401

Frage 1

Frage

A distributed denial of service attack can BEST be described as:

Antworten

invalid characters being entered into a field in a database application
users attempting to input random or invalid data into fields within a web browser application
multiple computers attacking a single target in an organized attempt to deplete its resources
multiple attackers attempting to gain elevated privileges on a target system

Frage 2

Frage

Joe analyzed the following log and determined the security team should implement which of the following as a mitigation method against further attempts? Host 192.168.1.123 [00: 00: 01]Successful Login: 015 192.168.1.123 : local [00: 00: 03]Unsuccessful Login: 022 214.34.56.006 : RDP 192.168.1.124 [00: 00: 04]UnSuccessful Login: 010 214.34.56.006 : RDP 192.168.1.124 [00: 00: 07]UnSuccessful Login: 007 214.34.56.006 : RDP 192.168.1.124 [00: 00: 08]UnSuccessful Login: 003 214.34.56.006 : RDP 192.168.1.124

Antworten

Reporting
IDS
Monitor system logs
Hardening

Frage 3

Frage

A computer supply company is located in a building with three wireless networks. The system security team implemented a quarterly security scan and saw the following. SSID State Channel Level Computer AreUs1 connected 1 70dbm Computer AreUs2 connected 5 80dbm Computer AreUs3 connected 3 75dbm Computer AreUs4 connected 6 95dbm Which of the following is this an example of?

Antworten

Rogue access point
Near field communication
Jamming
Packet sniffing

Frage 4

Frage

A systems administrator has implemented PKI on a classified government network. In the event that a disconnect occurs from the primary CA, which of the following should be accessible locally from every site to ensure users with bad certificates cannot gain access to the network?

Antworten

A CRL
Make the RA available
A verification authority
A redundant CA

Frage 5

Frage

While configuring a new access layer switch, the administrator, Joe, was advised that he needed to make sure that only devices authorized to access the network would be permitted to login and utilize resources. Which of the following should the administrator implement to ensure this happens?

Antworten

Log Analysis
VLAN Management
Network separation
802.1x

Frage 6

Frage

A vulnerability assessment indicates that a router can be accessed from default port 80 and default port 22. Which of the following should be executed on the router to prevent access via these ports? (Select TWO)

Antworten

FTP service should be disabled
HTTPS service should be disabled
SSH service should be disabled
HTTP service should disabled
Telnet service should be disabled

Frage 7

Frage

Results from a vulnerability analysis indicate that all enabled virtual terminals on a router can be accessed using the same password. The company's network device security policy mandates that at least one virtual terminal have a different password than the other virtual terminals. Which of the following sets of commands would meet this requirement?

Antworten

line vty 0 6 P@s5W0Rd password line vty 7 Qwer++!Y password
line console 0 password password line vty 0 4 password P@s5W0Rd
line vty 0 3 password Qwer++!Y line vty 4 password P@s5W0Rd
line vty 0 3 password Qwer++!Y line console 0 password P@s5W0Rd

Frage 8

Frage

Joe, an employee, was escorted from the company premises due to suspicion of revealing trade secrets to a competitor. Joe had already been working for two hours before leaving the premises. A security technician was asked to prepare a report of files that had changed since last night's integrity scan. Which of the following could the technician use to prepare the report? (Select TWO)

Antworten

PGP
MD5
ECC
AES
Blowfish
HMAC

Frage 9

Frage

Ann has read and write access to an employee database, while Joe has only read access. Ann is leaving for a conference. Which of the following types of authorization could be utilized to trigger write access for Joe when Ann is absent?

Antworten

Mandatory access control
Role-based access control
Discretionary access control
Rule-based access control

Frage 10

Frage

Human Resources suspects an employee is accessing the employee salary database. The administrator is asked to find out who it is. In order to complete this task, which of the following is a security control that should be in place?

Antworten

Shared accounts should be prohibited
Account lockout should be enabled
Privileges should be assigned to groups rather than individuals
Time of day restrictions should be in use

Frage 11

Frage

An administrator finds that non-production servers are being frequently compromised, production servers are rebooting at unplanned times and kernel versions are several releases behind the version with all current security fixes. Which of the following should the administrator implement?

Antworten

Snapshots
Sandboxing
Patch management
Intrusion detection system

Frage 12

Frage

An auditor's report discovered several accounts with no activity for over 60 days. The accounts were later identified as contractors' accounts who would be returning in three months and would need to resume the activities. Which of the following would mitigate and secure the auditors finding?

Antworten

Disable unnecessary contractor accounts and inform the auditor of the update
Reset contractor accounts and inform the auditor of the update
Inform the auditor that the accounts belong to the contractors
Delete contractor accounts and inform the auditor of the update

Frage 13

Frage

Ann, the security administrator, wishes to implement multifactor security. Which of the following should be implemented in order to compliment password usage and smart cards?

Antworten

Hard tokens
Fingerprint readers
Swipe badge readers
Passphrases

Frage 14

Frage

Customers' credit card information was stolen from a popular video streaming company. A security consultant determined that the information was stolen, while in transit, from the gaming consoles of a particular vendor. Which of the following methods should the company consider to secure this data in the future?

Antworten

Application firewalls
Manual updates
Firmware version control
Encrypted TCP wrappers

Frage 15

Frage

A new intern was assigned to the system engineering department, which consists of the system architect and system software developer's teams. These two teams have separate privileges. The intern requires privileges to view the system architectural drawings and comment on some software development projects. Which of the following methods should the system administrator implement?

Antworten

Group based privileges
Generic account prohibition
User access review
Credential management

Frage 16

Frage

One of the system administrators at a company is assigned to maintain a secure computer lab. The administrator has rights to configure machines, install software, and perform user account maintenance. However, the administrator cannot add new computers to the domain, because that requires authorization from the Information Assurance Officer. This is an example of which of the following?

Antworten

Mandatory access
Rule-based access control
Least privilege
Job rotation

Frage 17

Frage

A small business needs to incorporate fault tolerance into their infrastructure to increase data availability. Which of the following options would be the BEST solution at a minimal cost?

Antworten

Clustering
Mirrored server
RAID
Tape backup

Frage 18

Frage

A new application needs to be deployed on a virtual server. The virtual server hosts a SQL server that is used by several employees. Which of the following is the BEST approach for implementation of the new application on the virtual server?

Antworten

Take a snapshot of the virtual server after installing the new application and store the snapshot in a secure location
Generate a baseline report detailing all installed applications on the virtualized server after installing the new application
Take a snapshot of the virtual server before installing the new application and store the snapshot in a secure location
Create an exact copy of the virtual server and store the copy on an external hard drive after installing the new application

Frage 19

Frage

Ann wants to send a file to Joe using PKI. Which of the following should Ann use in order to sign the file?

Antworten

Joe's public key
Joe's private key
Ann's public key
Ann's private key

Frage 20

Frage

Which of the following protocols is used to validate whether trust is in place and accurate by returning responses of either "good", "unknown", or "revoked"?

Antworten

CRL
PKI
OCSP
RA

Frage 21

Frage

During a recent investigation, an auditor discovered that an engineer's compromised workstation was being used to connect to SCADA systems while the engineer was not logged in. The engineer is responsible for administering the SCADA systems and cannot be blocked from connecting to them. The SCADA systems cannot be modified without vendor approval which requires months of testing. Which of the following is MOST likely to protect the SCADA systems from misuse?

Antworten

Update anti-virus definitions on SCADA systems
Audit accounts on the SCADA systems
Install a firewall on the SCADA network
Deploy NIPS at the edge of the SCADA network

Frage 22

Frage

A security administrator must implement a network authentication solution which will ensure encryption of user credentials when users enter their username and password to authenticate to the network. Which of the following should the administrator implement?

Antworten

WPA2 over EAP-TTLS
WPA-PSK
WPA2 with WPS
WEP over EAP-PEAP

Frage 23

Frage

Several employees have been printing files that include personally identifiable information of customers. Auditors have raised concerns about the destruction of these hard copies after they are created, and management has decided the best way to address this concern is by preventing these files from being printed. Which of the following would be the BEST control to implement?

Antworten

File encryption
Printer hardening
Clean desk policies
Data loss prevention

Frage 24

Frage

The company's sales team plans to work late to provide the Chief Executive Officer (CEO) with a special report of sales before the quarter ends. After working for several hours, the team finds they cannot save or print the reports. Which of the following controls is preventing them from completing their work?

Antworten

Discretionary access control
Role-based access control
Time of Day access control
Mandatory access control

Frage 25

Frage

A security engineer is asked by the company's development team to recommend the most secure method for password storage. Which of the following provide the BEST protection against brute forcing stored passwords? (Select TWO).

Antworten

PBKDF2
MD5
SHA2
Bcrypt
AES
CHAP

Frage 26

Frage

After entering the following information into a SOHO wireless router, a mobile device's user reports being unable to connect to the network: PERMIT 0A: D1: FA. B1: 03: 37 DENY 01: 33: 7F: AB: 10: AB Which of the following is preventing the device from connecting?

Antworten

WPA2-PSK requires a supplicant on the mobile device
Hardware address filtering is blocking the device
TCP/IP Port filtering has been implemented on the SOHO router
IP address filtering has disabled the device from connecting

Frage 27

Frage

The call center supervisor has reported that many employees have been playing preinstalled games on company computers and this is reducing productivity. Which of the following would be MOST effective for preventing this behavior?

Antworten

Acceptable use policies
Host-based firewalls
Content inspection
Application whitelisting

Frage 28

Frage

When creating a public / private key pair, for which of the following ciphers would a user need to specify the key strength?

Antworten

Frage 29

Frage

A company has decided to move large data sets to a cloud provider in order to limit the costs of new infrastructure. Some of the data is sensitive and the Chief Information Officer wants to make sure both parties have a clear understanding of the controls needed to protect the data. Which of the following types of interoperability agreement is this?

Antworten

Frage 30

Frage

Which of the following solutions provides the most flexibility when testing new security controls prior to implementation?

Antworten

Trusted OS
Host software baselining
OS hardening
Virtualization

Frage 31

Frage

Which of the following authentication services requires the use of a ticket-granting ticket (TGT) server in order to complete the authentication process?

Antworten

TACACS+
Secure LDAP
RADIUS
Kerberos

Frage 32

Frage

Which of the following is a hardware based encryption device?

Antworten

EFS
TrueCrypt
TPM
SLE

Frage 33

Frage

Which of the following BEST describes a protective countermeasure for SQL injection?

Antworten

Eliminating cross-site scripting vulnerabilities
Installing an IDS to monitor network traffic
Validating user input in web applications
Placing a firewall between the Internet and database servers

Frage 34

Frage

Which of the following MOST interferes with network-based detection techniques?

Antworten

Mime-encoding
SSL
FTP
Anonymous email accounts

Frage 35

Frage

A certificate authority takes which of the following actions in PKI?

Antworten

Signs and verifies all infrastructure messages
Issues and signs all private keys
Publishes key escrow lists to CRLs
Issues and signs all root certificates

Frage 36

Frage

Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks?

Antworten

Malicious code on the local system
Shoulder surfing
Brute force certificate cracking
Distributed dictionary attacks

Frage 37

Frage

Separation of duties is often implemented between developers and administrators in order to separate which of the following?

Antworten

More experienced employees from less experienced employees
Changes to program code and the ability to deploy to production
Upper level management users from standard development employees
The network access layer from the application access layer

Frage 38

Frage

A security administrator needs to update the OS on all the switches in the company. Which of the following MUST be done before any actual switch configuration is performed?

Antworten

The request needs to be sent to the incident management team
The request needs to be approved through the incident management process
The request needs to be approved through the change management process
The request needs to be sent to the change management team

Frage 39

Frage

Jane, an individual, has recently been calling various financial offices pretending to be another person to gain financial information. Which of the following attacks is being described?

Antworten

Phishing
Tailgating
Pharming
Vishing

Frage 40

Frage

A user in the company is in charge of various financial roles but needs to prepare for an upcoming audit. They use the same account to access each financial system. Which of the following security controls will MOST likely be implemented within the company?

Antworten

Account lockout policy
Account password enforcement
Password complexity enabled
Separation of duties

Frage 41

Frage

A CRL is comprised of

Antworten

Malicious IP addresses
Trusted CA's
Untrusted private keys
Public keys

Frage 42

Frage

Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware?

Antworten

Logic bomb
Worm
Trojan
Adware

Frage 43

Frage

Which of the following may significantly reduce data loss if multiple drives fail at the same time?

Antworten

Virtualization
RAID
Load balancing
Server clustering

Frage 44

Frage

Which of the following should be considered to mitigate data theft when using CAT5 wiring?

Antworten

CCTV
Environmental monitoring
Multimode fiber
EMI shielding

Frage 45

Frage

To help prevent unauthorized access to PCs, a security administrator implements screen savers that lock the PC after five minutes of inactivity. Which of the following controls is being described in this situation?

Antworten

Management
Administrative
Technical
Operational

Frage 46

Frage

Pete, a network administrator, is capturing packets on the network and notices that a large amount of the traffic on the LAN is SIP and RTP protocols. Which of the following should he do to segment that traffic from the other traffic?

Antworten

Connect the WAP to a different switch.
Create a voice VLAN.
Create a DMZ.
Set the switch ports to 802.1q mode.

Frage 47

Frage

Which of the following IP addresses would be hosts on the same subnet given the subnet mask 255.255.255.224? (Select TWO).

Antworten

10.4.4.125
10.4.4.158
10.4.4.165
10.4.4.189
10.4.4.199

Frage 48

Frage

Which of the following algorithms has well documented collisions? (Select TWO).

Antworten

AES
MD5
SHA
SHA-256
RSA

Frage 49

Frage

Which of the following is BEST used as a secure replacement for TELNET?

Antworten

HTTPS
HMAC
GPG
SSH

Frage 50

Frage

An email client says a digital signature is invalid and the sender cannot be verified. The recipient is concerned with which of the following concepts?

Antworten

Integrity
Availability
Confidentiality
Remediation

Frage 51

Frage

Which of the following is an effective way to ensure the BEST temperature for all equipment within a datacenter?

Antworten

Fire suppression
Raised floor implementation
EMI shielding
Hot or cool aisle containment

Frage 52

Frage

Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server?

Antworten

SSLv2
SSHv1
RSA
TLS

Frage 53

Frage

Developers currently have access to update production servers without going through an approval process. Which of the following strategies would BEST mitigate this risk?

Antworten

Incident management
Clean desk policy
Routine audits
Change management

Frage 54

Frage

Which of the following is a difference between TFTP and FTP?

Antworten

TFTP is slower than FTP
TFTP is more secure than FTP
TFTP utilizes TCP and FTP uses UDP
TFTP utilizes UDP and FTP uses TCP

Frage 55

Frage

Matt, an administrator, notices a flood fragmented packet and retransmits from an email server. After disabling the TCP offload setting on the NIC, Matt sees normal traffic with packets flowing in sequence again. Which of the following utilities was he MOST likely using to view this issue?

Antworten

Spam filter
Protocol analyzer
Web application firewall
Load balancer

Frage 56

Frage

Which of the following is characterized by an attacker attempting to map out an organization's staff hierarchy in order to send targeted emails?

Antworten

Whaling
Impersonation
Privilege escalation
Spear phishing

Frage 57

Frage

Which of the following would a security administrator implement in order to discover comprehensive security threats on a network?

Antworten

Design reviews
Baseline reporting
Vulnerability scan
Code review

Frage 58

Frage

Which of the following is an example of a false positive?

Antworten

Anti-virus identifies a benign application as malware
A biometric iris scanner rejects an authorized user wearing a new contact lens
A user account is locked out after the user mistypes the password too many times
The IDS does not identify a buffer overflow

Frage 59

Frage

Data execution prevention is a feature in most operating systems intended to protect against which type of attack?

Antworten

Cross-site scripting
Buffer overflow
Header manipulation
SQL injection

Frage 60

Frage

Use of group accounts should be minimized to ensure which of the following?

Antworten

Password security
Regular auditing
Baseline management
Individual accountability

Frage 61

Frage

Privilege creep among long-term employees can be mitigated by which of the following procedures?

Antworten

User permission reviews
Mandatory vacations
Separation of duties
Job function rotation

Frage 62

Frage

In which of the following scenarios is PKI LEAST hardened?

Antworten

The CRL is posted to a publicly accessible location
The recorded time offsets are developed with symmetric keys
A malicious CA certificate is loaded on all the clients
All public keys are accessed by an unauthorized user

Frage 63

Frage

Configuring the mode, encryption methods, and security associations are part of which of the following?

Antworten

IPSec
Full disk encryption
802.1x
PKI

Frage 64

Frage

Which of the following assessments would Pete, the security administrator, use to actively test that an application's security controls are in place?

Antworten

Code review
Penetration test
Protocol analyzer
Vulnerability scan

Frage 65

Frage

A security administrator has just finished creating a hot site for the company. This implementation relates to which of the following concepts?

Antworten

Confidentiality
Availability
Succession planning
Integrity

Frage 66

Frage

In the initial stages of an incident response, Matt, the security administrator, was provided the hard drives in question from the incident manager. Which of the following incident response procedures would he need to perform in order to begin the analysis? (Select TWO).

Antworten

Take hashes
Begin the chain of custody paperwork
Take screen shots
Capture the system image
Decompile suspicious files

Frage 67

Frage

Which of the following is used to certify intermediate authorities in a large PKI deployment?

Antworten

Root CA
Recovery agent
Root user
Key escrow

Frage 68

Frage

Which of the following components MUST be trusted by all parties in PKI?

Antworten

Key escrow
CA
Private key
Recovery key

Frage 69

Frage

Which of the following should Matt, a security administrator, include when encrypting smartphones? (Select TWO).

Antworten

Steganography images
Internal memory
Master boot records
Removable memory cards
Public keys

Frage 70

Frage

Which of the following is the below pseudo-code an example of? IF VARIABLE (CONTAINS NUMBERS = TRUE) THEN EXIT

Antworten

Buffer overflow prevention
Input validation
CSRF prevention
Cross-site scripting prevention

Frage 71

Frage

A system administrator is using a packet sniffer to troubleshoot remote authentication. The administrator detects a device trying to communicate to TCP port 49. Which of the following authentication methods is MOST likely being attempted?

Antworten

RADIUS
TACACS+
Kerberos
LDAP

Frage 72

Frage

Which of the following can use RC4 for encryption? (Select TWO).

Antworten

CHAP
SSL
WEP
AES
3DES

Frage 73

Frage

Which of the following defines a business goal for system restoration and acceptable data loss?

Antworten

MTTR
MTBF
RPO
Warn site

Frage 74

Frage

If Organization A trusts Organization B and Organization B trusts Organization C, then Organization A trusts Organization C. Which of the following PKI concepts is this describing?

Antworten

Transitive trust
Public key trust
Certificate authority trust
Domain level trust

Frage 75

Frage

Which of the following concepts is BEST described as developing a new chain of command in the event of a contingency?

Antworten

Business continuity planning
Continuity of operations
Business impact analysis
Succession planning

Frage 76

Frage

Which of the following allows a company to maintain access to encrypted resources when employee turnover is high?

Antworten

Recovery agent
Certificate authority
Trust model
Key escrow

Frage 77

Frage

Which of the following devices will help prevent a laptop from being removed from a certain location?

Antworten

Device encryption
Cable locks
GPS tracking
Remote data wipes

Frage 78

Frage

Which of the following is the MOST secure protocol to transfer files?

Antworten

FTP
FTPS
SSH
TELNET

Frage 79

Frage

Suspicious traffic without a specific signature was detected. Under further investigation, it was determined that these were false indicators. Which of the following security devices needs to be configured to disable future false alarms?

Antworten

Signature based IPS
Signature based IDS
Application based IPS
Anomaly based IDS

Frage 80

Frage

A company storing data on a secure server wants to ensure it is legally able to dismiss and prosecute staff who intentionally access the server via Telnet and illegally tamper with customer data. Which of the following administrative controls should be implemented to BEST achieve this?

Antworten

Command shell restrictions
Restricted interface
Warning banners
Session output pipe to /dev/null

Frage 81

Frage

Which of the following protocols is used to authenticate the client and server's digital certificate?

Antworten

PEAP
DNS
TLS
ICMP

Frage 82

Frage

Which of the following can be used to mitigate risk if a mobile device is lost?

Antworten

Cable lock
Transport encryption
Voice encryption
Strong passwords

Frage 83

Frage

Which of the following security concepts would Sara, the security administrator, use to mitigate the risk of data loss?

Antworten

Record time offset
Clean desk policy
Cloud computing
Routine log review

Frage 84

Frage

Which of the following is an example of multifactor authentication?

Antworten

Credit card and PIN
Username and password
Password and PIN
Fingerprint and retina scan

Frage 85

Frage

After Matt, a user, enters his username and password at the login screen of a web enabled portal, the following appears on his screen: `Please only use letters and numbers on these fields' Which of the following is this an example of?

Antworten

Proper error handling
Proper input validation
Improper input validation
Improper error handling

Frage 86

Frage

Which of the following should the security administrator implement to limit web traffic based on country of origin? (Select THREE)

Antworten

Spam filter
Load balancer
Antivirus
Proxies
Firewall
NIDS
URL filtering

Frage 87

Frage

Several bins are located throughout a building for secure disposal of sensitive information. Which of the following does this prevent?

Antworten

Dumpster diving
War driving
Tailgating
War chalking

Frage 88

Frage

Matt, a developer, recently attended a workshop on a new application. The developer installs the new application on a production system to test the functionality. Which of the following is MOST likely affected?

Antworten

Application design
Application security
Initial baseline configuration
Management of interfaces

Frage 89

Frage

Sara, a company's security officer, often receives reports of unauthorized personnel having access codes to the cipher locks of secure areas in the building. Sara should immediately implement which of the following?

Antworten

Acceptable Use Policy
Physical security controls
Technical controls
Security awareness training

Frage 90

Frage

Mike, a network administrator, has been asked to passively monitor network traffic to the company's sales websites. Which of the following would be BEST suited for this task?

Antworten

HIDS
Firewall
NIPS
Spam filter

Frage 91

Frage

Mike, a security professional, is tasked with actively verifying the strength of the security controls on a company's live modem pool. Which of the following activities is MOST appropriate?

Antworten

War dialing
War chalking
War driving
Bluesnarfing

Frage 92

Frage

Users at a company report that a popular news website keeps taking them to a web page with derogatory content. This is an example of which of the following?

Antworten

Evil twin
DNS poisoning
Vishing
Session hijacking

Frage 93

Frage

An encrypted message is sent using PKI from Sara, a client, to a customer. Sara claims she never sent the message. Which of the following aspects of PKI BEST ensures the identity of the sender?

Antworten

CRL
Non-repudiation
Trust models
Recovery agents

Frage 94

Frage

Jane, a security administrator, has observed repeated attempts to break into a server. Which of the following is designed to stop an intrusion on a specific server?

Antworten

HIPS
NIDS
HIDS
NIPS

Frage 95

Frage

Matt, the IT Manager, wants to create a new network available to virtual servers on the same hypervisor, and does not want this network to be routable to the firewall. How could this BEST be accomplished?

Antworten

Create a VLAN without a default gateway
Remove the network from the routing table
Create a virtual switch
Commission a stand-alone switch

Frage 96

Frage

A security administrator implements access controls based on the security classification of the data and need-to-know information. Which of the following BEST describes this level of access control?

Antworten

Implicit deny
Role-based Access Control
Mandatory Access Controls
Least privilege

Frage 97

Frage

A security administrator has configured FTP in passive mode. Which of the following ports should the security administrator allow on the firewall by default?

Antworten

Frage 98

Frage

Which of the following could cause a browser to display the message below? "The security certificate presented by this website was issued for a different website's address."

Antworten

The website certificate was issued by a different CA than what the browser recognizes in its trusted CAs
The website is using a wildcard certificate issued for the company's domain
HTTPS://127.0.01 was used instead of HTTPS://localhost
The website is using an expired self signed certificate

Frage 99

Frage

A company that purchased an HVAC system for the datacenter is MOST concerned with which of the following?

Antworten

Availability
Integrity
Confidentiality
Fire suppression

Frage 100

Frage

Which of the following pseudocodes can be used to handle program exceptions?

Antworten

If program detects another instance of itself, then kill program instance
If user enters invalid input, then restart program
If program module crashes, then restart program module
If user's input exceeds buffer length, then truncate the input

Frage 101

Frage

Which of the following functions provides an output which cannot be reversed and converts data into a string of characters?

Antworten

Hashing
Stream ciphers
Steganography
Block ciphers

Frage 102

Frage

Which of the following encrypts data a single bit at a time?

Antworten

Stream cipher
Steganography
3DES
Hashing

Frage 103

Frage

Which of the following is used to verify data integrity?

Antworten

SHA
3DES
AES
RSA

Frage 104

Frage

By default, which of the following uses TCP port 22? (Select THREE).

Antworten

FTPS
STELNET
TLS
SCP
SSL
HTTPS
SSH
SFTP

Frage 105

Frage

Access mechanisms to data on encrypted USB hard drives must be implemented correctly otherwise.

Antworten

user accounts may be inadvertently locked out
data on the USB drive could be corrupted
data on the hard drive will be vulnerable to log analysis
the security controls on the USB drive can be bypassed

Frage 106

Frage

Maintenance workers find an active network switch hidden above a dropped-ceiling tile in the CEO's office with various connected cables from the office. Which of the following describes the type of attack that was occurring?

Antworten

Spear phishing
Packet sniffing
Impersonation
MAC flooding

Frage 107

Frage

A security administrator is segregating all web-facing server traffic from the internal network and restricting it to a single interface on a firewall. Which of the following BEST describes this new network?

Antworten

VLAN
Subnet
VPN
DMZ

Frage 108

Frage

Which of the following was based on a previous X.500 specification and allows either unencrypted authentication or encrypted authentication through the use of TLS?

Antworten

Kerberos
TACACS+
RADIUS
LDAP

Frage 109

Frage

The Quality Assurance team is testing a new third party developed application. The Quality team does not have any experience with the application. Which of the following is the team performing?

Antworten

Grey box testing
Black box testing
Penetration testing
White box testing

Frage 110

Frage

Which of the following has a storage root key?

Antworten

HSM
EFS
TPM
TKIP

Frage 111

Frage

A security analyst, Ann, is reviewing an IRC channel and notices that a malicious exploit has been created for a frequently used application. She notifies the software vendor and asks them for remediation steps, but is alarmed to find that no patches are available to mitigate this vulnerability. Which of the following BEST describes this exploit?

Antworten

Malicious insider threat
Zero-day
Client-side attack
Malicious add-on

Frage 112

Frage

A security administrator has concerns about new types of media which allow for the mass distribution of personal comments to a select group of people. To mitigate the risks involved with this media, employees should receive training on which of the following?

Antworten

Peer to Peer
Mobile devices
Social networking
Personally owned devices

Frage 113

Frage

A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software updates. Which of the following processes could MOST effectively mitigate these risks?

Antworten

Application hardening
Application change management
Application patch management
Application firewall review

Frage 114

Frage

A software developer is responsible for writing the code on an accounting application. Another software developer is responsible for developing code on a system in human resources. Once a year they have to switch roles for several weeks. Which of the following practices is being implemented?

Antworten

Mandatory vacations
Job rotation
Least privilege
Separation of duties

Frage 115

Frage

A network engineer is designing a secure tunneled VPN. Which of the following protocols would be the MOST secure?

Antworten

IPsec
SFTP
BGP
PPTP

Frage 116

Frage

Which of the following implementation steps would be appropriate for a public wireless hot- spot?

Antworten

Reduce power level
Disable SSID broadcast
Open system authentication
MAC filter

Frage 117

Frage

Which of the following is a step in deploying a WPA2-Enterprise wireless network?

Antworten

Install a token on the authentication server
Install a DHCP server on the authentication server
Install an encryption key on the authentication server
Install a digital certificate on the authentication server

Frage 118

Frage

Which of the following controls would allow a company to reduce the exposure of sensitive systems from unmanaged devices on internal networks?

Antworten

802.1x
Data encryption
Password strength
BGP

	Erstellt von maxwell3254 vor mehr als 9 Jahre

Nächster

Beschreibung

Zusammenfassung der Ressource

Frage 1

Frage 2

Frage 3

Frage 4

Frage 5

Frage 6

Frage 7

Frage 8

Frage 9

Frage 10

Frage 11

Frage 12

Frage 13

Frage 14

Frage 15

Frage 16

Frage 17

Frage 18

Frage 19

Frage 20

Frage 21

Frage 22

Frage 23

Frage 24

Frage 25

Frage 26

Frage 27

Frage 28

Frage 29

Frage 30

Frage 31

Frage 32

Frage 33

Frage 34

Frage 35

Frage 36

Frage 37

Frage 38

Frage 39

Frage 40

Frage 41

Frage 42

Frage 43

Frage 44

Frage 45

Frage 46

Frage 47

Frage 48

Frage 49

Frage 50

Frage 51

Frage 52

Frage 53

Frage 54

Frage 55

Frage 56

Frage 57

Frage 58

Frage 59

Frage 60

Frage 61

Frage 62

Frage 63

Frage 64

Frage 65

Frage 66

Frage 67

Frage 68

Frage 69

Frage 70

Frage 71

Frage 72

Frage 73

Frage 74

Frage 75

Frage 76