> > Internet Security MCQs > Basic Internet Security MCQs

Basic Internet Security MCQ

1. The icmp packet field____ provides error detection for the icmp header only.

Pathping

Acknowledgement

Checksum

Traceroute

Answer

Correct Answer: Checksum

Note: This Question is unanswered, help us to find answer for this one

2. Telnet protocol packets usually go to tcp port ____.

Five

TGS

Answer

Correct Answer: 23

Note: This Question is unanswered, help us to find answer for this one

3. With _____, phone calls are treated as just another kind of data.

Affinity portal

Collaboration

Voice over IP

Backbone network

Answer

Correct Answer: Voice over IP

Note: This Question is unanswered, help us to find answer for this one

4. Strong security is needed to ________.

Collect information from remote switches

Reconfigure remote switches

Have a MIB

Reduce total costs

Answer

Correct Answer: Reconfigure remote switches

Note: This Question is unanswered, help us to find answer for this one

5. The ____ was established to secure and monitor security risks to u.s. networks and the internet.

Pirate

US-CERT

Never

Internet server

Answer

Correct Answer: US-CERT

Note: This Question is unanswered, help us to find answer for this one

6. In most us states, consent is required for _ recording but not for __ recording.

Voice/video

Video/voice

None of these

Answer

Correct Answer: Voice/video

Note: This Question is unanswered, help us to find answer for this one

7. A(n) ________ uses the internet to create a secure network connection.

Virtual Private Network (VPN)

Local area network

Internet

RFIDs

Answer

Correct Answer: Virtual Private Network (VPN)

Note: This Question is unanswered, help us to find answer for this one

8. A ________ can be used to gather network information or user data.

RFMON

Packet sniffer

Whaling device

None of the above

Answer

Correct Answer: Packet sniffer

Note: This Question is unanswered, help us to find answer for this one

9. ____ are one method to control websites that can track your content on the internet.

TPLs

Opera

Responsive

Virus

Answer

Correct Answer: TPLs

Note: This Question is unanswered, help us to find answer for this one

10. Which of the following are Virus propagation techniques?

Master Boot Record

File Infection

Server Boot Record

Macro Infection

Answer

Correct Answer: Master Boot Record

Note: This Question is unanswered, help us to find answer for this one

11.
Select the drawbacks of Symmetric key cryptography.

It can't implement non-repudiation

It is scalable

Key distribution is easy in it

It is less secure

Answer

Correct Answer: It can't implement non-repudiation
It is less secure

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

12.
Which of the following are Transport Layer Security protocols?

SHTTP

SSL

SOCKS

IPSec

Answer

Correct Answer: SSL
SOCKS

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

13.
Which of the following authentication protocols are used to encrypt passwords?

CHAP

APP

RAP

ARAP

Answer

Correct Answer: CHAP
ARAP

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

14.
What are the features of an IPS?

Fault Tolerance.

Minimal Overhead.

Timely Alerting Mechanism.

Anomaly based.

Answer

Correct Answer: Fault Tolerance.
Minimal Overhead.
Timely Alerting Mechanism.
Anomaly based.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

15.
Which of the following are the components of PKI?

Certificate Authority.

Organizational Registration Authorities

Certificate Holders

Clients that validate digital signatures.

Answer

Correct Answer: Certificate Authority.
Organizational Registration Authorities
Certificate Holders
Clients that validate digital signatures.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

16.
Which of the following technique is used to approach security in ActiveX?

Sandboxing

Digital Sign

Encrypting

SSL

Answer

Correct Answer: Digital Sign

Note: This Question is unanswered, help us to find answer for this one

17.
Which of the following are the components of a UTM appliance?

Firewall

Gateway Antispam

Gateway Antivirus

IDS/IPS

Answer

Correct Answer: Firewall
Gateway Antispam
Gateway Antivirus
IDS/IPS

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

18.
Which of the following are the placement modes of an IDS/IPS?

Inline

Hybrid

Tap

SPAN

Answer

Correct Answer: Inline
Tap
SPAN

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

19.
Which of the following is Application-level security protocol are used for communications session security?

SSH

SSL/TLS

Both A and B

None of the above

Answer

Correct Answer: Both A and B

Note: This Question is unanswered, help us to find answer for this one

20.
Which of the following statement shows the breach of Integrity:

Viewing packets using sniffer tools in a network.

Encrypting a document.

Spoof attack on a host.

Important data deleted from a document.

Answer

Correct Answer: Important data deleted from a document.

Note: This Question is unanswered, help us to find answer for this one

21.
Which of the following Symmetric algorithms has variable key length?

AES

Triple DES

IDEA

Rivest Cipher 4

Answer

Correct Answer: Rivest Cipher 4

Note: This Question is unanswered, help us to find answer for this one

22.
A positive detection of result that is false or untrue is called

True Positive

Event Detection

False Positive

False Negative

Answer

Correct Answer: False Positive

Note: This Question is unanswered, help us to find answer for this one

23.
Which of the following can be classified as code and cryptographic attacks?

DDoS

Viruses

Brute Force

Worms

Trojans

Answer

Correct Answer: Viruses
Worms
Trojans

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

24.
Which protocol is used by RADIUS?

UDP

TCP

AIX

Answer

Correct Answer: UDP

Note: This Question is unanswered, help us to find answer for this one

25.
Which type of authentication is.”Something the user has ” ?

Single Factor

Dual Factor

Triple Factor

Hybrid Factor

Answer

Correct Answer: Dual Factor

Note: This Question is unanswered, help us to find answer for this one

26.
Which port does IKE key negotiation protocol use?

TCP 4500

UDP 4500

UDP 500

UDP 550

Answer

Correct Answer: UDP 500

Note: This Question is unanswered, help us to find answer for this one

27.
In which of the following attacks, sending a large number of spoofed ICMP ECHO requests to broadcast address?

SYN attack.

land.c attack

teardrop.c attack

SMURF attack

Answer

Correct Answer: SMURF attack

Note: This Question is unanswered, help us to find answer for this one

28.
In which of the following Buffer Overflow help us to find weaknesses?

Hardware

Software

Firewalls

Routers

Answer

Correct Answer: Software

Note: This Question is unanswered, help us to find answer for this one

29.
What is a UTM appliance?

Unified Threat Manager.

Unified Threat Management.

Universal Threat Management.

Unique Threat Management.

Answer

Correct Answer: Unified Threat Management.

Note: This Question is unanswered, help us to find answer for this one

30.
Joe wants to secure his client’s Web Server. Which of the following measures will he take?

Managing Access Control

Eliminating Scripting Vulnerabilities

Maintaining Integrity.

Blocking Browser Exploits.

Answer

Correct Answer: Managing Access Control
Eliminating Scripting Vulnerabilities
Maintaining Integrity.
Blocking Browser Exploits.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

31.
Which of the following can be transmitted through an E-mail?

Viruses

Trojan Horses

Worms

Malicious Codes

All of the above

Answer

Correct Answer: All of the above

Note: This Question is unanswered, help us to find answer for this one

32.
What is S/MIME?

Secure Multipurpose Intranet Mail Extensions

Secure Multipurpose Internet Mail Extensions

Secure Multipurpose Internet Message Extensions

Secure Multipurpose Intranet Message Extensions

Answer

Correct Answer: Secure Multipurpose Internet Mail Extensions

Note: This Question is unanswered, help us to find answer for this one

33.
Which of the following is created to serve as a snare for intruders?

Honey Pots.

IDS/IPS

Firewalls

Vulnerability Assessment Tools

Answer

Correct Answer: Honey Pots.

Note: This Question is unanswered, help us to find answer for this one

34.
Which of the following are the key principles of Internet Security?

Confidentiality, Identification, Availability

Confidentiality, Integrity, Authentication

Confidentiality, Integrity, Availability

Confidentiality, Identification, Authentication

Answer

Correct Answer: Confidentiality, Integrity, Availability

Note: This Question is unanswered, help us to find answer for this one

35.
What is RSA in cryptography?

Riven, Shamir, Adleman

Rivest, Shamir, Adleman

Rivest, Shamid, Adleman

Rivest, Shamir, Ademan

Answer

Correct Answer: Rivest, Shamir, Adleman

Note: This Question is unanswered, help us to find answer for this one

36.
What does RBL contain?

IP addresses of mail server

IP addresses of open relay mail servers

IP addresses of closed relay mail servers

Vulnerable ports

Answer

Correct Answer: IP addresses of open relay mail servers

Note: This Question is unanswered, help us to find answer for this one

37.
Which of the following techniques is used to approach security in Java?

Blackbox

Sandboxing

Whitebox

Java Applets

Answer

Correct Answer: Sandboxing

Note: This Question is unanswered, help us to find answer for this one

38.
What is RBL in E-mail Security?

Realtime Blacking List

Realtime Blocking List

Realtime Blackhole List

Answer

Correct Answer: Realtime Blackhole List

Note: This Question is unanswered, help us to find answer for this one

39.
Which of the following keys helps us in the verification of the Digital Signature?

Private Key

Public Key

Public and Private Key

Digital Key

Answer

Correct Answer: Public Key

Note: This Question is unanswered, help us to find answer for this one

40.
How many keys are required if two parties communicate using Symmetric cryptography?

One

Two

Three

Four

Answer

Correct Answer: One

Note: This Question is unanswered, help us to find answer for this one

41.
The concept of allowing access to resources only to those permitted is known as

Resource Security

Accounting

Authentication

Authorization

Answer

Correct Answer: Authorization

Note: This Question is unanswered, help us to find answer for this one

42.
By which of the following methods can social engineering be curbed by?

Instaling more than 2 firewalls.

User Education

Installing 2 antiviruses

Installing IPS.

Answer

Correct Answer: User Education

Note: This Question is unanswered, help us to find answer for this one

43.
Which of the following protocols does not help in securing the FTP?

SSL

SSFTP

FTPS

S/FTP

Answer

Correct Answer: SSFTP

Note: This Question is unanswered, help us to find answer for this one

44.
The part of a company’s intranet which is extended to users outside the company is called:

Internet

Intranet

Exposed Intranet

Extranet

Answer

Correct Answer: Extranet

Note: This Question is unanswered, help us to find answer for this one

45.
Which protocol is used to secure the WAP communication?

Secure Wireless Communication.

WAP Transport Layer Security

Transport Layer Security

Wireless Transport Layer Security

Answer

Correct Answer: Wireless Transport Layer Security

Note: This Question is unanswered, help us to find answer for this one

46.
Mike wants to secure the data on his personal computer. Which of the following options will he choose to secure the data?

Archiving the data

Compression

Hide

Encryption

Answer

Correct Answer: Encryption

Note: This Question is unanswered, help us to find answer for this one

47.
By which of the following can the injection of bogus routes into the core network be prevented ?

Routed Protocol Authentication

Routing Protocol Authentication

Router Authentication

Route Authentication

Answer

Correct Answer: Route Authentication

Note: This Question is unanswered, help us to find answer for this one

48.
Which of the following detect/s security weaknesses in a remote or local host?

Worms

Antivirus

Scanner

Adwares

Answer

Correct Answer: Scanner

Note: This Question is unanswered, help us to find answer for this one

49.
Which of the following statements is true of Tunneling?

Data is unencrypted

Only passwords are encrypted.

Data part is encrypted

Contents of the protocol are encapsulated.

Answer

Correct Answer: Contents of the protocol are encapsulated.

Note: This Question is unanswered, help us to find answer for this one

50.
A Brute Force attack

sends SYN packets.

sends Spam mails.

prevents the system from responding.

discovers the passwords.

Answer

Correct Answer: discovers the passwords.

Note: This Question is unanswered, help us to find answer for this one

51.
The process of switching protocols between routing devices is called

Exchanging

Protocol Exchanging

Switching

Protocol Switching

Answer

Correct Answer: Protocol Switching

Note: This Question is unanswered, help us to find answer for this one

52.
What is function of IPS?

NATing Device

A device to block intrusion attacks

A device to scan for Virus

Firewall Technology

Answer

Correct Answer: A device to block intrusion attacks

Note: This Question is unanswered, help us to find answer for this one

53.
A criminal who breaks into computers maliciously is known as

Black Hat Hacker.

Grey Hat Hacker

White Hat Hacker

Script Kiddie

Answer

Correct Answer: Black Hat Hacker.

Note: This Question is unanswered, help us to find answer for this one

54.
Below are the given statements, which statement shows the breach of Availability:

SYN attack on a server.

Deleting important contents from a document.

Decrypting a credit card during transmission.

Using wrong password to access authorized documents.

Answer

Correct Answer: SYN attack on a server.

Note: This Question is unanswered, help us to find answer for this one

55.
Which port is used by PPTP?

1702

1701

1723

1724

Answer

Correct Answer: 1723

Note: This Question is unanswered, help us to find answer for this one

56.
Which of the following statements resembles Trojan horses?

Self Replication

Virus Infections

Installation of Backdoor Programs.

Displaying Unauthorized Advertisements

Answer

Correct Answer: Installation of Backdoor Programs.

Note: This Question is unanswered, help us to find answer for this one

57.
Which key is used to decrypt the message in PKI?

Public Key

Private Key

Pre-shared Secret

Hybrid Key

Answer

Correct Answer: Private Key

Note: This Question is unanswered, help us to find answer for this one

58.
Which protocol is used by TACACS+?

TCP

UDP

AIX

Answer

Correct Answer: TCP

Note: This Question is unanswered, help us to find answer for this one

59.
What is the key length of Triple DES?

156

Variable Length

168

Answer

Correct Answer: 168

Note: This Question is unanswered, help us to find answer for this one

60.
Which of the following helps us to block attacks on a single machine?

Host Based IDS

Network Based IDS

Host Based IPS

Network Based IPS

Answer

Correct Answer: Host Based IPS

Note: This Question is unanswered, help us to find answer for this one

61.
Which of the following is an Asymmetric algorithm?

MD5

El Gamal

IDEA

SHA-1

Answer

Correct Answer: El Gamal

Note: This Question is unanswered, help us to find answer for this one

62.
In which of the following protocols does an SYN attack help to find a weakness?

HTTP

RIP

TCP/IP

FTP

Answer

Correct Answer: TCP/IP

Note: This Question is unanswered, help us to find answer for this one

63.
In how many phases is a IPSec VPN connection completed while making a VPN connection with a Security product?

Answer

Correct Answer: 2

Note: This Question is unanswered, help us to find answer for this one

64.
Which of the following is an application attack?

Buffer Overflow

DNS Poisoning

LAND

Brute Force

Answer

Correct Answer: Buffer Overflow

Note: This Question is unanswered, help us to find answer for this one

65.
Which of the following is the standard certificate?

C.509

X.505

X.509

C.505

Answer

Correct Answer: X.509

Note: This Question is unanswered, help us to find answer for this one

66.
Which of the following Asymmetric encryption algorithms is supported by S/MIME?

RSA

DES

3DES

SHA-1

Answer

Correct Answer: RSA

Note: This Question is unanswered, help us to find answer for this one

67.
By which of the following third parties are Digital Certificates signed?

Digital Certificate Signing Authority

Certificate Authority

Certificate Signing Authority

Digital Signing Authority.

Answer

Correct Answer: Certificate Authority

Note: This Question is unanswered, help us to find answer for this one

68.
Which protocol helps in securing LDAP?

SSL/TLS

SLDAP

LDAPS

SSH

Answer

Correct Answer: SSL/TLS

Note: This Question is unanswered, help us to find answer for this one

69.
Allen wants to sign a message which he is sending to Mark. Which key will Allen use to sign the message?

Allen’s Public key.

Allen’s Private key.

Mark’s Public key.

Mark’s Private key.

Answer

Correct Answer: Allen’s Private key.

Note: This Question is unanswered, help us to find answer for this one

70.
The ability to exploit a vulnerability is called:

Threat

Weakness

Permission Escalation

Risk

Answer

Correct Answer: Threat

Note: This Question is unanswered, help us to find answer for this one

71.
Which of the following goals cannot be achieved with Symmetric cryptography?

Non-repudiation

Confidentiality

Integrity

Availability

Answer

Correct Answer: Non-repudiation

Note: This Question is unanswered, help us to find answer for this one

72.
Which of the following protocols uses UDP:

HTTP

DNS

TFTP

FTP

Answer

Correct Answer: DNS
TFTP

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

73.
Select the objectives of E-mail security.

Verifying the source of a message.

Classifying attachments.

E-mail backups.

Message integrity.

Answer

Correct Answer: Verifying the source of a message.
Classifying attachments.
Message integrity.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

74.
Which of the following appliances help/s in filtering virus packets?

Firewalls

Antivirus Engines

Routers

UTM

IDS/IPS

Answer

Correct Answer: Antivirus Engines
UTM

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

75.
Which of the following are the components of IPSec?

Authentication Header.

Authorization Header

Encapsulated Payload.

Encapsulating Security Payload.

Answer

Correct Answer: Authentication Header.
Encapsulating Security Payload.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

76.
Which of the following methods can be used for Network hardening?

Evaluating IDS

E-mail Encryption

Backup of the Mail Server.

Refining ACLs on routers and switches.

Up-to-date OS and patches of Network devices.

Answer

Correct Answer: Evaluating IDS
Refining ACLs on routers and switches.
Up-to-date OS and patches of Network devices.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

77.
Which of the following measures are taken to enhance the security of the system? (Select all that apply)

Operating System based hardening

Network Based hardening

Application Based hardening

Timely Refining of Security Policies

Answer

Correct Answer: Operating System based hardening
Network Based hardening
Application Based hardening
Timely Refining of Security Policies

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

78.
Which of the following are Vulnerability assessment tools?

TCPDUMP

Nmap

Wireshark

Nessus

Answer

Correct Answer: Nmap
Nessus

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

79.
Select the common VPN protocols.

PPP

L2TP

LT2P

PPTP

Answer

Correct Answer: L2TP
PPTP

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

80.
Which of the following can be classified as passive attacks?

SYN attacks.

Vulnerability scans.

ARP Spoofing.

DoS Attack

Sniffing.

Answer

Correct Answer: Vulnerability scans.
Sniffing.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

81.
Which of the following are Email Security protocols?

S/MIME

PEM

STE

PME

Answer

Correct Answer: S/MIME
PEM

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

82.
Which of the following Symmetric encryption algorithms is/are supported by S/MIME?

RSA

DES

3DES

SHA-1

Answer

Correct Answer: DES
3DES

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

83.
Which of the following things should be kept in mind while managing passwords?

Dictionary words should be used.

Easily guessed passwords should not be used.

Passwords should not be stored on a plain view.

Passwords should be changed once a month.

Passwords should be shared.

Answer

Correct Answer: Easily guessed passwords should not be used.
Passwords should not be stored on a plain view.
Passwords should be changed once a month.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

84.
Which of the following are the advantages of Honeypots?

Intelligent IDS

Distracts Hackers

Encrypts Data

Decrypts Data

Answer

Correct Answer: Intelligent IDS
Distracts Hackers

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

85.
Which of the following are signs of Security breach?

Data modification and deletion.

System performance issues.

Different traffic patterns.

Large number of failed log in attempts.

Answer

Correct Answer: Data modification and deletion.
System performance issues.
Different traffic patterns.
Large number of failed log in attempts.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

86.
Which of the below listed are included in Application hardening?

DNS server

Mail Server

Core Routers

Firewalls

Web Server

Answer

Correct Answer: DNS server
Mail Server
Web Server

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

87. Which of the following is a standalone computer program that pretends to be a well-known program in order to steal confidential data ?

SPWare

Malware

Spyware

Virus

Fraudtool

Answer

Correct Answer: Fraudtool

Note: This Question is unanswered, help us to find answer for this one

88. All of the following are valid cryptographic hash functions EXCEPT:

MD4

RIPEMD

SHA-512

RC4

Answer

Correct Answer: RC4

Note: This Question is unanswered, help us to find answer for this one

89. In the sublayer of which of the following does TLS and SSL performs the data encryption of network connections?

Both session and presentation layer

presentation layer

application layer

session layer

Answer

Correct Answer: application layer

Note: This Question is unanswered, help us to find answer for this one

90. Which of the following are the public keys of asymmetric key pairs that are used to encrypt keys using a public key algorithm ?

Private signature key

Private key transport key

Public signature verification key

Public authentication key

Answer

Correct Answer: Private key transport key

Note: This Question is unanswered, help us to find answer for this one

91. Which of the following is not a VALID type of firewall?

Circuit-level gateways

Proxy Server Gateways

Application-level gateways

Packet filters

Answer

Correct Answer: Proxy Server Gateways

Note: This Question is unanswered, help us to find answer for this one

92. Which of the following HTTP method is considered insecure ?

Time's Up!

DELETE

TRACE

POST

GET

Answer

Correct Answer: TRACE

Note: This Question is unanswered, help us to find answer for this one

93. What does the Linux kernal use to sandbox running programs?

Linux drives are fully encrypted, thus they don't need sandboxing.

Linux uses a layered system of user authentication to perform sandbox-like functions.

Linux doesn't sandbox because it is impervious to any and all cyber attacks.

seccomp, or Secure Computing Mode

Answer

Correct Answer: seccomp, or Secure Computing Mode

Note: This Question is unanswered, help us to find answer for this one

94. Which of the following are the public keys of asymmetric (public) key pairs that are used to encrypt keys using a public key algorithm?

Private signature key

Public signature verification key

Public key transport key

Private key transport key

Answer

Correct Answer: Public key transport key

Note: This Question is unanswered, help us to find answer for this one

95. Which of the following keys are used to encrypt other keys using symmetric key algorithms ?

Symmetric key wrapping key

Symmetric random number generation keys

Public signature verification key

Asymmetric random number generation keys

Answer

Correct Answer: Symmetric key wrapping key

Note: This Question is unanswered, help us to find answer for this one

96. Which of the following is a VALID ephemeral key?

Symmetric ephemeral random number generation keys

Public ephemeral verification key

Asymmetric ephemeral random number generation keys

Public ephemeral key agreement key

Answer

Correct Answer: Public ephemeral key agreement key

Note: This Question is unanswered, help us to find answer for this one

97. What is the less secure AES encryption mode?

CFB

OCB

CBC

ECB

CTR

Answer

Correct Answer: CBC

Note: This Question is unanswered, help us to find answer for this one

98. Which of the following represents a cryptographic key that is intended to be used for a long period of time?

Private static key agreement key

Public signature verification key

Public authentication key

Private key transport key

Answer

Correct Answer: Private static key agreement key

Note: This Question is unanswered, help us to find answer for this one

99. Which of the following keys are the private keys of asymmetric (public) key pairs that are used only once to establish one or more keys ?

Private ephemeral key agreement key

Public ephemeral key agreement key

Symmetric random number generation keys

Asymmetric random number generation keys

Answer

Correct Answer: Private ephemeral key agreement key

Note: This Question is unanswered, help us to find answer for this one

100. Which of the following represents a cryptographic key that is generated for each execution of a key establishment process ?

Public authentication key

Public signature verification key

Private key transport key

Private ephemeral key agreement key

Answer

Correct Answer: Private ephemeral key agreement key

Note: This Question is unanswered, help us to find answer for this one

101. Which of the following is a VALID digital signature key?

Public signature authentication key

Symmetric signature authentication key

Private signature key

Private signature authentication key

Answer

Correct Answer: Private signature key

Note: This Question is unanswered, help us to find answer for this one

102. What is a method to fend off a Sockstress attack?

Do nothing. It will pass on its own.

White-listing access to TCP services on critical systems.

Black-listing access to TCP services on critical systems.

Prepare a retaliatory DDOS attack.

Answer

Correct Answer: White-listing access to TCP services on critical systems.

Note: This Question is unanswered, help us to find answer for this one

103. What does a cryptographic key do within the Internet Layer?

It specifies how encrypted data is transferred and to whom.

It converts it into encrypted language.

It specifies how transferred information is converted into cyphertext.

It is the specialized dataset that is able to decrypt cyphertext.

Answer

Correct Answer: It specifies how transferred information is converted into cyphertext.

Note: This Question is unanswered, help us to find answer for this one

104. What are the two primary classifications of cross-site scripting?

traditional and non-persistent

traditional and DOM-based

DOM-based and persistent

non-persistent and persistent.

Answer

Correct Answer: non-persistent and persistent.

Note: This Question is unanswered, help us to find answer for this one

105. Which of the following is a VALID authorization key?

Public authorization key

Symmetric authorization keys

Public ephemeral key authorization key

Asymmetric authorization keys

Answer

Correct Answer: Public authorization key

Note: This Question is unanswered, help us to find answer for this one

106. How can cookies be used to mitigate cross-site scripting?

They can't. Cookies only store user information.

Cookies allow for cookie-based user authentication.

Cookies can be coded like a program to intercept script attacks.

Cookies store an exact mirror copy of all a users web activity.

Answer

Correct Answer: Cookies allow for cookie-based user authentication.

Note: This Question is unanswered, help us to find answer for this one

107. Which version of TLS is vulnerable to BEAST exploit?

TLS 1.0

TLS 3.0

TLS 0.5

TLS 1.1

TLS 2.0

Answer

Correct Answer: TLS 1.0

Note: This Question is unanswered, help us to find answer for this one

108. Which of the following threats corresponds with an attacker targeting specific employees of a company?

Phishing

Pharming

Man-in-the-middle

Spear phishing

Answer

Correct Answer: Spear phishing

Note: This Question is unanswered, help us to find answer for this one

109. Secure Sockets Layer is a predecessor of which cryptographic protocol?

SSL 3.0

IPSec

Transport Layer Security

HTTPS

Answer

Correct Answer: Transport Layer Security

Note: This Question is unanswered, help us to find answer for this one

110. When is encrypted data the safest?

When it is being written.

When it is in transit.

When it is at rest.

When it is being transferred via usb stick.

Answer

Correct Answer: When it is at rest.

Note: This Question is unanswered, help us to find answer for this one

111. How are port numbers categorized?

Known, well-known, unknown

Well-known, registered, and static/dynamic.

Unknown, unregistered, invalid

Static, dynamic, enigmatic

Answer

Correct Answer: Well-known, registered, and static/dynamic.

Note: This Question is unanswered, help us to find answer for this one

112. Why is a virtual machine considered a sandboxing method?

Virtual machines all have sandbox features installed on them.

All host resources are channeled through the emulator.

Virtual machines all have firewalls, virus scanners, and proxy connetions.

Virtual machines take the brunt of the attack, so the user is always safe.

Answer

Correct Answer: All host resources are channeled through the emulator.

Note: This Question is unanswered, help us to find answer for this one

113. Which of the following is a valid flaw of SSL 2.0 ?

It has a weak MAC construction that uses the MD5 hash function with a secret prefix

It does not have any protection for the handshake

All of the given options are correct

Identical cryptographic keys are used for message authentication and encryption

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

114. If you set up a BUS network, what is the major disadvantage?

It is daisy-chained together with several cables.

It is entirely wireless and open to wifi-based attacks.

It is linked with a single cable which can be a major vulnerability.

It is connected in a star pattern and can be disabled by disrupting one data center.

Answer

Correct Answer: It is linked with a single cable which can be a major vulnerability.

Note: This Question is unanswered, help us to find answer for this one

115. Which of the following is an ITU-T standard for a public key infrastructure (PKI) and Privilege Management Infrastructure (PMI)?

X.507

X.519

X.508

X.509

Answer

Correct Answer: X.509

Note: This Question is unanswered, help us to find answer for this one

116. An SQL injection is often used to attack what?

Large-scale SQL databases such as those containing credit card information.

Small scale machines such as diebold ATMs.

Servers running SQL databases similar to Hadoop or Hive.

Servers built on NoSQL

Answer

Correct Answer: Large-scale SQL databases such as those containing credit card information.

Note: This Question is unanswered, help us to find answer for this one

117. Which of the following is a general term for malicious software that pretends to be harmless so that a user willingly allows it to be downloaded onto the computer?

Botnets

Trojan Horse

Spware

Virus

Answer

Correct Answer: Trojan Horse

Note: This Question is unanswered, help us to find answer for this one

118. Which of the following is true about Public Key Encryption?

Anyone can encrypt with the public key, only one person can decrypt with the private key

Anyone can encrypt with the private key, only one person can decrypt with the public key

Only one person can encrypt with the public key and anyone can decrypt with the private key

Anyone can encrypt with the public key and anyone can decrypt with the private key

Answer

Correct Answer: Anyone can encrypt with the public key, only one person can decrypt with the private key

Note: This Question is unanswered, help us to find answer for this one

119. What does the acronym BEAST mean in Beast Attack?

Breach Entering Against SSL/TLS

Browser Extension And SSL/TLS

Browser Exploit Against SSL/TLS

Breaking and Entering Against SSL/TLS

Answer

Correct Answer: Browser Exploit Against SSL/TLS

Note: This Question is unanswered, help us to find answer for this one

120. What is another name for Internet Layer?

SSL layer

TCP layer

IP layer

Interwebs

Answer

Correct Answer: IP layer

Note: This Question is unanswered, help us to find answer for this one

121. Who was TLS defined by?

OSHA

Internet Engineering Task Force

The DEA

NSA

Answer

Correct Answer: Internet Engineering Task Force

Note: This Question is unanswered, help us to find answer for this one

122. Which of the following is collection of Internet-connected programs communicating with other similar programs in order to perform tasks?

Malware

Trojan horse

Botnet

Spyware

Answer

Correct Answer: Botnet

Note: This Question is unanswered, help us to find answer for this one

123. What does cross-site scripting allow for attackers?

Direct introduction of viruses into a victims computer.

The introduction of worm viruses into the victims website.

Injection of client-side scripts into web pages.

A phishing attack that automatically downloads the victims personal information.

Answer

Correct Answer: Injection of client-side scripts into web pages.

Note: This Question is unanswered, help us to find answer for this one

124. What is network topology?

It is the framework of the components of a computer network.

It is the top layer of a computer network.

It is the inner networkings of a single computer.

It is the entirety of the data of a computer network.

Answer

Correct Answer: It is the framework of the components of a computer network.

Note: This Question is unanswered, help us to find answer for this one

125. Is a Unix-based system vulnerable to viruses?

Yes, however the majority are coded to attack Windows-based systems.

No. Linux systems are totally impervious to attacks.

Yes, the majority of viruses attack Unix-based systems.

Yes. The split is approximately 50/50 when it comes to attacks on Windows vs. Unix based systems.

Answer

Correct Answer: Yes, however the majority are coded to attack Windows-based systems.

Note: This Question is unanswered, help us to find answer for this one

126. If cookies with non-random sequence numbers are issued upon authentication, which of the following attack types can occur?

Session hijacking

Cross-site scripting

SQL injection

Directory traversal

Answer

Correct Answer: Session hijacking

Note: This Question is unanswered, help us to find answer for this one

127. Which of the following is a VALID type of Key Management System?

Dynamic Key Management System

Both Integrated Key Management System and Third-Party Key Management System

Third-Party Key Management System

Integrated Key Management System

Answer

Correct Answer: Both Integrated Key Management System and Third-Party Key Management System

Note: This Question is unanswered, help us to find answer for this one

128. There are two types of firewall. What are they?

Remote and local

Hardware and software.

Internet-based and home-based.

Digital and electronic.

Answer

Correct Answer: Hardware and software.

Note: This Question is unanswered, help us to find answer for this one

129. What two main categories of network topologies are there?

Close and Distant

Physical and logical.

Direct and Indirect

Digital and Topological

Answer

Correct Answer: Physical and logical.

Note: This Question is unanswered, help us to find answer for this one

130. Which of the following is TRUE about SSL 3.0?

It assumes a single service and a fixed domain certificate, which clashes with the standard feature of virtual hosting in Web servers

Identical cryptographic keys are used for message authentication and encryption

SSL 3.0 improved upon SSL 2.0 by adding SHA-1 based ciphers and support for certificate authentication

It has a weak MAC construction that uses the MD5 hash function with a secret prefix

Answer

Correct Answer: SSL 3.0 improved upon SSL 2.0 by adding SHA-1 based ciphers and support for certificate authentication

Note: This Question is unanswered, help us to find answer for this one

131. Which of the following is TRUE about TLS?

The HMAC construction used by most TLS cipher suites is specified in RFC 2104

The message that ends the handshake sends a hash of all the exchanged handshake messages seen by both parties

Provides protection against a downgrade of the protocol to a previous (less secure) version or a weaker cipher suite

All of the given options are correct

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

132. Can a proxy be used as a firewall? If so, how?

Yes. A proxy acts as a network intermediary for the user that serves to control the flow of incomming and outgoing traffic.

No. Proxies are firewalls that are maintained at locations other than that of the user.

No. All a proxy does is re-rout Internet traffic, and thus all the malicious signals that go with it.

No. Proxies are data encryption stations whose sole purpose is to encrypt and re-rout data.

Answer

Correct Answer: Yes. A proxy acts as a network intermediary for the user that serves to control the flow of incomming and outgoing traffic.

Note: This Question is unanswered, help us to find answer for this one

133. Which of the following are the basic functionalities of the IPsec Protocol ?

Security association for policy management and traffic processing

Security protocols for AH and ESP

Manual and automatic key management for the internet key exchange

All of the given options are correct

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

134. Why is it crucial to encrypt data in transit?

To decrease your resources.

So you can increase your chances of testing your encryption capabilities.

To prevent unauthorized access to private networks and sensitive information during its most vulnerable state.

To assure that all of your information cannot be decrypted.

Answer

Correct Answer: To prevent unauthorized access to private networks and sensitive information during its most vulnerable state.

Note: This Question is unanswered, help us to find answer for this one

135. Which is the best way a system can be hardened?

Virus scanning only.

Total disk encryption coupled with strong network security protocols.

Installing a commercial security suite.

White-list ad filtering only.

Answer

Correct Answer: Total disk encryption coupled with strong network security protocols.

Note: This Question is unanswered, help us to find answer for this one

136. Which of the following symmetric keys can be derived from Symmetric master key?

Key wrapping keys

Data encryption keys

All of the given options are correct

Authentication keys

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

137. Which of the following are valid Cryptographic key types?

Public authentication key

All of the given options are correct

Public signature verification key

Private signature key

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

138. What happens during the TCP attack; Denial of Service?

Information is repeatedly sent to the victim to consume their system resources, causing them to shut down.

A virus is sent to disable their dos prompt.

Viruses are sent to their ISP to deny them tech support.

A worm is loaded onto the victims computer to disable their keyboard.

Answer

Correct Answer: Information is repeatedly sent to the victim to consume their system resources, causing them to shut down.

Note: This Question is unanswered, help us to find answer for this one

139. How to avoid Man-in-the-middle attacks?

Accept every SSL certificate, even the broken ones

Use connections without SSL

Use HTTPS connections and verify the SSL certificate

Answer

Correct Answer: Use HTTPS connections and verify the SSL certificate

Note: This Question is unanswered, help us to find answer for this one

140. What does TCP mean?

Transmittable Constant Protocol

Technical Control Panel

Total Content Positioning

Transmission Control Protocol

Answer

Correct Answer: Transmission Control Protocol

Note: This Question is unanswered, help us to find answer for this one

141. Which of the following are possible security threats?

All of the given options are correct

Backdoors

Masquerading

Illegitimate use

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

142. Digital signatures provide which of the following ?

Non-repudiation

integrity protection

authentication

All of the given options are correct

Answer

Correct Answer: All of the given options are correct

Note: This Question is unanswered, help us to find answer for this one

143. Is true that HTTP is an insecure protocol?

True

False

Answer

Correct Answer: True

Note: This Question is unanswered, help us to find answer for this one

144. When cookies are used as session identifiers, how are they then used as a potential security hazard?

They emulate user's by downloading all the victims information onto a virtual machine.

User's cookies are altered to a virus-like state.

They emulate user's by stealing their personal identity.

Attackers emulate users by stealing their cookies.

Answer

Correct Answer: Attackers emulate users by stealing their cookies.

Note: This Question is unanswered, help us to find answer for this one

145. What does IP mean?

Instance Principle

Intellectual Property

Instant Protocol

Internet Protocol

Answer

Correct Answer: Internet Protocol

Note: This Question is unanswered, help us to find answer for this one

Internet Security MCQs | Topic-wise

MCQ on Basic Internet Security	MCQ on Internet Service Provider (ISP)
General Internet Security MCQs

Internet Security Subjects

Internet Service Provider (ISP) MCQs

More Resources

Internet Security MCQ

Internet Security Skill Assessment

Internet Security PDF

Related MCQs

Introduction to Programming MCQs

iOS 5 App Development Objective C MCQs

iOS Game Development MCQs

iOS Technical Test MCQs

Java MCQs

Basic Internet Security MCQ

1. The icmp packet field____ provides error detection for the icmp header only.

2. Telnet protocol packets usually go to tcp port ____.

3. With _____, phone calls are treated as just another kind of data.

4. Strong security is needed to ________.

5. The ____ was established to secure and monitor security risks to u.s. networks and the internet.

6. In most us states, consent is required for _______ recording but not for ________ recording.

7. A(n) ________ uses the internet to create a secure network connection.

8. A ________ can be used to gather network information or user data.

9. ____ are one method to control websites that can track your content on the internet.

10. Which of the following are Virus propagation techniques?

11. Select the drawbacks of Symmetric key cryptography.

12. Which of the following are Transport Layer Security protocols?

13. Which of the following authentication protocols are used to encrypt passwords?

14. What are the features of an IPS?

15. Which of the following are the components of PKI?

16. Which of the following technique is used to approach security in ActiveX?

17. Which of the following are the components of a UTM appliance?

18. Which of the following are the placement modes of an IDS/IPS?

19. Which of the following is Application-level security protocol are used for communications session security?

20. Which of the following statement shows the breach of Integrity:

21. Which of the following Symmetric algorithms has variable key length?

22. A positive detection of result that is false or untrue is called

23. Which of the following can be classified as code and cryptographic attacks?

24. Which protocol is used by RADIUS?

25. Which type of authentication is.”Something the user has ” ?

26. Which port does IKE key negotiation protocol use?

27. In which of the following attacks, sending a large number of spoofed ICMP ECHO requests to broadcast address?

28. In which of the following Buffer Overflow help us to find weaknesses?

29. What is a UTM appliance?

30. Joe wants to secure his client’s Web Server. Which of the following measures will he take?

31. Which of the following can be transmitted through an E-mail?

32. What is S/MIME?

33. Which of the following is created to serve as a snare for intruders?

34. Which of the following are the key principles of Internet Security?

35. What is RSA in cryptography?

36. What does RBL contain?

37. Which of the following techniques is used to approach security in Java?

38. What is RBL in E-mail Security?

39. Which of the following keys helps us in the verification of the Digital Signature?

40. How many keys are required if two parties communicate using Symmetric cryptography?

41. The concept of allowing access to resources only to those permitted is known as

42. By which of the following methods can social engineering be curbed by?

43. Which of the following protocols does not help in securing the FTP?

44. The part of a company’s intranet which is extended to users outside the company is called:

45. Which protocol is used to secure the WAP communication?

46. Mike wants to secure the data on his personal computer. Which of the following options will he choose to secure the data?

47. By which of the following can the injection of bogus routes into the core network be prevented ?

48. Which of the following detect/s security weaknesses in a remote or local host?

49. Which of the following statements is true of Tunneling?

50. A Brute Force attack

51. The process of switching protocols between routing devices is called

52. What is function of IPS?

53. A criminal who breaks into computers maliciously is known as

54. Below are the given statements, which statement shows the breach of Availability:

55. Which port is used by PPTP?

56. Which of the following statements resembles Trojan horses?

57. Which key is used to decrypt the message in PKI?

58. Which protocol is used by TACACS+?

59. What is the key length of Triple DES?

60. Which of the following helps us to block attacks on a single machine?

61. Which of the following is an Asymmetric algorithm?

62. In which of the following protocols does an SYN attack help to find a weakness?

63. In how many phases is a IPSec VPN connection completed while making a VPN connection with a Security product?

64. Which of the following is an application attack?

65. Which of the following is the standard certificate?

66. Which of the following Asymmetric encryption algorithms is supported by S/MIME?

67. By which of the following third parties are Digital Certificates signed?

68. Which protocol helps in securing LDAP?

69. Allen wants to sign a message which he is sending to Mark. Which key will Allen use to sign the message?

70. The ability to exploit a vulnerability is called:

71. Which of the following goals cannot be achieved with Symmetric cryptography?

72. Which of the following protocols uses UDP:

73. Select the objectives of E-mail security.

74. Which of the following appliances help/s in filtering virus packets?

75. Which of the following are the components of IPSec?

76. Which of the following methods can be used for Network hardening?

77. Which of the following measures are taken to enhance the security of the system? (Select all that apply)

78. Which of the following are Vulnerability assessment tools?

79. Select the common VPN protocols.

6. In most us states, consent is required for _ recording but not for __ recording.

11.
Select the drawbacks of Symmetric key cryptography.

12.
Which of the following are Transport Layer Security protocols?

13.
Which of the following authentication protocols are used to encrypt passwords?

14.
What are the features of an IPS?

15.
Which of the following are the components of PKI?

16.
Which of the following technique is used to approach security in ActiveX?

17.
Which of the following are the components of a UTM appliance?

18.
Which of the following are the placement modes of an IDS/IPS?

19.
Which of the following is Application-level security protocol are used for communications session security?

20.
Which of the following statement shows the breach of Integrity:

21.
Which of the following Symmetric algorithms has variable key length?

22.
A positive detection of result that is false or untrue is called

23.
Which of the following can be classified as code and cryptographic attacks?

24.
Which protocol is used by RADIUS?

25.
Which type of authentication is.”Something the user has ” ?

26.
Which port does IKE key negotiation protocol use?

27.
In which of the following attacks, sending a large number of spoofed ICMP ECHO requests to broadcast address?

28.
In which of the following Buffer Overflow help us to find weaknesses?

29.
What is a UTM appliance?

30.
Joe wants to secure his client’s Web Server. Which of the following measures will he take?

31.
Which of the following can be transmitted through an E-mail?

32.
What is S/MIME?

33.
Which of the following is created to serve as a snare for intruders?

34.
Which of the following are the key principles of Internet Security?

35.
What is RSA in cryptography?

36.
What does RBL contain?

37.
Which of the following techniques is used to approach security in Java?

38.
What is RBL in E-mail Security?

39.
Which of the following keys helps us in the verification of the Digital Signature?

40.
How many keys are required if two parties communicate using Symmetric cryptography?

41.
The concept of allowing access to resources only to those permitted is known as

42.
By which of the following methods can social engineering be curbed by?

43.
Which of the following protocols does not help in securing the FTP?

44.
The part of a company’s intranet which is extended to users outside the company is called:

45.
Which protocol is used to secure the WAP communication?

46.
Mike wants to secure the data on his personal computer. Which of the following options will he choose to secure the data?

47.
By which of the following can the injection of bogus routes into the core network be prevented ?

48.
Which of the following detect/s security weaknesses in a remote or local host?

49.
Which of the following statements is true of Tunneling?

50.
A Brute Force attack

51.
The process of switching protocols between routing devices is called

52.
What is function of IPS?

53.
A criminal who breaks into computers maliciously is known as

54.
Below are the given statements, which statement shows the breach of Availability:

55.
Which port is used by PPTP?

56.
Which of the following statements resembles Trojan horses?

57.
Which key is used to decrypt the message in PKI?

58.
Which protocol is used by TACACS+?

59.
What is the key length of Triple DES?

60.
Which of the following helps us to block attacks on a single machine?

61.
Which of the following is an Asymmetric algorithm?

62.
In which of the following protocols does an SYN attack help to find a weakness?

63.
In how many phases is a IPSec VPN connection completed while making a VPN connection with a Security product?

64.
Which of the following is an application attack?

65.
Which of the following is the standard certificate?

66.
Which of the following Asymmetric encryption algorithms is supported by S/MIME?

67.
By which of the following third parties are Digital Certificates signed?

68.
Which protocol helps in securing LDAP?

69.
Allen wants to sign a message which he is sending to Mark. Which key will Allen use to sign the message?

70.
The ability to exploit a vulnerability is called:

71.
Which of the following goals cannot be achieved with Symmetric cryptography?

72.
Which of the following protocols uses UDP:

73.
Select the objectives of E-mail security.

74.
Which of the following appliances help/s in filtering virus packets?

75.
Which of the following are the components of IPSec?

76.
Which of the following methods can be used for Network hardening?

77.
Which of the following measures are taken to enhance the security of the system? (Select all that apply)

78.
Which of the following are Vulnerability assessment tools?

79.
Select the common VPN protocols.

80.
Which of the following can be classified as passive attacks?

81.
Which of the following are Email Security protocols?

82.
Which of the following Symmetric encryption algorithms is/are supported by S/MIME?

83.
Which of the following things should be kept in mind while managing passwords?

84.
Which of the following are the advantages of Honeypots?

85.
Which of the following are signs of Security breach?

86.
Which of the below listed are included in Application hardening?