Security+ Exam

Question 1

What does AV Software stand for?

Answer 1

Antivirus Software

Question 2

What is DRP?

Answer 2

Disaster Recovery Plan

Question 3

Define IRP.

Answer 3

Incident Response Plan is a structured approach that organizations follow to identify, contain, and recover from cybersecurity incidents.

Question 4

What is an AUP?

Answer 4

Acceptable Use Policy outlines rules and guidelines for an organization’s IT resources, including networks, systems, and data.

Question 5

What does IPS stand for?

Answer 5

Intrusion Prevention System that monitors and blocks malicious traffic.

Question 6

What is the function of an IDS?

Answer 6

Intrusion Detection System that monitors and alerts on malicious traffic.

Question 7

What are directive security controls?

Answer 7

Policies, guidelines, or procedures designed to influence user behavior and enforce security best practices.

Question 8

What are compensating security controls?

Answer 8

Alternative security controls when primary controls go down.

Question 9

What is PKI?

Answer 9

Public Key Infrastructure for managing digital certificates and encryption keys.

Question 10

List the components of PKI.

Answer 10

• Certificate Authorities (CAs)
• Registration Authorities (RAs)
• Cryptographic Standards

Question 11

What is the role of a Registration Authority (RA)?

Answer 11

Intermediary between users and the CA that verifies certificate applicants before requesting a certificate from the CA.

Question 12

What does a Certificate Authority (CA) do?

Answer 12

Issues and manages digital certificates, authenticates entities, and signs certificates to establish trust.

Question 13

What is key escrow?

Answer 13

A method where encryption keys are stored by a trusted third party.

Question 14

What is a Recovery Agent?

Answer 14

A trusted third party that can help retrieve lost encryption keys.

Question 15

Define PKCS.

Answer 15

Public Key Certificate Standards for public key cryptography.

Question 16

What does AAA stand for?

Answer 16

Authentication, Authorization, Accounting

Question 17

What is GDPR?

Answer 17

General Data Protection Regulation is a privacy regulation by the EU to protect personal data/privacy rights.

Question 18

What is CHAP?

Answer 18

Challenge Handshake Authentication Protocol, a challenge-response mechanism to verify user identity. Uses threeway handshake (Challenge, Response, Verification).

Question 19

What does TACACS+ stand for?

Answer 19

Terminal Access Controller Access Control System +.

Question 20

What is PAP?

Answer 20

Password Authentication Protocol, where username and password are sent in plain text.

Question 21

What does RADIUS stand for?

Answer 21

Remote Authentication Dial-in User Service.

Question 22

What is MS-CHAP?

Answer 22

Microsoft Challenge Handshake Authentication Protocol, a version of CHAP used in Windows networks.

Question 23

What is device authentication?

Answer 23

Authentication based on IP address, digital certificate authority, or MAC address.

Question 24

What does MAC stand for?

Answer 24

Media Access Control, an identifier for a device’s Network Interface Card (NIC).

Question 25

Define Configuration Management.

Answer 25

Process of maintaining system integrity by applying security settings, software updates, and hardware configurations.

Question 26

What are operational security controls?

Answer 26

Day-to-day security measures that ensure an organization's security policies are effectively implemented.

Question 27

What are managerial security controls?

Answer 27

Policies and procedures by an organization to manage security risks, enforce compliance, and guide security operations.

Question 28

What is an Access Control Vestibule?

Answer 28

Mantrap, an entrance system where only one person enters at a time.

Question 29

What does asset management involve?

Answer 29

Identifying and managing an organization's IT assets (hardware, data, software, etc.).

Question 30

What is a Gap Analysis?

Answer 30

Identifying the difference between the current organization's security posture and where they want to be.

Question 31

What is TTX?

Answer 31

Table Top Exercise, a discussion-based cybersecurity drill that simulates a security incident to test IRPs.

Question 32

What is ZTA?

Answer 32

Zero Trust Architecture that eliminates implicit trust and requires continuous authentication, authorization, and verification.

Question 33

What are the two key planes of ZTA?

Answer 33

* Control plane * Data plane

Question 34

Define Adaptive Identity.

Answer 34

Dynamic authentication and authorization process used in zero trust that readjusts in real-time based on user identity and location.

Question 35

What is microsegmentation?

Answer 35

A zero trust strategy in the data plane by isolating networks into segments to limit lateral movement.

Question 36

What is PDP?

Answer 36

Policy Decision Point that evaluates access requests and makes decisions based on security policies.

Question 37

List the components of PDP.

Answer 37

* Policy Engine (PE) * Policy Administrator (PA)

Question 38

What is the role of the Policy Engine (PE)?

Answer 38

Decision maker that evaluates access requests based on identity.

Question 39

What does the Policy Administrator (PA) do?

Answer 39

Enforces decisions made by policy engines and translates security policies into enforceable actions.

Question 40

What is PEP?

Answer 40

Policy Enforcement Point that intercepts and enforces access requests based on decisions made by PDP.

Question 41

What are honeypots?

Answer 41

Decoy systems to attract/deceive cyber-attackers by mimicking real systems.

Question 42

What is a honeynet?

Answer 42

Network of honeypots.

Question 43

What is a honeytoken?

Answer 43

A unique identifier designed to track attackers.

Question 44

What does BPA stand for?

Answer 44

Business Partner Agreement.

Question 45

What is BIA?

Answer 45

Business Impact Analysis, which identifies critical business functions and assesses potential impacts of disruptions.

Question 46

What does SLE stand for?

Answer 46

Single Loss Expectancy.

Question 47

What is BCP?

Answer 47

Business Continuity Plan, a strategy to keep a business running during/after disruption.

Question 48

What is an HSM?

Answer 48

Hardware Security Module, a physical device to manage, generate, and securely store cryptographic keys.

Question 49

What is TPM?

Answer 49

Trusted Platform Module, a cryptoprocessor chip embedded in a computer motherboard.

Question 50

What is EFS?

Answer 50

Encryption File System, a Windows-based encryption feature to encrypt individual files and folders.

Question 51

What does SED stand for?

Answer 51

Self-Encrypting Drive.

Question 52

What is FDE?

Answer 52

Full Disk Encryption, a software-based encryption technology that encrypts the entire disk.

Question 53

What does GPG stand for?

Answer 53

GNU Privacy Guard, an open-source encryption tool for securing data and communications.

Question 54

What is PGP?

Answer 54

Pretty Good Privacy, a cryptographic software tool used for secure communications and data encryption.

Question 55

What is SSH?

Answer 55

Secure Shell, a protocol for secure remote access and file transfers over an encrypted channel.

Question 56

What is IPsec?

Answer 56

Internet Protocol Security, a network security protocol that encrypts and secures IP traffic.

Question 57

What does VPN stand for?

Answer 57

Virtual Private Network.

Question 58

What is HTTPS?

Answer 58

Hypertext Transfer Protocol Secure, which encrypts web traffic using SSL/TLS.

Question 59

What is SFTP?

Answer 59

Secure File Transfer Protocol, used for securely transferring files over SSH.

Question 60

What does FTPS stand for?

Answer 60

File Transfer Protocol Secure.

Question 61

What is SNMP?

Answer 61

Simple Network Management Protocol, used for monitoring and managing network devices.

Question 62

What does S/MIME stand for?

Answer 62

Secure/Multipurpose Internet Mail Extensions.

Question 63

What is STARTTLS?

Answer 63

SMTP with TLS upgrade, a modern method for encrypting email transmission over SMTP.

Question 64

What does DKIM stand for?

Answer 64

DomainKeys Identified Mail.

Question 65

What is SMTPS?

Answer 65

Simple Mail Transfer Protocol Secure, an older method of encrypting email transmissions.

Question 66

What is SHTTP?

Answer 66

Secure Hypertext Transfer Protocol, an early protocol design for web communications.

Question 67

What is SRTP?

Answer 67

Secure Real-Time Transfer Protocol, used to encrypt and authenticate real-time communications.