CompTIA Security+ Certification Exam SY0-701 Practice Test 11 Flashcards
Which of the answers listed below refer to the concept of data isolation? (Select 2 answers)
A) DLP
B) SDN
C) EFS
D) SWG
E) EDR
A) DLP
C) EFS
A type of firewall used for protecting a single computer is commonly referred to as: (Select 2 answers)
A) Hardware firewall
B) Host-based firewall
C) Proxy firewall
D) Network-based firewall
E) Personal firewall
B) Host-based firewall
E) Personal firewall
Which of the following provides active network security breach response on an individual computer system?
A) NIDS
B) HIDS
C) NIPS
D) HIPS
D) HIPS
The process of securing networking devices should include the practice of disabling unused physical and logical ports.
A) True
B) False
A) True
The importance of changing default usernames and passwords can be illustrated on the example of certain network devices (such as routers) which are often shipped with default and well-known admin credentials that can be looked up on the web.
A) True
B) False
A) True
The term “Hybrid cloud” refers to a mixed computing environment that can include different cloud service models like public and private clouds, as well as on-premises infrastructure.
A) True
B) False
A) True
A type of document outlining the shared responsibilities between a CSP and its customers for securing and managing data and resources is known as: (Select best answer)
A) Service Level Agreement
B) Acceptable Use Policy
C) Cloud Responsibility Matrix
D) Master Service Agreement
C) Cloud Responsibility Matrix
Which of the terms listed below refers to a method for managing infrastructure resources through scripts and templates?
A) IaaS
B) ML
C) IaC
D) SDN
C) IaC
A serverless architecture allows developers to create apps and services without having to manage the required infrastructure resources (such as servers, databases, and storage systems), which are handled by:
A) CSP
B) ISP
C) MSP
D) IdP
A) CSP
In software engineering, the term “Microservice” describes independent and self-contained code components that can be put together to form an application.
A) True
B) False
A) True
Which of the answers listed below refers to a means for logical network segmentation?
A) Switch
B) VLAN
C) Screened subnet
D) Router
B) VLAN
Which of the following answers refers to software technology designed to simplify network infrastructure management?
A) SDN
B) SaaS
C) VDI
D) SNMP
A) SDN
Which of the answers listed below refers to the process of packaging an application and its dependencies into a single, self-contained unit, which can run across different computing environments?
A) Edge computing
B) Containerization
C) Virtualization
D) Cloud computing
B) Containerization
Which of the following answers refers to a solution that allows multiple OSs to work simultaneously on the same hardware?
A) Clustering
B) Hyperthreading
C) Multitasking
D) Virtualization
D) Virtualization
Which of the answers listed below refers to a network of interconnected devices equipped with sensors (such as wearable tech or home automation devices) that can interact with each other to perform various tasks and functions?
A) ICS
B) PAN
C) IoT
D) SoC
C) IoT
Which of the following refers to a broad term that encompasses various control and automation systems used in industrial settings to control and monitor physical processes and machinery?
A) ICS
B) PLC
C) SCADA
D) HMI
A) ICS
Which of the answers listed below refers to a specific type of ICS?
A) SoC
B) CMS
C) SCADA
D) RTOS
C) SCADA
Which of the following answers refers to an OS type characterized by low delay between the execution of tasks required in specific applications, such as in military missile guidance systems or in automotive braking systems?
A) Unix-like OS
B) SoC
C) Firmware
D) RTOS
D) RTOS
Which of the answers listed below refer(s) to embedded systems? (Select all that apply)
A) Often designed to operate in real-time or with low latency
B) Typically equipped with constrained computing resources and storage
C) Designed to perform a single task or a few closely related tasks within a larger system
D) Often integrated with hardware components like sensors and actuators
A) Often designed to operate in real-time or with low latency
B) Typically equipped with constrained computing resources and storage
C) Designed to perform a single task or a few closely related tasks within a larger system
D) Often integrated with hardware components like sensors and actuators
Which of the following terms can be used to describe a system designed to aim for minimized downtime and uninterrupted operation?
A) ICS
B) HA
C) RTOS
D) SoC
B) HA
Which of the answers listed below refers to a device failure mode in which maintaining service availability is prioritized over security?
A) Fail-safe
B) Fail-close
C) Fail-open
D) Fail-secure
C) Fail-open
Which failure mode prioritizes security over availability, ensuring that no potentially malicious traffic can get through the device?
A) Fail-soft
B) Fail-through
C) Fail-safe
D) Fail-close
D) Fail-close
Which of the following answers refer to passive network monitoring techniques? (Select 2 answers)
A) Network tap
B) Trunk port
C) Port mirroring
D) SNMP trap
E) Registered port
A) Network tap
C) Port mirroring
A type of hardened server used as a secure gateway for remote administration of devices placed in a different security zone is called:
A) C2 server
B) Jump server
C) UC server
D) Proxy server
Which of the following provides isolation from external computer networks?
A) Network segmentation
B) Air gap
C) Hardware firewall
D) Protected cable distribution
B) Air gap
