Security – MCQs
Q#1: The main goal of computer security is to ensure:
(A) Confidentiality, Integrity, Availability
(B) High speed
(C) Multi-threading
(D) Large memory usage
Answer: (A) Confidentiality, Integrity, Availability
Q#2: Which of the following is a threat to computer security?
(A) Virus
(B) Worm
(C) Trojan horse
(D) All of the above
Answer: (D) All of the above
Q#3: A virus is:
(A) Malicious code that attaches to programs
(B) Network protocol
(C) Encryption method
(D) Backup utility
Answer: (A) Malicious code that attaches to programs
Q#4: A Trojan horse is:
(A) Malicious software disguised as legitimate
(B) Network firewall
(C) Encryption algorithm
(D) File system
Answer: (A) Malicious software disguised as legitimate
Q#5: Worms differ from viruses in that they:
(A) Can propagate without user intervention
(B) Cannot propagate
(C) Only exist in memory
(D) Only affect files
Answer: (A) Can propagate without user intervention
Q#6: Denial-of-Service (DoS) attack is intended to:
(A) Make resources unavailable to legitimate users
(B) Steal passwords
(C) Encrypt data
(D) Hide malware
Answer: (A) Make resources unavailable to legitimate users
Q#7: Phishing attacks target:
(A) User credentials
(B) Disk space
(C) CPU usage
(D) File permissions
Answer: (A) User credentials
Q#8: Social engineering attacks exploit:
(A) Human psychology
(B) Disk sectors
(C) Network bandwidth
(D) CPU registers
Answer: (A) Human psychology
Q#9: A key principle in computer security is:
(A) Least privilege
(B) Maximum access
(C) Open access
(D) Unlimited privilege
Answer: (A) Least privilege
Q#10: Authentication ensures:
(A) Identity verification of users or systems
(B) File integrity
(C) Disk partitioning
(D) CPU scheduling
Answer: (A) Identity verification of users or systems
Q#11: Authorization ensures:
(A) Access control based on user rights
(B) CPU usage
(C) File allocation
(D) Network routing
Answer: (A) Access control based on user rights
Q#12: Multi-factor authentication may include:
(A) Password + token + biometrics
(B) Only password
(C) Only fingerprint
(D) Only security questions
Answer: (A) Password + token + biometrics
Q#13: Confidentiality is achieved by:
(A) Encryption
(B) Backup
(C) Journaling
(D) RAID
Answer: (A) Encryption
Q#14: Integrity ensures that:
(A) Data is not altered without authorization
(B) CPU is used efficiently
(C) Disk is fragmented
(D) Network is encrypted
Answer: (A) Data is not altered without authorization
Q#15: Availability ensures:
(A) Authorized users can access resources when needed
(B) Only read access is allowed
(C) File size is limited
(D) Network is blocked
Answer: (A) Authorized users can access resources when needed
Q#16: Symmetric encryption uses:
(A) Same key for encryption and decryption
(B) Two different keys
(C) No key
(D) Hash only
Answer: (A) Same key for encryption and decryption
Q#17: Asymmetric encryption uses:
(A) Public and private key pair
(B) Single key
(C) Disk sectors
(D) Password only
Answer: (A) Public and private key pair
Q#18: A hash function is used for:
(A) Data integrity verification
(B) Disk formatting
(C) Memory allocation
(D) CPU scheduling
Answer: (A) Data integrity verification
Q#19: Digital signatures ensure:
(A) Authenticity and integrity of a message
(B) Faster processing
(C) Disk optimization
(D) Password recovery
Answer: (A) Authenticity and integrity of a message
Q#20: SSL/TLS provides:
(A) Secure communication over networks
(B) Disk fragmentation
(C) File copying
(D) Memory allocation
Answer: (A) Secure communication over networks
Q#21: Firewalls are used to:
(A) Control incoming and outgoing network traffic
(B) Encrypt files
(C) Backup data
(D) Monitor CPU
Answer: (A) Control incoming and outgoing network traffic
Q#22: Intrusion Detection Systems (IDS) are used to:
(A) Detect unauthorized access
(B) Allocate disk space
(C) Manage CPU
(D) Encrypt files
Answer: (A) Detect unauthorized access
Q#23: Intrusion Prevention Systems (IPS) can:
(A) Detect and prevent attacks
(B) Only detect attacks
(C) Only encrypt files
(D) Only manage memory
Answer: (A) Detect and prevent attacks
Q#24: Access Control Lists (ACLs) specify:
(A) Which users can access which resources
(B) File size
(C) Disk sectors
(D) CPU priority
Answer: (A) Which users can access which resources
Q#25: Role-Based Access Control (RBAC) assigns permissions:
(A) Based on user roles
(B) Randomly
(C) Based on disk usage
(D) Based on CPU
Answer: (A) Based on user roles
Q#26: Mandatory Access Control (MAC) enforces:
(A) Centralized security policy
(B) User choice
(C) Disk allocation
(D) CPU scheduling
Answer: (A) Centralized security policy
Q#27: Discretionary Access Control (DAC) allows:
(A) Owner to set access permissions
(B) Central policy only
(C) Automatic encryption
(D) CPU priority
Answer: (A) Owner to set access permissions
Q#28: Buffer overflow attacks exploit:
(A) Memory boundaries
(B) Disk sectors
(C) CPU registers
(D) Network bandwidth
Answer: (A) Memory boundaries
Q#29: SQL injection attacks target:
(A) Databases
(B) Memory only
(C) CPU registers
(D) Disk space
Answer: (A) Databases
Q#30: Cross-Site Scripting (XSS) attacks target:
(A) Web applications
(B) Disk sectors
(C) CPU cores
(D) File system
Answer: (A) Web applications
Q#31: Malware that records keystrokes is called:
(A) Keylogger
(B) Trojan
(C) Worm
(D) Virus
Answer: (A) Keylogger
Q#32: Rootkits are designed to:
(A) Hide malware from detection
(B) Speed up CPU
(C) Manage memory
(D) Encrypt files
Answer: (A) Hide malware from detection
Q#33: Sandboxing is used to:
(A) Isolate applications to prevent system damage
(B) Encrypt files
(C) Backup disks
(D) Schedule CPU
Answer: (A) Isolate applications to prevent system damage
Q#34: Security patches are released to:
(A) Fix vulnerabilities
(B) Increase disk size
(C) Reduce memory usage
(D) Improve CPU speed
Answer: (A) Fix vulnerabilities
Q#35: A man-in-the-middle attack intercepts:
(A) Communication between sender and receiver
(B) Disk blocks
(C) CPU instructions
(D) File permissions
Answer: (A) Communication between sender and receiver
Q#36: Encryption keys must be:
(A) Kept secret
(B) Shared publicly
(C) Stored in disk only
(D) Visible in memory
Answer: (A) Kept secret
Q#37: Biometric authentication may include:
(A) Fingerprint, face recognition, retina scan
(B) Password only
(C) Disk location
(D) File size
Answer: (A) Fingerprint, face recognition, retina scan
Q#38: Trojan horses are often spread via:
(A) Email attachments or downloads
(B) CPU cores
(C) Disk sectors
(D) File descriptors
Answer: (A) Email attachments or downloads
Q#39: Which protocol is used for secure email?
(A) S/MIME
(B) HTTP
(C) FTP
(D) SNMP
Answer: (A) S/MIME
Q#40: Digital certificates are issued by:
(A) Certificate Authority (CA)
(B) CPU manufacturer
(C) Disk vendor
(D) Network router
Answer: (A) Certificate Authority (CA)
Q#41: Honeypots are used to:
(A) Trap attackers and study their behavior
(B) Encrypt files
(C) Backup data
(D) Speed up CPU
Answer: (A) Trap attackers and study their behavior
Q#42: Security policies define:
(A) Rules and practices to protect resources
(B) Disk block allocation
(C) CPU scheduling
(D) Memory management
Answer: (A) Rules and practices to protect resources
Q#43: Two common types of authentication are:
(A) Knowledge-based and token-based
(B) Disk-based and CPU-based
(C) Memory-based and network-based
(D) File-based and inode-based
Answer: (A) Knowledge-based and token-based
Q#44: Public key infrastructure (PKI) supports:
(A) Secure communication using asymmetric cryptography
(B) Disk defragmentation
(C) Memory management
(D) CPU scheduling
Answer: (A) Secure communication using asymmetric cryptography
Q#45: Replay attacks involve:
(A) Reusing captured data to trick systems
(B) Encrypting files
(C) Disk fragmentation
(D) CPU priority inversion
Answer: (A) Reusing captured data to trick systems
Q#46: The principle of “Separation of Duties” helps:
(A) Reduce risk of fraud or misuse
(B) Encrypt files
(C) Improve disk speed
(D) Backup data
Answer: (A) Reduce risk of fraud or misuse
Q#47: Security audit is:
(A) Review of system activities and logs to detect security breaches
(B) Disk cleanup
(C) CPU profiling
(D) File indexing
Answer: (A) Review of system activities and logs to detect security breaches
Q#48: Session hijacking targets:
(A) Active network sessions
(B) Disk sectors
(C) CPU cores
(D) File permissions
Answer: (A) Active network sessions
Q#49: Anti-virus software performs:
(A) Detection, prevention, and removal of malware
(B) Disk allocation
(C) CPU scheduling
(D) Memory mapping
Answer: (A) Detection, prevention, and removal of malware
Q#50: Security in operating systems is a combination of:
(A) Policies, mechanisms, and assurance
(B) CPU scheduling and memory allocation
(C) Disk formatting
(D) File copying
Answer: (A) Policies, mechanisms, and assurance