Sec+ 5

1.

1 point

255.255.0.0 is a

MAC address

IPv4 address

Subnet Mask

IPv6 address

2.

1 point

The main reason for preventing password re-use is

To increase password entrophy

To prevent a user from reverting to their old, familiar password

To encourage users to use different passwords on different systems

To prevent users from using the same passwords on different systems

3.

1 point

A software developer has introduced a feature in an application that permits him to access the application without the need to log in. This feature is known as a

Bypass

Front door

Side door

Back door

4.

1 point

A cryptosystem uses two-digit numerals to represent each character of a message. This is a

Concealment cipher

Vernam cipher

Substitution cipher

Transposition cipher

5.

1 point

California state law SB-1386

Requires organizations to publish their privacy policies

Requires organizations to encrypt bank account numbers

Requires organizations to disclose security breaches to affected citizens

Requires organizations to encrypt private data

6.

1 point

The purpose of penetration testing is

Simulate an attack by insiders

Confirm the presence of application vulnerabilities

Confirm the effectiveness of patch management

Simulate a real attack and identify vulnerabilities

7.

1 point

An advantage of video surveillance motion sensing recording over continuous recording is

Date and time stamping on video frames

Improved durability of storage media

Lower cost of storage media

Relevant content can be retained for a longer period of time

8.

1 point

The four basic requirements in the Orange Book are

Security policy, assurance, accountability, and documentation

Security policy, availability, accountability, and documentation

Security policy, assurance, confidentiality, and documentation

Security policy, assurance, accountability, and itegrity

9.

1 point

A document that is unclassified

Is a threat to national security

is not sensitive

Is secret and must be protected

Is not a threat to national security

10.

1 point

In a symmetric cryptosysystem, two users who wish to exchange encrypted message exchange cryptovariables. The next thing the users should do is

Re-issue encryption keys

Begin to exchange encrypted messages

Change encryption algorithm

Change to an asymmetric cryptosystem

11.

1 point

In the resource \\usdb01\symm\dew\src\ usdb01 is a

Server

Directory

File

Network

12.

1 point

An attacker has obtained a file containing hashed passwords. The fastest way to crack the hashed passwords is

Unsalt the hashes

Brute-force attack

Rainbow tables

Cryptanalysis

13.

1 point

The best method for defending against cross-site request forgery (CSRF) attack is

Enrcrypt traffic with SSL/TLS

Block JavaScript excucution

Filter input fields to reject injection strings

Include a transaction confirmation step with every critical application function

14.

1 point

A cryptosystem uses a key that is the same length of the message. The key is used only for this message. This is

Transformation cipher

Transposition cipher

Substitution cipher

Vernam cipher

15.

1 point

The purpose of the Sarbanes-Oxley Act of 2002 is to

Restore investors confidence in U.S companies

Ensure privacy of all U.S. citizens

Increase penalties for security breaches

Reduce securities fraud

16.

1 point

A disadvantage of HIDS is all of the following EXCEPT

A server-based HIDS system cannot be a choke point like a NIDS/NIPS/ can

A separate HIDS instance must be installed and maintained on every server

HIDS can only perform signature-based detection, not anomaly-based detection

It will not detect port scans on unused IP addresses

17.

1 point

The primary advantage for remote monitoring of datacenter access controls is

Local monitoring cannot identify all intrusions

Remote monitoring is more effective than local monitoring

Reduction of costs

It compensates for the possibility that personnel in the datacenter are unavailable or compromised

18.

1 point

TCSEC evaluation criteria are

Certification, inspection, and accreditiation

Confidentiality, integrity, and availability

Measurement, guidance, and acquistion

System architecture, system, integrity, and covert channel analysis

19.

1 point

A document that lists approved protocols is known as a

Process

Procedure

Guideline

Standard

20.

1 point

An encryption algorithm that rearranges bits, characters, or blocks of data known as a

Substitution cipher

Transposition cipher

Vernam cipher

Concealment cipher

21.

1 point

Systems on an internal network have RFC 1918 network addresses. To permit these systems to communicate with systems on the internet, what should be implemented on the firewall?

NAT

NAC

NAP

NAS

22.

1 point

The purpose of a user account access review is

All of these

To ensure that employee terminations were properly processed

To ensure that all role assignments were properly approved

To ensure that assigned roles are still needed

23.

1 point

The most effective countermeasure for session hijacking is

Two-factor authentication

Strong passwords

Full disk encryption

Full session HTTPS encryption

24.

1 point

A cryptologist has determined that a cryptosystem has a weak PRNG. This can lead to

Compromise of the cryptosystem

Increased performance of the cryptosystem

Decreased performance of the cryptosystem

Collisions

25.

1 point

Record keeping that is related to the acquisition and management of forensic evidence is known as

Best evidence

Burden of proof

Chain of custody

Certification

26.

1 point

The purpose of audit trails includes all of the following EXCEPT

Event reconstruction

Investigation support

Enforcement of accountability

Data recovery

27.

1 point

In a datacenter that provides dual power feeds to each equipment rack, components with dual power supplies are connected to each power feed. Why should power circuits not be loaded over 40% capacity?

To permit systems to be powered-cycled without overloading circuits

To permit systems to be rebooted without overloading circuits

To permit power supplies to be swapped out

If one power feed fails, power draw on alternate circuits will double

28.

1 point

A web application that uses sequential session identifiers

Has high resilience

Has low resilience

Is vulnerable to session hijacking

Is not vulnerable to session hijacking

29.

1 point

All of the following statements about policies are true EXCEPT

They specify what should be done

They specify how something should be done

They should be reviewed annually

They are formal statements of rules

30.

1 point

An encryption algorithm that replaces bits, characters, or blocks in plaintext with alternate bits, characters, or blocks is known as a

Substitution cipher

Transposition cipher

Vernam cipher

Concealment cipher

31.

1 point

Two-factor authentication is preferred for VPN because

It is more resistant to a dictionary attack

It is more resistant to a replay attack

Encryption protects authentication credentials

Encryption protects encapsulated

32.

1 point

An audit of user access has revealed that user accounts are not being locked when employees leave the organization. The best way to mitigate this finding is

Reset all account passwords

Lock all user accounts and require users to re-apply for access

Improve the termination process and perform monthly access reviews

Discipline the culpable personnel

33.

1 point

A blogging site allows users to embed JavaScript in the body of blog entries. This will allow what type of attack

Cross-frame scripting

Cross-site request forgery

Non-persistent cross-site scripting

Persistent cross-site scripting

34.

1 point

A system designer needs to choose a stream cipher to encrypt data. The designer should choose

3DES

AES

RC1

RC4

35.

1 point

Evidence that is obtained through illegal means

May be used in a legal proceeding

May be used as indirect evidence

Cannot be used in a legal proceeding

Must be returned to its owner

36.

1 point

A particular type of security incident occurs frequently in an organization. What should be performed to reduce the frequency of these incidents?

Audit log correlation

Root cause alalysis

Incident forensics

Six Sigma analysis

37.

1 point

What procedure should be followed by personnel in case of fire in a data center?

All personnel should remain to flight the fire

One person should remain behind and fight the fire

Collect backup media and evacuate

Immediate evacuation

38.

1 point

The following statements about the Common Criteria are EXCEPTED

It is the European version of ITSEC

It has been adopted as international standard ISO 15408

It contains eight levels of evaluation assurance

It suspersedes TCSEC and ITSEC

39.

1 point

An organization has employees in many countries, where laws vary on the type of background checks that can be performed. The best approach for background checks is

Perform background checks only in those countries that permit reasonable checks

Perform the best background check in each country as permitted by law

Perform the same background check in all countries by performing only what is allowed in all of them

Do not perform background checks

40.

1 point

A disadvantage of a symmetric cryptosystem is

It is far less efficient than an asymmetric cryptosystem

Users who do not know each other will have difficulty securely exchanging keys

It is difficult to publish a public key

It is easy to publish a public key

41.

1 point

Two organizations exchange data via FTP. The best choice to make this more secure is

Change the FTP protocol to SFTP or FTPS

Encrypt transferred files with PGP

Change password more frequently

Change to longer, complex passwords

42.

1 point

An attacker is capturing a user's keystrokes during authentication. The attacker may be preparing to lunch a

Brute-force attack

Cryptanalysis attack

Replay attack

Denial of service attack

43.

1 point

Users in a company have received e-mail messages claiming to be from the company's IT department with instructions on installing a security patch. The URL points to a page resembles the company's IT Help desk home page. This may be a

Whaling attack

Pharming atttack

Phishing attack

Spear phishing attack

44.

1 point

A laptop containing several private encryption keys has been stolen. The owner of the encryption keys should

Generate new key pairs

Change the key's passwords

Change encryption algorithms

No action is necessary

45.

1 point

A company outsources its credit card processing to a third-party organization. The company should

Require the third-party organization to be PCI-compliant

Require the third-party organization to be GLBA-compliant

Sign a contract with the third-party organization

Perform penetration test on the third party's system

46.

1 point

Administration of a centralized audit log server should be performed by

Database adminstrators

IT auditors

The same administrators who manage servers being logged

Separate administrators from who administer servers being logged

47.

1 point

The idea level of relative humidity for datacenter computing equipment is

Between 0% and 20%

Between 20% and 40%

0%

Between 40% and 60%

48.

1 point

A security manager wishes to establish a set of access control rules that specify which organization job titles are permitted to have which roles in a system. The model that the security manager should use as a model is

Access Matrix

Information Flow

Non-Interference

Biba

49.

1 point

A decision on how to resolve an identified risk is known as

Risk control

Risk treatment

Risk management

Risk mitigation

50.

1 point

The advantage of Cipher Block Chaining (CBC) is

Each block of ciphertext has a less random resuld

Each block of ciphertext has a more random result

Each block of ciphertext is encrypted separately

Each block of ciphertext is decrypted separately