MISY 5325 DATABASES AND ENTERPRISE
SYSTEMS REVIEW QUESTIONS WITH
COMPLETE SOLUTION GUIDE
●● Which term refers to a set of wireless technologies that enables
smartphones and other devices to establish radio communication over a
short proximity?
Answer: Near field communication (NFC)
●● ____________________ is a form of denial of service, specifically
against the radio spectrum aspect of wireless.
Answer: Jamming Attack
●● Why is wireless problematic from a security standpoint?
Answer: There is no control over the physical layer of traffic.
●● Which term refers to a specific technique of using an HTTP client to
handle authentication on a wireless network?
Answer: Captive portal
●● Which term refers to a process by which the user escalates their
privilege level, bypassing the operating system's controls and
limitations?
,Answer: Jailbreaking
●● Which protocol is a short-range wireless protocol typically used on
small devices such as mobile phones?
Answer: Bluetooth
●● ____________________ is the posting of location information into a
data stream, signifying where the device was when the stream was
created.
Answer: Geo-tagging
●● Which service is typically used to allow a user access to a corporate
data network from a home PC across the internet?
Answer: VPN
●● Under privilege management, a(n) ____________________ is a
collection of users with some common criteria, such as a need for access
to a particular dataset or group of applications.
Answer: Group
●● Which access control type allows a company to restrict employee
logon hours?
Answer: Rule-based access control
,●● ____________________ authentication describes a process in which
each side of an electronic communication verifies the authenticity of the
other.
Answer: Mutual
●● Which protocol is commonly used on wireless access points as a
port-based authentication service prior to admission to the wireless
network?
Answer: 802.1X
●● Which ports are used by Remote Authentication Dial-In User Service
(RADIUS) for authentication and accounting?
Answer: UDP port 1812 for authentication and UDP port 1813 for
accounting
●● Which port is used to establish the Layer 2 Tunneling Protocol
(L2TP)?
Answer: UDP port 1701
●● ____________________ is the process of ascribing a computer ID to
a specific user, computer, network device, or computer process.
Answer: Identification
, ●● Which account is used to run processes that do not require human
intervention to start/stop/administer?
Answer: Service
●● What are the three types of accounting records in TACACS+?
Answer: START, STOP, and UPDATE
●● ____________________ started with people using chalk on
sidewalks to mark some of the wireless networks they found.
Answer: War-chalking
●● An attacker who uses Bluetooth to copy e-mails, contact lists, or
other files on a device is __________.
Answer: Bluesnarfing
●● What is WAP?
Answer: A lightweight protocol designed for mobile devices
●● ____________________ is a modulation type that spreads the traffic
sent over the entire bandwidth.
Answer: Direct-sequence spread spectrum
●● WTLS implements integrity through the use of __________.
SYSTEMS REVIEW QUESTIONS WITH
COMPLETE SOLUTION GUIDE
●● Which term refers to a set of wireless technologies that enables
smartphones and other devices to establish radio communication over a
short proximity?
Answer: Near field communication (NFC)
●● ____________________ is a form of denial of service, specifically
against the radio spectrum aspect of wireless.
Answer: Jamming Attack
●● Why is wireless problematic from a security standpoint?
Answer: There is no control over the physical layer of traffic.
●● Which term refers to a specific technique of using an HTTP client to
handle authentication on a wireless network?
Answer: Captive portal
●● Which term refers to a process by which the user escalates their
privilege level, bypassing the operating system's controls and
limitations?
,Answer: Jailbreaking
●● Which protocol is a short-range wireless protocol typically used on
small devices such as mobile phones?
Answer: Bluetooth
●● ____________________ is the posting of location information into a
data stream, signifying where the device was when the stream was
created.
Answer: Geo-tagging
●● Which service is typically used to allow a user access to a corporate
data network from a home PC across the internet?
Answer: VPN
●● Under privilege management, a(n) ____________________ is a
collection of users with some common criteria, such as a need for access
to a particular dataset or group of applications.
Answer: Group
●● Which access control type allows a company to restrict employee
logon hours?
Answer: Rule-based access control
,●● ____________________ authentication describes a process in which
each side of an electronic communication verifies the authenticity of the
other.
Answer: Mutual
●● Which protocol is commonly used on wireless access points as a
port-based authentication service prior to admission to the wireless
network?
Answer: 802.1X
●● Which ports are used by Remote Authentication Dial-In User Service
(RADIUS) for authentication and accounting?
Answer: UDP port 1812 for authentication and UDP port 1813 for
accounting
●● Which port is used to establish the Layer 2 Tunneling Protocol
(L2TP)?
Answer: UDP port 1701
●● ____________________ is the process of ascribing a computer ID to
a specific user, computer, network device, or computer process.
Answer: Identification
, ●● Which account is used to run processes that do not require human
intervention to start/stop/administer?
Answer: Service
●● What are the three types of accounting records in TACACS+?
Answer: START, STOP, and UPDATE
●● ____________________ started with people using chalk on
sidewalks to mark some of the wireless networks they found.
Answer: War-chalking
●● An attacker who uses Bluetooth to copy e-mails, contact lists, or
other files on a device is __________.
Answer: Bluesnarfing
●● What is WAP?
Answer: A lightweight protocol designed for mobile devices
●● ____________________ is a modulation type that spreads the traffic
sent over the entire bandwidth.
Answer: Direct-sequence spread spectrum
●● WTLS implements integrity through the use of __________.
