An organization is deciding between two security models. Model A grants every employee full access to all company data and systems by default, while Model B restricts all employee access by default, only granting specific permissions when a request is approved. Which model is more aligned with the principle of "Deny by default, permit by exception," and why is this model safer?

Model B, because it aligns with Fail-Safe Defaults, preventing accidental exposure.

Model A, because it allows for greater flexibility.

Model A, because it eliminates the need for access requests.

Model B, because it aligns with Defense in Depth, making it easier for users to access what they need.

A hospital's IT department is implementing new security protocols. They decide that a backup service should only have the permissions necessary to access and back up patient records, and nothing else. They also implement a policy that requires a nurse to manually enable file sharing on their computer each time they need it. How do these two actions collectively demonstrate the application of secure design principles?

The backup service policy demonstrates the Principle of Least Privilege, while the file sharing policy demonstrates Fail-Safe Defaults.

Both actions are examples of Defense in Depth, creating multiple layers of security.

Both actions are examples of Role-Based Access Control, as they are based on user roles.

The backup service policy demonstrates Fail-Safe Defaults, and the file sharing policy demonstrates the Principle of Least Privilege.

Week 2 Quiz 2 Security Principles

Quiz

•

Information Technology (IT)

•

University

•

Practice Problem

•

Medium

Nasser Hilla

Used 1+ times

FREE Resource

10 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the principle that advocates for giving users and processes only the minimum privileges needed to perform their functions?

Role-Based Access Control (RBAC)

Fail-Safe Defaults

Principle of Least Privilege (PoLP)

Defense in Depth

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

According to the presentation, what is the core concept of "Fail-Safe Defaults"?

Systems should be configured to be open by default.

Users should be able to disable security features easily.

Systems should default to a secure state when there's uncertainty or a failure.

All traffic should be allowed unless a threat is detected.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Role-Based Access Control (RBAC) simplifies privilege management by assigning permissions based on what?

Individual user names

The time of day a user logs in

A user's specific role within an organization

The type of device a user is using

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How does the Principle of Least Privilege (PoLP) help to reduce the attack surface of systems?

By granting all users full access to all systems.

By limiting the damage an attacker can cause if they compromise a low-privileged account.

By allowing regular users to install software.

By defaulting systems to an insecure state.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A company's new file server is configured to block all inbound and outbound network traffic by default. The administrator must then create specific rules to allow necessary services like HTTP and SSH. This configuration is an example of which secure design principle?

Defense in Depth

Principle of Least Privilege (PoLP)

Role-Based Access Control (RBAC)

Fail-Safe Defaults

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A large corporation has different levels of employees: Admins, HR staff, and Finance Team members. The company uses a system that automatically grants access to specific files and applications based on these defined job functions. This approach is an effective implementation of which security concept?

Fail-Safe Defaults

Principle of Least Privilege (PoLP)

Role-Based Access Control (RBAC)

The MSR model

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A software development team is creating a new application. They decide to design the application so that if a component fails, it will stop all operations until the issue is resolved, rather than continuing to run in a potentially vulnerable state. By adopting this approach, which security principle are they prioritizing?

Role-Based Access Control (RBAC)

Principle of Least Privilege (PoLP)

Fail-Safe Defaults

Defense in Depth

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

10 questions

Srivarshni S

Quiz

•

University

13 questions

Advanced Computer Security Trends

Quiz

•

University

12 questions

CLC Unit 2 Lesson 1,2,3 and 4 Quiz

Quiz

•

University

10 questions

Data Visualization with Qlik Cloud

Quiz

•

University

5 questions

DifficultRound

Quiz

•

University

11 questions

Ethics in ICT

Quiz

•

University

10 questions

BT 15,16 (2)

Quiz

•

University

Popular Resources on Wayground

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

15 questions

Solving Equations with Variables on Both Sides Review

Quiz

•

8th Grade

Discover more resources for Information Technology (IT)

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

7 questions

Different Types of Energy

Interactive video

•

4th Grade - University

7 questions

Transition Words and Phrases

Interactive video

•

4th Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

7 questions

Biomolecules (Updated)

Interactive video

•

11th Grade - University

34 questions

Unit 5 Review - The Middle Ages in Europe-B

Quiz

•

9th Grade - University

26 questions

Day2 classwork: Permutation and combination

Quiz

•

2nd Grade - University

5 questions

Using Context Clues

Interactive video

•

4th Grade - University