BCA 8th Semester
Information Security 2022 Board Question Paper

Views: ...

Tribhuvan university

Bachelor In Computer Application

Course Title: Information Security

Code No: CACS 486

Semester:VII

2022

Full Marks:60 Pass Marks:24 Time:3 hours

Candidates are required to answer the question in their own words as far as possible.

Group A

Group B

Attempt any SIX question.

[6x5=30]

What is Information Security? List and briefly define fundamental security design principles.

Explain HMAC with its objectives.

What are the vulnerabilities of passwords? Explain different strategies used for the selection of effective password.

Define access right. Explain the concept of trust framework.

Describe about Honeypot with the types of honeypots that may be deployed.

How can you say that Intrusion Detection System is the backbone for Information Security? Justify along with its categories.

Explain the terms SSL, TSL and handshake protocol.

Group C

Attempt any TWO questions

[2x10=20]

Define the terms threats and attacks in terms of Information Security. Explain different types of security threats in detail.

10.

What is a cryptosystem? Explain the concepts of Vigenere and Rail Fence Ciphers in detail.

11.

What is a security audit? What is its importance? Explain the security auditing architecture in detail.

Copied!

Tribhuvan University

2022

Bachelor In Computer Application Course Title:Information Security Code No:CACS 486 Semester:VII

Full Marks:60 Pass Marks:24 Time: 3 hours

Centre Reg. No.: Symbol No:

Candidates are required to answer the question in their own words as far as possible.

Group A

Attempt all the questions.

[1x10=10]

Which of the following process can convert cipher text to plain text?

a) Hashing

b) Encryption

c) Decryption

d) Substitution

ii.

Which of the following concept is not part of CIA triad?

a) Confidentiality

b) Integrity

c) Authenticity

d) Availability

iii.

How many rounds does AES-256 perform?

a) 12

b) 14

c) 10

d) 16

iv.

What is multiplicative inverse of 7 in Z₁₁?

a) 7

b) 5

c) 6

d) 8

What does a message authentication code (MAC) provide?

a) Confidentiality of the message

b) Integrity and authenticity of message

c) Encryption message

d) Decryption of message

vi.

Which of the following is a vulnerability of password-based authentication?

a) Passwords can be easily shared

b) Passwords are too complex to remember

c) Passwords are always encrypted

d) Passwords are never exposed to attackers

vii.

Which of the following is not a typical component of an IDS?

a) Sensors

b) Analysis engine

c) Response system

d) Antivirus software

viii.

Which mode of IPSec provides encryption and authentication for the entire IP packet?

a) Transport mode

b) Tunnel mode

c) Application mode

d) Network mode

ix.

Which of the following type of firewall work on the basis of rules defined by Access Control List?

a) Packet filtering Firewall

b) Circuit level gateway Firewall

c) Next generation Firewall

d) Application Level gateway Firewall

Which of the following is typically not a phase in a security audit process?

a) Planning and scoping

b) Information gathering

c) Performance review

d) Reporting and follow-up

BCA 8th SemesterInformation Security 2022 Board Question Paper

Tribhuvan university

Bachelor In Computer Application

Course Title: Information Security

Code No: CACS 486

Semester:VII

2022

BCA 8th Semester
Information Security 2022 Board Question Paper