CRYPTOGRAPHY AND NETWORK SECURITY: PRINCIPLES AND
PRACTICE
8TH EDITION
CHAPTER 1: COMPUTER AND NETWORK SECURITY CONCEPTS
MULTIPLE CHOICE
1. _____________ is the collection of tools, policies, security concepts, security
safeguards, guidelines, risk management approaches, actions, training, best
practices, assurance, and technologies that can be used to protect the cyberspace
environment and organization and users’ assets.
A) Access control B) Data authenticity
C) Cybersecurity D) Authentication
Answer: C
2. A common technique for masking contents of messages or other information
traffic so that opponents can not extract the information from the message is
__________ .
A) integrity B) encryption
C) analysis D) masquerade
Answer: B
3. __________ involves the passive capture of a data unit and its subsequent
retransmission to produce an unauthorized effect.
A) Disruption B) Replay
C) Service denial D) Masquerade
Answer: B
4. _________ is a branch of mathematics that deals with the transformation of data.
A) Cryptography B) Modularity
C) Encapsulation D) Encryption
,Answer: A
5. A loss of __________ is the unauthorized disclosure of information.
A) authenticity B) confidentiality
C) reliability D) integrity
Answer: B
6. Verifying that users are who they say they are and that each input arriving at the
system came from a trusted source is _________ .
A) authenticity B) credibility
C) accountability D) integrity
Answer: A
7. A _________ is a value computed with a cryptographic algorithm and associated
with a data object in such a way that any recipient of the data can use the
signature to verify the data’s origin and integrity.
A) key exchange B) digital signature
C) message authentication code D) notarization
Answer: B
8. A __________ is any action that compromises the security of information owned by
an organization.
A) security attack B) security service
C) security alert D) security mechanism
Answer: A
9. A __________ takes place when one entity pretends to be a different entity.
A) replay B) masquerade
C) service denial D) passive attack
Answer: B
,10. __________ is the protection of transmitted data from passive attacks.
A) Access control B) Data control
C) Nonrepudiation D) Confidentiality
Answer: D
11. A(n) __________ service is one that protects a system to ensure its availability and
addresses the security concerns raised by denial-of-service attacks.
A) replay B) availability
C) masquerade D) integrity
Answer: B
12. Two types of __________ attacks are the release of message contents and
traffic analysis.
A) information B) eavesdropping
C) service D) passive
Answer: D
13. A(n) __________ is any circumstance or event with the potential to adversely
impact organizational operations (including mission, functions, image, or
reputation), organizational assets, individuals, other organizations, or the Nation
through an information system via unauthorized access, destruction, disclosure,
modification of information, and/or denial of service.
A) threat B) attack
C) risk D) attack vector
Answer: A
14. A __________ is a hardware and/or software capability that limits access between a
network and device attached to the network, in accordance with a specific
security policy.
A) trust model B) cryptographic algorithm
, C) firewall D) router
Answer: C
15. Data appended to, or a cryptographic transformation of, a data unit that allows a
recipient of the data unit to prove the source and integrity of the data unit and
protect against forgery is a(n) ___________ .
A) security audit trail B) digital signature
C) encipherment D) authentication exchange
Answer: B
SHORT ANSWER
1. The general security objectives of cybersecurity comprise the following:
availability; integrity, which may include data authenticity and
nonrepudiation; and __________ .
Answer: confidentiality
2. A ______________ is a process (or a device incorporating such a process) that is
designed to detect, prevent, or recover from a security attack.
Answer: security mechanism
3. An ___________ is any kind of malicious activity that attempts to collect, disrupt,
deny, degrade, or destroy information system resources or the information
itself.
Answer: attack
4. A __________ attack attempts to learn or make use of information from the
system but does not affect system resources.
Answer: passive
5. The emphasis in dealing with __________ attacks is on prevention rather than
detection.
Answer: passive
6. Active attacks can be subdivided into four categories: replay, __________ ,
modification of messages, and denial of service.
Answer: masquerade