Bài học không có tiêu đề

Which access control model allows the definition of any complex relationship between attributes using so-called policies?

z

Which access control model defines system-specific security properties which overwrite user-defined rights?

Which implementation of an access control matrix stores the values column-by-column (object view)?

For which access control model are rights granted for individual objects by the owner of the object?

Which is NOT one of the three typical authentication factors?

Knowledge

Business impact

Possession

Inherence (biometrics)

What is mutual authentication?

Combination of different authentication methods

High password complexity

Two parties authenticate each other

Which implementation of an access control matrix allows to efficiently determine the rights of a specific user (subject view)?

Fingerprint recognition is an example of authentication based on…

Knowledge

Possession

Inherence (biometrics)

A password is an example of authentication based on…

Knowledge

Possession

Inherence (biometrics)

An ID token is an example of authentication based on…

Knowledge

Possession

Inherence (biometrics)

What is multi-factor authentication?

Combination of different authentication methods

High password complexity

Two parties authenticate each other

What is the advantage of adding a salt value instead of simply storing the hash value of a password?

Dictionary attacks are easier

Different hash values for same password of different users

Same hash value for same password on different servers

What is the advantage of using a challenge response protocol instead of simply transmitting the hash value of the password?

Performance

Increased security

Anonymity

Submit

Which protection goal cares about the correctness of data?

Confidentiality

Integrity

Availability

Which protection goal wants to ensure that only the intended receiver can read your email message?

Confidentiality

Integrity

Authenticity

Non-Repudiation

Availability

For which protection goal would encryption typically NOT help?

Confidentiality

Availability

Which protection goal cares about reliable service provisioning?

Confidentiality

Non-Repudiation

Availability

Which measure should typically be used to achieve integrity, authenticity, and non-repudiation?

Redundancy

Data backups

Digital signatures

Which measure should typically be used to achieve confidentiality?

Encryption

Data backups

Digital signatures

Which measure should typically be used to achieve availability?

Encryption

Redundancy

Digital signature

An assignment rule is needed for mapping personal data to a person when implementing:

Independency

Anonymity

Pseudonymity

The goal of safety is the protection against…

…negative consequences from legitimate actions (accidental threats).

…positive consequences from any kind of actions.

…negative consequences from unauthorized actions (intentional malice).

A vulnerability is:

Anything that can harm an asset.

The unauthorized access to an IT system or information.

A weakness in design, implementation, or operation of an IT system.

An asset is:

A weakness in design, implementation, or operation of an IT system.

An object/value which is required to meet (business) objectives.

The definition of security objectives and security requirements.

A security policy is:

An object/value which is required to meet (business) objectives.

The definition of security objectives and security requirements.

The effect on the achievement of business objectives.

A security control is:

A weakness in design, implementation, or operation of an IT system.

The definition of security objectives and security requirements.

A device or protective measure that counteracts a hazard.

The business impact is:

The unauthorized access to an IT system or information.

The definition of security objectives and security requirements.

The effect on the achievement of business objectives.

A risk is:

An object/value which is required to meet (business) objectives.

A device or protective measure that counteracts a hazard.

The combination of the probability of an event and its impact.

The other area of cryptology besides cryptography is:

Cryptlinguistics

Cryptanalysis

Cryptmathematics

What is NOT one of Kerckhoffs's main principles for cryptosystems?

The system should be practically secure.

The system should be more than ten years old.

The design of a system should not require secrecy.

A cryptosystem must be easy to use.

Which historical encryption method does not map a plaintext letter to the same ciphertext letter (for a specific key)?

Caesar Cipher

Modified Caesar Cipher

Vigenère Cipher

When does an encryption method provide perfect security?

Does not always map a plaintext letter to the same ciphertext letter.

Secure against attackers with unlimited resources.

Resistant to attackers with limited resources.

Which encryption method is perfectly secure?

Modified Caesar Cipher

One-Time Pad

Vigenère Cipher

What is NOT one of the construction methods/design ideas for modern block ciphers?

Substitutions (for Confusion)

Security by obscurity

Permutations (for Diffusion)

Round based repetition

What is true for CBC (Cipher Block Chaining) in contrast to ECB (Electronic Code Book)?

The same plaintext blocks are mapped to the same ciphertext blocks.

Each plaintext block is linked with the preceding ciphertext via XOR and then encrypted.

An attacker can recognize the structure of the plain text.

What is NOT a building block of a LFSR stream cipher?

A Pseudorandom number generator

XOR and shift operations

S-box for substitution

Pseudorandom keystream as output

What is NOT a typical property of a cryptographically strong hash function?

Mapping of arbitrary bit strings to bit strings of a fixed length

Preimage resistance

Efficient calculation

Collision resistance

Symmetric bit pattern of output value

How many collisions exist for a cryptographically strong hash function?

None

One

Two

Infinite number

What is NOT an example for a cryptographic hash function?

MD5

AES

SHA-1

SHA-2

SHA-3