dependability and security mcqs to prepare for nts,kppsc,fpsc,ppsc and more

dependability and security Mcqs

1. The use of a well-defined, repeatable process is essential if faults in a system are to be minimized ?
0

A. FALSE

B. True

2. The records of each patient that is receiving or has received treatment resembles which security concept ?
0

A. Control

B. Asset

C. Threat

D. Vulnerability

3. Choose the fault class in which the following automated static analysis check would fall: Unreachable code?
0

A. Data Faults

B. Interface faults

C. Input/Output Faults

D. Control Faults

4. Which reliability requirements are concerned with maintaining copies of the system ?
0

A. Recovery requirements

B. Redundancy requirements

C. Ambiguous requirements

D. Checking requirements

5. Which reliability metric sets out the probable number of system failures that are likely to be observed relative to a certain time period ?
0

A. AVAIL

B. None of the mentioned

C. ROCOF

D. POFOD

6. Which level of Static Analysis allows specific rules that apply to a program to be checked ?
0

A. Characteristic error checking

B. All of the mentioned

C. User-defined error checking

D. Assertion checking

7. A characteristic of a software system that can lead to a system error is known as _____________________ ?
0

A. Human error or mistake

B. System failure

C. System error

D. System fault

8. An aircraft engine normally includes automatic fire extinguishers.What kind of dependability and security issue the example states ?
0

A. Hazard detection

B. Hazard detection and removal

C. Damage limitation

D. Hazard avoidance

9. What is the term for a system that is designed such that the faults in the delivered software do not result in system failure ?
0

A. Fault detection

B. Fault Avoidance

C. Fault tolerance

D. None of the mentioned

10. An erroneous system state that can lead to system behavior that is unexpected by system users is known as________________?
0

A. System failure

B. Human error or mistake

C. System error

D. System fault

11. Choose the fault class in which the following automated static analysis check would fall:Non-usage of the results of functions?
0

A. Input/Output Faults

B. Data Faults

C. Interface faults

D. Storage management faults

12. Which of the following terms is a measure of the probability that the system will cause an accident ?
0

A. Hazard probability

B. Accident

C. Risk

D. Damage

13. At which stage of risk analysis specification, the additional security requirements take account of the technologies used in building the system and system design and implementation decisions ?
0

A. All of the mentioned

B. Operational risk analysis

C. Life-cycle risk analysis

D. Preliminary risk analysis

14. A weakness in a computer-based system that may be exploited to cause loss or harm is known as ?
0

A. Attack

B. Exposure

C. Vulnerability

D. Threat

15. The safety of a system is a system attribute that reflects the systems ability to operate, normally or abnormally, without injury to people or damage to the environment ?
0

A. True

B. FALSE

16. What is Life cycle risk assessment ?
0

A. None of the mentioned

B. Risk assessment while the system is being developed

C. All of the mentioned

D. Risk assessment before the system has been deployed

17. Which of the following is not a functional reliability requirement for a system ?
0

A. Ambiguous requirements

B. Redundancy requirements

C. Checking requirements

D. Recovery requirements

18. Which process characteristic with respect to Dependability Engineering is mentioned by the statement: The process should be understandable by people apart from process participants ?
0

A. Auditable

B. None of the mentioned

C. Documentable

D. Diverse

19. How many stages are there in Risk-driven requirements specification ?
0

A. four

B. six

C. three

D. five

20. Which of the following is a bad practice of Dependable programming ?
0

A. Check all inputs for validity

B. None of the mentioned

C. Limit the visibility of information in a program

D. Check array bounds

21. Security engineering is only concerned with maintenance of systems such that they can resist malicious attacks ?
0

A. TRUE

B. False

22. Which of the following is a layer of protection for Security ?
0

A. Platform-level protection

B. Record-level protection

C. All of the mentioned

D. Application-level protection

23. Exception handling is a mechanism to provide some fault avoidance ?
0

A. False

B. TRUE

24. Choose the fault class in which the following automated static analysis check would fall:Pointer Arithmetic ?
0

A. Input/Output Faults

B. Interface faults

C. Data Faults

D. Storage management faults

25. A system resource that has a value and has to be protected is known as ________________________?
0

A. Vulnerability

B. None of the mentioned

C. Asset

D. Control

26. A chemical plant system may detect excessive pressure and open a relief valve to reduce these pressures before an explosion occurs. What kind of dependability and security issue the example states ?
0

A. Hazard detection

B. Damage limitation

C. Hazard detection and removal

D. Hazard avoidance

27. Which of the following examples does not involve dependability engineering ?
0

A. Telecommunications

B. Medical Systems

C. Library Management

D. Power Systems

28. POFOD stands for___________________?
0

A. Possibility of failure on demand

B. Probability of failure on demand

C. Possibility of failure of data

D. Probability of failure of data

29. Which of the following is a technique covered in Static Analysis ?
0

A. All of the mentioned

B. Formal verification

C. Model checking

D. Automated program analysis

30. Static analysis is now routinely used in the development of many safety and security critical systems?
0

A. FALSE

B. True

31. What is the term for development process organised such that faults in the system are detected and repaired before delivery to the customer ?
0

A. Fault tolerance

B. None of the mentioned

C. Fault Avoidance

D. Fault detection

32. To specify security requirements, one should identify the risks that are to be dealt with ?
0

A. TRUE

B. False

33. Circumstances that have potential to cause loss or harm is known as___________________?
0

A. Vulnerability

B. Threat

C. Attack

D. Control

34. What is a Range check ?
0

A. None of the mentioned

B. Use information about the input to check if it is reasonable rather than an extreme value

C. Check that the input falls within a known range

D. Check that the input does not exceed some maximum size e.g. 40 characters for a name

35. Which of the following is a Strategy to achieve Software diversity ?
0

A. Explicit specification of different algorithms

B. Different programming languages

C. All of the mentioned

D. Different design methods and tools

36. Controls that are intended to ensure that attacks are unsuccessful is analogous to ______________ in dependability engineering?
0

A. Fault tolerance

B. Fault avoidance

C. Fault Recovery

D. Fault detection

37. A password checking system that disallows user passwords that are proper names or words that are normally included in a dictionary is an example of ________________ with respect to security systems?
0

A. asset

B. control

C. attack

D. risk

38. Select the disadvantage of using Formal methods ___________________?
0

A. They require the use of specialised notations that cannot be understood by domain experts

B. Producing a mathematical specification requires a detailed analysis of the requirements

C. Concurrent systems can be analysed to discover race conditions that might lead to deadlock

D. All of the mentioned

39. Which of the following is incorrect with respect to Model Checking ?
0

A. Model checking is particularly valuable for verifying concurrent systems

B. The model checker explores all possible paths through the model

C. All of the mentioned

D. Model checking is computationally very inexpensive

40. What are security controls ?
0

A. All of the mentioned

B. Controls that are intended to detect and repel attacks

C. Controls that are intended to support recovery from problems

D. Controls that are intended to ensure that attacks are unsuccessful

41. Consider a case where the system is unavailable and cannot deliver its services to users. What type of failure is being described here ?
0

A. Loss of service

B. None of the mentioned

C. System/data corruption

D. Incorrect service delivery

42. Which of the following is not a Protection system ?
0

A. None of the mentioned

B. System to shut down a reactor if temperature/pressure are too high

C. System to indicate not returning of the library book

D. System to stop a train if it passes a red light

43. An assessment of the worst possible damage that could result from a particular hazard is known as _________________?
0

A. Mishap

B. Hazard severity

C. Hazard probability

D. Risk

44. Static Analysis involves executing a program ?
0

A. False

B. TRUE

45. An event that occurs at some point in time when the system does not deliver a service as expected by its users is called __________________?
0

A. System failure

B. Human error or mistake

C. System error

D. System fault

46. An impersonation of an authorised user is an example of a security threat ?
0

A. False

B. TRUE

47. Consider a case where the failure of the system causes damage to the system itself or it data. What type of failure is being described here ?
0

A. Incorrect service delivery

B. Loss of service

C. None of the mentioned

D. System/data corruption

48. Choose the fault class in which the following automated static analysis check would fall:Variables declared but never used?
0

A. Input/Output Faults

B. Interface faults

C. Control Faults

D. Data Faults

Previous Next

Showing 1 to 48 of 48 mcqs

civil engineering

hrm

economics

agriculture

political science

statistics

english

electrical engineering

judiciary and law

computer

chemical engineering/chemical engineering basics

mechanical engineering

english literature

pak study

software engineering

mathematics

chemical engineering/process equipment and plant design

chemical engineering/mass transfer

medical

chemistry

chemical engineering/polymer technology

pakistan current affairs

chemical engineering/heat transfer chemical engineering

chemical engineering/chemical reaction

islamic studies

general knowledge

sociology

world current affairs

psychology

biology

chemical engineering/chemical environmental engineering chemical engineering

auditing

chemical engineering/process control and instrumentation

physics

chemical engineering/mechanical operations

chemical engineering/stoichiometry

chemical engineering/fertilizer technology

chemical engineering/fuels and combustion

chemical engineering/thermodynamics for chemical chemical engineering

chemical engineering/plant economics

finance

chemical engineering/materials and construction

marketing

chemical engineering/refractory technology

urdu general knowledge

accounting

election officer

chemical engineering/petroleum refinery engineering

everyday science

chemical engineering/nuclear power engineering

chemical engineering/chemical process

chemical engineering/fluid mechanics for chemical chemical engineering

pedagogy

chemical engineering

chemical engineering/furnace technology