Security+ Questions

Question 1

A periodic update that corrects problems in one version of a product is called a(n) _________.

Answer 1

Service Pack

Question 2

Which device monitors network traffic in a passive manner? 
A. Sniffer
B. IDS
C. Firewall
D. Web Browser

Answer 2

B.

Question 3

What is a system that is intended or designed to be broken into by an attacker?
A. Honeypot
B. Honeybucket
C. Decoy
D. Spoofing system
E. Deleted if the employee has been terminated

Answer 3

A.

Question 4

In intrusion detection system vernacular, which account is responsible for setting the security policy for an organization?
A. Supervisor
B. Administrator
C. Root
D. Director

Answer 4

B.

Question 5

You are a junior security administrator for a large bank. You have been asked to make the database servers as secure as they can be. The process of making certain that an entity (operating system, application, and so on) is as secure as it can be is known as which of the following?
A. Stabilizing
B. Reinforcing
C. Hardening
D. Toughening

Answer 5

C.

Question 6

John is working on designing a network for the insurance company where he is employed. He wants to put the web server in an area that has somewhat less security so that other users might access it. But he does not want that to compromise the security of the rest of the network. what would be John’s best approach?
A. Place the web server in a honeynet.
B. Place the web server on the guest network segment,
C. Place the web server in a DMZ.
D. Place the web server outside his network.

Answer 6

C.

Question 7

Tom has been instructed to find a security standard, applicable to the United States, that will help him develop appropriate security policies. He has found a standard that describes 8 principles and 14 practices that can be used to develop security policies. What standard is Tom most likely reviewing?
A. ISO/IEC 27001:2013
B. NIST 800-12
C. NIST 800-14
D. ISA/IEC-62443 4

Answer 7

C.

Question 8

Juanita is implementing a security mechanism that will fully encrypt the hard drive of laptops in her organization. The encryption and decryption will be automatic. What best describes what Juanita is implementing?
A. AES
B. TPM
C. FDE
D. SED

Answer 8

D.

Question 9

Ahmed has been working to mitigate the threat of malware in his network. He has selected a specific vendor (Vendor ABC) for his antivirus software. He is using ABC products everywhere he needs antivirus software. Is this the correct decision? Why or why not?
A. Yes, consistency is more secure.
B. Yes, this will make the process more affordable.
C. No, this violates control diversity.
D. No, this violates vendor diversity.

Answer 9

D.

Question 10

You are concerned about your backup files becoming infected with malware. Which of the following technologies would be best to protect your backup?
A. Air-gap
B. SPI firewall
C. DMZ
D. VLAN

Answer 10

A.

Question 11

Which of the following devices is the most capable of providing infrastructure security?
A. Hub
B. Switch
C. Router
D. Modem

Answer 11

C.

Question 12

Upper management has decreed that a firewall must be put in place immediately, before you site suffers an attack that struck a sister company. Responding to this order, your boss instructs you to implement a packet filter by the end of the week. A packet filter performs which functions?
A. Prevents unauthorized packets from entering the network
B. Allows all packets to leave the network
C. Allows all packets to enter the network
D. Eliminates collisions in the network

Answer 12

A.

Question 13

Which device stores information about destinations in a network (choose the best answer)?
A. Hub
B. Modem
C. Firewall
D. Router

Answer 13

D.

Question 14

As more and more clients have been added to your network, the efficiency of the network has decreased significantly. You're preparing a budget for next year, and you specifically want to address this problem. Which of the following devices acts primarily as a tool to improve network efficiency?
A. Hub
B. Switch
C. Router
D. PBX

Answer 14

B.

Question 15

You've been notified that you'll soon be transferred to another site. Before you leave, you're to audit the network and document everything in use and the reason why it's in use. The next administrator will use this documentation to keep the network running. Which of the following protocols isn't a tunneling protocol but is probably used at your site by tunneling protocols for network security?
A. IPSec
B. PPTP
C. L2TP
D. L2F

Answer 15

A.

Question 16

Which of the following can be implemented as a software or hardware solution and is usually associated with a device--a router, a firewall, NAT, and so on--used to shift a load from one device to another?
A. Proxy
B. Hub
C. Load Balancer
D. Switch

Answer 16

C.

Question 17

Which of the following are multiport devices that improve network efficiency?
A. Switches
B. Modems
C. Gateways
D. Concentrators

Answer 17

A.

Question 18

Which IDS system uses algorithms to analyze the traffic passing through the network?
A. Arithmetical
B. Algebraic
C. Statistical
D. Heuristic

Answer 18

D.

Question 19

Which of the following can be used to offload the public-key encryption to a separate hardware plug-in card?
A. SSL Accelerator
B. Load Balancer
C. Proxy Firewall
D. SIEM

Answer 19

A.

Question 20

Which of the following protections implies that information, once written, cannot be modified?
A. DLP
B. ROM
C. WORM
D. NAC

Answer 20

C.

Question 21

In which two modes can IPSec work?
A. Tunneling and Storing
B. Transport and Storing
C. Tunneling and Transport
D. At-Rest and At-Ease

Answer 21

C.

Question 22

With which tunnel configuration are only some (usually all incoming) requests routed and encrypted over the VPN?
A. Split
B. Full
C. Partial
D. Hybrid

Answer 22

A.

Question 23

With which type of load balance scheduling is the first client request sent to the first group of servers, the second is sent to the second, and so on?
A. Affinity
B. Round-robin
C. Sequential
D. Progressive

Answer 23

B.

Question 24

Which type of load balancing configuration means that more than one load balancing server is working at all times to handle the load/requests as they come in?
A. Active-active
B. Cooperative-sharing
C. Equal Partner
D. Proactive-colleague

Answer 24

A.

Question 25

Which of the following work by decrypting encrypted traffic (SSL or TLS), inspecting it, and then re-encrypting it before sending it on to its destination?
A. SSL filteres
B. SSL gateways
C. SSL accelerators
D. SSL decryptors

Answer 25

D.

Question 26

Which of the following is a chip that can store cryptographic keys, passwords, or certificates?
A. HMP
B. TPM
C. MTP
D. PMH

Answer 26

B.

Question 27

Which AP-based technology can increase security dramatically by allowing or denying access based on a client's physical address?
A. MAC filtering
B. UTM (unified threat management)
C. Round-robin
D. WORM

Answer 27

A.

Question 28

Which network devices are used to divide larger networks into smaller sections by sitting between two physical network segments and managing the flow of data between the two?
A. Accelerators
B. Proxies
C. Bridges
D. Balancers

Answer 28

C.

Question 29

Which problem can occur when more than one bridge or switch is implemented on the network, and the devices confuse each other by leading one another to believe that a host is located on a certain segment when it is not?
A. Backdoors
B. Dead zones
C. Collisions
D. Loops

Answer 29

D.

Question 30

Which of the following technologies is designed to combat loops created by switches and bridges and enables bridge/switch interfaces to be assigned a value that is then used to control the learning process and prevent problems?
A. ESSID
B. SSID
C. BRD
D. STP

Answer 30

D.

Question 31

John is a network administrator for ACME company. He is trying to explain least privileges to a new technician. Which of the following is the basic premise of lest privilege?
A. Always assign responsibilities to the administrator who has the minimum permissions required.
B. When assigning permissions, give users only the permissions they need to do their work and no more.
C. Regularly review user permissions and take away one that they currently have to see if they will complain or even notice that it is missing.
D. Do not give management more permissions than users.

Answer 31

B.

Question 32

The present method of requiring access to be strictly defined on every object is proving too cumbersome for your environment. The edict has come down from upper management that access requirements should be slightly reduced. Which access model allows users some flexibility for information-sharing purposes?
A. DAC
B. MAC
C. RBAC
D. MLAC

Answer 32

A.

Question 33

Ahmed has been directed to ensure that LDAP on his network is secure. LDAP is an example of which of the following?
A. Directory access protocol
B. IDS
C. Tiered model application development environment
D. File server

Answer 33

A.

Question 34

Upper management has suddenly become concerned about security. As the senior network administrator, you are asked to suggest changes that should be implemented. Which of the following access methods should you recommend if the technique to be used is one that is primarily based on preestablished access and can't be changed by users?
A. MAC
B. DAC
C. RBAC
D. Kerberos

Answer 34

A.

Question 35

Your office administrator is being trained to perform server backups. Which access control method would be ideal for this situation?
A. MAC
B. DAC
C. RBAC
D. Security Tokens

Answer 35

C.

Question 36

You've been assigned to mentor a junior administrator and bring her up to speed quickly. The topic you're currently explaining is authentication. Which uses a KDC to accomplish authentication for users, programs, or systems?
A. CHAP
B. Kerberos
C. Biometrics
D. Smartcards

Answer 36

B.

Question 37

After a careful risk analysis, the value of your company's data has been increased. Accordingly, you're expected to implement authentication solutions that reflect the increased value of the data. Which of the following authentication methods uses more than one authentication process for a logon?
A. Multifactor
B. Biometrics
C. Smartcard
D. Kerberos

Answer 37

A.

Question 38

Your company provides medical data to doctors from a worldwide database. Because of the sensitive nature of the data, it's imperative that authentication be established on each session and be valid only for that session. Which of the following authentication methods provides credentials that are valid during a single session?
A. Tokens
B. Certificate
C. Smartcard
D. Kerberos

Answer 38

A.

Question 39

Which of the following is the term used whenever two or more parties authenticate each other?
A. SSO
B. Multifactor authentication
C. Mutual authentication
D. Tunneling

Answer 39

C.

Question 40

You have added a new child domain to your network. As a result of this, the child has adopted all o the trust relationships with other domains in the forest that excited for its parent domain. What is responsible or this?
A. LDAP access
B. XML access
C. Fuzzing access
D. Transitive access

Answer 40

D.

Question 41

Which of the following is a type of smartcard issued by the Department of Defense as a general identification/authentication card for military personnel, contractors, and non-DoD employees?
A. PIV
B. POV
C. DLP
D. CAC

Answer 41

D.

Question 42

You are working as a security administrator for a small financial institution. You want to use an authentication method that will periodically reauthenticate clients. Which protocol is best suited for this?
A. PAP
B. SPAP
C. KERBEROS
D. CHAP

Answer 42

D.

Question 43

John is trying to determine the origin of an email. He has captured the email headers and knows the IP address of the originating email server. What command would show John the complete path to that IP address?
A. ping -a
B. arp
C. tracert
D. nslookup

Answer 43

C.

Question 44

Juanita is the security administrator for a large university. She is concerned about copyright issues and wants to ensure that her university does not violate copyrights. What would be her main concern regarding unauthorized software?
A. It might be copyrighted.
B. It might be used to circumvent copyright protection.
C. That should not be a copyright concern.
D. It is not a concern if she has at least one license for the software.

Answer 44

A.

Question 45

Terrance is examining an authentication system that was developed at MIT and uses tickets for authentication. What system is Terrance most likely examining?
A. CHAP
B. MS-CHAP
C. KERBEROS
D. OATH

Answer 45

C.

Question 46

Melissa is planning on implementing biometric authentication on her network. Which of the following should be a goal for any biometric solution she selects?
A. High FRR, low FAR
B. HIGH FAR, low FRR
C. Low CER
D. High CER

Answer 46

C.

Question 47

Jarod is evaluating web-based, single sign-on solutions. Which of the following technologies is most associated with web page authorization?
A. SAML
B. PIV
C. CHAP 
D. RBAC

Answer 47

A.

Question 48

You are a network administrator for ACME Corporation. You want to implement a new access control mechanism. The mechanism you are considering takes into account the entire environment/scenario of the access request. What does this describe?
A. MAC
B. DAC
C. RBAC
D. ABAC

Answer 48

D.

Question 49

Dennis has implemented an authentication system that uses a password, a PIN, and the user's birthday. What best describes this system?
A. Single factor
B. Two factor
C. Three factor
D. Strong authentication

Answer 49

A.

Question 50

An IV attack is usually associated with which of the following wireless protocols?
A. WEP
B. WAP
C. WPA
D. WPA2

Answer 50

A.

Question 51

What is the size of the initialization vector (IV) that WEP uses for encryption?
A. 6-bit
B. 24-bit
C. 56-bit
D. 128-bit

Answer 51

B.

Question 52

What is the size of the wrapper TKIP places around the WEP encryption with a key that is based on things such as the MAC address of your machine and the serial number of the packet?
A. 128-bit
B. 64-bit
C. 56-bit
D. 12-bit

Answer 52

A.

Question 53

What technology is used to send data between phones that are in close proximity to each other?
A. NFC
B. IBI
C. IBJ
D. INFC

Answer 53

A.

Question 54

What technology is used to simplify network setup by allowing a router to have the administrator push a button on it to allow a new host to join?
A. WEP
B. WPA
C. WTLS
D. WPS

Answer 54

D.

Question 55

Which of the following technologies is used to identify and track tags attached to objects?
A. NFC
B. RFID
C. IV
D. DSC

Answer 55

B.

Question 56

What type of attack captures portions of a session to play back later to convince a host that it is still talking to the original connection?
A. Replay
B. Echo
C. Duplication
D. Reprise

Answer 56

A.

Question 57

Which standard defines port-based security for wireless network access control?
A. 802.1n
B. 802.1g
C. 802.1x
D. 802.1s

Answer 57

C.

Question 58

Which of the following types of attacks involves the sending of unsolicited messages over a Bluetooth connection?
A. Bluesmurfing
B. Bluesnarfing
C. Bluewhaling
D. Bluejacking

Answer 58

D.

Question 59

Karl has checked into a hotel after a long day of travel. He is attempting to check his daily deluge of email messages using the free in-room Wi-Fi, but it keeps losing the connection. When he calls the front deck, they suggest that he might want to use the premium Wi-Fi (which costs more) to get a better connection. What type of attack could this scenario represent?
A. Upselling
B. Cross-selling
C. Dissociation
D. Imitation

Answer 59

C.

Question 60

Frustrated with the low signal that the devices in his cubicle receive, Spencer brings in his own access point and creates his own network, Kristin, a co-worker, tells him that if the boss finds out about this it is grounds for immediate dismissal, and he should read the employee handbook if he has any questions. Setting up your own access point represents which of the following?
A. Degenerate
B. Rogue
C. Corporeal
D. Temporal

Answer 60

B.

Question 61

During the authentication part of setting up his small office access point, Wolfgang was required to enter a PIN within 60 seconds. This process is known as:
A. Wired Equivalent Privacy
B. Wi-Fi Protected Access
B. Wi-Fi Protected Setup
D. Wi-Fi Authentication Protocol

Answer 61

C.

Question 62

Which security protocol for wireless networks attempts to establish the same security for them as would be present in a wired network?
A. WEP
B. WEB
C. WELL
D. WALL

Answer 62

A.

Question 63

Evan fears that the tenant in the office next door is using RF interference to try to force his small company to vacate the building in frustration. Purposely obstructing or interfering with a signal is known as which of the following?
A. Shoving
B. Jamming
C. Cramming
D. Blocking

Answer 63

B.

Question 64

What is a disassociation attack more commonly known as?
A. Decertification attack
B. Disconfirmation attack
C. Deauthentication attack
D. Denial attack

Answer 64

C.

Question 65

With near field communication (NFC) technology, the industry tends to use what distance as "near?"
A. 1 inch
B. 1.2 inches
C. 1.6 inches
D. 2 inches

Answer 65

C.

Question 66

With Bluetooth devices suddenly popping up everywhere in your network, you want to secure as many of them as possible. One of the simplest methods of securing these devices is not to set their attribute to:
A. Discoverable
B. Transmit
C. Announce
D. Communicate

Answer 66

A.

Question 67

Which of the following is the gaining of unauthorized access through a Bluetooth connection?
A. Bluejumping
B. Bluesnarfing
C. Bluerunning
D. Bluelining

Answer 67

B.

Question 68

A client calls you and says that he wants to turn off SSID broadcast on his small network because he is afraid that those simply scanning for a network are finding it and trying to connect to it. You inform him that this a very weak form of security and suggest some other options, be he is insistent on this being done. What is this form of hiding the router known as?
A. Veiling
B. Masking
C. Shrouding
D. Cloaking

Answer 68

D.

Question 69

Which of the following is an attack in which a rogue access point poses as a legitimate wireless service provider to intercept communication that uses transmit?
A. Collision
B. Evil Twin
C. NFC
D. WPS

Answer 69

B.

Question 70

In which cloud service model can the consumer "provision" and "deploy and run"?
A. SaaS
B. PaaS
C. IaaS
D. CaaS

Answer 70

C.

Question 71

Which cloud delivery model is implemented by a single organization, enabling it to be implemented behind a firewall?
A. Private
B. Public
C. Community
D. Hybrid

Answer 71

A.

Question 72

Which cloud service model provides the consumer with the infrastructure to create applications and host them?
A. SaaS
B. PaaS
C. IaaS
D. CaaS

Answer 72

B.

Question 73

Which cloud delivery model could be considered a pool of services and resources delivered across the Internet by a cloud provider?
A. Private
B. Public
C. Community
D. Hybrid

Answer 73

B.

Question 74

Which cloud service model gives the consumer the ability to use applications provided by the cloud provided over the Internet?
A. SaaS
B. PaaS
C. IaaS
D. CaaS

Answer 74

A.

Question 75

Which cloud delivery model has infrastructure shared by several organizations with shared interests and common IT needs?
A. Private
B. Public
C. Community
D. Hybrid

Answer 75

C.

Question 76

Which cloud delivery model could be considered an amalgamation of other types of delivery models?
A. Private
B. Public
C. Community
D. Hybrid

Answer 76

D.

Question 77

With which of the following subscription-based models is security more cost effective than individuals or smaller corporations could ever get on their own?
A. SECaaS
B. PaaS
C. XaaS
D. WaaS

Answer 77

A.

Question 78

Which of the following are on-premise or cloud-based security policy enforcement points?
A. Feature slugs
B. Flood guards
C. VDI/VDEs
D. Cloud access security brokers

Answer 78

D.

Question 79

Which feature of cloud computing involves dynamically provisioning (or deprovisioning) resources as needed?
A. Multitenancy
B. Elasticity
C. CMDB
D. Sandboxing

Answer 79

B.

Question 80

What is the term for restricting an application to a safe/restricted resource area?
A. Multitenancy
B. Fencing
C. Securing
D. Sandboxing

Answer 80

D.

Question 81

Which of the following terms implies hosting data from more than one consumer on the same equipment?
A. Multitenancy
B. Duplexing
C. Bastioning
D. Fashioning

Answer 81

A.

Question 82

When going with a public cloud delivery model, who is accountable for the security and privacy of the outsourced service?
A. The cloud provider and the organization
B. The cloud provider
C. The organization
D. No one

Answer 82

C.

Question 83

When your company purchased a virtual datacenter provider, you inherited a mess. The employees working there had to respond regularly to requests to create virtual machines without the disciplines and controls normally found in the physical world. This resulted in machines being over-provisioned (too much CPU, memory, or disk) and consuming resources long after they were no longer required. What type of problem is this?
A. VM escape
B. VM digress
C. VM sprawl
D. VM Type I

Answer 83

C.

Question 84

Although a hybrid cloud could be any mixture of cloud delivery models, it is usually a combination of which of the following?
A. Public and community
B. Public and private
C. Private and community
D. Two or more communities

Answer 84

B.

Question 85

Which type of hypervisor implementation is known as "bare metal"?
A. Type I
B. Type II
C. Type III
D. Type IV

Answer 85

A.

Question 86

Which type of hypervisor implementation is known as "hosted"?
A. Type I
B. Type II
C. Type III
D. Type IV

Answer 86

B.

Question 87

When your servers become too busy, you can offload traffic to resources from a cloud provider. This is known as which of the following?
A. Latency
B. Cloud bursting
C. Multitenancy
D. Peaking

Answer 87

B.

Question 88

What protocol is used by technologies for load balancing/prioritizing traffic?
A. ESX
B. QoS
C. IBJ
D. IFNC

Answer 88

B.

Question 89

What is the machine on which virtualization software is running known as?
A. Node
B. Workstation
C. Host
D. Server

Answer 89

C.

Question 90

Which of the following terms refers to the process of establishing a standard for security?
A. Baselining
B. Security Evaluation
C. Hardening
D. Methods research

Answer 90

A.

Question 91

You've been chosen to lead a team of administrators in an attempt to increase security. You're currently creating an outline of all the aspects of security that will need to be examined and acted on. Which of the following terms describes the process of improving security in a network operating system (NOS)?
A. Common criteria
B. Hardening
C. Encryption
D. Networking

Answer 91

B.

Question 92

John is responsible for application security at his company. He is concerned that the application reacts appropriately to an unexpected input. What type of testing would be most helpful to him?
A. Unit testing
B. Integration testing
C. Stress testing
D. Fuzzing

Answer 92

D.

Question 93

Myra is concerned about database security. She wants to begin with a good configuration of the database. Which of the following is a fundamental issue with database configuration?
A. Normalization
B. Input Validation
C. Fuzz testing
D. Stress testing

Answer 93

B.

Question 94

Which of the following is the technique of providing unexpected values as input to an application to try to make it crash?
A. DLP
B. Fuzzing
C. Stress testing
D. HSM

Answer 94

B.

Question 95

Mary is responsible for website security in her company. She wants to address widely known and documented web application vulnerabilities. Which resource would be most helpful?
A. OWASP
B. CERT
C. NIST
D. ISO

Answer 95

A.

Question 96

You're redesigning your network in preparation for putting the company up for sale. The network, like all aspects of the company, needs to perform at its best in order to benefit the sale. Which model is used to provide an intermediary server between the end user and the database?
A. One-tiered
B. Two-tiered
C. Three-tiered
D. Relational Database

Answer 96

B.

Question 97

The administrator at MTS was recently fired, and it has come to light that he didn't install updates and fixes as they were released. As the newly hired administrator, your first priority is to bring all networked clients and servers up to date. What is a bundle of one or more system fixes in a single product called?
A. Service pack
B. Hotfix
C. Patch
D. System install

Answer 97

A.

Question 98

Your company does electronic monitoring of individuals under house arrest around the world. Because of the sensitive nature of the business, you can't afford any unnecessary downtime. What is the process of applying a repair to an operating system while the system stays in operation?
A. Upgrading
B. Service pack installation
C. Hotfix
D. File update

Answer 98

C.

Question 99

Juan has just made a minor change to the company's e-commerce application. The change works as expected. What type of testing is most important for him to perform?
A. Unit testing
B. Regression testing
C. Static testing
D. Stress testing

Answer 99

B.

Question 100

Your company has grown at a tremendous rate, and the need to hire specialists in various IT areas has become apparent. You're helping to write an online advertisement that will be used to recruit new employees, and you want to make certain that applicants possess the necessary skills. One knowledge area in which your organization is weak is database intelligence. What is the primary type of database used in applications today that you can mention in the ads?
A. Hierarchical
B. Relational
C. Network
D. Archival

Answer 100

B.

Question 101

What is the process of applying manual changes to a program called?
A. Hotfix
B. Service pack
C. Patching
D. Replacement

Answer 101

C.

Question 102

You want to assign privileges to a user so that she can delete a file but not be able to assign privileges to others. What permissions should you assign?
A. Full control
B. Delete
C. Administrator
D. Modify

Answer 102

B.