Study This

Question 1

If risks were categorized as either critical or normal, what risk assessment method is being used?

Answer 1

Qualitative

Question 2

What risk assessment method produces number results

Answer 2

Quantitative

Question 3

What document is intended to help deal with potential issues and conflict among partners

Answer 3

BPA

Business partner agreement addresses things like ownership, profits, losses and partner contributions

Question 4

What does a more threat centered security program look like?

Answer 4

Focusing on understanding adversaries motivations and capabilities

Question 5

What is characterized as an attempt to gain access to a systems resource

Answer 5

Exploit

Question 6

What document defines the technical security requirements associated with two orgs and who are connecting their information systems /network?

Answer 6

Interconnection security agreement, ISA

Question 7

When do we normally build a risk matrix

Answer 7

Qualitative risk analysis

Question 8

A developer composes a document that details all the entry points through which an attacker could attempt to introduce code into the app environment, what does this document represent

Answer 8

Attack surface

Question 9

Single loss expectancy equals (=) assets values times (x) exposure factor

Answer 9

The percentage of an asset that is lost due to a threat event

Question 10

What is the minimum and customary practice of responsible protection of information assets is defined by which of the following terms?

Answer 10

Due care

Question 11

Of two people are working together and we are concerned about collusion, what is performed?

Answer 11

Rotation of duties

Question 12

What is a central characteristic of accountability

Answer 12

A systems ability to determine the actions and behavior a single individual within a system

Question 13

What is the opposite of the CIA triad

Answer 13

Disclosure, alteration and destruction

Question 14

Report assessing design, suitability and effectiveness for a service organization security controls over a period of time

Answer 14

SOC 2 type 2

Question 15

What term is primarily concerned with enumerating an understanding the various ways an adversary might negatively impact the security of an application slated for development

Answer 15

Threat modeling

Question 16

Policies standers guidelines in security awareness training fall under which of the following control categories

Answer 16

Directive controls

Question 17

What principal Requires multiple individuals authorization in order to carry out a particularly critical function

Answer 17

Separation of duties

Question 18

Security incident can be thought of in which of the following terms?

Answer 18

Confidentiality, integrity and availability

Question 19

Which of the following terms describes the right to protect the expression of ideas

Answer 19

Copyright

Question 20

When calculating the cost of risk I need to look for two factors which of the following choices one of these factors

Answer 20

Single loss expectancy

Question 21

Your organization just discovered an incident in which PII looks to have been accessed But not ex filtrated. What should you do

Answer 21

Disclosure within 72 hours of the incident discovery

Question 22

What document would be used to ensure that the IT department meeting is contractual obligations with the audit team

Answer 22

Ola

Operating level agreement which is an internal agreement that supports the SLA

Question 23

And quantitative risk management single loss expectancy is used to quantify what

Answer 23

The amount of financial impact that would result if a breach occurred that impacted an asset

Question 24

Prior to excepting a risk what has most likely occurred

Answer 24

Risk mitigation
There will always be a residual risk even if mitigating counter measures are leveraged. Either this occurs explicitly and formally or risk is accepted implicitly by choosing not to employ additional avoidance, transfer, or mitigation measures

Question 25

Which ISO information security standard focuses on auditing

Answer 25

27001

Question 26

Which type of technology would be best suited to help monitor and possibly even bolster the security of a SaaS Solutions being used by on premise employees

Answer 26

CASB
Cloud access security brokers are on premise or cloud base security policy enforcement points, place between cloud service consumers and cloud service providers to combine an interject enterprise security policies as cloud base resources are accessed

Question 27

Identifying and labeling all personally identifiable information would be example of what

Answer 27

Data classification

Question 28

What process customizes a standard for an organization, beginning with scoping, then adding compensating controls with parameters ( security configuration settings) 

Answer 28

Tailoring

Question 29

What process determines the applicable portions of a standard that must be followed by organization

Answer 29

Scoping

Question 30

Which of the following is considered nonvolatile memory

Answer 30

ROM
Read only memory is nonfilel storage where locations can be directly access in basic implementation. Data cannot be altered dynamically. Nonfiled storage retains this information even when the computer loses power, and can be used to boot the system.

Both dynamic ram static ram are volatile memory

Question 31

Senior manager has grown particularly concerned about the potential for breach of PII data. Which of the following controls is most directly applicable to their concern

Answer 31

DLP
Data loss prevention tools and software filter data streams on networks, control and monitor and point activities, and monitor data in the cloud. DLP tools protect data and use data in motion and data at rest. Data loss prevention programs also feature reporting, which aids both and identifying anomalies and problems for forensic response and in meeting audit in routine compliance requirements

Question 32

What is true about dynamic ram

Answer 32

DRAM Data is rewritten multiple times each second

Hint, dynamic RAM 
It is always being rewritten hence dynamic

Question 33

What are small extremely fast storage locations directly accessible to the CPU?

Answer 33

Registers

Question 34

Which organization managers request for comments RFCs

Answer 34

IETF

Request for comments RFC‘s are managed by the Internet engineering task force (IETF) 

Question 35

Which role sets that information security priorities and supports the mission of the organization

Answer 35

Business owner

Question 36

Which of the following choices is also referred to as flash memory

Answer 36

Electronically erasable programmable read only memory(EEPROM)

Question 37

Which method of media sanitation is performed the other local device interface, but could still potentially loud data recovery through other advanced recovery methods

Answer 37

Clear

Clearing is done locally via the device interface (the operating system) .
Data are not recoverable the other device in her face but I may be recoverable the advanced recovery methods

Question 38

Which ISO information security standard focuses on best practices

Answer 38

27002

Question 39

Electronic versions courseware from your favorite security training organization plays technology that limit your ability to add your own notes to the files. The files also incorporate a unique identifier that can assist in determining the source of copyrighted information having been pirated. What type of technology are they using

Answer 39

DRM

Digital rights management is a sweet of technology designed to protect copyrighted digital media

Question 40

All types of programmable read only memory are actually special cases of a more general sort of technology

Answer 40

Programmable logic device (PLD)

Question 41

What I associate was formally known as ISO 17799

Answer 41

ISO 27002

Question 42

What is the best way to remove data from right once read many (worm) media

Answer 42

Destruction

Question 43

When comparing DRAM AND SRAM. Which of the following statements is true

Answer 43

Dram is slower than sram

Question 44

What term describes writing data to an EEPPROM

Answer 44

flashing

Question 45

What is the best method to secure lead astray data on a DVD – r

Answer 45

Destruction

Question 46

What role crazy manager sensitive data

Answer 46

Data controller

Question 47

What role is in charge of computer hardware and software design, plans, and updates

Answer 47

System owners

Question 48

What is a set of memory addresses managed by the OS that do not correspond directly to physical memory

Answer 48

Virtual memory

Question 49

What refers to the computer’s capability to execute instructions in parallel due to the usage multiple CPUs

Answer 49

Multi processing

Question 50

Low level commands that a CPU knows how to execute and performs many operations per instructions

Answer 50

CISC

Question 51

The RSA algorithm uses what kind of intractable problem as the basis of its crypto system

Answer 51

Factoring certain large integers into their two prime factors

Question 52

Which of the following coordinates systems activities during execution of code

Answer 52

CPU control unit

Question 53

What model deals with potential conflict of interested

Answer 53

Brewer nash

Question 54

What is a real time alternative to using CRL

Answer 54

OCSP

Online certificate status protocol

Question 55

What term indicates the degrees of randomness

Answer 55

Entropy

Question 56

Security model includes the no read up (simple security property) and no write down

Answer 56

Bell LaPadula

Question 57

What security integrity model focuses on internal consistency, external consistency, will form transactions, separation of duties

Answer 57

Clark Wilson

Question 58

Which of the following ensures that previously captured communications are not decrypted if a session key is comprised

Answer 58

Perfect forward secrecy

Question 59

which of the following performs the calculations or operations based on programs calls

Answer 59

CPU arithmetic logic unit

Question 60

Terms the deceives the CPUs ability to process more than one program at a time

Answer 60

Multitasking

Question 61

What’s a cutie model includes no re-down and no right up

Simples integrity

Answer 61

Biba

Question 62

What is a common operating system protection that prevents one software application from affecting another software application if it crashes

Answer 62

Process isolation

Question 63

What is the term for copying memory data to a bd from hard disk

Answer 63

Page fault

Question 64

What is the terms when the OS Copies virtual memory from hard disk to main memory

Answer 64

Paging

Question 65

What protocol do routers use to determine the path that should be taken by a packet

Answer 65

IP

Question 66

When you see 1E4DB3 they’re dealing with which numbering system

Answer 66

Hex

Question 67

What network storage technology does not allow block level access, abut allows reading/arriving entering files via a network

Answer 67

NAS

Question 68

What wireless protocol supports 54 mbps st 5 ghz

Answer 68

803.11 a

Question 69

What allows you to uniquely identify a complete connection among all other connections on the internet

Answer 69

A socket pair

Question 70

Which layer of the OSI model connects to the ohsucial part of the network with the Abstract pair

Answer 70

Data link

Question 71

Which layer of the OSI mod converts. It’s i to electric signals or light impulses for transmissions

Answer 71

Physical layer

Question 72

Which VOIP protocol is an application layer protocol used for communication signaling

Answer 72

SIP

Question 73

What technology separates a routers control plane from the data plane

Answer 73

Software defined networking

Question 74

Data encapsulation and the protocol stack work on which of the following ways

Answer 74

Each protocol or service at each layer in the OSI models adds its own information to the data as it is passed down the protocol stack

Question 75

Which of the following network devices blocks (ip) limited broadcast traffic by default

Answer 75

Router

Question 76

What encryption method should be used to secure a wireless connection

Answer 76

WPA2

Question 77

Which wireless technology leverages battery powered radios and it’s commonly used for building automation and control

Answer 77

Zigbee

Question 78

What IPsec method offers integrity and authentication but not confidentiality

Answer 78

Ah

Authentication header

Question 79

Which wireless technology could be employees when there are concerns about significant electromagnetic interference

Answer 79

Li-fi

Question 80

What authentication mechanism exposes the password in plain text

Answer 80

PAP

Password authentication protocol

Question 81

Which layer of the OSI model converts bitch into electrical signals or light impulses for transmission

Answer 81

Physical layer

Question 82

Which of the following layers of the OSI model handles establishment maintenance of connections between systems

Answer 82

Session layer

Question 83

Which protocol to Rellis used to Termine the path that should be taken by a packet

Answer 83

IP

Question 84

Which network component should be used with there’s a concern about internal network sniffing

Answer 84

Switch

Question 85

It is desire to have one layer to lan available on multiple switches in different countries so that each system can communicate directly using frames LA or two. What technology…

Answer 85

Vlan

Question 86

What technology separates routers control plane from the data forwarding plane 

Answer 86

Software defined networking

Question 87

Which of the following is hopeful that work patchable soon to that shows each of the notes on a path between the local machine and a destination

Answer 87

Traceroute

Question 88

Which of the following is popular LAN based technology

Answer 88

Ethernet

Question 89

Which plaintext VOIP IP protocol is frequently used to transfer audio or video data

Answer 89

RTP

Question 90

What network storage technology does not allow black level access, but allows reading and writing entire files via network

Answer 90

NAS

Question 91

What is the measure of the when the system will be available to begin processing recovery work before being put back into a normalized production mode

Answer 91

Recovery time objective

Question 92

RTO

Answer 92

Also means when the hardware, software and infrastructure are capable to start doing any necessary recovery work required before operations are resumed properly

Question 93

What is it called when the amount of data loss that is acceptable for a business function called?

Answer 93

RPO

recovery point objective

The dictates the amount of data that can be lost for a critical function

Question 94

What is useful at protecting custom applications from common vulnerabilities (SQL injection, cross site scripting etc )

Answer 94

WAF

Web application firewall

Question 95

What are the deployments available for WAF

Answer 95

Reverse proxy
Server install
Cloud hosted

Question 96

What are WAF used for

Answer 96

Protection of an org public facing web apps

Question 97

Can WAF be used to increase the security of off the shelf web app?

Answer 97

True

Question 98

What is an IPS used for

Answer 98

Blocks traffic

Rather than alerting, the IPS will block suspicious traffic

Can have false pos which can be a self imposed DoS condition

Question 99

Does a false positive on an IDS cause an availability issue?

Answer 99

No

Question 100

What is the main emphasis of malware sandboxing?

Answer 100

Trying to render or execute files before passing the on, or personals providing a report after analysis

Question 101

What prevents unknown/unlisted binaries from executing

Answer 101

application whitelisting

Question 102

Antivirus software attempts to block what

Answer 102

Various forms of malware

Question 103

What are some examples of malware

Answer 103

Virus
Worms
Trojan
Spyware

Question 104

What involves simply making use of data about adversaries to improve security operations

Answer 104

IOC

Indicators of compromise

Question 105

Is an IDS a passive system?

Answer 105

Yes

It sends alerts when malicious act is an occur

Question 106

NIDS has three fundamental designs

Answer 106

Signature based
Protocol Analysis
Anomaly based

Question 107

IDS Can operate in which two modes

Answer 107

Passive and active
Passive sends alerts but does not stop the attack
Active stops the attack usually be sending resets

Question 108

Where does an IDS sit

Answer 108

On a network and sniffs traffic

Question 109

RFCs

Answer 109

Request for comments

Question 110

When are anomaly detection models used for

Answer 110

Small, well designed networks and in specific high risk cases

It alerts on anomalous behavior and is prone to false positives when behavior changes

Question 111

What monitoring focuses on data leaving the org, system or interface

Answer 111

Engross monitoring

Question 112

Monitoring oncoming traffic to an org or target system

Answer 112

Ingress

Question 113

What does SIEm stand for

Answer 113

Security information and event management

Question 114

What’s does a SEIM do

Answer 114

To deal with the volume and ease analysis of all the security related information and audit logs, a SEIM will go through all the logs and detect adversary tactics and problems.

Question 115

What builds a behavior oriented profile of activity for both users and systems

Answer 115

UEBA

user and entity behavior analytics

Question 116

What are some key monitoring tools?

Answer 116

IDS and SEIM

Question 117

What type of logs can a SEIM Monitor

Answer 117

System/event logs
Web server logs
Firewall and proxy logs
And etc

Question 118

What can be employed to ensure integrity of data remains

Answer 118

Digital signature

Question 119

By default do syslogs provide integrity features that can confirm authenticity of the logs

Answer 119

No it does not

A third party utility like syslogw-NG does

Question 120

Layer of OSI closest to the users and programs
Layer 7
Identification of communication partners
Determines security aspects of communication

Answer 120

Application layer

Question 121

Layer 6
Provides representation of information to be processed by the application
Provides translations services such as EBCDIC and ASCII
Performs data encoding, compression and decompression

Answer 121

Presentation layer

Question 122

Layer 5
Organizes communication 
Management of data exchange 
Maintains the session 
Allows half duplex and full duplex

Answer 122

Session layer

Question 123

Layer 4
Optimizes network service usage 
Uniquely identifies end points 
Maintain communication integrity 
Error detection

Answer 123

Transportation layer

Question 124

Layer 3
Provides network addressing 
Performs touring and flow control 
Establishes network connection 
Provides network path 
IPv4

Answer 124

Network layer

Question 125

Layer 2
Formats messages to allow for transfer of physical media
Provides addressing for physical hardware
Ethernet or MAC addresses

Answer 125

Data link layer

Question 126

Layer 1
Provides mechanical and electric activation, maintenance and deactivation oh physical connections for transmissions
Defines the ohh oak means of communication
Determines requirements for signal transmission. Over physical medium

Answer 126

Physical layer

Question 127

What may be used to provide layer 2 authentication

Answer 127

802.1x

Question 128

What layer of the OSI model connects the physical part of the network with the abstract

Answer 128

Data link

Question 129

What DNS security protocol typically leverages browsers as the DNS client and provides increased confidentiality of DNS requests?

Answer 129

DoH

Question 130

What layer of the OSI model interacts with informs and prepares it to be transmitted across the network

Answer 130

Transport layer

Question 131

Dedicated security mode, this is not one

Answer 131

Systems handle multiple classification. Levels

Question 132

What is two phase commit

Answer 132

Distributed database architecture that ensures that no transactions are finalized until all connected systems have successfully synchronize

Question 133

Non violate storage that prevents existing data from being overwritten

Answer 133

Worm

Question 134

What function Verifies the security of system, resources and test the effectiveness of the controls implemented and helps determine where more controls might be needed

Answer 134

Auditing

Question 135

Which technique do layer to switch his employee to speed up forwarding data across ports

Answer 135

Cut through

Question 136

On what environment are updates to the OSPF protocol handled by the co trip plane rather than a routers data plane

Answer 136

Software defined networking

Question 137

Created a rule in the IDS to prevent attack. Anatomist wants to verify it tower and machine is protected. What tool would they use?

Answer 137

Metasploit

Question 138

191.10.1.1-191.10.11.255

Answer 138

Class b

Question 139

Class b ip range

Answer 139

128.0.0.0 though 191.255.255.255

Question 140

Who should write up the lessons learned?

Answer 140

The on-site handler

Question 141

When smart cards replace passwords as authentication, to access a system what is now a problem?

Answer 141

Lost tokens

Question 142

The minimum and customary practice of responsible protection of information assets is defined by what

Answer 142

Due care

Question 143

What pen test activities would be effective in validating TEMPTEST effectiveness

Answer 143

Radiation monitoring

Question 144

The CMMI targets what specific aspect of software development

Answer 144

Processes

Question 145

What can be used by developers to proved additional protection Against buffer overflow’s

Answer 145

Canaries

Question 146

What causes chrome to have many processes instances when there are multiple tabs open

Answer 146

Sandboxing

Google uses sandboxing in it a chrome browser. Each tab is separate process, each sandboxes from each other

Question 147

What is the strategy behind the BIA

Answer 147

Maximum allowable downtime

Question 148

A NDA is used to enforce which part of a security program

Answer 148

Data classification

Question 149

What is the downside of selecting twisted pair cabling with more twists per segment

Answer 149

Higher costs

Question 150

What type of security testing would be most likely to be performed on a monthly basis by a security team

Answer 150

Vulnerability scanning

Question 151

Application fuzzing is a form of what

Answer 151

Pen testing

Question 152

How does Linux NX protect against buffer overflows attacks?

Answer 152

It marks pages of the stack as non executable

Question 153

In a pen test, what is used to exploit services

Answer 153

Core impact

Question 154

What is the advantage of a 200 gigabyte rainbow table over a 100 huge byte rainbow table covering the same key space

Answer 154

Faster password cracking

Question 155

A web application is provided a redirect URL information it that the subject has been successfully authenticated. What is being used?

Answer 155

Openid

Openid provides claims about a user identity and authentication

Question 156

What is the principal of SSO

Answer 156

Authentication

Question 157

What does the VNC payload in an attack with Metasploit give the attacker

Answer 157

Remote GUI

Question 158

When involved in the US legal proceedings under what condition is ESI considers non discoverable

Answer 158

If deleted as part of previously established business process

Question 159

Which of the following is an approved replacement for Halon?

Answer 159

Fm 200

Question 160

What is a hash

Answer 160

A one way mathematical function

Question 161

How many bits are in an IPv6

Answer 161

128

Question 162

Early sign of a DoS

Answer 162

A packet with source IP/port matching the destination IP/port

Question 163

What is context based access control

Answer 163

When access to something in the network is unavailable or available depending on the time of day or week

Question 164

What is likely to be treated as PII by both company policy and law

Answer 164

A document that contains names and addresses of customers

Question 165

What is the first step to be accomplished in a preliminary legal investigation

Answer 165

Determine if a crime has occurred

Question 166

How is the annualize loss expectancy calculated

Answer 166

Single loss expectancy times annualize rate of occurrence

Question 167

A helpdesk ticket regarding slow server response is escalated for investigation. The assigned administrator determines at the activities due to the running of a legitimate business application and closes a ticket. What phase of incident response does this occur during?

Answer 167

Detection

Terrifying weather event report activity is infected in certain happens during the detection face

Question 168

The following statement can best be described as what type of secure documentation?

All and user systems on the network must be protected at the host level against malware and unauthorized access attempts

Answer 168

Policy

Question 169

How many bits is IPV4

Answer 169

32

Question 170

Which protocol Heather would be shown in screen shot when it has resignation port 443

Answer 170

TCP

Question 171

What are key TCP header fields

Answer 171

Source in destination ports flags and sequence number

Question 172

What is a relaying party

Answer 172

The party that uses the login credentials when using open ID


Question 173

What is the main difference between a third-party audit and an internal audit

Answer 173

Objectivity

Question 174

Which of the following access control techniques require the use her to follow a transformation procedure to access protected data

Answer 174

The Clark Wilson model introduces the concept of transformation procedure that defines how changes can be made to objects in the system

Question 175

Which of the following can be used for distributed denial of service attack

Answer 175

Sending TCP packets with the SYN flags set

Question 176

Which of the following describes the purpose of LDAP

Answer 176

A centralized repository for user in system resources on a network

Question 177

Operational security change control is a process that manages changes to which of the following

Answer 177

Hardware, software Netwerk

Question 178

What technology would help a business that streams movies to customers worldwide ensure consistent performance

Answer 178

Content distribution network

Question 179

Antivirus Blocked an executable and sent a notice to a security vendor information management system. What kind of control does antivirus represent

Answer 179

Preventative

Question 180

What standard was introduced by the IEEE to address the issue of authentication

Answer 180

802.1x

Question 181

At which critical step in the system development process should a risk assessment be performed

Answer 181

Project initiation

Question 182

What is a mandatory component of a single sign-on system

Answer 182

Centralize credential storage

Question 183

All the following statement can best be described as what type of security documentation

While the company strongly recommends again sending sensitive or confidential data via email the data owner may authorize this method of communication of the center uses company provided email Christian to transmit data

Answer 183

Guideline

Question 184

Who ultimately has ownership of the business continuity plan in an enterprise

Answer 184

Chief executive officer

It belongs to the business

Question 185

Media sanitation instruction prevent

Answer 185

Object reuse

Question 186

How are processing task carried out in asymmetrical multiprocessing system

Answer 186

System processes will run on one CPU and the other CPUs will run the applications

Question 187

During which phase of the fetch decode execute cycle does the CPU determine what actions the instructions to take

Answer 187

Decode

Question 188

Which software development Methodist driven by the possible failure of the software project to achieve stated goals

Answer 188

Spiral

It is driven by risk

Question 189

With respect to the data classification wall which of the following is a responsibility of the system on her

Answer 189

Assist in the identification implementation assessment Of the common security controls

Question 190

Which of the following is not an advantage of a centralized access control administration

Answer 190

Flexibility

Question 191

And organization maintains a plan for emergency response, employee communications, back up operations, and post disaster recovery that will ensure that availability of critical resources and procedures to return to full production an existing office facilities. What type of plan is being described

Answer 191

Business continuity plan

Question 192

What is likely to be done at five through an assessment of core security processes

Answer 192

The root cause of security failures

Question 193

A programmer received an application error message that a requested Record was being accessed by another process. The programmer is the only person with access to the test database. After Rebooting her computer, she was able to access the record. What caused the error message

Answer 193

Deadlock condition has been put in place

Question 194

What is the meterpreter on the Metasploit framework 

Answer 194

A payload

Question 195

Which component of an account a management process is most likely to limit an attack

Answer 195

Scheduling retiring of inactive accounts

Question 196

What uses a NOP sled

Answer 196

Bidder overflow

Question 197

Which of the following is used for day to day protection of business critical resources and controlling access to computer facilities

Answer 197

Operational controls

Question 198

When making online purchases what can a user easily check to see if the Information they are going to submit will not be observed by eavesdroppers

Answer 198

Using websites with HTTPS

Question 199

A system is built so there is redundancy, but there are no dedicated hard drives for data, back up or parity. What system Is this

Answer 199

RAID 5

Question 200

What does NSlookup command do

Answer 200

See the host name and The IP address and DNS

Question 201

Which software development methodology is not primary code centric

Answer 201

DEVOPS

Question 202

Which of the following development phases would be closer to the end of the process

Answer 202

Installment and implementation

Question 203

Which component of IPsec uses a verification function similar to signing an email with a digital signature

Answer 203

Authentication header

Question 204

What is a benefit of using Kerberos for authentication

Answer 204

Password remain encrypted during transfer

Question 205

Which of the following is most likely to result in shell access to a users workstation

Answer 205

Social engineering

Not port scanning or not war dialing

Question 206

What type of security testing is being performed when a programmer compiles an application with all warnings enabled

Answer 206

Static Analysis

Question 207

A single disk in a RAID array fails and data is lost. What kind of RAID was this

Answer 207

0

Question 208

During an incident in what phase should the decision be made to pull an affected system off the network?

Answer 208

Response

Question 209

What is the total number of UDP PORTS that could be open on a system

Answer 209

65,536

Question 210

What must be included for a success exploitation

Answer 210

Payload

Question 211

What security model requires every user of the system and every object in the system to be assigned a security label and allow access based solely on these labels

Answer 211

Lattice

Question 212

Which security document would contain technical details about how a specific application must be configured

Answer 212

Baseline

Question 213

Determining an individual is who they claim to be

Answer 213

Authentication

Question 214

Which topology used two rings for fault tolerance

Answer 214

FDDI

Question 215

What part of the file contains Info about the user and App that created the file

Answer 215

Metadata

Question 216

Security model focuses on confidentiality of info

Answer 216

Bell lapadula

Question 217

Security cameras are what type of control

Answer 217

Compensating

Question 218

What term is used for programs stored on read only memory devices

Answer 218

Firmware

Question 219

Why is computer generated documentation usually considered non reliable evidence

Answer 219

Too difficult to detect prior mods

Question 220

What indicates a server side attack

Answer 220

The attack is launched against a network service that is listening on the victim host 

Question 221

What does the Advanced Encryption Standard AES, use s boxes for during the encryption process

Answer 221

Substitution

Question 222

What part of security assessment does pair programming belong to?

Answer 222

Technical security testing

Question 223

Regarding OS protection mechanisms which is false about the ring

Answer 223

Wearing allows users processes to interact with a kernel as peer processes

Question 224

Which statement correctly describes a relevant consideration when defending against client-side versus server-side attacks

Answer 224

Client side are usually harder to defend against

Question 225

MTD = what

Answer 225

RTO+wrt

Question 226

How to protect trade secrets

Answer 226

Auditing file access and controlling copying of intellectual property

Question 227

What is covered by an SLA

Answer 227

Vendors agreed response time to a system outage

Question 228

Writing a company’s security policy is what type of control

Answer 228

Administrative

Question 229

Access control model is primarily which type of control

Answer 229

Preventative

Question 230

What problem was TEMPEST designed to encounter

Answer 230

Data leakage through Electromagnetic radiation

Question 231

Which type of access control and pops all users having a clearance

Answer 231

MAC

Question 232

What is a business continuity plan

Answer 232

And overarching plan includes A collection of other plans

Question 233

What type of packages tracert Receive a reply that used to determine the route

Answer 233

Time exceed

Question 234

Which plan provides procedures for minimal loss of life

Answer 234

Occupant emergency plan

Question 235

What is the least important item to be capture an audit logs

Answer 235

System performance output data

Question 236

And organization hired a third-party to contact monthly vulnerability assessment. In which phase of business continuity plan does this belong

Answer 236

Current state assessment

Question 237

Which process will reveal a buffer overflow vulnerability in an application

Answer 237

Fuzzing

Question 238

Which extensible authentication protocol method authenticate a client at the server but is not manually authenticate the server to the client

Answer 238

EAP-MD5

Question 239

What is the goal of technical security testing

Answer 239

To remediate vulnerabilities

Question 240

What part of the waterfall model ensures that a product meets the specifications

Answer 240

Verification

Question 241

What are used to care for CrossSite scripting attack to be successful

Answer 241

The victims computer must execute a Malicious script

Question 242

Increasing availability of a service components of the cheap by implementing which of the following

Answer 242

Fault tolerance

Question 243

DNS is what

Answer 243

Protocol for translating IP address is to names and Back again 

Question 244

What is a typical length of an extended unique identifier

Answer 244

64

Question 245

What is a fundamental principle of the waterfall model

Answer 245

Each development phase must be completed before the next begins

Question 246

Due to differing privacy laws between countries a company uses a separate never to handle and stores data in each country it operates in. What is this an example of an terms of risk handling methods

Answer 246

Mitigation

Question 247

Security analyst sends a scan packet to a live host wire open ports on the same network segment but the packets receives no response. Which protocol is the analyst using

Answer 247

UDP

Question 248

Which of the following is not a high-level single sign-on access method

Answer 248

Public kiosks

Question 249

In the process of employee termination which access management Activity most effectively controls access

Answer 249

Account revocation

Question 250

And what pieces does a router for network traffic

Answer 250

IP address

Question 251

Which model has an explicit practice of sending unexpected input into applications for the development cycle

Answer 251

Microsoft threat modeling

Question 252

Oh what will trigger false positives on network that uses anomaly detection

Answer 252

Behavior changes

Question 253

What is recommended cable that will allow for 100 MBPSD data rate

Answer 253

Category 5

Question 254

What statement about biometrics is not true

Answer 254

Users can be authenticated by what they know

Question 255

What risk Estimation approach uses establish practices and calculations

Answer 255

Quantitative risk analysis

Question 256

Which of the following is an example of context dependent access control

Answer 256

File system quota

Question 257

How does water suppress fire

Answer 257

Reduces temperature

Question 258

What passengers your accountability for your actions taken within a system or domain

Answer 258

User Identification and authentication

Question 259

What must be configured for an incident responded to review successful and field login attempts

Answer 259

Accounting

Accounting is a system ability to determine the actions of a single individual

Question 260

What data classification role responsible retaining records as per approve policy

Answer 260

Data custodian

Question 261

What needs to be done for FW2 to be able to take the pivot from you use a workstation to server SRv2

Answer 261

SW2 Must be on later to only and have the server in a different VLAN

Question 262

What type of testing used tools to LA source code vulnerabilities

Answer 262

Static Analysis

Question 263

What is a characteristic of a MAC address on a network interface card

Answer 263

Remains the same regardless of the location

Question 264

What IPSEC of protocols provides integrity but Not encryption

Answer 264

AH

Question 265

And attackers preach to companies perimeter and penetrated her system. She’s attempting to maintain her access using tools that are already installed on the system. She creates a job that opens a port on the system every night at midnight. Which of the following is most likely to detect the creation of attackers back door

Answer 265

Baseline monitoring

Question 266

If an attacker wanted to run their own program in the colonel what attack with the use

Answer 266

Privileged escalation

Question 267

What collision avoidance of those Internet use

Answer 267

CSMA/CD

Question 268

Which type of fallen this off to discover through dynamic analysis

Answer 268

Authentication bypass

Question 269

How can triple your help in the Recovery process

Answer 269

Determine which files in the system were compromised

Question 270

Which of the following is a set of low level commands a CPU knows how to execute

Answer 270

CISC

Question 271

Which of the following address is it gonna be claimed, proper authentication, and authorization with users across different organizations

Answer 271

SAML

Question 272

What web vulnerability exploit say system at the database layer allowing attacker to create read modifier delete sensitive data

Answer 272

SQL injection

Question 273

What date it would be most useful in a situation where someone’s credentials may have been compromised

Answer 273

Successful logins

Question 274

What is not a Common OS mechanism

Answer 274

Paging

Current OS protection mechanisms include layering, extraction, process isolation and hardware segmentation

Question 275

A DBMS should possess a number of characteristics to be considered secure. One characteristic that it should always maintain a stable state even after hardware/software failure. What is this

Answer 275

Fault tolerant

Question 276

A network bridge learns which systems reside on a network segment by building a table that consist of which of the following

Answer 276

MAC addresses

Question 277

What should security procedures be based off of

Answer 277

Organizational policies

Question 278

In the context of Clark Wilson model of data integrity, maintaining external consistency and chairs which of the following

Answer 278

The system state is consistent with the data outside the system

Question 279

Where are hash passwords stored on A Linux system

Answer 279

/etc/shadow

Question 280

Which task within the excess provision Lifecycle should take place one employee Changes apartments

Answer 280

Maintenance

Question 281

What would most effectively be used to block a malicious ACK packet sent to pour it doesn’t matter initials SYN packet

Answer 281

Stateful firewall

Question 282

What technique used by malicious it’s too overly one frame on top of another, thereby tricking the user to perform an action they did not intend

Answer 282

Click jacking

Question 283

What do the UDP and TCP protocol Have in common

Answer 283

Operates at the transport layer

Question 284

What encryption algorithm is not using single key Encryption

Answer 284

Diffie Hellman

Question 285

What intra Company document helps an organization meets service commitments to customers

Answer 285

OLA

Question 286

Frame-relay is simplified version of which of the following

Answer 286

X.25

Question 287

What are sprinkler systems and allow large volumes of water to be released in a short period of time

Answer 287

Deluge

Question 288

The concept of subject/program binding aside to which of the following security models

Answer 288

Clark Wilson

Question 289

What is a common problem about my truck access controls

Answer 289

False acceptance rate

Question 290

What is the key difference between an internal audit in an external audit

Answer 290

Testing team members

Question 291

What rate level uses byte level parity

Answer 291

3

Question 292

 After forensic investigator Caesars a computer drive time investigation what is the next step

Answer 292

Make a bit level image copy of the desks

Question 293

After reviewing your file service catalog a system admin notice is there a know if it’s locked for any type of file access. What type of issue is this

Answer 293

Accountability

Question 294

What type of control can automatically initiate creative control

Answer 294

Detective

Question 295

What is the primary disadvantage of a VPN

Answer 295

Unpredictable performance

Question 296

What is not a characteristic of a distributed system

Answer 296

Rigid

Question 297

Why would a company provide employees from using client to cite VPNs

Answer 297

Three use reduces effectiveness of subnetwork monitoring devices

Question 298

What is the purpose of a network protocol like radius and tacacs

Answer 298

Authenticate users on behalf of other services

Question 299

What approach insures new users initially have no access to sensitive application information

Answer 299

Secure by default

Question 300

What is the most crucial piece of developing access recovery plan

Answer 300

Management support

Question 301

Which maturity level of the CMMI model is this offer process characterizes as ad hoc

Answer 301

Initial

Question 302

What software testing method can be used against compile code with no access to source

Answer 302

Fuzzing

Question 303

What is caused by applications that request in later and properly release resources

Answer 303

Memory leak

Question 304

Company has restricted options in the user interface for us users, preventing them from opening command line interface. What type of control this

Answer 304

Preventative

Question 305

Which entity provides formal authorization on a system access decisions

Answer 305

Data owner

Question 306

Which metric should be considered in the purchase of preventative control

Answer 306

tco

Question 307

The spiral model of project management is primarily driven by what factor

Answer 307

Risk

Question 308

What has can an untrusted Java apple perform on a client machine when run from the browser

Answer 308

Make network connection to the original host

Question 309

When talking about data classification rolls a custodian is concerned with all the following except what

Answer 309

Determine the datas value to the organization in the threshold be on which absolutely does purged

Question 310

Which protocols describe his best effort protocol

Answer 310

UDP

Question 311

A system admin find the unknown user account they have been created several months prior to discovery. What process should be improved and evil more timely medication of the future

Answer 311

Log monitoring

Question 312

Which component of the operating system includes an interrupt handler that handles all request that are competing for system service

Answer 312

The kernel

Question 313

Battling weather patterns requires a computer design to execute a small set of instructions for efficiently. What type of computer is best for this

Answer 313

RISC

Reduce instructions set computer

Question 314

What is assumed with a trusted computing base (TCB)

Answer 314

System components are securely designed and configured

Question 315

What is a phishing attack and I was it, they carried out

Answer 315

Danity theft scheme that takes place to email in a bogus website

Question 316

What software is both gratis and libre 

Answer 316

Freeware

Question 317

What is a symmetric key algorithm

Answer 317

Blowfish

Question 318

What can be attacked with a rainbow table

Answer 318

Hash

Question 319

What access control measures a directive

Answer 319

Background check

Question 320

When planning for physical security threats how can I smoke detector help

Answer 320

 spell detetric and sense smoke by interference of light or ionization

Question 321

What common network Troubleshooting told makes use of Internet control message protocol packets with particular time to live values

Answer 321

Traceroute

Question 322

With regards to access controls what differentiates a passphrase from a password

Answer 322

Passphrase is typically longer and more difficult to get guess 

Question 323

What tool would best be used to record and send to use his password of an Internet

Answer 323

Keylogger

Question 324

What is considered a potential Vulnerability specifically for hardware based thin clients

Answer 324

Lack of timely patching

Question 325

How can organization share a single document repository were each company retains control over his authentication credentials

Answer 325

FIM

Question 326

What functionality do open ID and Saml provide

Answer 326

Open ID performance authentication, while SAML encodes authentication related information

Question 327

Worms have the ability to Joe directly to which type of the attack process by tutoring payloads to high numbers of IP addresses

Answer 327

Exploit vulnerable services

Question 328

Under open ID which of the following are sites that can use identity information from sites that are sources of identity information

Answer 328

Relaying parties