SSCP: Access Controls
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 57% Most missed: “An organization uses a biometric system with a one-to-many search method. What d…”
SSCP: Access Controls
Time left 00:00
20 Questions

1. What type of service does Kerberos provide?
2. Authentication includes three types, or factors. Which of the following best describes these authentication methods?
3. What is SSO?
4. A user tries to log on to his bank account via the Internet with his username and password. The webpage then displays a message indicating a code was sent to his smartphone and prompts him to enter a six-digit code. What type of authentication is this?
5. Which of the following will disable an account if an attacker tries to guess the password multiple times?
6. What can be used to prevent a user from reusing the same password?
7. Which of the following statements is true?
8. An organization has been using an iris scanner for authentication but has noticed a significant number of errors. Assuming the iris scanner is a high-quality scanner, which of the following is MOST LIKELY affecting its accuracy?
9. An organization uses a biometric system with a one-to-many search method. What does this system provide for the organization?
10. What form(s) of authentication are individuals using when they authenticate with a hardware token and a password?
11. Of the following choices, what most accurately identifies the major drawback of SSO systems?
12. Which of the following metrics identifies the number of valid users that a biometric authentication system falsely rejects?
13. Users are required to enter a different password each time they log on. What type of password is this?
14. What type of access control is subject based?
15. Which of the following actions is most appropriate if an employee leaves the company?
16. What is the primary goal of the Bell-LaPadula model?
17. Which of the following choices does NOT ensure that a password is strong?
18. A user professes an identity by entering a user logon name and then enters a password. What is the purpose of the logon name?
19. Access controls protect assets such as files by preventing unauthorized access. What must occur before a system can implement access controls to restrict access to these types of assets?
20. Which of the following models helps enforce the principle of separation of duties?