Access Management and Cybersecurity attack Introduction

Welcome to 2022 Q3 employee seucurity awareness testing. The topic is related to access management on MFA, password and Cybersecurity Attacks. Pls feel free to contact Security EMEA if any problem.

Q1:Which of the following is true related to a subject?

The subject is always the entity that receives information about or data from an object.

The subject is always the entity that provides or hosts information or data.

A subject is always a user account.

A single entity can never change roles between subject and object.

Q2:The primary goal of controlling access to assets/system is ?

Prevent unauthorized access to subjects.

Preserve confidentiality, integrity, and availability of systems and data.

Ensure that all subjects are authenticated.

Ensure that only valid objects can authenticate on a system.

Q3:Which of the following provides authentication based on a physical characteristic of a subject?

Biometrics

Account ID

Token

Q4:Which one below is an example of strong password

IL*mhsIwb@793

123456

qwert123456

Dictonary

Q5:MFA authentication Factors

Something you know

Something you have

Something you are

Something you love

Q6:Which ones belong to Web-based attack

Denial of Service (DoS)

Backdoor

Phishing

Cross-Site Scripting (XSS)

Q7:Which ones are famous phising techniques?

Spear

Whaling

Shark

Crocodile

Q8:Youre allowed to share your password to someone who does have access to system/asset

Yes

Q9:Virus is self-replicated?

Yes

Q10:You need to forward it to security team if you suspect that the email might include maleware

Yes

Access Management and Cybersecurity attack Introduction

关于

1年前

更新

频次

题目数