Multiple Choice Questions. Note: in some questions you may need to select more than one of the options. (Scored as 3 points for each question, no guarantee of partial credit for partially correct answers.) Write your answers in the following Answer Table.

1. The basic step(s) should be used to secure an operating system:

a. Install and register the operating system.

b. Harden and configure the operating system to adequately address the identified security needs of the system.

c. Installing and configure additional security controls, such as anti-virus, host-based firewalls, and intrusion detection systems (IDS), if needed.

d. Test the security of the basic operating system to ensure that the steps taken adequately address its security needs.

e. All of the above.

2. Denial of service attacks include:

a. DNS spoofing

b. Smurf attack

c. Ping of death

d. SYN flood

e. All of the above.

3. Countermeasures against subdomain DNS cache poisoning include which of the following:

a. Firewalls

b. SPR

c. DNSSEC uses RRSIG and DNSKEY records

d. DNSSEC employing a chain of trust

e. All of the above.

4. Methods to avoid SQL injection include which of the following:

a. Providing functions to escape special characters.

b. Built-in functions that strip input of dangerous characters.

c. Techniques for the automatic detection of database language in legacy code.

d. Techniques for the automatic detection of SQL language in legacy code.

e. All of the above.

5. Protection of a software program that uses a unique, novel algorithm could be legally protected by:

a. A patent

b. A copyright

c. A notary

d. Ethical standards

e. All of the above.

6. If person A uses AES to transmit an encrypted message to person B, which key or keys will A have to use:

a. As private key

b. As public key

c. Bs private key

d. Bs public key

e. None of the keys listed above.

7. Choose the right statement(s):

a. On change-controlled system, you should run automatic updates to prevent security patches from introducing instability.

b. A malicious driver can potentially bypass many security controls to install malware.

c. It is critical that the operating system be kept as up to date as possible, with all critical security related patched installed.

d. The operating system planning process should consider the categories of users on the system, and the privileges they have.

e. All of the above.

8. Broad categories of payloads that malware may carry include which of the following:

a. Corruption of system or data files;

b. Theft of service in order to make the system a zombie agent of attack as part of a botnet;

c. Theft of information from the system, especially of logins, passwords or other personal details by keylogging or spyware programs;

d. Stealthing where the malware hides it presence on the system from attempts to detect and block it;

e. All of the above.

9. SELinux implements different types of MAC: ________________________.

a. Role Based Access Controls and Type Enforcement

b. Multi Level Security

c. Multi Task Level Security

d. User Based Access Controls and Format Enforcement

e. None of the above.

10. Security threats include which of the following:

a. Hurricanes

b. Disgruntled employees

c. Unlocked doors

d. Un-patched software programs

e. All of the above.