Browse Definitions :
Quiz

Quiz: Security Awareness for End Users

Studies show that a company's biggest security threat is its own employees. The SANS Institute recommends that organizations take time to educate their employees about computer security and periodically test employees to make sure they understand the basics. To help you in your efforts to raise security awareness in your organization, we've created the following quiz.

How to take the quiz:
- After reading the question, click on the answer that you think iscorrect to go to the whatis.com definition. If the answer you've chosenis correct, you will see the question text or an approximation of it somewhere in the definition.
OR
- After reading the question, write down the letter of your answerchoice on scrap paper. Check your answers by using the answer key at theend of the quiz.

Are you the weakest link?

1. This is a document that states in writing how a company plans to protect the company's physical and IT assets.
a. Data Encryption Standard
b. security policy
c. public key certificate
d. access control list
e. copyright

2. This is a program or file that is specifically developed for the purpose of doing harm.
a. buffer overflow
b. bastion host
c. malware
d. ping sweep
e. passphrase

3. This is a set of related programs, usually located at a network gateway server, that protects the resources of a private network from other networks.
a. firewall
b. sandbox
c. rootkit
d. password cracker
e. general protection fault

4. This is a class of programs that searches your hard drive and floppy disks for any known or potential viruses.
a. intrusion detection
b. Security Identifier
c. Antigen
d. probe
e. antivirus software

5. In computer security, this describes a non-technical kind of intrusion that relies heavily on human interaction. It often involves tricking people into breaking their own security procedures.
a. cyberterrorism
b. debugging
c. hijacking
d. nonrepudiation
e. social engineering

6. This is a program in which malicious or harmful code is contained inside apparently harmless programming or data.
a. war dialer
b. spam trap
c. smurf
d. Trojan horse
e. walled garden

7. This is the process of determining whether someone or something is, in fact, who or what it is declared to be.
a. conditional access
b. anonymizer
c. bypass
d. user profile
e. authentication

8. This is the conversion of data into a ciphertext that cannot be easily understood by unauthorized people.
a. brute force cracking
b. tunneling
c. encryption
d. ciphertext feedback
e. cloaking

9. To be effective, this should ideally contain at least one digit and not match a natural language word.
a. digital signature
b. smart card
c. public key
d. password
e. signature file

10. This is an agreement a company may ask an employee to sign that specifies what is considered to be appropriate (or inappropriate) use of e-mail or Web browsing.
a. RSA
b. AUP
c. SET
d. VPN
e. PKI

SCROLL DOWN FOR ANSWER KEY

















See the rest of our quiz topics

ANSWER KEY: 1b;2c;3a;4e;5e;6d;7e;8c;9d;10b


Let us know how you did! contactus@whatis.com

This was last updated in July 2008

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

  • RAM (Random Access Memory)

    RAM (Random Access Memory) is the hardware in a computing device where the operating system (OS), application programs and data ...

  • business impact analysis (BIA)

    Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to ...

  • M.2 SSD

    An M.2 SSD is a solid-state drive that is used in internally mounted storage expansion cards of a small form factor.

Close