Database Security Attacks Quiz

What is the aim of the attacker in passive attacks?

To gather information (correct)
To cause harm to the computer system
To prevent customer requests
To alter data

How are passive attacks related to confidentiality?

They prevent data encryption
They threaten confidentiality (correct)
They are difficult to detect
They threaten integrity and availability

What type of attacks are easier to capture than prevent?

Passive attacks
Security threats
Active attacks (correct)
Generic attacks

How can passive attacks on information systems be prevented?

By encrypting the data (B) Signup and view all the answers

What makes passive attacks challenging to detect?

Their impact on confidentiality (D) Signup and view all the answers

In what category of attacks do threats to integrity and availability fall?

Active Attacks (A) Signup and view all the answers

Which of the following is NOT a type of attack that threatens confidentiality?

Modification (C) Signup and view all the answers

What is the primary purpose of using encryption methods in relation to snooping attacks?

To make data uninformative to other parties (A) Signup and view all the answers

Which of the following can be determined through traffic analysis, even when encryption is used?

The email addresses of the sender and receiver (A) Signup and view all the answers

What is the primary purpose of masquerading attacks?

To impersonate another person or entity (C) Signup and view all the answers

Which of the following attacks involves deleting or delaying the delivery of messages?

Modification (B) Signup and view all the answers

Which of the following statements is TRUE?

Valuable information can still be obtained through traffic analysis despite encryption (B) Signup and view all the answers

Which security threat involves an unauthorized subject gaining access to confidential information?

Interception (A) Signup and view all the answers

What type of security threat is represented by a denial of service attack?

Interruption (B) Signup and view all the answers

If an unauthorized party alters the values in a database, which security threat has occurred?

Modification (D) Signup and view all the answers

Which security threat involves the unauthorized addition of data or activities that should not exist?

Fabrication (D) Signup and view all the answers

If an unauthorized party copies files from a system, which security threat has occurred?

Interception (D) Signup and view all the answers

What type of security threat is represented by modifying the content of a message without authorization?

Modification (A) Signup and view all the answers

Which of the following is the main purpose of the Replay attack?

To impersonate the sender by copying their messages (A) Signup and view all the answers

What is the key difference between the Replay attack and other attacks mentioned?

The Replay attack requires the involvement of one or both parties in the communication (A) Signup and view all the answers

Which of the following is a key characteristic of the Denial of Service (DoS) attack?

The attacker floods the system with a large volume of requests (D) Signup and view all the answers

Which of the following is a key characteristic of the Repudiation attack?

The sender or receiver may later deny involvement in the communication (C) Signup and view all the answers

Which of the following attacks is described as a common type that slows down or halts the targeted computer system?

Denial of Service (DoS) attack (C) Signup and view all the answers