AccessControlPart1Yourquizresults:Hidedetailsinallquestions.Hidecorrectquestions.1.Question:216|Difficulty:4/5|Relevancy:3/3ThereareparallelsbetweenthetrustmodelsinKerberosandinPKI.Whenwecomparethemsidebyside,Kerberosticketscorrespondmostcloselytowhichofthefollowing?opublickeysoprivatekeysopublic-keycertificatesoprivate-keycertificatesC.AKerberosticketisissuedbyatrustedthirdparty;itisanencrypteddatastructurethatincludestheserviceencryptionkey.Inthatsenseitissimilartoapublic-keycertificate.However,theticketisnotakey.Andthereisnosuchthingasaprivatekeycertificate.Studyareas:CISSPCBKdomain#1-AccessControl,CISSPCBKdomain#5-CryptographyCoveredtopics(2):Kerberos,X.509DigitalcertificatesThisquestion©Copyright2003–2009cccure.org.2.Question:423|Difficulty:1/5|Relevancy:3/3Whatiscalledapasswordthatisthesameforeachlog-onsession?o"one-timepassword"o"two-timepassword"ostaticpasswordodynamicpasswordC.Apasswordthatisthesameforeachlog-oniscalledastaticpassword.Source:KRUTZ,RonaldL.&VINES,RusselD.,TheCISSPPrepGuide:MasteringtheTenDomainsofComputerSecurity,2001,JohnWiley&Sons,Page36.Contributor:RakeshSudStudyarea:CISSPCBKdomain#1-AccessControlCoveredtopic:PasswordsThisquestion©Copyright2003–2009RakeshSud,cccure.org.3.Question:88|Difficulty:1/5|Relevancy:3/3Atimelyreviewofsystemaccessauditrecordswouldbeanexampleofwhichofthebasicsecurityfunctions?oavoidance.odeterrence.oprevention.odetection.D.Thecorrectansweris:detection.Byreviewingsystemlogsyoucandetecteventsthathaveoccured.Thefollowinganswersareincorrect:avoidance.Thisisincorrect,avoidanceisadistractor.Byreviewingsystemlogsyouhavenotavoidedanything.deterrence.Thisisincorrectbecausesystemlogsareahistoryofpastevents.Youcannotdetersomethingthathasalreadyoccurred.prevention.Thisisincorrectbecausesystemlogsareahistoryofpastevents.Youcannotpreventsomethingthathasalreadyoccurred.Lastmodified6/08/2007-J.HajecComment:Atimelyreviewoftheauditlogswouldprovideearlydetectionofpossibleandintentionalabusesbutdoesnothingtopreventoccurrenceofab...
