ISC-Certified Information Systems Security Professionals Set 16

1.

The act of requiring two of the three factors to be used in the authentication process refers to:

Two-Factor Authentication One-Factor Authentication Bi-Factor Authentication Double Authentication

2.

Which of the following would be true about Static password tokens?

The owner identity is authenticated by the token The owner will never be authenticated by the token. The owner will authenticate himself to the system. The token does not authenticates the token owner but the system.

3.

In Synchronous dynamic password tokens:

The token generates a new password value at fixed time intervals (this password could be based on the time of day encrypted with a secret key). The token generates a new non-unique password value at fixed time intervals (this password could be based on the time of day encrypted with a secret key). The unique password is not entered into a system or workstation along with an owner's PIN. The authentication entity in a system or workstation knows an owner's secret key and PIN, and the entity verifies that the entered password is invalid and that itwas entered during the invalid time window.

4.

In biometrics, "one-to-many" search against database of stored biometric images is done in:

Authentication Identification Identities Identity-based access control

5.

Which of the following is true of biometrics?

It is used for identification in physical controls and it is not used in logical controls. It is used for authentication in physical controls and for identification in logical controls. It is used for identification in physical controls and for authentication in logical controls. Biometrics has no role in logical controls.

6.

What is the percentage of valid subjects that are falsely rejected by a Biometric Authentication system called?

False Rejection Rate (FRR) or Type I Error False Acceptance Rate (FAR) or Type II Error Crossover Error Rate (CER) True Rejection Rate (TRR) or Type III Error

7.

What is the percentage of invalid subjects that are falsely accepted by a Biometric authentication system called?

False Rejection Rate (FRR) or Type I Error False Acceptance Rate (FAR) or Type II Error Crossover Error Rate (CER) True Acceptance Rate (TAR) or Type III Error

8.

What is the percentage at which the False Rejection Rate equals the False Acceptance Rate called?

False Rejection Rate (FRR) or Type I Error False Acceptance Rate (FAR) or Type II Error Crossover Error Rate (CER) Failure to enroll rate (FTE or FER)

9.

What is a password called that is the same for each log-on session?

one-time password two-time password static password dynamic password

10.

What is a sequence of characters that is usually longer than the allotted number for a password called?

passphrase cognitive phrase anticipated phrase Real phrase

ISC-Certified Information Systems Security Professionals Set 16

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

ISC-Certified Information Systems Security Professionals Set 16

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner