var quiz = {
	questions : [
		{
			text : 'Brute-force attacks are used most often against which types of access control?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Biometrics and passwords',
				'B.	Passwords and cryptographic keys',
				'C.	Cognitive passwords and biometrics',
				'D.	Cryptographic keys and cognitive passwords'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>\nPasswords and cryptographic keys are susceptible to brute-force attacks. A brute-force attacker tries every possible sequence of characters or bits in order to achieve his or her goal. Biometric and cognitive passwords can also be vulnerable to brute-force attacks, but are not as commonly attacked in this fashion.',
			moreInfo : ''
		},
		{
			text : 'Passwords are one of many types of authentication mechanisms. Which is not true of a password?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Can be automatically created by a password generator',
				'B.	Relies heavily on the discipline of the user and the administrator',
				'C.	Is the most insecure of access controls',
				'D.	Is moderately used'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>\nWhile passwords are insecure and many times implemented incorrectly, they remain the most popular authentication control used today. Because they impose little burden to the user, and are simple and inexpensive to implement, companies continue to employ passwords within their systems and networks. Passwords are not used moderately, but very frequently.',
			moreInfo : ''
		},
		{
			text : 'A single sign-on technology that offers symmetric and asymmetry keys for encryption and uses privileged attribute certificates for authentication is called ___________.',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Thin clients',
				'B.	SESAME',
				'C.	Kerberos',
				'D.	Cryptographic keys',
				'E.	Directory services'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>\nSecure European System for Applications in a Multivendor Environment (SESAME) is actually a technology built upon the Kerberos foundation. However, SESAME provides different capabilities and uses public key cryptography. SESAME differs from Kerberos by using privileged attribute certificates (PAC) for authentication instead of the Kerberos ticket exchange methodology.',
			moreInfo : ''
		},
		{
			text : 'Which of the following biometric methods obtains the patterns and colors around a person\'s pupil?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Iris scan',
				'B.	Palm scan',
				'C.	Retina pattern',
				'D.	Fingerprint'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>\nAn iris scan system records the colors and patterns around a pupil of a person\'s eye. This is different than a retina scan, which records the blood vessel patterns at the back of the eye.',
			moreInfo : ''
		},
		{
			text : 'Security labels are used in what type of model?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Role-based access control model',
				'B.	Mandatory access control model',
				'C.	Discretionary access control model',
				'D.	Military access control model'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>\nMandatory access control (MAC) models use security labels to hold classification information assigned objects. If a user wants to access an object, she must have an equal or greater level of clearance. Although military organizations commonly use security labels, the answer "military access control model" doesn\'t really exist.',
			moreInfo : ''
		},
		{
			text : 'Companies have different ways of coming up with passwords to be used for authentication. Which of the following best describes a password advisor?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	A potential attack using a dictionary program',
				'B.	An automated system that creates long-stringed passwords for use, which are difficult to remember',
				'C.	A list of questions for the user to answer',
				'D.	A program that provides users with passwords that are easy to remember and difficult to crack'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>\nA password advisor is a very effective way of improving the creation of new passwords. This program allows the user to select their own password, which means they will be more likely to remember it. However, the advisor creates options for the user that are more out-of-the-ordinary than typical user-chosen codes.',
			moreInfo : ''
		},
		{
			text : 'Which of the following centralized access control protocols would a security professional choose if his or her network consisted of multiple protocols and had users connecting via wireless and wired transmissions?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	RADIUS',
				'B.	TACACS+',
				'C.	Diameter',
				'D.	Kerberos'
			],
			answer : 2,
			score : 1,
			expandedAnswer : '<br>\nDiameter is a more diverse centralized access control administration technique than RADIUS and TACACS+ because it supports a wide range of protocols that often accompany wireless technologies. RADIUS supports only PPP and SLIP connections and TACACS+ is a RADIUS-like methodology that is Cisco-proprietary. Kerberos is a single sign-on technology, not a centralized access control administration protocol.',
			moreInfo : ''
		},
		{
			text : 'Passwords are one of the most sought-after items by attackers because of the level of access they can provide. Which of the following is the least effective when trying to protect against password attacks?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Ensure six characters are used',
				'B.	Do not allow passwords to be shown in cleartext',
				'C.	Use dictionary attack tools to identify weaknesses',
				'D.	Implement encryption and hashing algorithms'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>\nWhile password generators protect against dictionary attacks, they often force users to write down their password, which creates a new vulnerability. Having an office full of sticky notes with scribbled passwords is an attractive atmosphere for a potential hacker.',
			moreInfo : ''
		},
		{
			text : 'There are security issues when a company allows users to have too many rights and permissions. Allowing a user the absolute minimum rights necessary when accessing a network is referred to as what?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Separation of duties',
				'B.	Least privilege',
				'C.	Full disclosure',
				'D.	Discretionary access control'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>\nLeast privilege is a security principle that limits users\' access only to resources that are mandatory in order to fulfill their responsibilities. A common breach of least privilege is when an employee transfers to another department but maintains his previous access permissions even though it is not necessary. This is referred to as authorization creep.',
			moreInfo : ''
		},
		{
			text : 'Which of the following access control types is considered a "soft" measure at protecting an organization as a whole?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Preventive – Administrative',
				'B.	Preventive – Physical',
				'C.	Predictive',
				'D.	Corrective'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>\nOrganizations use a variety of techniques to protect themselves, such as employee background checks, drug screens, security training, policies, procedures, standards, and hiring and firing policies. These types of actions fall under the preventive --administrative category, which is often referred to as \'soft\' access controls.',
			moreInfo : ''
		},
		{
			text : 'Which of the following best describes Extended TACACS (XTACACS)?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	An Internet standard',
				'B.	Combines authentication and authorization',
				'C.	Separates authentication, authorization and auditing processes',
				'D.	Has three-factor user authentication'
			],
			answer : 2,
			score : 1,
			expandedAnswer : '<br>\nTerminal Access Controller Access Control System has three versions: TACACS, XTACACS, and TACACS+. Each version offers different functionality, but it is XTACACS that separates authentication, authorization, and auditing processes.',
			moreInfo : ''
		},
		{
			text : 'Katie is an IT administrator who needs to set up an access control system that designates users\' permission to control some files but keeps database and network resource permissions in the hands of the IT organization. What type of access control administration would she employ?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Hybrid',
				'B.	Decentralized',
				'C.	Centralized',
				'D.	Security labels'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>\nHybrid administration is a common access control method used today. It combines the centralized and decentralized approaches. Individual users may be able to dictate who can access their shares and local files, but the IT administration would control access to file servers, network printers, and network devices.',
			moreInfo : ''
		},
		{
			text : 'Guard dogs and closed-circuit television would be examples of what type of access control?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Recovery',
				'B.	Corrective',
				'C.	Preventive -- Technical',
				'D.	Preventive -- Physical'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>\nGuard dogs and CCTV are mechanisms used to protect the physical surroundings of a building or campus. Other examples of preventive physical controls are fences, alarm systems, and access badges.',
			moreInfo : ''
		},
		{
			text : 'There are several different types of single sign-on technologies. Which is the simplest technology?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Kerberos',
				'B.	Scripting',
				'C.	SESAME',
				'D.	KDC'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>\nScripting is a very simplistic method of achieving single sign-on capabilities. A command string is written for each user containing his or her credentials. When he or she attempts to access a device, the script is initiated, which provides the necessary sign-on information to allow access. Kerberos and SESAME are more complicated architecture systems that must be installed on user machines in order to communicate with a central server. KDC is the core component within Kerberos.',
			moreInfo : ''
		},
		{
			text : 'A dynamic password is another name for what authentication mechanism?',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'A.	Cognitive password',
				'B.	Smart card',
				'C.	Passphrase',
				'D.	One-time password'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>\nOne-time or dynamic passwords provide an increased level of security, as they are valid for only one logon transmission. One-time passwords can be generated by a token device. One-time passwords help prevent replay attacks.',
			moreInfo : ''
		}
	]
};