nerdexam
ExamsCERTIFIED-IN-CYBERSECURITYQuestions#279
(ISC)2(ISC)2

CERTIFIED-IN-CYBERSECURITY · Question #279

CERTIFIED-IN-CYBERSECURITY Question #279: Real Exam Question with Answer & Explanation

The correct answer is D: Salt. Salt is a random value added to a password before it is hashed. It is used to prevent attacks such as rainbow tables, which can be used to crack passwords by precomputing hash values for common passwords. By adding a unique salt to each password, even if two users have the same p

Access Controls Concepts

Question

What is the term for the random value added to a password to prevent rainbow table attacks? ()

Options

  • AExtender
  • BHash
  • CMD5
  • DSalt

Explanation

Salt is a random value added to a password before it is hashed. It is used to prevent attacks such as rainbow tables, which can be used to crack passwords by precomputing hash values for common passwords. By adding a unique salt to each password, even if two users have the same password, their hashed passwords will be different. This strategy makes it much more difficult for an attacker to crack the passwords using a precomputed table (see ISC2 Study Guide, Chapter 5, Module 3). Hashing is a one-way process that transforms plaintext into a fixed-length string of characters, making it impossible to reverse the process to obtain the original plaintext. MD5 is one type of hashing algorithm, though it is considered weak due to vulnerability to collision attacks. An 'Extender' is not a term associated with password protection in this context.

Topics

#Password Security#Hashing#Salt#Rainbow Table Attacks

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CERTIFIED-IN-CYBERSECURITY PracticeBrowse All CERTIFIED-IN-CYBERSECURITY Questions