What is the main goal of Access Control?

To provide users only with the data they need to perform their jobs

To grant access based on one or more attributes of the user's current environment and identity

How does access control work?

By identifying a user based on their credentials and then authorizing the appropriate level of access

By granting access based on defined business functions

By granting access based on a combination of attributes and environmental conditions

By providing case-by-case control over resources

Why is authentication important?

To protect systems, data, networks, websites, and applications from attacks

What is the most common form of authentication that uses a combination of numbers, letters, and symbols?

Certificate-based authentication

What is the purpose of multifactor authentication?

To require at least two authentication methods for access

To require only one authentication method for access

To allow access without any authentication

What is the purpose of deploying single sign-on (SSO) according to the text?

To streamline the sign-in process and reduce the risk of account compromise

To require multiple sign-ins for each app

To eliminate the need for authentication

To complicate the sign-in process

What is the principle of least privilege in authentication security?

Give people the highest level of privilege necessary to do their jobs

Allow unrestricted access to all data and systems

Limit the number of privileged accounts based on roles

Require administrative activities to be performed on any device

What is the main goal of Authorization?

To grant specific permissions and enable the user to proceed as intended

Which of the following best describe Token-based authentication?

Physical tokens such as smart cards or USB tokens can be used.

It generates a unique code that users must provide along with their credentials.

It can be used as a two-factor authentication method.

It is commonly used in Single Sign-On (SSO) systems.

App Security Recap

Authored by Zh L

Computers

11th Grade

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

19 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which package is used to hash passwords and other sensitive information before sending them to the database to protect against breaches?

jsonwebtoken

dotenv

bcrypt

mongoose

Answer explanation

bcrypt is used to hash passwords and sensitive data before storing them in a database.
It provides security by converting passwords into irreversible strings, protecting against breaches by ensuring that even if the database is compromised, the original passwords remain unknown.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of Access Tokens?

To allow a new access to be requested

To grant access based on the user's role

To authenticate a user

To track who does what, when, where and how

Answer explanation

Access tokens are used to grant access to specific resources or functionalities based on the user's role or permissions, ensuring that users only have access to what they are authorized to use.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of the jsonwebtoken package in app security?

To manage environmental variables and sensitive information.

To provide a means of representing claims transferred between two parties securely.

To hash passwords and sensitive information.

To build APIs and server-side applications with Node.js.

Answer explanation

JWT enables the creation, verification, and decoding of JSON Web Tokens (JWTs), which are used to authenticate and authorize users in web applications.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the value of access control?

To grant access based on the user's role

To provide case-by-case control over resources

To regulate access rights and organize them into tiers

To keep sensitive information from falling into the hands of bad actors

MULTIPLE SELECT QUESTION

45 sec • 2 pts

What does Authentication help in achieving?

To report on what was done

To track who does what, when, where and how

To be able to prove who we are

To get permission to do something

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of Identity Concept?

To get permission to do something

To track who does what, when, where and how

To be able to prove what we are

To report on what was done

Answer explanation

The purpose of the Identity Concept is to track who does what, when, where, and how, primarily focusing on managing and securing digital identities within an organization or across digital platforms.

MULTIPLE SELECT QUESTION

45 sec • 2 pts

How are authorizations handled?

By managing policy control

By granting access to resources and defining actions

By tracking who does what, when, where and how

By simplifying enforcement through a common approach

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

UH - 01 VII

Quiz

•

1st - 12th Grade

20 questions

Microsoft Excel

Quiz

•

KG - Professional Dev...

20 questions

Quiz/Review in Servicing 2

Quiz

•

11th Grade

16 questions

Kod Arahan

Quiz

•

9th - 11th Grade

18 questions

MS Word Columns and Tables

Quiz

•

10th - 11th Grade

20 questions

Kiểm tra kiến thức về phần mềm chỉnh sửa ảnh và làm phim

Quiz

•

11th Grade

15 questions

CIW

Quiz

•

9th - 12th Grade

15 questions

KS4 - Representing Images

Quiz

•

9th - 11th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

10 questions

Probability Practice

Quiz

•

4th Grade

15 questions

Probability on Number LIne

Quiz

•

4th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

6 questions

Appropriate Chromebook Usage

Lesson

•

7th Grade

10 questions

Greek Bases tele and phon

Quiz

•

6th - 8th Grade

Discover more resources for Computers

14 questions

[AP CSP] JavaScript Programming Quiz

Quiz

•

9th - 12th Grade

10 questions

Understanding Computers and Computer Engineering

Interactive video

•

7th - 12th Grade

37 questions

Python - Tuples, Lists, and List Methods

Quiz

•

9th - 12th Grade

App Security Recap

Which package is used to hash passwords and other sensitive information before sending them to the database to protect against breaches?