CIS403_Quiz_2 - Quiz #2 1. In general terms, what are four...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
Quiz #2 1. In general terms, what are four means of authenticating a user's identy? Something they know (mother's maiden name) something they have (CAC card) something they are (fingerprint) something they do (voice pattern recognition) 2. List and briefly describe the principle threats to the secrecy of passwords. Offline dictionary attack : hackers will gain access to the system password file and compare the password hashes to the hashes of commonly known passwords. Specific account attack: the attacker will continue to submit password guesses for a specific account until they find the correct password. Popular password attack: the attacker will choose a popular password and try the password against several user accounts. Password guessing against single user : the attacker will use knowledge gained from the user and password policy to try and guess a users password to gain access. Workstation hijacking : the attacker will wait till a logged-in workstation is unattended. Exploiting user mistakes : the attacker will use and exploit the user's mistake of writing their password down somewhere on/in the desk if the password was assigned by the system. Exploiting multiple password use
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 3

CIS403_Quiz_2 - Quiz #2 1. In general terms, what are four...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online