401-450

Question 1

Which of the following is an example of establishing a published chart of roles, responsibilities, and chain of command to be used during a disaster?

Answer 1

Succession planning

Question 2

A network administrator recently updated various network devices to ensure redundancy throughout the network. If an interface on any of the Layer 3 devices were to go down, traffic will still pass through another interface and the production environment would be unaffected.

Which of the following concepts represents this type of configuration?

Answer 2

High availability

Question 3

A network administrator has purchased two devices that will act as failovers for each other.

Which of the following concepts does this BEST illustrate?

Answer 3

Availability

Question 4

The main corporate website has a service level agreement that requires availability 100% of the time, even in the case of a disaster.

Which of the following would be required to meet this demand?

Answer 4

Geographically disparate site redundant datacenter

Question 5

A company replaces a number of devices with a mobile appliance, combining several functions.

Which of the following descriptions fits this new implementation? (Choose two.)

Answer 5

All-in-one device

Single point of failure

Question 6

A small business needs to incorporate fault tolerance into their infrastructure to increase data availability.

Which of the following options would be the BEST solution at a minimal cost?

Answer 6

RAID

Question 7

Which of the following may significantly reduce data loss if multiple drives fail at the same time?

Answer 7

RAID

Question 8

Which of the following provides data the best fault tolerance at the LOWEST cost?

Answer 8

RAID 6

Question 9

Which of the following provides the LEAST availability?

Answer 9

RAID 0

Question 10

Which of the following can Pete, a security administrator, use to distribute the processing effort when generating hashes for a password cracking program?

Answer 10

Clustering

Question 11

Sara, a security architect, has developed a framework in which several authentication servers work together to increase processing power for an application.

Which of the following does this represent?

Answer 11

Clustering

Question 12

Which of the following concepts allows an organization to group large numbers of servers together in order to deliver a common service?

Answer 12

Clustering

Question 13

Jane has implemented an array of four servers to accomplish one specific task. This is BEST known as which of the following?

Answer 13

Clustering

Question 14

Which of the following technologies uses multiple devices to share work?

Answer 14

Load Balancing

Question 15

Which of the following provides the BEST application availability and is easily expanded as demand grows?

Answer 15

Load Balancing

Question 16

Which of the following can be utilized in order to provide temporary IT support during a disaster, where the organization sets aside funds for contingencies, but does not necessarily have a dedicated site to restore those services?

Answer 16

Mobile site

Question 17

A security administrator has just finished creating a hot site for the company.

Which of the following concepts relates this implementation to?

Answer 17

Availability

Question 18

Which of the following disaster recovery strategies has the highest cost and shortest recovery time?

Answer 18

Hot site

Question 19

A company wants to ensure that its hot site is prepared and functioning.

Which of the following would be the BEST process to verify the backup datacenter is prepared for such a scenario?

Answer 19

Disaster recovery exercise

Question 20

The Chief Information Officer (CIO) wants to implement a redundant server location to which the production server images can be moved within 48 hours and services can be quickly restored, in case of a catastrophic failure of the primary datacenter’s HVAC.

Which of the following can be implemented?

Answer 20

Warm site

Question 21

Which of the following is the BEST concept to maintain required but non-critical server availability?

Answer 21

Warm site

Question 22

After copying a sensitive document from his desktop to a flash drive, Joe, a user, realizes that the document is no longer encrypted.

Which of the following can a security technician implement to ensure that documents stored on Joe’s desktop remain encrypted when moved to external media or other network based storage?

Answer 22

File level encryption

Question 23

Customers’ credit card information was stolen from a popular video streaming company. A security consultant determined that the information was stolen, while in transit, from the gaming consoles of a particular vendor.

Which of the following methods should the company consider securing this data in the future?

Answer 23

Encrypted TCP wrappers

Question 24

Which of the following controls can be used to prevent the disclosure of sensitive information stored on a mobile device’s removable media in the event that the device is lost or stolen?

Answer 24

Encryption

Question 25

An online store wants to protect user credentials and credit card information so that customers can store their credit card information and use their card for multiple separate transactions.

Which of the following database designs provides the BEST security for the online store?

Answer 25

Hash the credential fields and use encryption for the credit card field

Question 26

A system administrator has been instructed by the head of security to protect their data at-rest.

Which of the following would provide the strongest protection?

Answer 26

Incorporating a full-disk encryption system

Question 27

Several departments within a company have a business need to send high volumes of confidential information to customers via email.

Which of the following is the BEST solution to mitigate unintentional exposure of confidential information?

Answer 27

Employ encryption on all outbound emails containing confidential information.

Question 28

After recovering from a data breach in which customer data was lost, the legal team meets with the Chief Security Officer (CSO) to discuss ways to better protect the privacy of customer data.

Which of the following controls support this goal?

Answer 28

Encryption and stronger access control

Question 29

A security audit identifies a number of large email messages being sent by a specific user from their company email account to another address external to the company. These messages were sent prior to a company data breach, which prompted the security audit. The user was one of a few people who had access to the leaked data. Review of the suspect’s emails show they consist mostly of pictures of the user at various locations during a recent vacation. No suspicious activities from other users who have access to the data were discovered.

Which of the following is occurring?

Answer 29

The user is using steganography.

Question 30

A security analyst has been notified that trade secrets are being leaked from one of the executives in the corporation. When reviewing this executive’s laptop, they notice several pictures of the employee’s pets are on the hard drive and on a cloud storage network. When the analyst hashes the images on the hard drive against the hashes on the cloud network, they do not match.

Which of the following describes how the employee is leaking these secrets?

Answer 30

steganography

Question 31

Which of the following functions provides an output which cannot be reversed and converts data into a string of characters?

Answer 31

Hashing

Question 32

A software developer wants to prevent stored passwords from being easily decrypted. When the password is stored by the application, additional text is added to each password before the password is hashed. This technique is known as:

Answer 32

Salting

Question 33

Which of the following concepts describes the use of a one-way transformation in order to validate the integrity of a program?

Answer 33

Hashing

Question 34

The security administrator is implementing a malware storage system to archive all malware seen by the company into a central database. The malware must be categorized and stored based on similarities in the code.
Which of the following should the security administrator use to identify similar malware?

Answer 34

Fuzzy hashes

Question 35

An Information Systems Security Officer (ISSO) has been placed in charge of a classified peer-to- peer network that cannot connect to the Internet. The ISSO can update the antivirus definitions manually, but which of the following steps is MOST important?

Answer 35

The signatures must have a hash value equal to what is displayed on the vendor site.

Question 36

Which of the following would a security administrator use to verify the integrity of a file?

Answer 36

Hash

Question 37

Sara, a security administrator, manually hashes all network device configuration files daily and compares them to the previous days’ hashes.

Which of the following security concepts is Sara using?

Answer 37

Integrity

Question 38

Matt, a forensic analyst, wants to obtain the digital fingerprint for a given message. The message is 160-bits long.

Which of the following hashing methods would Matt have to use to obtain this digital fingerprint?

Answer 38

SHA1

Question 39

Company A submitted a bid on a contract to do work for Company B via email. Company B was insistent that the bid did not come from Company A.

Which of the following would have assured that the bid was submitted by Company A?

Answer 39

Digital Signatures

Question 40

An email client says a digital signature is invalid and the sender cannot be verified.

Which of the following concepts is the recipient concerned with?

Answer 40

Integrity

Question 41

A software firm posts patches and updates to a publicly accessible FTP site. The software firm also posts digitally signed checksums of all patches and updates. The firm does this to address:

Answer 41

Integrity of downloaded software.

Question 42

It is important to staff who use email messaging to provide PII to others on a regular basis to have confidence that their messages are not intercepted or altered during transmission.

Which of the following types of security control are they concerned about?

Answer 42

integrity

Question 43

Matt, a security administrator, wants to ensure that the message he is sending does not get intercepted or modified in transit.

Which of the following concepts relates this concern to?

Answer 43

Integrity

Question 44

Which of the following is used by the recipient of a digitally signed email to verify the identity of the sender?

Answer 44

Sender’s public key

Question 45

Digital signatures are used for ensuring which of the following items? (Choose two.)

Answer 45

Integrity

Non-Repudiation

Question 46

Joe, a user, wants to send an encrypted email to Ann.

Which of the following will Ann need to use to verify that the email came from Joe and decrypt it? (Choose two.)

Answer 46

Ann’s private key

Joe’s public key

Question 47

Joe, a user, wants to send an encrypted email to Ann.

Which of the following will Ann need to use to verify the validity’s of Joe’s certificate? (Choose two.)

Answer 47

The CA’s public key

Joe’s public key

Question 48

A user was reissued a smart card after the previous smart card had expired. The user is able to log into the domain but is now unable to send digitally signed or encrypted email.

Which of the following would the user need to perform?

Answer 48

Publish the new certificates to the global address list.

Question 49

Which of the following could cause a browser to display the message below?

“The security certificate presented by this website was issued for a different website’s address.”

Answer 49

HTTPS://127.0.01 was used instead of HTTPS://localhost.

Question 50

Certificates are used for: (Choose two.)

Answer 50

Client authentication.

Code signing.