Scribd
Upload
44 views6 pages

Computer Security Exit Exam Questions

The document discusses various topics related to computer security including types of attacks, malware, encryption techniques, firewalls, and network security protocols. It provides 30 multiple choice questions and answers about these topics to test security exam model knowledge.

Uploaded by

gemeda
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
44 views6 pages

Computer Security Exit Exam Questions

The document discusses various topics related to computer security including types of attacks, malware, encryption techniques, firewalls, and network security protocols. It provides 30 multiple choice questions and answers about these topics to test security exam model knowledge.

Uploaded by

gemeda
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

Exit Exam model computer Security

Part I: multiple choice: choose the correct answer from the given alternatives. (15 pts)
1. Among the following which security criteria guarantees that no modification, addition, or
deletion is done to the message?
A. Authentication C. Confidentiality
B. Non-repudiation D. Integrity
Answer: D
2. From the following which is passive attack?
A. Modification C. Impersonating
B. Denial of service D. None of the above

Answer D
3. ________ is a program that can replicate itself and send copies from computer to computer
across network connections.
A. Virus C. Trojan horse
B. Worm D. Zombie

Answer: B
4. Among the following which malicious code is embedded in some legitimate program that is set
to explode when certain conditions are met?
A. Rootkit C. Zombie
B. Logic bomb D. None of the above

Answer: B

5. Which type of virus uses compression technique so that the infected program is exactly the
same length as an uninfected version?
A. Boot sector virus C. Parasitic virus
B. Stealth virus D. None of the above

Answer: B
6. _____is the sequence of data processing steps that go into transforming ciphertext back into
plaintext.
A. Enciphering C. Decryption algorithm
B. Encryption algorithm D. Deciphering
Answer: C
7. Which encryption technique use the same key for encryption and decryption?
A. Symmetric C. A and B
B. Asymmetric D. None
1
Answer: A
8. From the following which cryptographic technique uses different keys to encrypt and decrypt
the data?
A. Blowfish C. RC2
B. DES D. RSA
Answer: D
9. Among the following which cryptographic technique reorder binary word bits of plaintext to
form ciphertext?
A. Substitution ciphering C. A and B
B. Permutation ciphering D. None of the above
Answer:B
10. Among the following which produces a fixed length value called a hash or message digest?
A. RC4 C. MD4
B. RC5 D. RSA

Answer: C
11. Data encryption standard is a block cipher and encrypts data in blocks of size of _____

A. 16 bits C. 32 bits
B. 64 bits D. All of the mentioned above

Answer: B
12. Which of the following is not a type of symmetric-key cryptography technique?

A. Caesar cipher C. Data Encryption Standard


B. Diffie Hellman cipher D. None of the above

Answer: B

13. ______ means concealing the message itself by covering it with something else

A. Cryptography C. A and B
B. Steganography D. None of the above

Answer: B

14. Among the following which is an attack on authenticity?


A. Fabrication C. Interception
B. Modification D. Interruption
Answer: A
15. Among the following one is different?

2
A. Traffic analysis
B. Denial of service
C. Masquerade
D. Replay previous message
Answer: A

16. Among the following which is true about record protocol of SSL?
A. It fragments the data into manageable blocks
B. It is used to report errors
C. A and B
D. None of the above
Answer: A
17. From the following which is false about IPsec?
A. It works with both TCP and UDP
B. It is designed to work with TCP only
C. There is no need to change software on a user or server system when IPSec is implemented in
the firewall or router
D. None
Answer: B
18. One of the following is true about IPsec in transport mode?
A. It secure information delivered from application layer to transport layer
B. It protect message delivered from transport layer to network layer
C. It protect message passed down from network layer to data link layer
D. None
Answer: B
19. Among the following which is the security service provided by IPSec?
A. Data origin authentication C. Encryption of user data for privacy
B. Rejecting replayed packets D. All of the abov
Answer: D

20. Which IPsec communication mode is used when we want host to host or end to end protection
of the data?
A. Tunnel mode C. A and B
B. Transport mode D. None
Answer: B
21. ____ is a computer program that acts as an intermediary between a web browser and a web
server?
A. Packet filtering firewall C. Circuit gateway firewall
B. Proxy D. None of the above

3
Answer: B

22. Among the following which is different?


A. PGP C. TLS
B. HTTPS D. S/MIME
Answer: C

23. ____is one way relationship between a sender and a receiver that provides security services
(authentication and confidentiality)?
A. Authentication Header(AH) C. IPSEC-security association
B. Encapsulating Security Payload(ESP) D. None of the above
Answer: C
24. From the following which firewall work at application layer?
A. Packet filtering firewall C. A and B
B. Proxy server D. None of the above

Answer: B

25. Among the following which packet information is used by packet filtering firewall to filter a
packet?
A. Source IP Address C. Source and Destination port Address
B. Destination IP Address D. All of the above
Answer: D
26. From the following which is transport layer security protocol?
A. PGP C. SSH
B. A and B D. None
Answer :C
27. A situation in which one person or program successfully imitate another by falsifying data
and thereby gaining an illegitimate advantage is called___.
A. TCP SYN flood attack C. A and B
B. Spoofing attack D. None
Answer: B
28. One of the following is true about encapsulated security payload(ESP) tunnel mode
communication
A. Original IP header is used for routing decision
B. It only protect IP payload
C. It encrypt IP payload and IP header
D. All of the above
Answer: C

4
29. Among the following which technology establish one’s identity based on personal traits.
A. Access control system C. A and B
B. Biometric technology D. None
Answer: B

30. From the following one is different?


A. Gait Recognition C. Iris Recognition System
B. Facial recognition D. Finger print recognition
Answer: B

5
Page 6 of 6

Common questions

Powered by AI

Biometric technology uses unique personal traits, such as fingerprints or iris patterns, to establish identity, offering a high level of security due to its inherent indivisibility and difficulty to mimic. This contrasts with traditional access methods, like passwords or access cards, which can be shared or stolen. Biometric systems provide robust, non-replicable authentication .

The concept that ensures no modification, addition, or deletion is done to the message is called Integrity .

A stealth virus uses techniques to avoid detection by antivirus software, often by temporarily removing itself from a file's code or masking its presence. This ability to hide and replicate without detection distinguishes it from typical viruses, which may be detected through standard scanning techniques .

Passive attacks, unlike active attacks, involve eavesdropping or monitoring transmissions without causing any modifications. An example of a passive attack is traffic analysis, while modification or impersonating are considered active attacks .

Logic bombs are a type of malicious code embedded in legitimate programs, set to 'explode' or execute when certain conditions are met. This condition-triggered execution distinguishes them from other malware, such as viruses or worms, which often spread or execute independently of such conditions .

Symmetric encryption uses the same key for both encryption and decryption, which makes it faster but requires secure key distribution. Examples include DES and Blowfish. Asymmetric encryption uses different keys for encryption and decryption, providing enhanced security through public and private key pairs, exemplified by RSA .

Permutation ciphering involves rearranging bits or characters according to a defined system, providing complexity that strengthens the encryption against pattern recognition attacks. Unlike substitution, which replaces characters, permutation can be combined with substitution for enhanced security due to its ability to obscure the original structure of the data .

IPsec tunnel mode secures data by encrypting both the payload and the original IP header, effectively providing a secure 'tunnel' through which data passes. This mode is most effective in network-to-network or gateway-to-gateway communications, ensuring that data remains secure across shared or public networks .

IPsec provides several security services: data origin authentication verifies the sender's identity, encryption of user data ensures privacy, and rejecting replayed packets defends against replay attacks. Collectively, these services enhance network security by ensuring authenticity, confidentiality, and integrity of data transmissions .

A proxy server acts as an intermediary between a web browser and a web server, handling requests on behalf of clients, which can protect and anonymize user data. It differs from packet filtering and circuit gateway firewalls in its operation at the application layer, allowing it to tailor functions for web-specific transactions .

You might also like