A Hardware Security Module (HSM) is essentially a chip on the motherboard of the computer that provides cryptographic services.

Self-encrypting HDD is commonly found in copiers and multifunction printers as well as point-of-sale systems used in government, financial, and medical environments.

Digital signatures actually only show that the public key labeled as belonging to the person was used to encrypt the digital signature.

Defense in depth, or layered security, involves the use of multiple types of network hardware within a network.​

Public keys can be stored by embedding them within digital certificates, while private keys can be stored on the user’s local system.

A block cipher works on a single character at a time, and is faster than a stream cipher.

The Encapsulating Security Payload (ESP) protocol ensures IPsec's confidentiality.​

Workgroup switches must work faster than core switches.

Digital certificates cannot be used to identify objects other than users.

Security is enhanced by subnetting a single network into multiple smaller subnets in order to isolate groups of hosts.

Steganography hides the existence of data within images by dividing and hiding portions of a file within the image.

SSL and TLS keys of what length are generally considered to be strong?

What is the name for a computer or application program that intercepts user requests from the internal secure network and then processes that request on behalf of the user?

An administrator has two servers that host the same web content, but only one server is utilized at a given time. What can be configured to make use of both servers in a manner that is transparent to the end users?

A firewall that keeps a record of the state of a connection between an internal computer and an external device is using what technology below?

In cryptography, which of the five basic protections ensures that the information is correct and no unauthorized person or malicious software has altered that data?

The IPv4 protocol uses IP addresses which are how many bytes in length?

A sensitive connection between a client and a web server uses what class of certificate?

A web server must be accessible to untrusted outside users. What can be done to isolate this host and any additional hosts with similar requirements from more secured hosts on a network?

An early networking device that functioned at layer 1 of the OSI model and added devices to a single segment is known as which of the following choices?

Which type of cryptographic algorithm takes an input string of any length, and returns a string of any requested variable length?

A document that describes in detail how a CA uses and manages certificates, as well as how end users register for a digital certificate, is known as?

The management in your corporate office want to group users on the network together logically even though they are attached to separate network switches. How can this be done?

The process by which keys are managed by a third party, such as a trusted CA, is known as?

What is the name of the open source asymmetric cryptography system that runs on Windows, UNIX, and Linux systems, and is compatible with PGP?

What technology enables authorized users to use an unsecured public network, such as the Internet, as if it were a secure private network?

Select below the term that is used to describe a trusted third-party agency that is responsible for issuing digital certificates:

The simplest type of stream cipher, one in which one letter or character is exchanged for another, is known as what?

What is the name for an organization that receives, authenticates, and processes certificate revocation requests?

The asymmetric cryptography algorithm most commonly used is:

The SHA-1 hashing algorithm creates a digest that is how many bits in length?

What cryptographic method, first proposed in the mid-1980s, makes use of sloping curves instead of large prime numbers?

The NTRUEncrypt cryptographic algorithm makes use of which of the following cryptographic techniques?

On what principle did Julius Caesar's cryptographic messages function?

_________________ is a technique that allows a private IP addresses to be used on the Internet with a single public IP address.

Internet ____________________ filters monitor Internet traffic and block access to preselected Web sites and files

A ______________ is a worker who work occasionally or regularly from a home office.

Key ____________________ dates prevent an attacker who may have stolen a private key from being able to decrypt messages for an indefinite period of time.

A framework for managing all of the entities involved in creating, storing, distributing, and revoking digital certificates

A trusted third-party agency that is responsible for issuing digital certificates​

A trust model with one CA that acts as a facilitator to interconnect all other CAs