Answers and Explanations Please

QUESTION 1 The Heartbleed vulnerability is caused by a time-of-check to time-of-use vulnerability. incomplete mediation in the OpenSSL implementation. race conditions on memory accesses in the webserver. incorrect bounds checking on memory buffers that should be read. QUESTION 3 Which of the following is NOT a reason to load a virus at the boot sector? Boot sector viruses gain control of a system before detection tools are running. Files in the boot sector are typically hidden by the OS in order to avoid accidental deletion. The boot sector is often the easiest place in memory for an attacker to access. Boot sector viruses are hard to detect because they are hidden from the OS QUESTION 5 Suppose that Alice and Bob wish to share a secret using Diffie-Hellman key exchange. The generator g is 7 and the prime p is 17. Suppose Alice selects the a secret value 5 and Bob selects the secret value 9. Alice should send Bob the public value Bob should send Alice the public value The shared secret between Alice and Bob is QUESTION 7 Which of the following is true of the principle of least privilege? Oa The principle can safely be ignored during initial deployment. O b. Adhering to the principle means that a program should only be given the permissions it needs to execute properfly and nothing more. OC. Adhering to the principle helps make programs more adaptable to new and unexpected applications. Od. Adhering to the principle means that software developers from the most disadvantaged backgrounds receive priority in placing ther apps near the top of the search results of marketplaces such as the Google Play and Apple App Store QUESTION 8 Cybercrime costs are dominated by the revenue made directly by miscreants O direct costs to victims. the cost imposed by infrastructure operated by miscreants. indirect and defense costs QUESTION 9 Suppose the script test2.sh has the following permissions. What happens when user student executes test2.sh? tmoore@debian: 1s -la test2.sh -rwxr-sr-x 1 tmoore tas 539 Mar 2 21:23 test2.sh O The script runs with the group tas, but only if student belongs to that group. O The script runs as root. O The script runs with the group tas, regardless of whether or not student is in that group 0 The script runs as user tmoore