HEC USAT-CS (Computer Science) computer science: Network Security MCQs

Practice Network Security MCQs for HEC USAT-CS (Computer Science) computer science — topic-wise sets with solved answers.

HEC USAT-CS (Computer Science) computer science: Network Security MCQs — sample questions

  1. Question 1

    Q1. What is the primary purpose of a firewall in network security?

    • A) To detect and prevent intrusions
    • B) To encrypt data transmitted over the network
    • C) To control incoming and outgoing network traffic
    • D) To authenticate users accessing the network

    Answer: To control incoming and outgoing network traffic

    Explanation: A firewall controls incoming and outgoing network traffic based on predetermined security rules, acting as a barrier between a trusted network and an untrusted network.

  2. Question 2

    Q2. Which protocol is commonly used for secure web browsing?

    • A) HTTP
    • B) FTP
    • C) HTTPS
    • D) SSH

    Answer: HTTPS

    Explanation: HTTPS (Hypertext Transfer Protocol Secure) is used for secure web browsing as it encrypts data between the client and server using SSL/TLS.

  3. Question 3

    Q3. What type of attack involves guessing or cracking passwords?

    • A) Phishing
    • B) Brute Force
    • C) SQL Injection
    • D) Cross-Site Scripting

    Answer: Brute Force

    Explanation: A brute force attack involves trying all possible combinations of passwords to guess the correct one, often using automated tools.

  4. Question 4

    Q4. Which of the following is a characteristic of a symmetric encryption algorithm?

    • A) It uses different keys for encryption and decryption
    • B) It is slower than asymmetric encryption
    • C) It uses the same key for encryption and decryption
    • D) It is less secure than asymmetric encryption

    Answer: It uses the same key for encryption and decryption

    Explanation: Symmetric encryption uses the same key for both encryption and decryption, making it faster but requiring secure key exchange.

  5. Question 5

    Q5. What is the term for a security threat that comes from within an organization?

    • A) Insider Threat
    • B) External Threat
    • C) Malware
    • D) Phishing

    Answer: Insider Threat

    Explanation: An insider threat refers to a security risk that originates from within an organization, often due to employees or contractors with authorized access.

  6. Question 6

    Q6. Which security measure involves creating a backup of data to prevent loss?

    • A) Encryption
    • B) Firewalls
    • C) Data Backup
    • D) Intrusion Detection

    Answer: Data Backup

    Explanation: Data backup involves creating copies of data to restore in case of data loss due to disasters, attacks, or system failures.

  7. Question 7

    Q7. What is the primary function of an Intrusion Detection System (IDS)?

    • A) To prevent intrusions
    • B) To detect and alert on potential intrusions
    • C) To encrypt network traffic
    • D) To authenticate users

    Answer: To detect and alert on potential intrusions

    Explanation: An IDS monitors network traffic for signs of unauthorized access or malicious activities and alerts administrators.

  8. Question 8

    Q8. Which type of malware demands payment in exchange for restoring access to data?

    • A) Virus
    • B) Worm
    • C) Ransomware
    • D) Trojan

    Answer: Ransomware

    Explanation: Ransomware is malware that encrypts a victim's files or locks their device and demands a ransom in exchange for the decryption key or unlock code.

  9. Question 9

    Q9. What is the term for the practice of tricking individuals into revealing sensitive information?

    • A) Social Engineering
    • B) Phishing
    • C) Spoofing
    • D) Sniffing

    Answer: Social Engineering

    Explanation: Social engineering involves manipulating individuals into divulging confidential information, often through psychological tactics.

  10. Question 10

    Q10. Which protocol is used for secure remote access to a network?

    • A) Telnet
    • B) SSH
    • C) HTTP
    • D) FTP

    Answer: SSH

    Explanation: SSH (Secure Shell) is a protocol used for secure remote access to a network, providing encrypted communication between the client and server.

  11. Question 11

    Q11. What is a common method used to protect passwords stored on a server?

    • A) Hashing
    • B) Encryption
    • C) Compression
    • D) Encoding

    Answer: Hashing

    Explanation: Hashing is a one-way process that transforms a password into a fixed-length string of characters, making it difficult to retrieve the original password.

  12. Question 12

    Q12. Which of the following is NOT a type of malware?

    • A) Virus
    • B) Firewall
    • C) Worm
    • D) Trojan

    Answer: Firewall

    Explanation: A firewall is a security system that controls incoming and outgoing network traffic, not a type of malware.

  13. Question 13

    Q13. What is the purpose of a digital signature in network security?

    • A) To encrypt data
    • B) To authenticate the sender's identity
    • C) To compress data
    • D) To detect malware

    Answer: To authenticate the sender's identity

    Explanation: A digital signature is used to verify the authenticity of a message or document, ensuring it comes from the claimed sender.

  14. Question 14

    Q14. Which security protocol is used to secure email communications?

    • A) PGP
    • B) SSL/TLS
    • C) IPSec
    • D) HTTP

    Answer: PGP

    Explanation: PGP (Pretty Good Privacy) is a data encryption and decryption program that provides secure email communications.

  15. Question 15

    Q15. What is a vulnerability in network security?

    • A) A weakness in a system that can be exploited
    • B) A strength in a system that prevents attacks
    • C) A type of malware
    • D) A security protocol

    Answer: A weakness in a system that can be exploited

    Explanation: A vulnerability is a weakness or flaw in a system that can be exploited by attackers to gain unauthorized access or disrupt service.

  16. Question 16

    Q16. Which of the following is an example of a denial-of-service (DoS) attack?

    • A) Flooding a network with traffic to overwhelm it
    • B) Stealing sensitive data from a database
    • C) Encrypting data to demand a ransom
    • D) Tricking users into revealing passwords

    Answer: Flooding a network with traffic to overwhelm it

    Explanation: A DoS attack involves flooding a network or system with traffic in an attempt to overwhelm it and make it unavailable to users.

  17. Question 17

    Q17. What is the primary goal of a security awareness training program?

    • A) To train users on how to use security software
    • B) To educate users on security best practices and threats
    • C) To implement security policies
    • D) To conduct vulnerability assessments

    Answer: To educate users on security best practices and threats

    Explanation: Security awareness training aims to educate users on security best practices, common threats, and how to identify and respond to security incidents.

  18. Question 18

    Q18. Which security measure involves segmenting a network into smaller sub-networks?

    • A) VLAN
    • B) VPN
    • C) Firewall
    • D) IDS

    Answer: VLAN

    Explanation: VLAN (Virtual Local Area Network) segmentation involves dividing a network into smaller, isolated segments to improve security and reduce the attack surface.

  19. Question 19

    Q19. What type of attack involves intercepting and altering communication between two parties?

    • A) Man-in-the-Middle
    • B) Denial-of-Service
    • C) Phishing
    • D) SQL Injection

    Answer: Man-in-the-Middle

    Explanation: A man-in-the-middle attack involves intercepting and potentially altering communication between two parties, often to eavesdrop or inject malware.

  20. Question 20

    Q20. Which of the following is a benefit of using a Virtual Private Network (VPN)?

    • A) Increased network speed
    • B) Enhanced security for remote access
    • C) Reduced network complexity
    • D) Improved network availability

    Answer: Enhanced security for remote access

    Explanation: A VPN provides a secure, encrypted connection for remote access to a network, protecting data from interception and eavesdropping.

Loading...