Network Security Essentials Applications and Standards 5th Edition By Willaim Stallings – Test Bank


Pay And Download


Complete Test Bank With Answers




Sample Questions Posted Below






Chapter 5:  Network Access Control and Cloud Security



TRUE OR FALSE                                                                       



T          F          1.  Network access control authenticates users logging into the

network and determines what data they can access and actions

they can perform.


T          F          2.  Access requestors are also referred to as clients.


T          F          3.  A network access server does not include its own authentication



T          F          4.  VLANs are common NAC enforcement methods.


T          F          5.  The Extensible Authentication Protocol supports multiple

authentication methods.


T          F          6.  EAPOL operates at the network layers and makes use of an IEEE

802 LAN, such as Ethernet or Wi-Fi, at the link level.


T          F          7.  There is a decreasing trend in organizations to move information

technology operations to a cloud computing infrastructure.


T          F          8.  Cloud computing gives you the ability to expand and reduce

resources according to your specific service requirement.


T          F          9.  The cloud provider in a private cloud infrastructure is responsible

for both the infrastructure and the control.


T          F          10. The NIST cloud computing reference architecture focuses on the

requirements of “what” cloud services provide, not a “how to”

design solution and implementation.


T          F          11. A cloud broker is useful when cloud services are too complex for a

cloud consumer to easily manage.


T          F          12.  For many clients, the most devastating impact from a security

breach is the loss or leakage of data.


T          F          13.  In using cloud infrastructures, the client necessarily cedes control

to the CP on a number of issues that may affect security.


T          F          14.  The threat of data compromise decreases in the cloud.


T          F          15.  Data must be secured while at rest, in transit, and in use, and

access to the data must be controlled.





  1. ___________ is an umbrella term for managing access to a network.


  1. NAS B.  ARC


  1. NAC D.  RAS


  1. The _________ is the node that is attempting to access the network and may be any device that is managed by the network access control system.


  1. AR B.  RAS


  1. IP D.  PS


  1. The __________ determines what access should be granted.


  1. authentication server B.  policy server


  1. supplicant D.  access requestor


  1. The __________ is an Internet protocol that enables dynamic allocation of IP addresses to hosts.


  1. VLAN B.  IEEE 802.1X


  1. EAPS D.  DHCP


  1. _________ is a client computer that is attempting to access a network.


  1. EAP peer B.  PSK


  1. NAC                                     D.  RAS


  1. Broad network access, measured service, resource pooling, and rapid elasticity are essential characteristics of ___________.


  1. PaaS B.  network access control


  1. cloud computing D.  EAP-TLS


  1. _________ saves the complexity of software installation, maintenance, upgrades, and patches.


  1. IaaS B.  SaaS


  1. EAP D.  DHCP


  1. In effect, ________ is an operating system in the cloud.


  1. IEEE 802.1X B.  PaaS


  1. IaaS D.  DHCP


  1. _________ enables customers to combine basic computing services, such as number crunching and data storage, to build highly adaptable computer systems.


  1. IaaS B.  EAP peer


  1. CP D.  SaaS


  1. With a _________ infrastructure, the cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.


  1. hybrid cloud B.  private cloud


C  public cloud                                   D.  community cloud


  1. With a _________ infrastructure, the cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns.


  1. community cloud B.  public cloud


  1. private cloud D.  hybrid cloud


  1. A _________ is a person or organization that maintains a business relationship with, and uses service from, cloud providers.


  1. cloud auditor B.  cloud broker


  1. cloud carrier D.  cloud consumer



  1. A ________ is a person, organization, or entity responsible for making a service available to interested parties.


  1. cloud broker B.  cloud auditor


  1. cloud provider D.  cloud carrier


  1. A ________ is a party that can conduct independent assessment of cloud service, information sytem operations, performance, and security of the cloud implementation.


  1. cloud auditor B.  cloud carrier


  1. cloud broker D.  all of the above


  1. _________ is the provision of security applications and services via the cloud either to cloud-based infrastructure and software or from the cloud to the customers’ on-premise systems.


  1. IaaS B.  PaaS


  1. SaaS D.  SecaaS







  1. The ___________ functions as an access control point for users in remote locations connecting to an enterprise’s internal network.


  1. __________ methods are the actions that are applied to ARs to regulate access to the enterprise network.


  1. A __________ provides a form of NAC by allowing or denying network traffic between an enterprise host and an external user.


  1. An __________ is a server computer that negotiates the use of a specific EAP method with an EAP peer, validates the EAP peer’s credentials, and authorizes access to the network.


  1. A _________ is an entity at one end of a point-to-point LAN segment that seeks to be authenticated by an autheticator attached to the other end of that link.




  1. _________ is a model for enabling ubiquitous, convenient, on-demand network

access to a shared pool of configurable computing resources that can be

rapidly provisioned and released with minimal management effort or service

provider interaction.


  1. NIST defines three service models, which can be viewed as nested service alternatives: software as a service, platform as a service, and _________ as a service.


  1. With a ________ infrastructure, the cloud infrastructure is a composition of two or more clouds that remain unique entities but are bound together by standardized or proprietary technology that enables data and application portability.


  1. A _________ in an intermediary that provides connectivity and transport of cloud services from CP’s to cloud consumers.


  1. ___________ includes people, processes, and systems that are used to manage access to enterprise resources by assuring that the identity of an entity is verified, and then granting the correct level of access based on this assured identity.


  1. __________ are third party audits of cloud services.


  1. _________ defines how the TLS protocol can be encapsulated in EAP messages.


  1. ____________ is an EAP method for mutual authentication and session key derivation using a Pre-Shared Key.


  1. An _________ is an access point or NAS that requires EAP authentication prior to granting access to a network.


  1. The Cloud Security Alliance defines _______ as the provision of security applications and services via the cloud either to cloud-based infrastructure and software or from the cloud to the customers’ on-premise systems.




Chapter 5:  Network Access Control and Cloud Security





  1. T
  2. T
  3. F
  4. T
  5. T
  6. T
  7. F
  8. T
  9. F
  10. T
  11. T
  12. T
  13. T
  14. F
  15. T







  1. C
  2. A
  3. B
  4. D
  5. A
  6. C
  7. B
  8. B
  9. A
  10. C
  11. A
  12. D
  13. C
  14. A
  15. D








  1. Network access server (NAS)
  2. Enforcement
  3. firewall
  4. authentication server
  5. supplicant
  6. Cloud computing
  7. infrastructure
  8. hybrid cloud
  9. cloud carrier
  10. Identity and access management (IAM)
  11. Security assessments
  12. EAP-TLS
  13. EAP-GPSK
  14. EAP authenticator
  15. Security as a service (SecaaS)

There are no reviews yet.

Add a review

Be the first to review “Network Security Essentials Applications and Standards 5th Edition By Willaim Stallings – Test Bank”

Your email address will not be published. Required fields are marked *

  • No products in the cart.