1. __________ is the most common method used to conceal small blocks of data, such as encryption keys and hash function values, which are used in digital signatures.

A) Symmetric encryption

B. Data integrity algorithms

C) Asymmetric encryption D)Authentication protocols

 2. A common technique for masking contents of messages or other information traffic so that opponents can not extract the information from the message is __________ .

A) integrity B) encryption

C) analysis D) masquerade

3. __________ involves the passive capture of a data unit and its subsequent retransmission to produce an unauthorized effect.

A) Disruption B) Replay

C) Service denial D) Masquerade

4. _________ refers to the use of multiple, overlapping protection approaches addressing the people, technology, and operational aspects of information systems.

A) Layering B) Modularity

C) Encapsulation D) Open design

5. A loss of __________ is the unauthorized disclosure of information.

A) authenticity B) confidentiality

C) reliability D) integrity

6. Verifying that users are who they say they are and that each input arriving at the system came from a trusted source is _________ .

A) authenticity B) credibility

C) accountability D) integrity

7. A _________ level breach of security could cause a significant degradation in mission capability to an extent and duration that the organization is able to perform its primary functions, but the effectiveness of the functions is significantly reduced.

A) catastrophic B) moderate

C) low D) high

8. A __________ is any action that compromises the security of information owned by an organization.

A) security attack B) security service

C) security alert D) security mechanism

 

 

9. A __________ takes place when one entity pretends to be a different entity.

A) replay B) masquerade

C) service denial D) passive attack

10. __________ is the protection of transmitted data from passive attacks.

A) Access control B) Data control

C) Nonrepudiation D) Confidentiality

11. A(n) __________ service is one that protects a system to ensure its availability and addresses the security concerns raised by denial- of- service attacks.

A) replay B) availability

C) masquerade D) integrity

12. __________ threats exploit service flaws in computers to inhibit use by legitimate users.

A) Information access B) Reliability

C) Passive D) Service

13. A(n) __________ is a potential for violation of security, which exists when there is a circumstance, capability, action or event that could breach security and cause harm.

A) threat B) attack

C) risk D) attack vector

14. The protection of the information that might be derived from observation of traffic flows is _________ .

A) connectionless confidentiality B) connection confidentiality

C) traffic- flow confidentiality D) selective- field confidentiality

15. Data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery is a(n) ___________ .

A) security audit trail B) digital signature

C) encipherment D) authentication exchange