Question 1. Which of the following is not an example of a poor security practice?
- The user does not follow established security policies or processes.
- There is a lack of security policies, procedures, or training within the user's organization.
- An employee does not allow a person he or she is talking with to enter a secured area before showing proper credentials.
- An employee creates one good password and then uses it for all of his or her accounts.
Question 2. An attacker watches people as they enter a building that requires a key card. The attacker waits until she sees someone who appears to be in a rush and has his hands full. She then intercepts the person, makes quick small talk, offers to help him hold what's in his hands while he swipes in, and follows behind. This is an example of _____.
- spear phishing
- pharming
- piggybacking
- man trapping
Question 3. What is PKCS?
- One of the standards used in implementing a public-key infrastructure
- A method of private cryptography used by the military
- A method of encrypting e-mail from the IRS
- The method of encryption that used a 40 bit encryption key