IT 380 A+: EXAM. CHAPTER 1 & 2 ACCESS CONROL. ENGAGING
THE LATEST UPDATE OF QUESTIONS AND ANSWERS.
Which security concept ensures that only authorized parties can access data?
Confidentiality
Which form of access control enforces security based on user identities and
allows individual users to define access controls over owned resources?
DAC
What type of access control focuses on assigning privileges based on security
clearance and data sensitivity?
MAC
Which of the following principles is implemented in a mandotory access control
model to determine access to an object using classification levels?
Need to Know
In what form of access control environment is access controlled by rules rather
than by identity?
MAC
What form of access control is based on job descriptions?
RBAC role based access control
You have a system that allows the owner of a file to identify users and their
permissions to the file. Which type of access control model is implemented
DAC
A router access control list uses informantion in a packet such as the destination
IP address and port number to make allow or deny forwarding decisions.
RBAC rule based access control
You have implemented an access control method that allows only users who are
managers to access specfic data. Which type of access control model is used?
RBAC role based access control
Which of the following is the most common form of authentication?
Password
Is the strongest form of multi-factor authentication?
, Password, biometric scan, and token device
Which of the following advantages can Single Sign-On (SSO) provide?
The elimination of multiple user accounts and passwords for an individual. Access to all
authorized resources with a single instance of authentication
Which of the following is an example of a single sign-on authentication solution?
Kerberos
Which of the following is an example of three-factor authentication?
Token device, keystroke analysis, congnitive question
What are examples of Type II authentication credentials?
Smart Card and Photo ID
What best describes one-factor authentication?
Multiple authentication credentials may be required, but they are all of the same type
You maintain a network with four servers. Currently, users must provide
authentication credentials whenever they access a different server. Which
solution allows users to supply authentication credentials once for all servers?
SSO
Which of the following terms is used to describe an event in which a person is
denied access to a system when they should be allowed to enter?
False Negative
What are the disadvantages of biometrics?
When used alone or solely, they are no more secure than a strong password. They
have a potential for numerous false negatives.
What is mutual authentication?
A process by which each party in an online communication verifies the identity of the
other party
What is the most important aspect of biometric device?
Accuracy
What is the termfor the process of validating a subject's identity?
Authentication
What is used for identification?
Username
THE LATEST UPDATE OF QUESTIONS AND ANSWERS.
Which security concept ensures that only authorized parties can access data?
Confidentiality
Which form of access control enforces security based on user identities and
allows individual users to define access controls over owned resources?
DAC
What type of access control focuses on assigning privileges based on security
clearance and data sensitivity?
MAC
Which of the following principles is implemented in a mandotory access control
model to determine access to an object using classification levels?
Need to Know
In what form of access control environment is access controlled by rules rather
than by identity?
MAC
What form of access control is based on job descriptions?
RBAC role based access control
You have a system that allows the owner of a file to identify users and their
permissions to the file. Which type of access control model is implemented
DAC
A router access control list uses informantion in a packet such as the destination
IP address and port number to make allow or deny forwarding decisions.
RBAC rule based access control
You have implemented an access control method that allows only users who are
managers to access specfic data. Which type of access control model is used?
RBAC role based access control
Which of the following is the most common form of authentication?
Password
Is the strongest form of multi-factor authentication?
, Password, biometric scan, and token device
Which of the following advantages can Single Sign-On (SSO) provide?
The elimination of multiple user accounts and passwords for an individual. Access to all
authorized resources with a single instance of authentication
Which of the following is an example of a single sign-on authentication solution?
Kerberos
Which of the following is an example of three-factor authentication?
Token device, keystroke analysis, congnitive question
What are examples of Type II authentication credentials?
Smart Card and Photo ID
What best describes one-factor authentication?
Multiple authentication credentials may be required, but they are all of the same type
You maintain a network with four servers. Currently, users must provide
authentication credentials whenever they access a different server. Which
solution allows users to supply authentication credentials once for all servers?
SSO
Which of the following terms is used to describe an event in which a person is
denied access to a system when they should be allowed to enter?
False Negative
What are the disadvantages of biometrics?
When used alone or solely, they are no more secure than a strong password. They
have a potential for numerous false negatives.
What is mutual authentication?
A process by which each party in an online communication verifies the identity of the
other party
What is the most important aspect of biometric device?
Accuracy
What is the termfor the process of validating a subject's identity?
Authentication
What is used for identification?
Username
