SBOLC Security Plus Study Guide with
Complete Solutions
2Fish - ANSWER-similar to AES
3DES - ANSWER-(old and slow x 3)
Acceptance - ANSWER-Cost of a countermeasure outweighs the loss due to a risk
AES - ANSWER-De facto standard
Asymmetric - ANSWER-DEER, has 2 keys
Authentication is the most critical step in the identification process. It is proving of a
subjects claim to identification. - ANSWER-
Authentication types - ANSWER-Something you know (password or PIN), Something
you have (smart card, token, or device), Something you are (fingerprints or retinal
pattern), Something you do (keystroke authentication), Somewhere you are (location)
Availability goal - ANSWER-continuous operation, available for use
Avoidance - ANSWER-Not performing an activity that could carry risk
Backdoor - ANSWER-Allows access to a system without having to authenticate
Block Cipher - ANSWER-found in software. Applied to block data (64 contiguous bits) at
once as a group. Very slow but more secure than Stream
Blowfish - ANSWER-(fastest, 64bit)
Bot - ANSWER-programs that run on automated tasks. Obeys a master or author of the
code
Botnet - ANSWER-collection of zombies- a network of compromised systems containing
malware which acts as a robot. Controlled by a master
Botnet attack - ANSWER-large number of computers under the control of a single evil
guy, who uses the botnets to ALL conduct a DoS attack at the same time. significant
effect on the target. Distributed DOS.
Captive Portal - ANSWER-Captures or redirects the users initial traffic because
something more is needed from the user, such as a credit card, or user name and
password.
