APPENDIX

Self Test

Chapter 2, Domain 1: Access Control

1. What type of password cracking attack will always be successful?

A. Brute force

B. Dictionary

C. Hybrid

D. Rainbow table

Correct Answer and Explanation: A. Brute-force attacks are always successful, given enough time.

Incorrect Answers and Explanations: B, C, and D. B is incorrect because dictionary attacks will only crack passwords that exist in a dictionary or word list. C is incorrect because hybrid attacks append, prepend, or alter characters in words from a dictionary. D is incorrect because a rainbow table uses precomputed hashes. Not all rainbow tables are complete, and rainbow tables are less effective against salted hashes.

2. What is the difference between password cracking and password ...

Get CISSP Study Guide, 2nd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.