What type of attack involves an attacker stealing a file containing password digests and comparing the stolen digests to digests created by the attacker?

A RADIUS authentication server requires that the ________ be authenticated first.

A(n) _________ is the person who is responsible for the information, determines the level of security needed for the data and delegates security duties as required.

The strength of RADIUS is that messages are always directly sent between the wireless device and the RADIUS server.

OpenID is an example of a web-based federated identity management (FIM) system.

The Bell-LaPadula (BLP) model of MAC can be used to prevent subjects from creating a new object or performing specific functions on objects that are at a lower level than their own.

During RADIUS authentication, what type of packet includes information such as identification of a specific AP that is sending the packet and the username and password?

Which federated identity management (FIM) relies on token credentials?

What is the name for a predefined framework that can be used for controlling access and is embedded into software and hardware?

OpenID is an example of a web-based federated identity management (FIM) system.

In the Mandatory Access Control (MAC) model, every subject and object ___________.

Group policy is a Unix feature that allows for the centralized management and configuration of computers and remote users using Unix Active Directory.

Authorization and access are viewed as synonymous and in access control they are the same step.

Entires within a Directory Information Base are arranged in a tree structure called the:

Which of the following is a decentralized open-source FIM that does not require specific software to be installed on the desktop?

The use of a single authentication credential that is shared across multiple networks is called:

What technology allows users to share resources stored on one site with a second site without forwarding their authentication credentials to the other site?

A U.S. Department of Defense (DoD) smart card that is used for identification of active-duty and reserve military personnel along with civilian employees and special contractors is:

Token credentials can be revoked at any time by the user without affecting other token credentials issued to other sites.

What authentication service commonly used on UNIX devices involves communicating user authentication information to a centralized server?

With the development of IEEE 802.1x port security, the __________ authentication server has seen greater usage.

Which of the following is a set of permissions that is attached to an object?

Which of the following is the name given to an individual who periodically reviews security settings and maintains records of access by users?

A(n) _________ is the person who is responsible for the information, determines the level of security needed for the data and delegates security duties as required.

Which type of biometrics is based on the perception, thought process and understanding of the user

A vulnerable process that is divided between two or more individuals to prevent fraudulent application of the process is known as:

A user or process functioning on behalf of the user that attempts to access an object is known as the: