Cryptography and PKI

Question 1

as the security administrator in your

Answer 1

PFX

P12

Question 2

Your company has recently implemented

Answer 2

public key

private key

Question 3

which security measure is implemented to help detect fraud

Answer 3

mandatory vacations

job rotation

Question 4

your company operates with a strict no byod

Answer 4

network scanner

Question 5

which type of standalone

Answer 5

worm

Question 6

you’re busy with the setup of a wireless

Answer 6

thin

Question 7

Its important that you know how to use the windows command line interface

Answer 7

A Used to test a connection to a remote device
B Opens a port on a system and sends data
C Performs port scans on a network
D troubleshoots DNS name
E displays the TCP/IP config
F follows the path a packet takes to travel through the network

Question 8

Which concept is based on determining how much date an

Answer 8

RPO

Question 9

Your company requires the strongest AAA

Answer 9

TACACS+

Question 10

As part of your Risk assessment you are

Answer 10

Privacy considerations

Supply chain assessment

Question 11

You are in the process of configuring a wireless access point

Answer 11

CCMP

Question 12

Your organization wants to ensure they are not using any weak

Answer 12

AES

Question 13

You are an IT security admin

Answer 13

Obtain management’s explicit authorization

Question 14

Network switches can be configured to operate ate layer 2 or 3

Answer 14

Layer 2 BDC

Layer 3 A

Question 15

You are reviewing the work done by a security

Answer 15

Improper certificate and key management

Question 16

The secure sockets layer or SSL protocal

Answer 16

firewalls

Question 17

Which diffle-hellman

Answer 17

DH group 20

Question 18

you need to provide a username ,pin,

Answer 18

hardware token

Question 19

as a developer you need to protect code

Answer 19

xor

Question 20

which of the following network devices can be used for these confi

Answer 20

router

Question 21

you are attending a concert for a local band

Answer 21

replay attack

nfc

Question 22

when a lack of original vendor

Answer 22

end . of life systems

Question 23

both the secure sockets layer, ssl, and transport security, or tls protocols can be used to encrypt

Answer 23

load balancers

Question 24

when talking about open-source intelligence

Answer 24

open-source intelligence is data that has been collected from publicly available sources

Question 25

which technology allows users to use the same identification data to gain

Answer 25

federation

Question 26

which of the following technologies can assist with asset tracking

Answer 26

rfid tags

Question 27

you get a call from a user and they state that they called last week

Answer 27

consensus

Question 28

which group policy setting should be configured to ensure that users are forced to use a password

Answer 28

passwords must meet complexity requirements

Question 29

which influence tactic creates a feeling of urgency

Answer 29

scarcity

Question 30

which item is typically used for the implementation of a key

Answer 30

patented cylinders

Question 31

as a security administrator managing the cryptography of your network, you are concerned about the methodology

Answer 31

pseudo-random number generation

Question 32

a system on your network was accessed during working hours and some sensitive

Answer 32

perform usage auditing and review

perform permission audition and review

Question 33

which access control mechanism uses time as a factor to limit

Answer 33

totp

Question 34

a hacker located an unknown

Answer 34

the hacker discovered a zero-day vulnerability

Question 35

keeping a network secure requires a fair amount of administrative oversight

Answer 35

A encrypts all the data sent to and from
B secures diagnostic date while
C confirms the authenticity of domain name records

Question 36

Spoofing poses a threat to network security

Answer 36

• configure the router or - switch to use RF
  scan for and deny MAC
  disable any interfaces that

Question 37

a hacker has just completed their reconnaissance

Answer 37

initial exploitation

Question 38

Your company’s security policy has been updated to ensure peripheral devices

Answer 38

disable the built-in web server function for all printers to stop unauthorized access

Question 39

which security practice should you use in an organization to ensure

Answer 39

least privilege

Question 40

with mobile device management

Answer 40

sms,mms, and wifi
usb otg
microphone recordings
camera usage

Question 41

jailbreaking a cell phone is

Answer 41

escalation of privilege

Question 42

what is a minimum requirement when placing mission-critical

Answer 42

use electronic access control with all entry attempts logged

Question 43

e-mail has become the norm in many organizations but brings with it certain risks

Answer 43

data loss prevention
server-to-server encryption
spam filter

Question 44

you need to install a fence around your company

Answer 44

an 8-foot fence

Question 45

your organization is required to consolidate single-sign on and authorization by extending

Answer 45

cloud access security brokers

Question 46

you have been hired as a security consultant for a small company

Answer 46

create an incident management document

Question 47

which type of attack is carried out using botnets

Answer 47

ddos

Question 48

you oversee a group of developers creating a sales

Answer 48

performing dynamic analysis

Question 49

one of the main security flaws in the company’s applications is data exposure

Answer 49

encapsulation

Question 50

as an administrator, you need to be prepared to handle any number

Answer 50

A subscription
B DHCP
C NTP

Question 51

which type of interoperability

Answer 51

bpa

Question 52

you have been hired by a company and directed to use a non-domain account

Answer 52

vulnerable business processes

Question 53

preventing password crackers from accessing your password

Answer 53

salting passwords
setting a maximum number of login attempts
enforcing rules for creating strong passwords

Question 54

when speaking about penetration testing, which

Answer 54

installing a backdoor that needs authentication

Question 55

you work for an organization that is reviewing its network topology

Answer 55

ddos mitigation

Question 56

installing and maintaining applications on a network can lead to

Answer 56

ensure that each application uses its own account

use biometrics or one-time access codes

Question 57

which role is responsible for processing

Answer 57

data custodian

Question 58

you have been tasked with setting up a wireless network at a small branch office

Answer 58

limit the signal strength to the minimum required

Question 59

which IDS monitoring

Answer 59

heuristic-based

Question 60

an intruder shows interest in an employee

Answer 60

liking

Question 61

users are reporting that when entering the url of a company website

Answer 61

DNS poisoning

Question 62

you are performing a threat assessment

Answer 62

environmental

Question 63

a new batch of changes hav ebeen

Answer 63

test the code on a virtual machine

Question 64

you have been tasked with implementing security measures to protect your databases from

Answer 64

run security automation tools

implement stored procedures

Question 65

a malicious user disconnects

Answer 65

evil twin

Question 66

which shared authentication scheme allows users to access web-based services

Answer 66

openID connect

Question 67

you are a network administrator of a large company that consists of 30,000 employees

Answer 67

assign group-based privileges

place user accounts into groups

Question 68

which authentication method is commonly used as part of an SSO implementation

Answer 68

Kerberos

Question 69

due to the popularity of the raspberry pi

Answer 69

soc

Question 70

you need to provide a username, pin, and a generated passcode to successfully log in to a computer

Answer 70

hardware token

Question 71

your company has some important clients visiting the office

Answer 71

guest account

Question 72

You are planning to encrypt a file using a symmetric algorithm that encrypts data

Answer 72

stream cipher

Question 73

as the security administrator of you organization you have been asked to identifity

Answer 73

privacy impact assessment

Question 74

which of the following is a form of a smart card

Answer 74

cac

Question 75

as a system administrator there are

Answer 75

capturing traffic traveling on the network

Question 76

which term is described as the ability to

Answer 76

pivoting

Question 77

as a network technician

Answer 77

maximum password age

enforce password history

Question 78

match the cryptographic attacks

Answer 78

A has acces to the crib
B the attack is success
A advanced encryption standard
AB has access to ciphertext

Question 79

which non-persistent solution provdes

Answer 79

use the live boot media

Question 80

which type of malware usually delivers itselfqRAT

Answer 80

RAT

Question 81

your company has recently implemented a PKI

Answer 81

CRL OCSP

Question 82

Which type of malware usually delivers itself via a trojan

Answer 82

RAT

Question 83

You are working for a company that suspects an unauthorized

Answer 83

implemetn SPAN

Question 84

in preparation for the real incident, you schedule an exercise and

Answer 84

cyber-incident response teams
roles and responsibilities
reporting requirements//escalation

Question 85

which of the following uses a brute force

Answer 85

birthday

Question 86

as a security administrator managing

Answer 86

low latency

resource constraints

Question 87

which option represents the strongest

Answer 87

twofish

Question 88

you are the network professional for a small boutique

Answer 88

800000

Question 89

which option provides port-based

Answer 89

802.1X

Question 90

you need to perform a risk assessment

Answer 90

BIA

Question 91

which of the following are examples of active reconnaissance

Answer 91

a vulnerability scanner
the usage of the tool traceroute
port scanning

Question 92

when protecting data-in-transit

Answer 92

session key

Question 93

a system administrator is configuring a NIDS

Answer 93

rules

Question 94

which of the following is an example of an environmental control

Answer 94

hot and cold aisles