Random

Question 1

What is RFC 6749

Answer 1

OpenID Connect

Question 2

What is RFC 6749?

Answer 2

OAuth 2.0

Question 3

What is RFC 5849?

Answer 3

OAuth 1.0

Question 4

What does multi-homed device mean?

Answer 4

A multi-homed device has more than one network connection.

Question 5

How often can electronic vaulting occur?

Answer 5

Daily, hourlyy, weekly,

Question 6

What must a user have for all information processed in system high mode?

Answer 6

A security clearance and access approval

Question 7

What is geotagging?

Answer 7

An investigative technique in which idenfiies the physical location of a given decice by examining the characteristics of the content that is generated by the device

Question 8

What does an attacker typically have in a brute-force attack?

Answer 8

Only the ciphertext

Question 9

What are the ISC Code of Ethic canons?

Answer 9

1. Protect society, the common good, necessary public trust and confidence, and the infrastructure.
2. Act honorable, honestly, justly, responsibily and legally
3. Provide diligent and competent service to principals
4. Advance and protect the profession.

Question 10

What is secondary storage?

Answer 10

Non-volatile memory such as ROMs

Question 11

What is the NIST SP 800-30?

Answer 11

Guide for conducting risk assessments.

Question 12

In Micrsoft’s SDL when is static analysis performed?

Answer 12

During the Implementation Phase.

Question 13

In Microsoft’s SDL when is dynamic analysis and fuzz testing performed?

Answer 13

They are both performed in the Verification Phase

Question 14

In Microsoft’s SDL when is the incident response plan created?

Answer 14

In the Release Phase.

Question 15

What are examples of circuit switched technology?

Answer 15

T1, POTS, ISDN, PPP

Question 16

What are examples of packet switched technologies?

Answer 16

Frame-Relay, X.25 (replaced by FR).

Question 17

What are the seven categories of access controls?

Answer 17

1. Directive
2. Deterrent
3. Preventive
4. Compensating
5. Detective
6. Corrective
7. Recovery

Question 18

What is prevention obsfucation?

Answer 18

Attempting to make code obscure to computers. Making it difficult to de-obfuscate or to decompile the code.

Question 19

What is lexical obfuscation?

Answer 19

Renaming classes, fields, and methods and replacing them with new identifiers that lack intuitive meaning. E.g. replacing salary with the letter “a”.

Question 20

What is control flow obsfucation?

Answer 20

Deals with making an application harder to understand or to decompile.

Question 21

What is NIC teaming?

Answer 21

Combining multiple physical network adapters into a virtual NIC which will be presented to the OS as a single NIC.

Question 22

What is the function of ARP?

Answer 22

It assigns IP addresses to MAC addresses

Question 23

What is the function of RARP?

Answer 23

It assigns MAC addresses to IP addresses

Question 24

What is the steps of BCP development process?

Answer 24

1. Develop a BCP policy statement.
2. Conduct a BIA
3. Identify preventive controls
4. Develop recovery strategies
5. Develop an IT contingency plan
6. Perform DRP training and testing
7. Perform BCP/DRP maintenance.

Question 25

What is a teardrop attack?

Answer 25

It is an attack attempting to cause DoS. An attacker sends fragmented packets to the server.

Question 26

What is pharming?

Answer 26

This is DNS related where the is DNS cache poisoning. The attacker attempts to redirect users to a malicious website.

Question 27

What is RAID 10?

Answer 27

Striping for a set of mirrored disks.

Question 28

Class of fire suppression systems.

Answer 28

US Classes:
A - wood, paper, ordinary
B - liquids, gases
C - electrical equipment
D - Metals
K - Kitchen, such as oil-based or fat-based fires

Question 29

What is data hiding?

Answer 29

Data hiding is also known as encapsulation. It is used to isolate subjects and objects from each other. This is a characteristic of OOP.

Question 30

What is a collision domain

Answer 30

A collision domain is a network segment where collisions can occur when frames are sent among the devices on the network segment.

Question 31

What is a broadcast domain?

Answer 31

A broadcast domain is a network segment where all devices receive a copy of a broadcast sent out by a device within the network segment.

Question 32

What is the main goal of Federated Identity Mangement?

Answer 32

Process of providing access to a company’s data resources to organizations or parties that are not owned by the company.

Question 33

Is SSO a FIM model?

Answer 33

No.

Question 34

Under the GDPR when must companies inform authorities of major data breaches?

Answer 34

Within 72 hours.

Question 35

What is code freezing?

Answer 35

When everything is complete and code no longer require any changes, the code is frozen so no further edits can be made.

Question 36

What is code check-in?

Answer 36

This is the same as code commits.

Question 37

What is code check-out?

Answer 37

Code is checked-out when developer does not what anyone else to edit the code but themselves.

Question 38

What type of deny rule does most firewalls have be default?

Answer 38

Implicit Deny. All traffic that are not explicitly permitted are implicitly denied.

Question 39

What will happen if a firewall is configured with an implicit allow rule?

Answer 39

Any packets that are not explicitly denied are implicitly permitted.

Question 40

Explicit is?

Answer 40

Specifically defining something.

Question 41

Which plain is centralized on a SDN network?

Answer 41

Only the control plane is centralized.

Question 42

What is in the data plane of SDN architecture?

Answer 42

The networking devices sit on the data plane of an SDN network. i.e. Layer2/3 Switches, and end devices.

Question 43

What are network management protocols?

Answer 43

• Telnet
• SSH
• SNMP
• Syslog

Question 44

What type of access control is antivirus software?

Answer 44

Corrective access control

Question 45

What type of biometric access control is susceptible to counterfeiting?

Answer 45

Fingerprint scans

Question 46

What is the safest fire suppression system in an electric environment?

Answer 46

FE-13

Question 47

What is Target of Evaluation (ToE) in CC?

Answer 47

the system or product that is to be tested

Question 48

What is ST in CC?

Answer 48

The security target is the documentation that describes the ToE and any security requirements.

Question 49

What is the goal of the common criteria?

Answer 49

The goal of the CC is to identify and remove known vulnerabilities from a product. Rather than discover new vulns.

Question 50

What is the common criteria?

Answer 50

It is an international standard used to test the security of IT products.

Question 51

What standard is Bluetooth?

Answer 51

IEEE 802.15

Question 52

What type of encryption cipher does Bluetooth v2.1 use?

Answer 52

It uses E0. Which is a weak encryption. The key length is 128bits but due to vulnerabilities it is effectively only 38-bits.

Question 53

What encryption does Bluetooth 4.1 use?

Answer 53

AES with CBC-MAC (AES-CCM)

Question 54

What is FHSS?

Answer 54

This is a modulation technique that changes radio channels in a synchronized pattern.

Question 55

How do capacitance detectors work?

Answer 55

They work based on electromagnetic fields

Question 56

How does wave pattern motion detectors work?

Answer 56

They transmit ultrasonic or microwave signals to the monitor area, watching for change sin the returned signals bouncing off objects.

Question 57

What is TCSEC?

Answer 57

Trusted Computer System Evaluation criteria sets basic requirements for assessing the effectiveness of computer security controls built into a computer system.

Question 58

Why is a requirements traceability matrix (RTM) used in software testing?

Answer 58

the function of TM.RTM is to check if the current project requirements are being met, and to help in the creation of a request for proposal, software requirements specification, various deliverable documents, and project plan tasks.

Question 59

In which phase would the penetration tester look for vulns and design the attack?

Answer 59

Discovery Phase.

Question 60

What is XACML?

Answer 60

Extensible Access Control Markup Language (XACML) deals with authorisation. It presents a standard for assessing authorisation requests. It is used to express security policies and access rights to assets provided through web services and other enterprise applications.
XACML is a standard language for access control that allows for communication between the access control system and implementation, even if they are from a different vendor.

Question 61

What is a compensating control?

Answer 61

A compensating control attempts to make up for problems with an existing control or to add additional controls to improve a primary control.

Question 62

What occurs during registration?

Answer 62

Users are enrolled in a biometric system

Question 63

What happens during the processing phase of eDiscovery?

Answer 63

Rough cut of the collected information for relevance.