countries in order to block out known attacks, spammers, or other
undesirable traffic
How many ports are there correct answer 65536
what is a socket the combination of a source IP address and port number or a
destination IP address and port number
what is the basic principle of ACL security correct answer restricting and granting
access based on whether the entity requesting access has approved resource, identity,
or set of permissions
What are three common credentials used in a ACL security model correct answer IP
Address, Port, Socket
what is a disadvantage of using an IP address or MAC address for ACL security correct
answer one can easily falsify these addresses
