CyberSecurity: Two Factor Authentication - Quiz

1. Which one of the following is not considered good practice when managing passwords?

The password should not be shared with other people

The password should be sent in plaintext by email

The password should be long and complex enough to make it difficult for someone else to guess

The password should be stored and transmitted securely

2. What is the term used to describe a type of attack where a computer works methodically through all possible passwords?

Man in the middle attack

Cryptographic attack

Brute force attack

Denial-of-service attack

3. Which one of the following should always be avoided?

Allowing a web browser on a cyber-cafe computer to remember your passwords

Using a password manager on your home computer

Using a different password for every website

Choosing passwords that contain a mixture of alphanumeric characters

4. All but one of the following are examples of two-factor authentication. Which of these is the odd one out, because it does not involve two factors?

A VPN token and password

Entering your password twice

The chip and PIN on a bank card

A hardware security token and password

Which of the following statements about the OAuth (Open Authentication) mechanism is true?

It stores passwords in plaintext on your machine and automatically logs you into websites you have configured to use your OAuth account information.

It allows you to use the username and password for the OAuth service (e.g., Google or Facebook) to register and log in to websites you have configured to use the service.

When logging in, you provide the OAuth username and password to the website you are trying to access, which then uses this information to confirm your identity with the OAuth service.

The OAuth service will send your username and password to the website you are trying to access, which will then check them to verify your identity.