Which of the following types of firewall functions at the Session layer of OSI model?

A. Circuit-level firewall

B. Application-level firewall

C. Packet filtering firewall

D. Switch-level firewall

Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the authenticity of a certificate to be immediately verified?

A. RSTP

B. SKIP

C. OCSP

D. HTTP

Which of the following cables provides maximum security against electronic eavesdropping on a network?

A. Fibre optic cable

B. STP cable

C. UTP cable

D. NTP cable

Which of the following two components does Kerberos Key Distribution Center (KDC) consist of? Each correct answer represents a complete solution. Choose two.

A. Data service

B. Ticket-granting service

C. Account service

D. Authentication service

Which of the following is a network service that stores and organizes information about a network users and network resources and that allows administrators to manage users' access to the resources?

A. SMTP service

B. Terminal service

C. Directory service

D. DFS service

A digital signature is a type of public key cryptography. Which of the following statements are true about digital signatures? Each correct answer represents a complete solution. Choose all that apply.

A. In order to digitally sign an electronic record, a person must use his/her public key.

B. In order to verify a digital signature, the signer's private key must be used.

C. In order to digitally sign an electronic record, a person must use his/her private key.

D. In order to verify a digital signature, the signer's public key must be used.

Shoulder surfing is a type of in-person attack in which the attacker gathers information about the premises of an organization. This attack is often performed by looking surreptitiously at the keyboard of an employee's computer while he is typing in his password at any access point such as a terminal/Web site. Which of the following is violated in a shoulder surfing attack?

A. Integrity

B. Availability

C. Authenticity

D. Confidentiality

Which of the following statements about a stream cipher are true? Each correct answer represents a complete solution. Choose three.

A. It typically executes at a higher speed than a block cipher.

B. It divides a message into blocks for processing.

C. It typically executes at a slower speed than a block cipher.

D. It divides a message into bits for processing.

E. It is a symmetric key cipher.

Which of the following user authentications are supported by the SSH-1 protocol but not by the SSH-2 protocol? Each correct answer represents a complete solution. Choose all that apply.

A. TIS authentication

B. Rhosts (rsh-style) authentication

C. Kerberos authentication

D. Password-based authentication

Which of the following protocols uses public-key cryptography to authenticate the remote computer?

A. SSH

B. Telnet

C. SCP

D. SSL

In software development, which of the following analysis is used to document the services and functions that have been accidentally left out, deliberately eliminated or still need to be developed?

A. Gap analysis

B. Requirement analysis

C. Cost-benefit analysis

D. Vulnerability analysis

In which of the following cryptographic attacking techniques does an attacker obtain encrypted messages that have been encrypted using the same encryption algorithm?

A. Chosen plaintext attack

B. Ciphertext only attack

C. Chosen ciphertext attack

D. Known plaintext attack