Information Security Final Exam Questions and Answers | 2026 | Graded A+

Information Security Final Exam Questions and Answers | 2026 | Graded A+ Authorization - answer-After the succesful authentication, the authentication next step is: username and password - answer-In authorization factors, something you know is: keystroke dynamics - answer-In authentication factor, what do you do: wireshark - answer-For sniffing of the credentials, the best software is: Hash value - answer-Once the user enters his/her password, then the system converts the password into False - answer-Hash functions is extremely easy to reverse. True or false Fixed and same - answer-Regardless the length of the password, the hash functions always creates ______ size of hash SAM File - answer-The password file stored on windows computer is termed as: True - answer-Search space is the all possible passwords. True or false True - answer-If we increase the length of the password, the size of the search space becomes longer. True or false Number of trials for 50% success rate - answer-The formula V=S/2L: here V denotes _______False - answer-Bio-metrics and tokens are a good choice for a household environment. True or false False - answer-Credit and debit cards are examples of Active tokens. True or false False - answer-Likelihood that the system may authenticate unauthorized people is: false rejection rate. True or false True - answer-In challenge response authentication, the user is provided with challenge (random number) & the user uses his/her base code to find the response. True or false False - answer-Offline attacks are easy to detect. True or false False - answer-Shoulder surfing is not a problem at work. True or false Passive - answer-_____ tokens store the credentials permanently in ROM & the credentials are static Hash Value - answer-Usually, the response of the challenge (send by Authentication system) is _____ calculated with Base Secret Track the failed password attempts - answer-To avoid strong risks, which should be the best technique to detect the guessing attack: Access Control System - answer-Grants or denies the access to specific equipment and resources? Logical - answer-_____access control control the access of computer, networks and computational systems. Security Kernel - answer-_____is a security system that enforced access control for computational systemsTrue - answer-Security Kernel is usually a centralized system. True or false Subjects - answer-In Access control systems, the users are known as: