Security Administration

Question 1

John is looking for a solution for his company that will give the company the most control over mobile devices, while still having the employees purchase their own devices. Which of the following solutions should he select?

BYOD

COPE

CYOD

Answer 1

CYOD

CYOD has employees select from a list of approved devices. COPE has the company buy the devices, and BYOD provides very little control. BBBA is not a term used in this context

Question 2

Employees in your company are provided smartphones by the company. Which of the following best describes this?

BYOD

CYOD

COPE

Answer 2

COPE

Company Owned and Provided Device describes company provided smartphones. The other acronyms/answers refer to alternative approaches to mobile devices

Question 3

Which of the following would be most effective in preventing a thief from using a mobile device stolen from your company?

GPS tracking

WPA2

Geofencing

Answer 3

Geofencing

Geofencing prevents a device from working outside a geographic area. WPA2 is a wireless security technology. Company-Owned and -Provided Equipment has the company buying mobile devices, and geotracking simply locates the device

Question 4

Ahmed is a network administrator for an insurance company. He is concerned about users storing company data on their smartphones to exfiltrate that data. Which of the following best describes this?

BYOD

Bluejacking

USB OTG

Answer 4

USB OTG

USB OTG is the use of portable devices as USB. Bring Your Own Device is simply a method for allowing employees to bring their own devices into the company network. Bluejacking is a Bluetooth attack. Choose Your Own Device allows employees to select a device from a pre-approved list

Question 5

Using Bluetooth to extract data from a victim’s phone is best described as which of the following?

Bluesnarfing

Bluejacking

CYOD

Answer 5

Bluesnarfing

Bluesnarfing extracts data via Bluetooth. Bluejacking simply sends messages to the device. Choose Your Own Device allows employees to select a device from a pre-approved list. Jailbreaking refers to gaining root or admin access

Question 6

What principle is most important in setting up network accounts?

Least privileges

Password expiration

Separation of duties

Answer 6

Least privileges

Least privileges is the most critical principle in account management. The other options are all important, but not as critical as least privileges

Question 7

Tom is responsible for account management in his company. For user John Smith who is an administrator, which of the following would be the best name for him to choose?

Admin001

Ajsmith

jsmith

Answer 7

jsmith

This is the only name choice that does not give any hint as to the role of that user. The others all reveal, or suggest, the user’s role

Question 8

Juanita is responsible for setting up network accounts for her company. She wants to establish an account for the SQL Server service. Which of the following would be the best type of account for her to use?

A user/service account

Domain admin account

Guest account

Answer 8

A user/service account

All services should be assigned a service account. The other options are not secure

Question 9

Which of the following fully implements the 802.11 i security standards?

WEP

WPA

WPA2

Answer 9

WPA2

WPA2 fully implements 802.11i, while WEP and WPA do not. WAP is Wireless Access Point, and it is not a security mechanism

Question 10

Which of the following would be best at preventing a thief from accessing the data on a stolen phone?

Geotagging

Remote wipe

Geofencing

Answer 10

Remote wipe

Remote wiping allows you to remove all data from a stolen phone. Geotagging would merely allow you to locate the phone. Geofencing would prevent the phone from working, but not prevent access of the data. Segmentation is used to separate user data from company data

Question 11

Janet is a network administrator for a small company. Users have been reporting that personal data is being stolen when using the wireless network. They all insist that they only connect to the corporate wireless access point. Reviewing the logs for the WAP shows that these users have not connected to it. Which of the following could best explain this situation?

Bluesnarfing

Rouge access point

Jamming

Answer 11

Rouge access point

This is a classic example of a rogue access point. None of the other attacks would explain this scenario

Question 12

You find that users on your network are getting dropped from the wireless connection. When you check the logs for the wireless access point, you find that a deauthentication packet has been sent to the WAP from the users’ IP addresses. What seems to be happening here?

Bluejacking

Session hijacking

Disassociation attack

Answer 12

Disassociation attack

This is a disassociation attack. Bluesnarfing and bluejacking are Bluetooth attacks. The question does not describe session hijacking

Question 13

What is the primary weakness of infrared communications?

Line of sight

Low bandwidth

Poor authentication

Answer 13

Line of sight

Line of sight is the primary weakness of infrared communications. All of the other answers are not true. Infrared connections can support each of these

Question 14

Which wireless technology uses TKIP?

WEP

WPA

WPA2

Answer 14

WPA

WPA uses Temporal Key Integrity Protocol (TKIP), while WEP and WPA2 do not. WAP is a wireless access point

Question 15

Which acronym describes devices provided by the company?

BYOD

COPE

CYOD

CYOP

Answer 15

COPE

BYOD, or Bring Your Own Device, as well as CYOD, or Choose Your Own Device, are both employee-owned equipment. CYOP is not a real acronym for portable devices