Chapter 99 · Quiz

Password Security — Quiz

Six multiple-choice questions and four matching questions. Submit for instant scoring and explanations.

Question 1 of 6
A security administrator compares two password options: Option A is an 8-character password using uppercase, lowercase, numbers, and special characters. Option B is a 16-character password using only lowercase letters. Which option provides higher entropy, and why?
Question 2 of 6
An organization has a 90-day password expiration policy with no password history requirement. Users frequently change their password to Summer2024! in June, then to Fall2024! in September. What problem does this illustrate, and which policy addition would BEST address it?
Question 3 of 6
An employee uses the same password (Password123!) for their corporate email, personal Gmail, banking account, and five other services. A breach at one of the smaller services exposes this password. What attack can now target all the employee's accounts, and what technology would have prevented this from being a multi-account problem?
Question 4 of 6
A Privileged Access Management (PAM) system requires a server administrator to submit a ticket with a maintenance window, manager approval, and specific change reason before granting temporary root credentials. The credentials automatically expire after 2 hours. Which security concept is this implementing?
Question 5 of 6
An organization uses a privileged access solution where database administrator credentials are stored in a centralized vault. When a DBA needs to access a production database, they authenticate to the vault, which then establishes the session on their behalf. The DBA never sees the actual database password, and the credential is automatically rotated after each use. Which technology is this?
Question 6 of 6
A user authenticates to their laptop using facial recognition. The laptop uses a TPM chip to store the cryptographic key and Windows Hello to process the biometric. No password is entered. Which authentication paradigm is this, and how does it maintain security without a traditional password?

Matching

Match each description to the correct password security concept.

1. A software application that generates, stores, and retrieves strong unique passwords for every account, encrypting them with a master password so only one credential must be memorized
2. A measure of password unpredictability determined by the character set size and password length; longer passwords and larger character sets produce higher values
3. A privileged access model where elevated credentials are granted only when a specific task requires them, validated by a clearinghouse, with credentials expiring automatically after a short TTL
4. A security control that stores the last N passwords and prevents users from reusing any of them when they change their password, preventing predictable sequential password patterns
A. Password manager
B. Password entropy
C. Just-in-time (JIT) permissions
D. Password history