PRE-ASSESSMENT: INFORMATION ASSURANCE AND SECURITY (BFO2) PBFO
Attempt #2
Status: Passed
1.
Which two passwords are the
... [Show More] weakest?
YOUR
ANSWER
CORRECT
ANSWER
Pa$$w0Rd%^78
Love@$MySon80
C@1Il@VEm1
Password1234
2.
Which two secure methods should be used to keep track of passwords?
YOUR
ANSWER
CORRECT
ANSWER
Encrypt text files of them on the user’s workstation
Store them on a sticky note in a convenient spot
Share them with a trusted manager or coworker
Organization-approved password storage software
8/6/2019 WGU Student Portal | Coaching Report
https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 2/34
3.
Which groups typically reportto the chief security officer (CSO)?
YOUR
ANSWER
CORRECT
ANSWER
Security engineering and operations
Physical and software security
Audit and incident response
Facilities and information technology functions
4.
A company is considering which controls to buy to protect an asset.
What should the price ofthe controls be in relation to the cost ofthe asset?
YOUR
ANSWER
CORRECT
ANSWER
Less than the annual loss expectancy
More than the annual loss expectancy
Equal to the cost of the asset
More than the cost of the asset
5.
How many keys are used in asymmetric encryption?
8/6/2019 WGU Student Portal | Coaching Report
https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 3/34
YOUR
ANSWER
CORRECT
ANSWER
YOUR
ANSWER
CORRECT
ANSWER
No keys are used to encrypt and decrypt a message.
One key is used to encrypt and decrypt a message.
Two keys are used to encrypt and decrypt a message.
Three keys are used to encrypt and decrypt a message.
6.
Which protocol is a variant of a standard web transfer protocolthat adds a layer of security on the data in transit using a secure socketlayer?
YOUR
ANSWER
CORRECT
ANSWER
HTTPS
HTTP
FTP
SFTP
7.
Which description characterizes symmetric cryptography?
YOUR
ANSWER
CORRECT
ANSWER
The same key is used to lock and unlock the cipher.
8/6/2019 WGU Student Portal | Coaching Report
https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 4/34
YOUR
ANSWER
CORRECT
ANSWER
Two separate but unrelated keys are used to unlock the cipher.
Two separate and related keys are used to unlock the cipher.
Keys are unnecessary when using symmetric cryptography to unlock a cipher.
8.
An employee uses a secure hashing algorithm for message integrity. The employee sends a plain text message with the embedded hash to a
colleague. A rogue device receives and retransmits the message to its destination. Once received and checked by the intended recipient,the
hashes do not match.
Which STRIDE concept has been violated?
YOUR
ANSWER
CORRECT
ANSWER
Tampering
Repudiation
Elevation of privilege
Denial-of-service
9.
An attacker accesses private emails between the company’s CISO and board members. The attacker then publishes the emails online.
Which type of an attack is this, according to the STRIDE model?
YOUR
ANSWER
CORRECT
ANSWER
8/6/2019 WGU Student Portal | Coaching Report
https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 5/34
YOUR
ANSWER
CORRECT
ANSWER
Repudiation
Information disclosure
Elevation of privilege
Tampering
10.
A security guard atthe front desk of a building checks every employee’s name badge with their photo before they are allowed in the buildin [Show Less]