HNS Module 03 Exam: Software Protection

1. What is the definition of User Access Control (UAC)?

A. A system to control physical access to servers B. Software for managing network traffic C. The capacity of an organization to allow or deny a user or object access to systems and resources D. A tool for encrypting sensitive data

2. How does User Account Control (UAC) primarily help in preventing damage to a PC?

A. By preventing malware and helping deploy better-managed desktops B. By automatically deleting old files C. By enhancing graphic performance D. By optimizing hard drive space

3. What are "legacy apps" in the context of UAC?

A. Applications designed for modern security standards B. Programs that run without any special permissions C. Apps that only work on older operating systems D. Apps not specifically designed with security in mind, often requiring additional permissions

4. What are the three main components of User Access Control (UAC)?

A. Installation, Configuration, and Maintenance B. Identification, Authentication, and Accountability C. Hardware, Software, and Network D. Encryption, Decryption, and Hashing

5. Which of the following is NOT an identifier used for object access in UAC identification policies?

A. Computer names B. MAC addresses C. IP (Internet Protocol) addresses D. Email content

6. Which type of account name is explicitly discouraged for identification policies?

A. Unique user names B. Names based on individual roles C. System-generated identifiers D. Commonly used or shared account names like 'admin' or 'root'

7. What type of authentication is based on "some physical characteristic or biometric identification"?

A. Password-based authentication B. Hardware-based authentication (e.g., smart card) C. Biometric authentication (e.g., fingerprints) D. Knowledge-based authentication (e.g., security questions)

8. In the UAC process, what is the relationship between parent and child processes regarding access tokens?

A. Parent processes always have higher integrity levels than child processes. B. Child processes automatically get a new, independent access token. C. Child processes inherit the user's access token from the parent, and both must have the same integrity level. D. Parent processes always require administrative privileges.

9. What defines a "low" integrity application in Windows, according to the document?

A. An application that modifies system data. B. An application that installs new drivers. C. An application that only interacts with user-level files. D. An application that performs tasks that could potentially compromise the operating system, like a Web browser.

10. When an administrator logs on to a Windows computer with UAC enabled, how many access tokens are created?

A. Two: a standard user access token and an administrator access token. B. One: only the administrator access token. C. One: only the standard user access token. D. Three: one for each UAC component.

11. Which process is identified as the parent process from which all other user-initiated processes inherit their access token in Windows?

A. Svchost.exe B. Taskmgr.exe C. Explorer.exe D. Winlogon.exe

12. What is the recommended and more secure method of running Windows 10 or Windows 11 in a managed environment?

A. Always run as a local administrator. B. Disable UAC completely. C. Use a domain administrator account for daily tasks. D. Make your primary user account a standard user account.

13. Which UAC prompt is presented when an administrator in Admin Approval Mode attempts to perform a task requiring administrative access?

A. The consent prompt B. The credential prompt C. The security alert D. The user account modification prompt

14. Which UAC prompt is presented when a standard user attempts to perform a task requiring administrative access?

A. The consent prompt B. The credential prompt C. The approval prompt D. The administrative bypass prompt

15. UAC elevation prompts are color-coded based on which factor?

A. The size of the executable file B. The integrity level of the application C. The file's publisher (Windows, verified, or unverified) D. The number of administrative tasks the app performs

16. What are security policy settings primarily used for?

A. Enhancing system performance B. Managing software installations only C. Controlling user interface themes D. Protecting resources on a device or network

17. Which type of Account Policy determines the conditions and length of time that an account will be locked out of the system?

A. Password Policy B. Account Lockout Policy C. Kerberos Policy D. Audit Policy

18. What do stricter password policies dictate regarding password content?

A. They must be short and easy to remember. B. They should contain common words related to the user. C. They must contain a minimum number of characters, including numbers and capital letters. D. They should be shared among team members for convenience.

19. What is multifactor authentication?

A. Combining two forms of authentication, such as a password and a smart card. B. Using a single, very long password. C. Authenticating only once per day. D. Authenticating with different systems simultaneously.

20. According to the document, which authentication method is considered the most secure and reliable?

A. User name and password B. Smart cards C. Third-party authentication components D. Biometrics

21. What is the broader term used to refer to "destructive software" as defined in the document?

A. Malware B. Utility software C. Firmware D. Application software

22. Which of the following describes a computer virus?

A. Software designed for system optimization. B. Malicious code designed to replicate itself when introduced into a computing environment. C. A program that monitors network traffic. D. A tool for creating secure backups.

HNS Module 3 Exam: Software Protection

Exam Results