Which of the following is true related to a subject?
The subject is always the entity that receives information about or data from an object.
The subject is always the entity that provides or hosts information or data.
A subject is always a user account.
A single entity can never change roles between subject and object.
The primary goal of controlling access to assets/system is ?
Prevent unauthorized access to subjects.
Preserve confidentiality, integrity, and availability of systems and data.
Ensure that all subjects are authenticated.
Ensure that only valid objects can authenticate on a system.
Which of the following provides authentication based on a physical characteristic of a subject?
Biometrics
Account ID
Token
PIN
Which one below is an example of strong password
IL*mhsIwb@793
123456
qwert123456
Dictonary
MFA authentication Factors
Something you know
Something you have
Something you are
Something you love
Which ones belong to Web-based attack
Denial of Service (DoS)
Backdoor
Phishing
Cross-Site Scripting (XSS)
Which ones are famous phising techniques?
Spear
Whaling
Shark
Crocodile
You're allowed to share your password to someone who does have access to system/asset
Virus is self-replicated?
You need to forward it to security team if you suspect that the email might include maleware