Loading...
password 3 u.1
Quiz by Mariola Sypniewska
Customize this quiz to suit your class
Instantly translate to 100+ languages
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
Give this quiz to my class
password reset a2 unit 3 vocabulary PolishGot it ✅ I’ll create 4 simple sections of assignments based on these two pages (1.1 What is a network? and 1.2 Network connections). Total marks = 25. Suitable for Oxford International Primary Computing Grade 5. --- Assignment – Computer Networks Grade 5 – Total Marks: 25 --- Section A: Choose the Correct Answer (6 marks) Circle the correct option. Each question = 2 marks. 1. A group of computers connected together is called a: a) Website b) Network c) Software 2. Which type of network connects computers inside a school? a) LAN b) WAN c) Wi-Fi 3. To use a network safely, you need: a) A strong password b) A printer c) A hotspot --- Section B: Fill in the Blanks (6 marks) Each correct answer = 2 marks. 1. We can use a network to share files and ________. 2. A wireless connection is also called ________. 3. Network ________ help devices work together. --- Section C: Short Answer Questions (7 marks) 1. Write two advantages of using a network. (2 marks) 2. What is the difference between a wired connection and a wireless connection? (2 marks) 3. Write one rule to keep your password safe. (1 mark) 4. Create a strong password example using numbers and symbols. (2 marks) --- Section D: Activity / Problem Solving (6 marks) 1. Web Valley School has 60 network connections. Each cable is 50 meters long. How many meters of cable are used in total? (2 marks) 2. Convert your answer into kilometers. (2 marks) 3. Why is it important to hide or lock network equipment? (2 marks) --- ✅ Total = 25 marks --- Would you like me to also make a teacher’s marking guide with answers and mark distribution? Billy gets lost. Billy is a puppy. He lives in a big house with a blue roof. He loves to play fetch with Emmy. Emmy throws the ball. Billy chases it. Then, Billy sees Cat. He drops the ball and chases Cat. Cat runs down the street, and Billy chases him. Emmy cries, “Come back, Billy.” Cat runs through a farm, and Billy chases him. Cat runs into the forest, and Billy chases him. Cat climbs up a tree. Billy turns to go home. He cannot see the big house with a blue roof.“ Oh, no, I am lost,” Billy says. Billy runs down a path. He sees Fox. “How can I get home?” he asks Fox. “I have never been out of the forest,” says Fox. “Ask Cow in the farmer’s field,” Fox says. Billy runs to the farmer’s field. Billy says to Cow, “I am lost. “Do you know the way to my house?” Billy asks. “I have never been off the farm,” says Cow. “Ask Owl,” Cow says. Billy goes to Owl in the barn. “Please wake up, Owl,” says Billy. “I need your help,” he says. “I am lost!” he cries. “Do you know a big house with a blue roof?” Billy asks. “Yes, I do,” Owl says. Owl flies, and Billy chases her. Then, Billy sees Emmy at the big house with a blue roof. “Thank you, Owl,” says Billy. Create an interactive "fill the gaps" quiz in seconds - complete with a 'Hall of Fame'! Instructions: 1. Edit the title of this quiz (above) to something appropriate. 2. COPY and PASTE your text into this box (TIP - plain text for best results, to avoid formatting glitches), and edit it as you wish. 3. DOUBLE-CLICK any word to turn it into a 'gap'. 4. To put the word back, simply double-click the gap again or drag the word from the top of the screen to the correct gap. 5. When you are finished, click 'save' to turn your work into an interactive quiz for your students - complete with a Leaderboard so you can see how quickly they finished! Note: When you save your work, you will provide a password which will allow you to edit the quiz again later. Caratteristiche e funzionalità degli standard europei per la posta elettronica certificata Con oltre 14 milioni e 600 mila caselle attive nel terzo bimestre 2022 (fonte AgID), la posta elettronica certificata continua a dimostrarsi uno strumento chiave per l’innovazione digitale in Italia. Ecco perché si guarda alla PEC europea come a un ulteriore traguardo per creare un sistema di comunicazione qualificata tra cittadini e imprese e anche tra privati e Pubblica Amministrazione. La nuova PEC europea ha iniziato il suo iter a gennaio 2022 e nel corso dello stesso anno ha visto il rilascio dello standard ETSI (Istituto Europeo per le norme di Telecomunicazioni), fondamentale per la realizzazione di un servizio di posta elettronica conforme al Regolamento europeo n. 910/2014 – eIDAS. Adesso, la parola d’ordine nel settore è interoperabilità , ovvero la possibilità di scambiare in modo sicuro comunicazioni elettroniche di valore probatorio, attraverso un processo di standardizzazione europeo. Dal 2024 la PEC in Italia lascerà quindi il posto alla Registered Electronic Mail (REM), la PEC europea. Nuovo standard PEC europea: quali sono i principi? Lo standard europeo ETSI EN 319 532-4 specifica le caratteristiche della CSI (Common Service Interface): l’interfaccia tecnologica condivisa che permette lo scambio sicuro tra i gestori e tra gli utilizzatori di servizi di recapito qualificato. Tale infrastruttura si basa su due elementi: • ERDS (Electronic Registered Delivery Services) • REM (Registered Electronic Mail) Le funzionalità di ERDS e REM hanno come obiettivo il settaggio di requisiti tecnici necessari per verificare e certificare: Identità del cittadino UE possessore di un indirizzo di posta certificata; Integrità del contenuto; Data e ora d’invio e di ricezione del messaggio. In sintesi, lo standard ETSI EN 319 532-4 amplia i confini della PEC che diventa un sistema di comunicazione qualificata a livello europeo. Posta certificata europea: cosa cambia? Il cambiamento più sostanziale che riguarda le caselle PEC attivate in Italia è l’integrazione dei requisiti SERC (Servizio Elettronico di Recapito Certificato) con quelli SERCQ (Servizio Elettronico di Recapito Certificato Qualificato). In altre parole, la PEC italiana come è oggi conferisce alle comunicazioni requisiti di valore legale, tanto da essere equiparabile alla tradizionale raccomandata con avviso di ricezione, ma non certifica l’identità del titolare della casella. Motivo per cui è necessario adeguare la casella PEC agli standard europei attraverso due step: il riconoscimento del titolare della casella e l’attivazione della verifica in 2 passaggi. Come funziona l’adeguamento PEC agli standard europei? Per allinearsi ai requisiti sanciti dallo standard ETSI sul servizio di recapito certificato qualificato, il titolare di una casella PEC dovrà procedere in questo modo. 1. Riconoscimento dell’identità Tale passaggio è necessario per garantire l’attendibilità del mittente, persona fisica o rappresentante legale di una persona giuridica. La verifica dell’identità può essere fatta attraverso uno degli strumenti di identificazione elettronica riconosciuti dalla Commissione europea: Identità digitale SPID; Tessera Sanitaria / Carta Nazionale dei Servizi; Firma digitale anche remota; Carta d’Identità Elettronica (CIE 3.0); Piattaforma DVO (De Visu Online) con operatore. 2. Verifica in 2 passaggi (2FA) L’autenticazione a 2 fattori rafforza il livello di sicurezza dell’account di posta attraverso il doppio controllo di accesso al servizio: inserimento delle credenziali (indirizzo PEC e password) e codice di autenticazione. Il codice viene inviato su un dispositivo precedentemente verificato e secondo la modalità di ricezione che si è scelta: Notifica PUSH tramite app su dispositivo mobile; Token OTP tramite app; Token OTP via SMS. Dopo che la verifica in 2 passaggi è stata attivata, per consultare la casella PEC sarà necessario inserire la password e autorizzare l’accesso o con la conferma della notifica PUSH, o con l’inserimento dell’OTP (One Time Password). Come si attiva la PEC europea obbligatoria? Le fasi di implementazione del processo sono ancora in attesa del DPCM normativo, ma nel frattempo i provider di PEC Legalmail stanno già cominciando ad abilitare i sistemi di verifica. Fra i gestori riconosciuti da AgID, Infocert PEC permette già adesso di effettuare l’upgrade della casella Legalmail identificando il titolare in pochi semplici step e mantenendo integre tutte le funzionalità del servizio. Multiple Choice Questions A6. You’ve hired a third-party to gather information about your company’s servers and data. The third-party will not have direct access to your internal network but can gather information from any other source. Which of the following would BEST describe this approach? ❍ A. Backdoor testing ❍ B. Passive footprinting ❍ C. OS fingerprinting ❍ D. Partially known environment A7. Which of these protocols use TLS to provide secure communication? (Select TWO) ❍ A. HTTPS ❍ B. SSH ❍ C. FTPS ❍ D. SNMPv2 ❍ E. DNSSEC ❍ F. SRTP A8. Which of these threat actors would be MOST likely to attack systems for direct financial gain? ❍ A. Organized crime ❍ B. Hacktivist ❍ C. Nation state ❍ D. Competitor A9. A security incident has occurred on a file server. Which of the following data sources should be gathered to address file storage volatility? (Select TWO) ❍ A. Partition data ❍ B. Kernel statistics ❍ C. ROM data ❍ D. Temporary file systems ❍ E. Process table Quick Answer: 33 The Details: 43 Quick Answer: 33 The Details: 44 Quick Answer: 33 The Details: 45 Quick Answer: 33 The Details: 46 6 Practice Exam A - Questions A10. An IPS at your company has found a sharp increase in traffic from all-in-one printers. After researching, your security team has found a vulnerability associated with these devices that allows the device to be remotely controlled by a third-party. Which category would BEST describe these devices? ❍ A. IoT ❍ B. RTOS ❍ C. MFD ❍ D. SoC A11. Which of the following standards provides information on privacy and managing PII? ❍ A. ISO 31000 ❍ B. ISO 27002 ❍ C. ISO 27701 ❍ D. ISO 27001 A12. Elizabeth, a security administrator, is concerned about the potential for data exfiltration using external storage drives. Which of the following would be the BEST way to prevent this method of data exfiltration? ❍ A. Create an operating system security policy to prevent the use of removable media ❍ B. Monitor removable media usage in host-based firewall logs ❍ C. Only allow applications that do not use removable media ❍ D. Define a removable media block rule in the UTM Quick Answer: 33 The Details: 47 Quick Answer: 33 The Details: 48 Quick Answer: 33 The Details: 49 Practice Exam A - Questions 7 A13. A CISO (Chief Information Security Officer) would like to decrease the response time when addressing security incidents. Unfortunately, the company does not have the budget to hire additional security engineers. Which of the following would assist the CISO with this requirement? ❍ A. ISO 27701 ❍ B. PKI ❍ C. IaaS ❍ D. SOAR A14. An insurance company has created a set of policies to handle data breaches. The security team has been given this set of requirements based on these policies: • Access records from all devices must be saved and archived • Any data access outside of normal working hours must be immediately reported • Data access must only occur inside of the country • Access logs and audit reports must be created from a single database Which of the following should be implemented by the security team to meet these requirements? (Select THREE) ❍ A. Restrict login access by IP address and GPS location ❍ B. Require government-issued identification during the onboarding process ❍ C. Add additional password complexity for accounts that access data ❍ D. Conduct monthly permission auditing ❍ E. Consolidate all logs on a SIEM ❍ F. Archive the encryption keys of all disabled accounts ❍ G. Enable time-of-day restrictions on the authentication server Quick Answer: 33 The Details: 50 Quick Answer: 33 The Details: 51 8 Practice Exam A - Questions A15. Rodney, a security engineer, is viewing this record from the firewall logs: UTC 04/05/2018 03:09:15809 AV Gateway Alert 136.127.92.171 80 -> 10.16.10.14 60818 Gateway Anti-Virus Alert: XPACK.A_7854 (Trojan) blocked. Which of the following can be observed from this log information? ❍ A. The victim's IP address is 136.127.92.171 ❍ B. A download was blocked from a web server ❍ C. A botnet DDoS attack was blocked ❍ D. The Trojan was blocked, but the file was not A16. A user connects to a third-party website and receives this message: Your connection is not private. NET::ERR_CERT_INVALID Which of the following attacks would be the MOST likely reason for this message? ❍ A. Brute force ❍ B. DoS ❍ C. On-path ❍ D. Disassociation A17. Which of the following would be the BEST way to provide a website login using existing credentials from a third-party site? ❍ A. Federation ❍ B. 802.1X ❍ C. PEAP ❍ D. EAP-FAST Quick Answer: 33 The Details: 53 Quick Answer: 33 The Details: 54 Quick Answer: 33 The Details: 55 Practice Exam A - Questions 9 A18. A system administrator, Daniel, is working on a contract that will specify a minimum required uptime for a set of Internet-facing firewalls. Daniel needs to know how often the firewall hardware is expected to fail between repairs. Which of the following would BEST describe this information? ❍ A. MTBF ❍ B. RTO ❍ C. MTTR ❍ D. MTTF A19. An attacker calls into a company’s help desk and pretends to be the director of the company’s manufacturing department. The attacker states that they have forgotten their password and they need to have the password reset quickly for an important meeting. What kind of attack would BEST describe this phone call? ❍ A. Social engineering ❍ B. Tailgating ❍ C. Watering hole ❍ D. On-path A20. A security administrator has been using EAP-FAST wireless authentication since the migration from WEP to WPA2. The company’s network team now needs to support additional authentication protocols inside of an encrypted tunnel. Which of the following would meet the network team’s requirements? ❍ A. EAP-TLS ❍ B. PEAP ❍ C. EAP-TTLS ❍ D. EAP-MSCHAPv2 Quick Answer: 33 The Details: 56 Quick Answer: 33 The Details: 57 Quick Answer: 33 The Details: 58 10 Practice Exam A - Questions A21. Which of the following would be commonly provided by a CASB? (Select TWO) ❍ A. List of all internal Windows devices that have not installed the latest security patches ❍ B. List of applications in use ❍ C. Centralized log storage facility ❍ D. List of network outages for the previous month ❍ E. Verification of encrypted data transfers ❍ F. VPN connectivity for remote users A22. The embedded OS in a company’s time clock appliance is configured to reset the file system and reboot when a file system error occurs. On one of the time clocks, this file system error occurs during the startup process and causes the system to constantly reboot. Which of the following BEST describes this issue? ❍ A. DLL injection ❍ B. Resource exhaustion ❍ C. Race condition ❍ D. Weak configuration A23. A recent audit has found that existing password policies do not include any restrictions on password attempts, and users are not required to periodically change their passwords. Which of the following would correct these policy issues? (Select TWO) ❍ A. Password complexity ❍ B. Password expiration ❍ C. Password history ❍ D. Password lockout ❍ E. Password recovery Quick Answer: 33 The Details: 59 Quick Answer: 33 The Details: 60 Quick Answer: 33 The Details: 61 Practice Exam A - Questions 11 A24. What kind of security control is associated with a login banner? ❍ A. Preventive ❍ B. Deterrent ❍ C. Corrective ❍ D. Detective ❍ E. Compensating ❍ F. Physical A25. A security team has been provided with a noncredentialed vulnerability scan report created by a thirdparty. Which of the following would they expect to see on this report? ❍ A. A summary of all files with invalid group assignments ❍ B. A list of all unpatched operating system files ❍ C. The version of web server software in use ❍ D. A list of local user accounts A26. A business manager is documenting a set of steps for processing orders if the primary Internet connection fails. Which of these would BEST describe these steps? ❍ A. Communication plan ❍ B. Continuity of operations ❍ C. Stakeholder management ❍ D. Tabletop exercise A27. A security administrator is concerned about data exfiltration resulting from the use of malicious phone charging stations. Which of the following would be the BEST way to protect against this threat? ❍ A. USB data blocker ❍ B. Personal firewall ❍ C. MFA ❍ D. FDE Quick Answer: 33 The Details: 62 Quick Answer: 33 The Details: 63 Quick Answer: 33 The Details: 64 Quick Answer: 33 The Details: 65 12 Practice Exam A - Questions A28. A company would like to protect the data stored on laptops used in the field. Which of the following would be the BEST choice for this requirement? ❍ A. MAC ❍ B. SED ❍ C. CASB ❍ D. SOAR A29. A file server has a full backup performed each Monday at 1 AM. Incremental backups are performed at 1 AM on Tuesday, Wednesday, Thursday, and Friday. The system administrator needs to perform a full recovery of the file server on Thursday afternoon. How many backup sets would be required to complete the recovery? ❍ A. 2 ❍ B. 3 ❍ C. 4 ❍ D. 1Revealing personal data can lead to threats like identity theft, fraud, bullying, and blackmail. 1.Identity Theft Definition: Identity theft occurs when someone steals your personal information and uses it without your permission. This can include your name, Social Security number, or bank details. Example: If someone gets your Social Security number, they could open a credit card in your name and run up bills that you would have to pay. 2.Fraud Definition: Fraud is when someone deceives another person to gain something of value, like money or personal information. This is often done through lies or tricks. Example: A person might call you pretending to be from your bank and tell you that you need to confirm your account details. If you give them your information, they may steal your money. 3. Bullying Definition: Bullying is when someone repeatedly hurts, threatens, or picks on another person. This can happen in person or online (cyberbullying). Example: If someone sends hurtful messages or spreads rumors about you on social media, that’s a form of bullying. 4. Blackmail Definition: Blackmail is when someone threatens to reveal harmful or embarrassing information about you unless you give them something they want, usually money or favors. Example: If someone takes a private photo of you and threatens to share it unless you pay them, that’s blackmail. Summary Identity Theft: Stealing personal information for illegal use. Fraud: Deceiving someone for personal gain. Bullying: Repeatedly hurting or threatening someone. Blackmail: Threatening to expose information unless demands are met. Understanding these terms helps you recognize and protect yourself from potential dangers in both real life and online. If you see any signs of these actions happening, it’s important to talk to a trusted adult or authority figure. There are several guidelines for you to be aware of to keep your personal data confidential: •Have strong passwords set on any account that holds personal data. Stronger passwords include characters, numbers and symbols and are not a recognisable word. •Encrypt (scramble text so that it cannot be read without a decryption key) any personal data that you store on your computer. •Have a firewall present, scanning incoming and outgoing data from your computer system. firewall : a security measure that can be implemented to monitor traffic into and out of a computer and prevent external users gaining unauthorised access to a computer system. A firewall is a security measure that helps protect a computer system by monitoring and controlling the traffic that comes into and goes out of the system. Think of it as a barrier between your computer and the outside world. It prevents unauthorized users from accessing your computer while allowing authorized traffic to pass through. •Regularly scan your computer with preventative software, such as an anti-virus package, that is used to identify a virus on a computer and remove it. Anti-virus: software that is used to identify a virus on a computer and remove it •Make use of any biometric devices (devices that measures a person's biological data, such as thumbprints), that are built into technology. biometric devices: Unique physical characteristic of a person that can be used by a computer for identification purposes. https://www.aratek.co/news/biometric-devices-definition-and-examples Biometric devices are tools that use unique physical characteristics of a person for identification purposes. This means they can recognize who you are based on features that are unique to you. Here are some examples of biometric characteristics: Fingerprint Recognition, Facial Recognition, Voice Recognition •Only visit and provide data to websites that are a trusted source. •Do not open any email attachments from a sender you do not recognise. •Check the URL attached to any link requesting data to see if it is genuine. •Be cautious about any pictures or opinions that you post or send to people. •Remove data about your location that is normally attached to your photos and videos that you may post, such as geotags. Geotag: an electronic tag that assigns a geographical location A geotag is an electronic tag that assigns a specific geographical location to a piece of information, like a photo or a video. Geotags can help people understand where a photo was taken or where an event occurred, making it easier to organize and find information based on location. •Do not become friends on social networking sites with people you do not know. •Set all the privacy controls to the most secure setting that are available on social media accounts. •Report and block any suspicious user. •Use a nickname or pseudonym when using the internet for entertainment, for example, playing games. •If it is possible, use a virtual private network (VPN), an encrypted connection that can be used to send data more securely across a network. Virtual private network (VPN) : an encrypted connection that can be used to send data more securely across a network A Virtual Private Network (VPN) is a special way to connect to the internet that keeps your information safe. Imagine you are sending a secret message to a friend. You want to make sure no one else can read it while it travels. A VPN helps you do just that! It creates an encrypted connection, which means it turns your message into a code that only your friend can understand Example: Public Wi-Fi Safety: When you use public Wi-Fi, like in a café, your data can be easily accessed by hackers. If you connect to a VPN while using that public Wi-Fi, your data is encrypted, making it much harder for anyone to steal your information. Empowerment Technologies: Navigating the Digital World I. Introduction to ICT (Information and Communication Technology) • Definition and Importance of ICT in daily life, education, and business • Evolution from Web 1.0 (static web) to Web 2.0 (interactive and collaborative web) • Examples of ICT tools: computers, smartphones, cloud apps, internet ________________________________________ II. Web 2.0 and Online Platforms • Features of Web 2.0: user-generated content, social media, blogs, wikis • Difference between Web 1.0, Web 2.0, and Web 3.0 (basic intro) • Examples: Facebook, YouTube, Google Docs, Wikipedia ________________________________________ III. Online Etiquette and Digital Citizenship • Netiquette: responsible behavior online o Be respectful and polite in digital communication o Avoid flaming, spamming, and trolling • Importance of digital footprint and online reputation ________________________________________ IV. Online Safety, Security, and Privacy • Cyber threats: phishing, malware, identity theft • Tips to stay safe online: o Use strong passwords o Avoid clicking suspicious links or emails o Enable privacy settings on social platforms • Digital addiction: recognizing and managing screen time ________________________________________ V. Productivity Tools and Applications • Common productivity software: o Word processors: MS Word, Google Docs o Spreadsheets: MS Excel, Google Sheets o Presentation tools: MS PowerPoint, Canva, Google Slides • Cloud computing: accessing tools and files via the internet (e.g., Google Drive) ________________________________________ VI. Open-Source and Licensing • Understanding open-source software: free to use, modify, and distribute o Examples: LibreOffice, GIMP, Moodle • Creative Commons licenses: o Allows creators to share work legally o Different license types (BY, SA, NC, ND) ________________________________________ VII. The Digital Divide • Definition: the gap between individuals who have access to technology and those who do not • Causes: economic status, geography, infrastructure • Importance of digital literacy and inclusion Think before you act online Sometimes what we post on our favourite social networks have consequences we didn't expect. One weekend, 20-year-old James Miller posted on his Facebook page that his job was soooo boring. When he got to work on Monday his boss told him to clear his desk and get out. He gave him a letter, too. It said: 'After reading your comments on Facebook about our company, we understand you are not happy with your work. We think it is better for you to look for something that you will find more interesting." A few years ago, a girl's birthday party turned into a nightmare. Fifteen-year-old Cathy posted an invitation to her birthday party online. She posted her address, too. When her parents got back from the cinema that evening, they couldn't believe their eyes. There were 500 people at the party, and some of them were smashing windows, breaking potted plants and making a total mess of the house. Most teens think they know everything about social media, and that things like this could never happen to them. A study shows that last year alone, more than three million young people worldwide got into trouble because of their online activities. Here are some important tips. None of them can guarantee 100% Internet security, but all of them will help you to be safer online. RULE 1: Share with care! Not everyone will like what you write on Facebook or Twitter. Think before you post something. You can never completely control who sees your profile, your texts, your pictures, or your videos. Before clicking 'post', everyone should ask themselves two questions: 'How will I feel if my family or teachers see this?' and 'How might this post be bad for me in three, five or ten years from now?" RULE 2: Be polite when you write! Imagine someone is unfriendly in real life. You don't like it, right? Well, the same is true of online communication. Politeness matters, and anyone can be polite. No one likes it when you 'shout' in your messages. DON'T USE ALL CAPITALS!!!!!!!! If you feel angry or frustrated while you're writing a message, wait a bit. Read it again later and then send it. RULE 3: Protect and respect! Don't share your passwords with anyone. Don't post your home or email address online. Beware of 'cyberbullying' - don't forward rumours about other people, and don't say negative things about them. If you get messages like that or see them online, talk to an adult you know.