ITN 262 MIDTERM EXAM QUESTIONS
WITH COMPLETE SOLUTIONS
Which of the following are considered "objects" in an access matrix? Select all that
apply.
a) User "bob"
b) Bob's word processing file
f) A device driver while it is running
d) The word processing program while it executes
c) The file containing the word processing program
e) A device driver buffer - Answer-b) Bob's word processing file
c) The file containing the word processing program
e) A device driver buffer
True or False? In a default permit, everything is allowed except sites on the prohibited
list.
True
False - Answer-true
The term _________ was used in operating systems research to describe the access
rights a particular subject or process had for a particular object or resource.
a) cluster
c) capability
b) permission
d) objects - Answer-capability
An example of a capability-based system is:
a) Kerberos.
d) All of these are correct.
b) public-key certificates.
c) a process page table that provides capabilities to use specific areas of RAM. -
Answer-All of these are correct
True or False? When a system process starts another, the parent process often inherits
the child's access rights.
True
False - Answer-false
The information state associated with data in motion is:
d) All of these are correct.
c) transmission.
b) processing.
a) storage. - Answer-transmission
,True or False? Owner rights are privileged processes run by the system.
True
False - Answer-false
True or False? Storage state is the information that is being used by an active process
to make decisions or to transform the information into another form.
True
False - Answer-false
The main purpose of a software patch is to:
b) test the functionality of a program.
d) fix a bug in a program.
c) alert users to an error in a program.
a) enhance the functionality of a program. - Answer-fix a bug in a program
A zero-day exploit:
c) does not pose a security threat.
b) has no software patch.
a) occurs immediately after a software patch is applied.
d) refers to an exploit that never occurs. - Answer-has no software patch
True or False? The window of vulnerability is the period of time during which a system is
unprotected from an exploit.
True
False - Answer-true
A security database that contains entries for users and their access rights for a specific
file or folder is a(n):
c) security policy.
b) access control list (ACL).
d) administrative group.
a) access security list (ASL). - Answer-access control list
Bob and Alice are typical users who share a computer. Which of the following are true
of a file sharing policy? Assume no tailoring takes place. Select all that apply.
a) Bob can create, read, and modify his own files.
f) Alice can read and write application files.
d) Bob and Alice can share files (read and write) that others can't read.
e) Bob and Alice can read files that others can't read.
b) Bob can read Alice's files. - Answer-a) Bob can create, read, and modify his own
files.
b) Bob can read Alice's files.
Bob and Alice are typical users who share a computer. Which of the following are true
of a user isolation policy? Assume no tailoring takes place. Select all that apply.
, b) Bob can read Alice's files.
c) Bob can modify Alice's files.
f) Alice can read and write application files.
d) Bob and Alice can share files (read and write) that others can't read.
e) Bob and Alice can read files that others can't read.
a) Bob can create, read, and modify his own files. - Answer-a) Bob can create, read,
and modify his own files.
Bob and Alice are typical users who share a computer. The computer has a file sharing
policy, but Bob and Alice have implemented a tailored policy for shared updating. Which
of the following are true?
e) Alice can read and write application files.
a) Bob can create, read, and modify his own files.
c) Bob can modify typical files that Alice creates.
b) Bob can read typical files that Alice creates.
d) Bob and Alice can share particular files (read and write) that others can't read. -
Answer-a) Bob can create, read, and modify his own files.
b) Bob can read typical files that Alice creates.
d) Bob and Alice can share particular files (read and write) that others can't read.
Below is a list of different access right settings. We want to implement shared update of
certain files between Bob and Alice, but with no one else. Which of the following
settings achieve this? Select all that apply.
d) Set world access of the shared files to RWX.
a) Assign Bob ownership to Alice's files, and Alice ownership to Bob's files.
c) Use Windows basic file sharing and make Bob and Alice co-owners of the files.
b) Put Bob and Alice is a user group, and give the group RWX access to the shared
files. - Answer-c) Use Windows basic file sharing and make Bob and Alice co-owners of
the files.
b) Put Bob and Alice is a user group, and give the group RWX access to the shared
files.
Which of the following is a list of access rights for each file, where each entry identifies
a specific user and contains a list of access rights granted to that user.
b) Reader rights
c) Access control list (ACL)
a) Group rights
d) All of these are correct. - Answer-Access control list (ACL)
What are the risks of logging into a system routing as "root" or some other
administrative identity?
c) Exposing the system to a virus or malicious website
d) All of these are correct.
a) Files could be erased.
b) Files could be altered. - Answer-all of these are correct
WITH COMPLETE SOLUTIONS
Which of the following are considered "objects" in an access matrix? Select all that
apply.
a) User "bob"
b) Bob's word processing file
f) A device driver while it is running
d) The word processing program while it executes
c) The file containing the word processing program
e) A device driver buffer - Answer-b) Bob's word processing file
c) The file containing the word processing program
e) A device driver buffer
True or False? In a default permit, everything is allowed except sites on the prohibited
list.
True
False - Answer-true
The term _________ was used in operating systems research to describe the access
rights a particular subject or process had for a particular object or resource.
a) cluster
c) capability
b) permission
d) objects - Answer-capability
An example of a capability-based system is:
a) Kerberos.
d) All of these are correct.
b) public-key certificates.
c) a process page table that provides capabilities to use specific areas of RAM. -
Answer-All of these are correct
True or False? When a system process starts another, the parent process often inherits
the child's access rights.
True
False - Answer-false
The information state associated with data in motion is:
d) All of these are correct.
c) transmission.
b) processing.
a) storage. - Answer-transmission
,True or False? Owner rights are privileged processes run by the system.
True
False - Answer-false
True or False? Storage state is the information that is being used by an active process
to make decisions or to transform the information into another form.
True
False - Answer-false
The main purpose of a software patch is to:
b) test the functionality of a program.
d) fix a bug in a program.
c) alert users to an error in a program.
a) enhance the functionality of a program. - Answer-fix a bug in a program
A zero-day exploit:
c) does not pose a security threat.
b) has no software patch.
a) occurs immediately after a software patch is applied.
d) refers to an exploit that never occurs. - Answer-has no software patch
True or False? The window of vulnerability is the period of time during which a system is
unprotected from an exploit.
True
False - Answer-true
A security database that contains entries for users and their access rights for a specific
file or folder is a(n):
c) security policy.
b) access control list (ACL).
d) administrative group.
a) access security list (ASL). - Answer-access control list
Bob and Alice are typical users who share a computer. Which of the following are true
of a file sharing policy? Assume no tailoring takes place. Select all that apply.
a) Bob can create, read, and modify his own files.
f) Alice can read and write application files.
d) Bob and Alice can share files (read and write) that others can't read.
e) Bob and Alice can read files that others can't read.
b) Bob can read Alice's files. - Answer-a) Bob can create, read, and modify his own
files.
b) Bob can read Alice's files.
Bob and Alice are typical users who share a computer. Which of the following are true
of a user isolation policy? Assume no tailoring takes place. Select all that apply.
, b) Bob can read Alice's files.
c) Bob can modify Alice's files.
f) Alice can read and write application files.
d) Bob and Alice can share files (read and write) that others can't read.
e) Bob and Alice can read files that others can't read.
a) Bob can create, read, and modify his own files. - Answer-a) Bob can create, read,
and modify his own files.
Bob and Alice are typical users who share a computer. The computer has a file sharing
policy, but Bob and Alice have implemented a tailored policy for shared updating. Which
of the following are true?
e) Alice can read and write application files.
a) Bob can create, read, and modify his own files.
c) Bob can modify typical files that Alice creates.
b) Bob can read typical files that Alice creates.
d) Bob and Alice can share particular files (read and write) that others can't read. -
Answer-a) Bob can create, read, and modify his own files.
b) Bob can read typical files that Alice creates.
d) Bob and Alice can share particular files (read and write) that others can't read.
Below is a list of different access right settings. We want to implement shared update of
certain files between Bob and Alice, but with no one else. Which of the following
settings achieve this? Select all that apply.
d) Set world access of the shared files to RWX.
a) Assign Bob ownership to Alice's files, and Alice ownership to Bob's files.
c) Use Windows basic file sharing and make Bob and Alice co-owners of the files.
b) Put Bob and Alice is a user group, and give the group RWX access to the shared
files. - Answer-c) Use Windows basic file sharing and make Bob and Alice co-owners of
the files.
b) Put Bob and Alice is a user group, and give the group RWX access to the shared
files.
Which of the following is a list of access rights for each file, where each entry identifies
a specific user and contains a list of access rights granted to that user.
b) Reader rights
c) Access control list (ACL)
a) Group rights
d) All of these are correct. - Answer-Access control list (ACL)
What are the risks of logging into a system routing as "root" or some other
administrative identity?
c) Exposing the system to a virus or malicious website
d) All of these are correct.
a) Files could be erased.
b) Files could be altered. - Answer-all of these are correct