Practice Network Security MCQs for HEC USAT-CS (Computer Science) computer science — topic-wise sets with solved answers.
Q1. What is the primary purpose of a firewall in network security?
Answer: To control incoming and outgoing network traffic
Explanation: A firewall controls incoming and outgoing network traffic based on predetermined security rules, acting as a barrier between a trusted network and an untrusted network.
Q2. Which protocol is commonly used for secure web browsing?
Answer: HTTPS
Explanation: HTTPS (Hypertext Transfer Protocol Secure) is used for secure web browsing as it encrypts data between the client and server using SSL/TLS.
Q3. What type of attack involves guessing or cracking passwords?
Answer: Brute Force
Explanation: A brute force attack involves trying all possible combinations of passwords to guess the correct one, often using automated tools.
Q4. Which of the following is a characteristic of a symmetric encryption algorithm?
Answer: It uses the same key for encryption and decryption
Explanation: Symmetric encryption uses the same key for both encryption and decryption, making it faster but requiring secure key exchange.
Q5. What is the term for a security threat that comes from within an organization?
Answer: Insider Threat
Explanation: An insider threat refers to a security risk that originates from within an organization, often due to employees or contractors with authorized access.
Q6. Which security measure involves creating a backup of data to prevent loss?
Answer: Data Backup
Explanation: Data backup involves creating copies of data to restore in case of data loss due to disasters, attacks, or system failures.
Q7. What is the primary function of an Intrusion Detection System (IDS)?
Answer: To detect and alert on potential intrusions
Explanation: An IDS monitors network traffic for signs of unauthorized access or malicious activities and alerts administrators.
Q8. Which type of malware demands payment in exchange for restoring access to data?
Answer: Ransomware
Explanation: Ransomware is malware that encrypts a victim's files or locks their device and demands a ransom in exchange for the decryption key or unlock code.
Q9. What is the term for the practice of tricking individuals into revealing sensitive information?
Answer: Social Engineering
Explanation: Social engineering involves manipulating individuals into divulging confidential information, often through psychological tactics.
Q10. Which protocol is used for secure remote access to a network?
Answer: SSH
Explanation: SSH (Secure Shell) is a protocol used for secure remote access to a network, providing encrypted communication between the client and server.
Q11. What is a common method used to protect passwords stored on a server?
Answer: Hashing
Explanation: Hashing is a one-way process that transforms a password into a fixed-length string of characters, making it difficult to retrieve the original password.
Q12. Which of the following is NOT a type of malware?
Answer: Firewall
Explanation: A firewall is a security system that controls incoming and outgoing network traffic, not a type of malware.
Q13. What is the purpose of a digital signature in network security?
Answer: To authenticate the sender's identity
Explanation: A digital signature is used to verify the authenticity of a message or document, ensuring it comes from the claimed sender.
Q14. Which security protocol is used to secure email communications?
Answer: PGP
Explanation: PGP (Pretty Good Privacy) is a data encryption and decryption program that provides secure email communications.
Q15. What is a vulnerability in network security?
Answer: A weakness in a system that can be exploited
Explanation: A vulnerability is a weakness or flaw in a system that can be exploited by attackers to gain unauthorized access or disrupt service.
Q16. Which of the following is an example of a denial-of-service (DoS) attack?
Answer: Flooding a network with traffic to overwhelm it
Explanation: A DoS attack involves flooding a network or system with traffic in an attempt to overwhelm it and make it unavailable to users.
Q17. What is the primary goal of a security awareness training program?
Answer: To educate users on security best practices and threats
Explanation: Security awareness training aims to educate users on security best practices, common threats, and how to identify and respond to security incidents.
Q18. Which security measure involves segmenting a network into smaller sub-networks?
Answer: VLAN
Explanation: VLAN (Virtual Local Area Network) segmentation involves dividing a network into smaller, isolated segments to improve security and reduce the attack surface.
Q19. What type of attack involves intercepting and altering communication between two parties?
Answer: Man-in-the-Middle
Explanation: A man-in-the-middle attack involves intercepting and potentially altering communication between two parties, often to eavesdrop or inject malware.
Q20. Which of the following is a benefit of using a Virtual Private Network (VPN)?
Answer: Enhanced security for remote access
Explanation: A VPN provides a secure, encrypted connection for remote access to a network, protecting data from interception and eavesdropping.
Loading...