What two conditions must a digital signature meet?


A. Has to be legible and neat.
B. Has to be unforgeable, and has to be authentic.
C. Must be unique and have special characters.
D. Has to be the same number of characters as a physical signature and must be unique.

A hacker named Jack is trying to compromise a banks computer system. He needs to know the operating system of that computer to launch further attacks.
What process would help him?


A. Banner Grabbing
B. IDLE/IPID Scanning
C. SSDP Scanning
D. UDP Scanning

Alice encrypts her data using her public key PK and stores the encrypted data in the cloud. Which of the following attack scenarios will compromise the privacy of her data?


A. None of these scenarios compromise the privacy of Alices data
B. Agent Andrew subpoenas Alice, forcing her to reveal her private key. However, the cloud server successfully resists Andrews attempt to access the stored data
C. Hacker Harry breaks into the cloud server and steals the encrypted data
D. Alice also stores her private key in the cloud, and Harry breaks into the cloud server as before

Shellshock allowed an unauthorized user to gain access to a server. It affected many Internet-facing services, which OS did it not directly affect?


A. Linux
B. Unix
C. OSX
D. Windows

Which is the first step followed by Vulnerability Scanners for scanning a network?


A. TCP/UDP Port scanning
B. Firewall detection
C. OS Detection
D. Checking if the remote host is alive

Which of the following attacks exploits web age vulnerabilities that allow an attacker to force an unsuspecting users browser to send malicious requests they did not intend?


A. Command Injection Attacks
B. File Injection Attack
C. Cross-Site Request Forgery (CSRF)
D. Hidden Field Manipulation Attack

In which of the following cryptography attack methods, the attacker makes a series of interactive queries, choosing subsequent plaintexts based on the information from the previous encryptions?


A. Chosen-plaintext attack
B. Ciphertext-only attack
C. Adaptive chosen-plaintext attack
D. Known-plaintext attack

During a recent security assessment, you discover the organization has one Domain Name Server (DNS) in a Demilitarized Zone (DMZ) and a second DNS server on the internal network.

What is this type of DNS configuration commonly called?


A. DynDNS
B. DNS Scheme
C. DNSSEC
D. Split DNS

Firewalls are the software or hardware systems that are able to control and monitor the traffic coming in and out the target network based on pre-defined set of rules.
Which of the following types of firewalls can protect against SQL injection attacks?


A. Data-driven firewall
B. Stateful firewall
C. Packet firewall
D. Web application firewall

This asymmetry cipher is based on factoring the product of two large prime numbers.

What cipher is described above?


A. SHA
B. RSA
C. MD5
D. RC5