//**************************************************
// These are the questions and answers for the game.
// This file should be included AFTER the utility.js
// file, which is where the qAndA object is defined.
//**************************************************
// Define the title of the game.
var Title = "The Computer Security Challenge";
// (Starting Question Value) How much more each question is worth than the previous.
// e.g. if the first question is 100, the next is 200 then 300 then 400...
var SQV = 100;
// Access control
var cat1 = new Array(
new qAndA(SQV*1, "This describes the concept of only giving enough access to allow an entity to do its job.", "What is Principle of Least Privilege"),
new qAndA(SQV*2, "This will block or allow a packet based solely on its current attributes.", "What is a packet filtering firewall?"),
new qAndA(SQV*3, "The last line in your set of firewall rules should always be this.", "What is 'Deny All'?"),
new qAndA(SQV*4, "Despite the name, this is used even when not <u>Dialing In</u>, remotely or otherwise.", "What is RADIUS?"),
new qAndA(SQV*5, "If you get a ticket from a three headed dog, you are using this.", "What is Kerberos?")
);
// CIA
var cat2 = new Array(
new qAndA(SQV*1, "A principle not sufficiently enforced by Telnet and FTP.", "What is confidentiality?"),
new qAndA(SQV*2, "Ransomware is an example of denying this.", "What is availability?"),
new qAndA(SQV*3, "The process of creating and storing passwords requires this.", "What is confidentiality?"),
new qAndA(SQV*4, "Replay attacks violate this principle.", "What is integrity?"),
new qAndA(SQV*5, "Integrity is checked in TCP/IP packet headers via this simple mechanism.", "What are checksums?")
);
// Services
var cat3 = new Array(
new qAndA(SQV*1, "A way to transfer your files, but beware of sniffers.", "What is FTP?"),
new qAndA(SQV*2, "Without this you would have to remember a lot of IP addresses.", "What is DNS?"),
new qAndA(SQV*3, "Although it is probaly TLS, we mostly just call it this.", "What is SSL?"),
new qAndA(SQV*4, "It may look like a service to some and a trap to others.", "What is a HoneyPot?"),
new qAndA(SQV*5, "POP typically uses this port for email transfers.", "What is port 110?")
);
// Attacks and such
var cat4 = new Array(
new qAndA(SQV*1, "Its acronym used to stand for Disk Operating System but now means this.", "What is Denial Of Services?"),
new qAndA(SQV*2, "An attack that can be mitigated by using pre-compiled queries.", "What is SQL injection?"),
new qAndA(SQV*3, "They aren't children, but will take advantage of your default account settings and weak passwords", "What are script kiddies?"),
new qAndA(SQV*4, "Fragmentation is a good way to evade this.", "What is an Intrusion Detection System (IDS)?"),
new qAndA(SQV*5, "These have been mitigated by technologies such as Address Space Layout Randomization (ASLR) and Data Execution Prevention (DEP).", "What are buffer overflows?")
);
// The Internets
var cat5 = new Array(
new qAndA(SQV*1, "An <u>unreliable</u> way to transmit packets to a listener.", "What is UDP?"),
new qAndA(SQV*2, "This is the RFC for wireless Ethernet.", "What is the IEEE 802.11?"),
new qAndA(SQV*3, "This can save you a lot of money on public IP addresses.", "What is NAT"),
new qAndA(SQV*4, "If your IP packets get bigger than this, they will have to split up.", "What is the MTU/1500 bytes"),
new qAndA(SQV*5, "Before data can be <u>reliably</u> transmitted, this must take place.", "What is the TCP/IP three way handshake")
);
// Define an array that contains the arrays of questions and answers.
// Don't change this unless you need to add more categories.
var QuestionsAndAnswers = new Array(cat1, cat2, cat3, cat4, cat5);
// Define the category titles.
var Titles = new Array("Access Control",
"CIA",
"Services",
"Attacks and such",
"The Internets");
var FinalCategory = "TCP/IP";
var FinalJeopardyA = "Any 5 of the 9 possible flags for a TCP packet.";
var FinalJeopardyQ = "What are any 5 of [SYN, ACK, FIN, RST, PSH, URG, NS, CWR, ECE]?";
// Define the amount of time given to answer each question.
var TimePerQuestion = 20;
// Define the amount of time given to answer the Final Question.
var TimeForFinalQuestion = 40;
// This will control how many categories and questions
// per category are displayed on the main page.
var NumCategories = 5; // How many categories to show.
var NumQuestionsPerCategory = 5; // How many rows to show.
var DailyDouble = true; // If false the DailyDouble question won't be included.
var FinalAnswer = true; // If false the "Final Question" button won't be displayed.