UGC NET Questions (Paper – 1)

Statement C is the only wrong statement because sharing passwords undermines security and violates basic privacy practices. Statements A, B and D correctly describe transparency, access control and anonymisation as key components of data protection in education. Institutions are expected to safeguard student data and minimise risks when using ICT systems. Hence, the option that selects only C as wrong is the correct answer.

Option A:
Option A is incorrect because it labels A and C together as wrong statements. Statement A is actually a fundamental privacy principle requiring that students be informed about data collection and use. Treating it as wrong conflicts with good institutional practice.

Option B:
Option B is incorrect because it groups B and C as wrong. While C is wrong, B is a correct statement about the role of access controls in protecting sensitive records. Mixing a true statement with a false one makes this combination invalid.

Option C:
Option C is correct because it isolates C as the sole wrong statement and accepts that A, B and D reflect appropriate privacy safeguards. It emphasises that password sharing is risky and should never be encouraged in educational ICT systems.

Option D:
Option D is incorrect because it lists A, B and C as wrong statements. A and B are both essential elements of privacy management, and only C promotes unsafe behaviour. This option misclassifies critical privacy measures as incorrect.

A firewall acts as a barrier between trusted internal networks and external networks such as the Internet. It filters incoming and outgoing packets according to defined policies, blocking suspicious or prohibited connections. This reduces the risk of intrusions, data theft and malware spread. The option explains this traffic filtering function accurately.

Option A:
This option correctly highlights inspection and rule based control as the main tasks. It shows that firewalls are preventive measures designed to enforce organisational security policies at network boundaries.

Option B:
Processing speed depends on hardware and system configuration and is not directly increased by installing a firewall. In some cases, heavy filtering may even introduce slight delays.

Option C:
Automated writing of research papers is outside the scope of any security device. Firewalls are concerned with access, not content creation.

Option D:
Converting digital data into printed books is a documentation strategy and has nothing to do with network packet filtering.

Statements A, B and C correctly describe what databases and DBMSs do in ICT systems. They highlight that databases store structured data, DBMSs manage and control access to it and relational models use tables with rows and columns. Statement D is clearly false because a DBMS is software, not a hardware cupboard for printed documents. Thus the combination A, B and C only is correct.

Option A:
Option A is incorrect because it includes only A and B and omits C. While A and B are true, statement C is also correct in describing relational storage structures. Leaving out C means the option does not capture all the valid statements.

Option B:
Option B is incorrect because it groups A, B and D as correct, thereby accepting D. Statement D completely misrepresents a DBMS, so any combination that treats it as true is invalid.

Option C:
Option C is incorrect because it lists B and C only and leaves out A. Statement A is fundamental in defining a database as an organised collection of data. Excluding this definition makes the combination incomplete.

Option D:
Option D is correct because it selects A, B and C, all of which align with standard database concepts. It correctly excludes D, which confuses software with physical storage and printed documents.

An intranet uses the same basic protocols and tools as the public Internet, such as web servers and browsers. However, it is logically separated and access is restricted to members of a particular organisation. This allows internal communication, document sharing and collaboration in a controlled environment. Thus, a private network using Internet technologies for authorised users is the correct description.

Option A:
This option describes the Internet itself, not an intranet. The Internet spans the globe and is not limited to a single organisation or access group.

Option B:
A printed handbook containing Internet addresses is just a static list of URLs. It is not a network and cannot provide interactive communication or services, so it does not qualify as an intranet.

Option C:
This option correctly distinguishes scope and accessibility by emphasising both the use of Internet technologies and the restriction to authorised internal users. It reflects how institutions create secure internal portals and services.

Option D:
A satellite is a physical communication device that may carry many different kinds of traffic, but by itself it does not define a logical private network like an intranet. An intranet is defined by how computers are networked and controlled, not by a particular satellite.

Authentication is the process of verifying that a user or system is who they claim to be before granting access to resources. Usernames and passwords are basic credentials used in this process. Strong authentication is fundamental to safeguarding ICT systems from unauthorised use. Hence, the login procedure described is an example of authentication.

Option A:
Option A is correct because authentication explicitly refers to identity verification using credentials such as passwords.

Option B:
Option B, authoring, refers to creating content and is not related to checking identity.

Option C:
Option C, archiving, is the long term storage of information, not controlling access to systems.

Option D:
Option D, advertising, aims to promote products or services and does not verify user identity.

A firewall sits between a trusted internal network and untrusted external networks (like the Internet) and filters packets using security rules. Its main job is to allow legitimate traffic and block suspicious or unauthorised connections.

Option A:
This option correctly describes the core function of a firewall: inspecting traffic and enforcing access-control policies to protect campus systems.

Option B:
CPU speed is determined by hardware design and clock frequency; a firewall does not exist to “speed up” processors.

Option C:
Automatically deleting all user files would be destructive, not protective; this is not a firewall’s role.

Option D:
Converting analogue to digital signals is done by codecs or related devices in multimedia systems, not by firewalls.

A firewall acts as a barrier between a trusted internal network and untrusted external networks, inspecting traffic according to security policies. It can block unauthorised access while permitting legitimate communication, thereby reducing the risk of attacks. Firewalls may be hardware, software or a combination of both. Hence, the protective system described is a firewall.

Option A:
Option A is correct because firewall is the established term in ICT security for systems that filter network traffic based on rules.

Option B:
Option B, gateway, is a broader term for devices that connect networks and may or may not enforce security policies.

Option C:
Option C, modem, modulates and demodulates signals for communication over telephone lines or cable and is not primarily a security device.

Option D:
Option D, router, forwards packets between networks based on IP addresses but does not automatically apply security rules unless combined with firewall features.

Statements A, B, C and E summarise key principles of data protection. Personal data is identifying information, data minimisation limits collection, access controls restrict who can see records and encryption protects data in transit and at rest. Statement D is false because unrestricted sharing conflicts with privacy obligations, and F is false since notices should clearly explain uses, not hide them. Thus A, B, C and E only are correct.

Option A:
Option A is incomplete because it omits E and does not mention how encryption supports confidentiality. A, B and C are true but do not cover all technical safeguards referenced in the question.

Option B:
Option B is incomplete because it leaves out B, ignoring the principle that institutions should not collect more data than necessary. A, C and E are correct, yet the combination is not exhaustive.

Option C:
Option C is correct because it includes conceptual and technical aspects of privacy protection while excluding permissive and opaque practices described in D and F. It aligns with responsible data management in education.

Option D:
Option D is incorrect because it introduces F, which advocates hiding information about data use. This contradicts transparency requirements, so mixing it with true statements makes the option wrong.

Intranets are internal networks of organisations (like a university campus network) accessible only to authorised users, while the Internet links networks worldwide and is publicly reachable.

Option A:
This option correctly contrasts scope (local vs global) and access (restricted vs public), which is the key distinction.

Option B:
Intranets are typically much smaller; the Internet includes countless intranets and other networks.

Option C:
A global mobile network is not what “intranet” means and may or may not connect to the Internet.

Option D:
The Web is a service over the Internet; an intranet is a private network that may host internal web services but is not simply “the Web”.

Data privacy requires both organisational policies and technical safeguards. Access control ensures that only staff with legitimate roles can view or modify sensitive records. Strong authentication mechanisms and encryption prevent unauthorised disclosure during storage and transmission. Together, these measures align with ethical and sometimes legal responsibilities in educational ICT use.

Option A:
Option A correctly combines the ideas of “need to know” access and technological protection. It reflects best practices recommended for student information systems and learning platforms.

Option B:
Option B openly exposes credentials, which is a serious security breach and violates privacy principles.

Option C:
Option C allows unrestricted access to grades, undermining confidentiality and trust in the institution.

Option D:
Option D sends sensitive data without protection and to unknown parties, greatly increasing the risk of misuse or leakage.

Statements A, B, D and E describe core OS functions and a specific OS type. Operating systems allocate CPU and memory, offer file management and provide authentication and access control. A single-user, single-task OS indeed restricts execution to one program at a time. Statement C is false because OSs coordinate I/O devices, and F is false since many graphical systems expose command-line interfaces. Thus A, B, D and E only are correct.

Option A:
Option A is incorrect because it omits E, ignoring the description of single-user, single-task operating systems. While A, B and D are true, this combination fails to include all correct statements given in the question.

Option B:
Option B is correct because it gathers process and memory management, file services, security mechanisms and a valid classification of an OS. It excludes C and F, which misrepresent the OS role in I/O and the possibility of command-line interfaces.

Option C:
Option C is incorrect because it leaves out B and does not mention file management as a key OS responsibility. Although A, D and E are true, omitting B makes the set incomplete.

Option D:
Option D is incorrect because it includes F, which wrongly claims that graphical systems cannot have command-line tools. Mixing true statements with this incorrect claim means the entire option cannot be accepted.

Two factor authentication (2FA) strengthens security by demanding evidence from two different categories such as something you know (password) and something you have (phone or token). Even if a password is compromised, the attacker still lacks the second factor. This approach reduces successful unauthorized access to online accounts. Therefore the dual requirement described in the stem exemplifies two factor authentication.

Option A:
Option A, single sign-on, allows users to access multiple systems with one set of credentials but does not necessarily involve multiple factors. It focuses on convenience rather than adding an extra independent verification.

Option B:
Option B, data encryption, protects information by converting it into unreadable form for unauthorized parties but is not itself an authentication method. It addresses confidentiality rather than proving identity during login.

Option C:
Option C is correct because 2FA schemes commonly use one-time codes delivered via SMS, authenticator apps or hardware tokens alongside traditional passwords. The example of a phone code in the stem matches this pattern exactly.

Option D:
Option D, file compression, reduces file size for storage or transmission efficiency and has no relation to verifying user identity.