Question

Subject: Principles of Information Security

Multiple Choice

1. Which cryptographic protocols can be used by SSL/TLS?

A. HTTPS and SSMTP

B. Diffie-Hellman and RSA

C. RC4 and 3DES

D. MD5 and SHA-1

2. Which protocol is used for the transfer of hyperlinked data over the Internet, from web servers to browsers?

A. SSMTP

B. HTTP

C. SPOP3

D. HSTS

3. Which port does HTTP traffic travel over by default?

A. TCP port 8080

B. TCP port 80

C. UDP port 8080

D. UDP port 80

4. Which term refers to the process by which application programs manipulate strings to a base form, creating a foundational representation of the input?

A. Canonicalization

B. Obfuscation

C. Injection

D. Blacklisting

5. A(n) __________ outlines the proper settings and configurations for an application or set of applications.

A. application configuration baseline

B. memory management report

C. locally shared object

D. deprecated function

6. Which type of testing involves running the system under a controlled speed environment?

A. Fuzz testing

B. Penetration testing

C. Stress testing

D. Load testing

7. Which term refers to the process of checking whether the program specification captures the requirements from the customer?

A. Data exposure

B. Static analysis

C. Verification

D. Validation

True/False

8. TLS is dead and SSL is the path forward.

9. A signed applet can be hijacked.

10. The spiral model is an iterative model designed to enable the construction of increasingly complex versions of a project.

11. The generation of a real random number is a trivial task.

12. Buffer overflow is one of the most common web attack methodologies.

13. Compilers create runtime code that can be executed via an interpreter engine, like a Java virtual machine (JVM), on a computer system.

Answer 1

1. Which cryptographic protocols can be used by SSL/TLS?
A. HTTPS and SSMTP

2. Which protocol is used for the transfer of hyperlinked data over the Internet, from web servers to browsers?
B. HTTP. First, the URL is converted into IP address in the Domain Name Server (DNS). The browser then requests the desired web page by sending a HyperText Transfer Protocol (HTTP) request across the Internet to the computer in that particular address.

3. Which port does HTTP traffic travel over by default?
B. TCP port 80

4. Which term refers to the process by which application programs manipulate strings to a base form, creating a foundational representation of the input?
A. Canonicalization. It is the process for converting data that has more than one possible representation.