Question 1

Which of the following is the BEST method for managing users in an enterprise?

Accepted Answer

A)  Enter user data in a spreadsheet. 
B)  Implement centralized access control. 
C)  Deploy Kerberos. 
D)  Place them in a centralized Lightweight Directory Access Protocol. 
E)  Use a Domain Name System. 
A)  Enter user data in a spreadsheet. 
B)  Implement centralized access control. 
C)  Deploy Kerberos. 
D)  Place them in a centralized Lightweight Directory Access Protocol. 
E)  Use a Domain Name System. D

Question 2

------- can mimic the symptoms of a denial-of-service attack, and the resulting loss in productivity can be no less devastating to an organization.

Accepted Answer

A)  ICMPtraffic 
B)  Peak traffic 
C)  Fragmented packets 
D)  Insufficient bandwidth 
E)  Burst traffic 
A)  ICMPtraffic 
B)  Peak traffic 
C)  Fragmented packets 
D)  Insufficient bandwidth 
E)  Burst traffic D

Question 3

_________ is a type of cryptography, where letters of an original message are systematically rearranged into another sequence.

Accepted Answer

A)  Symmetric-key exchange 
B)  Steganography 
C)  Transposition cipher 
D)  Asymmetric-key encryption 
E)  Simple substitution cipher 
A)  Symmetric-key exchange 
B)  Steganography 
C)  Transposition cipher 
D)  Asymmetric-key encryption 
E)  Simple substitution cipher C

Question 4

What is the purpose of resource isolation?

Accepted Answer

A)  To reduce the level of broadcast traffic on physical segments. 
B)  To ensure that anyone accessing a resource has appropriate integrity. 
C)  To automate the creation of access control lists and Trusted Computing Bases. 
D)  To enforce access controls, and clearly separate resources from each other. 
E)  To make people buy more computers than they really need. 
A)  To reduce the level of broadcast traffic on physical segments. 
B)  To ensure that anyone accessing a resource has appropriate integrity. 
C)  To automate the creation of access control lists and Trusted Computing Bases. 
D)  To enforce access controls, and clearly separate resources from each other. 
E)  To make people buy more computers than they really need.

Question 5

Which of these metrics measure how a biometric device performs, when attempting to authenticate subjects? (Choose THREE.)

Accepted Answer

A)  False Rejection Rate 
B)  User Acceptance Rate 
C)  Crossover Error Rate 
D)  False Acceptance Rate 
E)  Enrollment Failure Rate 
A)  False Rejection Rate 
B)  User Acceptance Rate 
C)  Crossover Error Rate 
D)  False Acceptance Rate 
E)  Enrollment Failure Rate

Question 6

Which of the following is MOST likely to cause management to view a security-needs proposal as invalid?

Accepted Answer

A)  Real-world examples 
B)  Exaggeration 
C)  Ranked threats 
D)  quantified risks 
E)  Temperate manner 
A)  Real-world examples 
B)  Exaggeration 
C)  Ranked threats 
D)  quantified risks 
E)  Temperate manner

Question 7

Which of the following are enterprise administrative controls? (Choose TWO.)

Accepted Answer

A)  Network access control 
B)  Facility access control 
C)  Password authentication 
D)  Background checks 
E)  Employee handbooks 
A)  Network access control 
B)  Facility access control 
C)  Password authentication 
D)  Background checks 
E)  Employee handbooks

Question 8

INFOSEC professionals are concerned about providing due care and due diligence. With whom should they consult, when protecting information assets?

Accepted Answer

A)  Law enforcement in their region 
B)  Senior management, particularly business-unit owners 
C)  IETF enforcement officials 
D)  Other INFOSEC professionals 
E)  Their organizations' legal experts 
A)  Law enforcement in their region 
B)  Senior management, particularly business-unit owners 
C)  IETF enforcement officials 
D)  Other INFOSEC professionals 
E)  Their organizations' legal experts

Question 9

Why should user populations be segmented?

Accepted Answer

A)  To allow resources to be shared among employees 
B)  To allow appropriate collaboration, and prevent inappropriate resource sharing 
C)  To prevent appropriate collaboration 
D)  To provide authentication services 
E)  To prevent the generation of audit trails from gateway devices 
A)  To allow resources to be shared among employees 
B)  To allow appropriate collaboration, and prevent inappropriate resource sharing 
C)  To prevent appropriate collaboration 
D)  To provide authentication services 
E)  To prevent the generation of audit trails from gateway devices

Question 10

Which of the following represents a valid reason for testing a patch on a non-production system, before applying it to a production system?

Accepted Answer

A)  Patches may re-enable services previously disabled. 
B)  Patches are a kind of virus. 
C)  Patches always overwrite user data. 
D)  Only patches on vendor-pressed CDs can be trusted. 
E)  Patches usually break important system functionality. 
A)  Patches may re-enable services previously disabled. 
B)  Patches are a kind of virus. 
C)  Patches always overwrite user data. 
D)  Only patches on vendor-pressed CDs can be trusted. 
E)  Patches usually break important system functionality.

Question 11

Virtual corporations typically use a(n) ___________ for maintaining centralized information assets.

Accepted Answer

A)  Off-line repository 
B)  Floppy disk 
C)  Data warehouse 
D)  CD-ROM burner 
E)  Colocation 
A)  Off-line repository 
B)  Floppy disk 
C)  Data warehouse 
D)  CD-ROM burner 
E)  Colocation

Question 12

Internal intrusions are loosely divided into which categories? (Choose TWO.)

Accepted Answer

A)  Attempts by insiders to perform appropriate acts, on information assets to which they have been given rights or permissions. 
B)  Attempts by insiders to access resources, without proper access rights 
C)  Attempts by insiders to access external resources, without proper access rights. 
D)  Attempts by insiders to perform inappropriate acts, on external information assets to which they have been given rights or permissions. 
E)  Attempts by insiders to perform inappropriate acts, on information assets to which they have been given rights or permissions. 
A)  Attempts by insiders to perform appropriate acts, on information assets to which they have been given rights or permissions. 
B)  Attempts by insiders to access resources, without proper access rights 
C)  Attempts by insiders to access external resources, without proper access rights. 
D)  Attempts by insiders to perform inappropriate acts, on external information assets to which they have been given rights or permissions. 
E)  Attempts by insiders to perform inappropriate acts, on information assets to which they have been given rights or permissions.

Question 13

What type of document contains information on alternative business locations, IT resources, and personnel?

Accepted Answer

A)  End-user license agreement 
B)  Nondisclosure agreement 
C)  Acceptable use policy 
D)  Security policy 
E)  Business continuity plan 
A)  End-user license agreement 
B)  Nondisclosure agreement 
C)  Acceptable use policy 
D)  Security policy 
E)  Business continuity plan

Question 14

You are a system administrator managing a pool of database servers. Your software vendor releases a service pack, with many new features. What should you do? (Choose TWO.)

Accepted Answer

A)  Eliminate the testing phase of change control. 
B)  Read the release notes 
C)  Refuse to install the service pack. 
D)  Install the service pack on all production database servers. 
E)  Install the service pack on a database server, in a test environment. 
A)  Eliminate the testing phase of change control. 
B)  Read the release notes 
C)  Refuse to install the service pack. 
D)  Install the service pack on all production database servers. 
E)  Install the service pack on a database server, in a test environment.

Question 15

A(n) __________ is an abstract machine, which mediates all access subjects have to objects.

Accepted Answer

A)  ACL 
B)  Reference monitor 
C)  State machine 
D)  TCB 
E)  Router 
A)  ACL 
B)  Reference monitor 
C)  State machine 
D)  TCB 
E)  Router

Question 16

Operating-svstem fingerprinting uses all of the following, EXCEPT ______, to identify a target operating system.

Accepted Answer

A)  Sequence Verifier 
B)  Initial sequence number 
C)  Address spoofing 
D)  Time to Live 
E)  IP ID field 
A)  Sequence Verifier 
B)  Initial sequence number 
C)  Address spoofing 
D)  Time to Live 
E)  IP ID field

Question 17

Which of the following tests provides testing teams some information about hosts or networks?

Accepted Answer

A)  Partial-knowledge test 
B)  Full-knowledge test 
C)  Zero-knowledge test 
A)  Partial-knowledge test 
B)  Full-knowledge test 
C)  Zero-knowledge test

Question 18

Which of the following is an integrity requirement for Remote Offices/Branch Offices (ROBOs)?

Accepted Answer

A)  Private data must remain internal to an organization. 
B)  Data must be consistent between ROBO sites and headquarters. 
C)  Users must be educated about appropriate security policies. 
D)  Improvised solutions must provide the level of protection required. 
E)  Data must remain available to all remote offices. 
A)  Private data must remain internal to an organization. 
B)  Data must be consistent between ROBO sites and headquarters. 
C)  Users must be educated about appropriate security policies. 
D)  Improvised solutions must provide the level of protection required. 
E)  Data must remain available to all remote offices.

Question 19

Which types of security solutions should a home user deploy? (Choose TWO.)

Accepted Answer

A)  Managed Security Gateway 
B)  Access control lists on a router 
C)  Personal firewall 
D)  Network intrusion-detection system 
E)  Anti-virus software 
A)  Managed Security Gateway 
B)  Access control lists on a router 
C)  Personal firewall 
D)  Network intrusion-detection system 
E)  Anti-virus software

Question 20

_________ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.

Accepted Answer

A)  Pattern matching 
B)  Statistical anomaly 
C)  Behavioral analysis 
D)  Host 
E)  Network 
A)  Pattern matching 
B)  Statistical anomaly 
C)  Behavioral analysis 
D)  Host 
E)  Network

Which of the following is the BEST method for managing users in an enterprise?

------- can mimic the symptoms of a denial-of-service attack, and the resulting loss in productivity can be no less devastating to an organization.

_________ is a type of cryptography, where letters of an original message are systematically rearranged into another sequence.

What is the purpose of resource isolation?

Which of these metrics measure how a biometric device performs, when attempting to authenticate subjects? (Choose THREE.)

Which of the following is MOST likely to cause management to view a security-needs proposal as invalid?

Which of the following are enterprise administrative controls? (Choose TWO.)

INFOSEC professionals are concerned about providing due care and due diligence. With whom should they consult, when protecting information assets?

Why should user populations be segmented?

Which of the following represents a valid reason for testing a patch on a non-production system, before applying it to a production system?

Virtual corporations typically use a(n) ___________ for maintaining centralized information assets.

Internal intrusions are loosely divided into which categories? (Choose TWO.)

What type of document contains information on alternative business locations, IT resources, and personnel?

You are a system administrator managing a pool of database servers. Your software vendor releases a service pack, with many new features. What should you do? (Choose TWO.)

A(n) __________ is an abstract machine, which mediates all access subjects have to objects.

Operating-svstem fingerprinting uses all of the following, EXCEPT ______, to identify a target operating system.

Which of the following tests provides testing teams some information about hosts or networks?

Which of the following is an integrity requirement for Remote Offices/Branch Offices (ROBOs)?

Which types of security solutions should a home user deploy? (Choose TWO.)

_________ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.

Check Point Certified Security Administrator (CCSA R80)

Check Point Certified Security Expert - R80

Filters

Exam 1: Check Point Certified Security Principles Associate (CCSPA)

Which of the following is the BEST method for managing users in an enterprise?

------- can mimic the symptoms of a denial-of-service attack, and the resulting loss in productivity can be no less devastating to an organization.

_________ is a type of cryptography, where letters of an original message are systematically rearranged into another sequence.

What is the purpose of resource isolation?

Which of these metrics measure how a biometric device performs, when attempting to authenticate subjects? (Choose THREE.)

Which of the following is MOST likely to cause management to view a security-needs proposal as invalid?

Which of the following are enterprise administrative controls? (Choose TWO.)

INFOSEC professionals are concerned about providing due care and due diligence. With whom should they consult, when protecting information assets?

Why should user populations be segmented?

Which of the following represents a valid reason for testing a patch on a non-production system, before applying it to a production system?

Virtual corporations typically use a(n) ___________ for maintaining centralized information assets.

Internal intrusions are loosely divided into which categories? (Choose TWO.)

What type of document contains information on alternative business locations, IT resources, and personnel?

You are a system administrator managing a pool of database servers. Your software vendor releases a service pack, with many new features. What should you do? (Choose TWO.)

A(n) __________ is an abstract machine, which mediates all access subjects have to objects.

Operating-svstem fingerprinting uses all of the following, EXCEPT ______, to identify a target operating system.

Which of the following tests provides testing teams some information about hosts or networks?

Which of the following is an integrity requirement for Remote Offices/Branch Offices (ROBOs)?

Which types of security solutions should a home user deploy? (Choose TWO.)

_________ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.

Check Point Certified Security Administrator (CCSA R80)

Check Point Certified Security Expert - R80

Filters