What is the primary purpose of the accounting part of the access control system?

To provide a log of user activities and access privileges

To prevent unauthorized access to the network

What does the term 'non-repudiation' refer to in the context of accounting in access control systems?

Ensuring that a user cannot deny having performed an action

Preventing unauthorized access to the system

Encrypting user data to protect it from unauthorized access

Allocating each user with their own account on the network

Which of the following is an example of an event that can be logged by the accounting system?

A user signing in or attempting to modify a file

A user installing a new application

What is the purpose of issuing a token or receipt in the context of non-repudiation?

To prove that a user requested a product or service and that it was delivered in a timely manner

To prevent unauthorized access to the network

What is the purpose of a user account in a computer system?

To validate the identity of someone using the computer

To install software applications

What is a mandatory logon?

A requirement to log on before accessing the computer or network

A requirement to update the operating system

A requirement to install antivirus software

A requirement to back up data regularly

Which of the following is true about the Administrator user account in Windows?

It should be protected by a strong password

It has limited control over the local computer

It cannot be used to install software

What is the default status of the Guest user account in Windows?

Enabled and requires a password

Enabled and does not require a password

What type of user account is created during Windows setup?

Either a local account or a Microsoft account

What is the benefit of using group accounts in a computer system?

They simplify administration by assigning security policies to multiple users

They simplify the installation of software

They allow users to share hardware resources

They improve the speed of the computer

What is the primary restriction for standard users in Windows?

They cannot install software or change system properties.

They cannot use Microsoft Store apps.

They cannot configure display and input settings.

They cannot access the internet.

What does PII stand for in the context of authentication?

Personally Identifiable Information

Personal Identification Information

Private Identification Information

Which of the following is an example of a security question used for PII?

What is your smart card number?

What are the main problems associated with biometric technology?

Intrusiveness, high setup and maintenance costs, and counterfeiting

Easy to use, low cost, and high accuracy

No privacy concerns, low maintenance, and difficult to counterfeit

High user acceptance, low error rates, and high security

What is a false negative in biometric technology?

When a valid user is refused access

When an intruder is granted access

When a valid user is granted access

When an intruder is refused access

What does location-based authentication measure?

Some statistic about "where" you are

The device you use to access a system

What is multifactor authentication?

Combining the use of more than one authentication data type

Using a single type of authentication data

Using only passwords for authentication

Using only biometric data for authentication

What is an example of two-factor authentication?

Using a password and a smart card

What does Single Sign-On (SSO) mean?

B. A user only has to authenticate once to gain access to all resources.

A. A user has to authenticate multiple times to access different resources.

C. A user does not need to authenticate at all.

D. A user has to authenticate once for each resource.

What is a disadvantage of Single Sign-On (SSO)?

B. Compromising the account compromises multiple services.

A. Users have to remember multiple passwords.

C. It is more expensive to implement.

D. It requires more user training.

What is the main problem with symmetric encryption?

B. Secure distribution and storage of the key

D. High processing power requirement

What is a principal measure of the security of an encryption cipher?

D. The type of data being encrypted

Why can the private key not be derived from the public key in asymmetric encryption?

D. Because they are mathematically related but designed to be non-derivable

A. Because they are mathematically unrelated

B. Because the public key is kept secret

C. Because the private key is more complex

Access Control Independent Practice

Authored by Ciara Williams

Computers

12th Grade

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

79 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is an access control system?

A set of technical controls that govern how subjects may interact with objects.

A system that manages network traffic.

A software that monitors user activity.

A hardware device that stores data.

Answer explanation

An access control system is a set of technical controls that govern how subjects may interact with objects, making it the correct choice.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is NOT one of the four main processes of an access control system?

Identification

Authentication

Authorization

Encryption

Answer explanation

Encryption is NOT one of the four main processes of an access control system. The main processes are Identification, Authentication, and Authorization.

OPEN ENDED QUESTION

3 mins • 1 pt

What does the principle of least privilege mean?

Evaluate responses using AI:

OFF

Answer explanation

The principle of least privilege means giving users only the minimum level of access or permissions needed to perform their tasks, reducing the risk of unauthorized access or misuse.

OPEN ENDED QUESTION

3 mins • 1 pt

What is the principle of implicit deny?

Evaluate responses using AI:

OFF

Answer explanation

The principle of implicit deny states that unless a rule explicitly allows traffic, it is denied by default.

OPEN ENDED QUESTION

3 mins • 1 pt

In the context of access control, what is an Access Control List (ACL)?

Evaluate responses using AI:

OFF

Answer explanation

An Access Control List (ACL) is a list of permissions attached to an object that specifies which users or system processes are granted access to objects, as well as what operations are allowed on given objects.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which access control model stresses the importance of the owner and grants them full control over the resource?

Discretionary Access Control (DAC)

Role-based Access Control (RBAC)

Mandatory Access Control (MAC)

Rule-based Access Control

Answer explanation

Discretionary Access Control (DAC) stresses the importance of the owner and grants them full control over the resource, making it the correct choice.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which access control model adds an extra degree of administrative control to the DAC model by defining organizational roles?

Discretionary Access Control (DAC)

Role-based Access Control (RBAC)

Mandatory Access Control (MAC)

Rule-based Access Control

Answer explanation

Role-based Access Control (RBAC) adds an extra degree of administrative control by defining organizational roles.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

84 questions

trắc nghiệm tin 12 ck

Quiz

•

12th Grade

75 questions

Database Essentials

Quiz

•

KG - University

77 questions

Linux Operating System Quiz 1

Quiz

•

12th Grade

80 questions

KELAS 7_SOAL CAMPUREAN

Quiz

•

7th Grade - University

74 questions

Entrepreneurship Final Review

Quiz

•

9th - 12th Grade

75 questions

ACI - Sec+ 701 MOW Review

Quiz

•

12th Grade

76 questions

Quiz di Sicurezza Informatica

Quiz

•

9th Grade - University

80 questions

KELAS 2-LATIHAN SOAL SAT INFORMATIKA SM2

Quiz

•

2nd Grade - University

Popular Resources on Wayground

10 questions

Factors 4th grade

Quiz

•

4th Grade

10 questions

Cinco de Mayo Trivia Questions

Interactive video

•

3rd - 5th Grade

13 questions

Cinco de mayo

Interactive video

•

6th - 8th Grade

20 questions

Math Review

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

Discover more resources for Computers

45 questions

AP CSP Exam Review

Quiz

•

9th - 12th Grade

50 questions

AP CSP Review

Quiz

•

9th - 12th Grade

17 questions

CSP Robot Questions Review

Quiz

•

10th - 12th Grade

50 questions

IBT Final Exam Review (Spring)

Quiz

•

9th - 12th Grade

Access Control Independent Practice

What is an access control system?

An access control system is a set of technical controls that govern how subjects may interact with objects, making it the correct choice.

Which of the following is NOT one of the four main processes of an access control system?

Encryption is NOT one of the four main processes of an access control system. The main processes are Identification, Authentication, and Authorization.

What does the principle of least privilege mean?

The principle of least privilege means giving users only the minimum level of access or permissions needed to perform their tasks, reducing the risk of unauthorized access or misuse.

What is the principle of implicit deny?

The principle of implicit deny states that unless a rule explicitly allows traffic, it is denied by default.

In the context of access control, what is an Access Control List (ACL)?

An Access Control List (ACL) is a list of permissions attached to an object that specifies which users or system processes are granted access to objects, as well as what operations are allowed on given objects.

Which access control model stresses the importance of the owner and grants them full control over the resource?

Discretionary Access Control (DAC) stresses the importance of the owner and grants them full control over the resource, making it the correct choice.

Which access control model adds an extra degree of administrative control to the DAC model by defining organizational roles?

Role-based Access Control (RBAC) adds an extra degree of administrative control by defining organizational roles.

Which access control model is based on the idea of security clearance levels and uses a hierarchical structure?

The access control model based on security clearance levels and a hierarchical structure is Mandatory Access Control (MAC). It enforces restrictions based on security labels assigned to resources and users.

Which access control model can refer to any sort of access control policies determined by system-enforced rules rather than system users?

Rule-based Access Control refers to access control policies determined by system-enforced rules rather than system users.

What is the primary purpose of the accounting part of the access control system?

The primary purpose of the accounting part of the access control system is to provide a log of user activities and access privileges, allowing for monitoring and auditing of system usage.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers