24/02/2023, 20:58 Final Exam: Cybersecurity Fundamentals (2023 Spring 7-Weeks 1) MCY-601-001-2023-030
Final Exam
Due Feb 26 at 8:59am Points 290 Questions 58
Available Feb 20 at 9am - Feb 26 at 8:59am Time Limit 120 Minutes
Instructions
The final exam is a multiple-choice test with 58 questions taken from all course moduls. Each
question is worth 5 points, for a total of 290 points. You may only take the final exam once.
You have 120 minutes to complete the exam from when you start it. It must be completed by 11:59pm
on the last day of class, October 8th.
Attempt History
Attempt Time Score
LATEST Attempt 1 46 minutes 290 out of 290
Score for this quiz: 290 out of 290
Submitted Feb 24 at 8:57pm
This attempt took 46 minutes.
Question 1 pts
You are trying to increase security at your company. You’re currently
creating an outline of all the aspects of security that will need to be
examined and acted on. Which of the following terms describes the
process of improving security in a trusted OS?
FDE
Baselining
Correct! Hardening
SED
https://nku.instructure.com/courses/59461/quizzes/237938 1/24
,24/02/2023, 20:58 Final Exam: Cybersecurity Fundamentals (2023 Spring 7-Weeks 1) MCY-601-001-2023-030
Question 2 pts
Ben replaces sensitive data in his database with unique identifiers. The
identifiers allow him to continue to take actions on the data without
exposing the data itself. What type of solution has he deployed?
Correct! Tokenization
Data masking
Hashing
Encryption
Question 3 pts
Kirk’s organization has been experiencing large-scale denial-of-service
(DoS) attacks against their primary website. Kirk contracts with his
Internet service provider to increase the organization’s bandwidth and
expands the server pool for the website to handle significantly more
traffic than any of the previous DoS attacks. What type of risk
management strategy has he employed?
Correct! Risk mitigation
Risk avoidance
Risk transfer
Risk acceptance
Question 4 pts
What type of risk is the risk of outdated software in an organization?
https://nku.instructure.com/courses/59461/quizzes/237938 2/24
, 24/02/2023, 20:58 Final Exam: Cybersecurity Fundamentals (2023 Spring 7-Weeks 1) MCY-601-001-2023-030
Correct!
Internal risk
Multiparty risk
IP theft risk
External risk
Question 5 pts
AES and DES are an example of what type of cipher?
Quantum cipher
Correct!
Block cipher
Stream cipher
Public key cipher
Question 6 pts
Why do attackers target passwords stored in memory?
Correct! They are often in plain text.
They are hashed in memory.
They are encrypted in memory.
They are often current passwords.
Question 7 pts
https://nku.instructure.com/courses/59461/quizzes/237938 3/24
Final Exam
Due Feb 26 at 8:59am Points 290 Questions 58
Available Feb 20 at 9am - Feb 26 at 8:59am Time Limit 120 Minutes
Instructions
The final exam is a multiple-choice test with 58 questions taken from all course moduls. Each
question is worth 5 points, for a total of 290 points. You may only take the final exam once.
You have 120 minutes to complete the exam from when you start it. It must be completed by 11:59pm
on the last day of class, October 8th.
Attempt History
Attempt Time Score
LATEST Attempt 1 46 minutes 290 out of 290
Score for this quiz: 290 out of 290
Submitted Feb 24 at 8:57pm
This attempt took 46 minutes.
Question 1 pts
You are trying to increase security at your company. You’re currently
creating an outline of all the aspects of security that will need to be
examined and acted on. Which of the following terms describes the
process of improving security in a trusted OS?
FDE
Baselining
Correct! Hardening
SED
https://nku.instructure.com/courses/59461/quizzes/237938 1/24
,24/02/2023, 20:58 Final Exam: Cybersecurity Fundamentals (2023 Spring 7-Weeks 1) MCY-601-001-2023-030
Question 2 pts
Ben replaces sensitive data in his database with unique identifiers. The
identifiers allow him to continue to take actions on the data without
exposing the data itself. What type of solution has he deployed?
Correct! Tokenization
Data masking
Hashing
Encryption
Question 3 pts
Kirk’s organization has been experiencing large-scale denial-of-service
(DoS) attacks against their primary website. Kirk contracts with his
Internet service provider to increase the organization’s bandwidth and
expands the server pool for the website to handle significantly more
traffic than any of the previous DoS attacks. What type of risk
management strategy has he employed?
Correct! Risk mitigation
Risk avoidance
Risk transfer
Risk acceptance
Question 4 pts
What type of risk is the risk of outdated software in an organization?
https://nku.instructure.com/courses/59461/quizzes/237938 2/24
, 24/02/2023, 20:58 Final Exam: Cybersecurity Fundamentals (2023 Spring 7-Weeks 1) MCY-601-001-2023-030
Correct!
Internal risk
Multiparty risk
IP theft risk
External risk
Question 5 pts
AES and DES are an example of what type of cipher?
Quantum cipher
Correct!
Block cipher
Stream cipher
Public key cipher
Question 6 pts
Why do attackers target passwords stored in memory?
Correct! They are often in plain text.
They are hashed in memory.
They are encrypted in memory.
They are often current passwords.
Question 7 pts
https://nku.instructure.com/courses/59461/quizzes/237938 3/24
