PRE-ASSESSMENT: INFORMATION ASSURANCE AND SECURITY (BFO2) PBFO

8/6/2019 WGU Student Portal | Coaching Report


PRE-ASSESSMENT: INFORMATION ASSURANCE AND SECURITY (BFO2) PBFO
Attempt #2
Status: Passed


1.

Which two passwords are the weakest?


YOUR CORRECT
ANSWER ANSWER


Pa$$w0Rd%^78

Love@$MySon80

C@1Il@VEm1

Password1234


2.

Which two secure methods should be used to keep track of passwords?


YOUR CORRECT
ANSWER ANSWER


Encrypt text files of them on the user’s workstation

Store them on a sticky note in a convenient spot

Share them with a trusted manager or coworker

Organization-approved password storage software




https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 1/34

,8/6/2019 WGU Student Portal | Coaching Report

3.

Which groups typically report to the chief security officer (CSO)?


YOUR CORRECT
ANSWER ANSWER


Security engineering and operations

Physical and software security

Audit and incident response

Facilities and information technology functions


4.

A company is considering which controls to buy to protect an asset.

What should the price of the controls be in relation to the cost of the asset?


YOUR CORRECT
ANSWER ANSWER


Less than the annual loss expectancy

More than the annual loss expectancy

Equal to the cost of the asset

More than the cost of the asset


5.

How many keys are used in asymmetric encryption?


https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 2/34

,8/6/2019 WGU Student Portal | Coaching Report

YOUR CORRECT
ANSWER ANSWER


No keys are used to encrypt and decrypt a message.

One key is used to encrypt and decrypt a message.

Two keys are used to encrypt and decrypt a message.

Three keys are used to encrypt and decrypt a message.


6.

Which protocol is a variant of a standard web transfer protocol that adds a layer of security on the data in transit using a secure socket layer?


YOUR CORRECT
ANSWER ANSWER


HTTPS

HTTP

FTP

SFTP


7.

Which description characterizes symmetric cryptography?


YOUR CORRECT
ANSWER ANSWER


The same key is used to lock and unlock the cipher.



https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 3/34

, 8/6/2019 WGU Student Portal | Coaching Report

YOUR CORRECT
ANSWER ANSWER


Two separate but unrelated keys are used to unlock the cipher.

Two separate and related keys are used to unlock the cipher.

Keys are unnecessary when using symmetric cryptography to unlock a cipher.


8.

An employee uses a secure hashing algorithm for message integrity. The employee sends a plain text message with the embedded hash to a
colleague. A rogue device receives and retransmits the message to its destination. Once received and checked by the intended recipient, the
hashes do not match.

Which STRIDE concept has been violated?


YOUR CORRECT
ANSWER ANSWER


Tampering

Repudiation

Elevation of privilege

Denial-of-service


9.

An attacker accesses private emails between the company’s CISO and board members. The attacker then publishes the emails online.

Which type of an attack is this, according to the STRIDE model?


YOUR CORRECT
ANSWER ANSWER



https://my.wgu.edu/coaching-report/preassessment-report/v1/studentPidm/995900/assessmentCode/PBFO/testDate/1555886878 4/34