CompTIA

Question 1

A company stores some employee information in encrypted form, but other public details are stored as plaintext.

Answer 1

Record

Question 2

writes data to a temporary location before writing the information to the database. If power is lost, the system can recover the last transaction from this when power is restored.

Answer 2

Journaling

Question 3

high-end cryptographic hardware appliance that can securely store keys and certificates for all devices.

Answer 3

HSM (Hardware Security Module)

Question 4

used on individual devices to provide cryptographic functions and securely store encryption keys.

Answer 4

TPM (Trusted Platform Module)

Question 5

a file containing a list of the revoked certificates.

Answer 5

CRL - Certificate Revocation List

Question 6

Send the public key to be signed

Answer 6

CSR - Certificate Signing Request

Question 7

T he browser checks for a revoked certificate

Answer 7

OCSP - Online Certificate Status Protocol

Question 8

Authenticate the server sending an email

Answer 8

SPF - Sender Policy Framework

Question 9

describes the process of obtaining information from open sources such as social media sites, corporate websites, online forums, and other publicly available locations.

Answer 9

OSINT - Open Source Intelligence

Question 10

a vulnerability that allows communication between separate VMs.

Answer 10

escape

Question 11

DKIM

Answer 11

Domain Keys Identified Mail

Question 12

a broad term describing access control based on a health check or posture assessment. It will deny access to devices that don’t meet the minimum security requirements.

Answer 12

NAC - Network Access Control

Question 12

MTBF

Answer 12

Mean Time Between Failures

Question 13

RPO

Answer 13

Recovery Point Objectives

Question 13

MTTR

Answer 13

Mean Time to Repair

Question 14

RTO

Answer 14

Recovery Time Objectives

Question 15

UPS

Answer 15

Uninterruptible Power Supply

Question 16

commonly used to create a VPN

Answer 16

IPsec

Question 17

WAF

Answer 17

Web Application Firewall

commonly used to protect against application attacks such as injections, cross-site scripting, and invalid input types.

Question 18

traps are used to provide alerts and alarms from servers and infrastructure devices

Answer 18

SNMP Traps (Simple Network Management Protocol)

Question 19

are large industrial systems and usually involve manufacturing equipment or power generation equipment.

Answer 19

ICS (Industrial Control Systems)

Question 20

This process identifies and reports on the hardware and software installed on the laptop. If this configuration is changed, an alert can be generated.

Answer 20

enumeration

Question 21

ACL

Answer 21

Access Control List

Question 22

ARO

Answer 22

Annualized Rate of Occurrence

Question 23

ALE

Answer 23

Annual Loss Expectancy

Question 24

SLE

Answer 24

Annual Loss Expectancy

Question 25

Directly access cloud-based services from all corporate locations

Answer 25

SD-WAN (Software Defined Wide Area Network)

Question 26

This processes provides ongoing building and testing of newly written code

Answer 26

Continuous integration

Question 27

located in the control plane and evaluates each access decision based on security policy and other information sources. It determines if access should be granted, denied, or revoked.

Answer 27

Policy engine