SY0-301 Part 1

Which of the following elements of PKI are found in a browser's trusted root CA?

Which of the following protocols only encrypts password packets from client to server?

Where are revoked certificates stored?

DRPs should contain which of the following?

A system administrator could have a user level account and an administrator account to prevent:

Which of the following is the BEST way to mitigate data loss if a portable device is compromised?

Which of the following protocols should be blocked at the network perimeter to prevent host enumeration by
sweep devices?

Which of the following is specific to a buffer overflow attack?

Which of the following asymmetric encryption keys is used to encrypt data to ensure only the intended recipient
can decrypt the ciphertext?

Which of the following should a security administrator implement to prevent users from disrupting network
connectivity, if a user connects both ends of a network cable to different switch ports?

A new enterprise solution is currently being evaluated due to its potential to increase the company's profit
margins. The security administrator has been asked to review its security implications. While evaluating the
product, various vulnerability scans were performed. It was determined that the product is not a threat but has
the potential to introduce additional vulnerabilities. Which of the following assessment types should the security
administrator also take into consideration while evaluating this product?

Which of the following requires special handling and explicit policies for data retention and data distribution?

Centrally authenticating multiple systems and applications against a federated user database is an example of:

WEP is seen as an unsecure protocol based on its improper implementation and use of which of the following?

Which of the following should be performed if a smartphone is lost to ensure no data can be retrieved from it?

In an 802.11n network, which of the following provides the MOST secure method of both encryption and
authorization?

Which of the following methods of access, authentication, and authorization is the MOST secure by default?

Which of the following facilitates computing for heavily utilized systems and networks?

With which of the following is RAID MOST concerned?

Which of the following reduces the likelihood of a single point of failure when a server fails?

A user downloads a keygen to install pirated software. After running the keygen, system performance is
extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of
malware?

Which of the following is used in conjunction with PEAP to provide mutual authentication between peers?

A targeted email attack sent to the company's Chief Executive Officer (CEO) is known as which of the
following?

Which of the following uses TCP port 22 by default?

Actively monitoring data streams in search of malicious code or behavior is an example of:

A user is no longer able to transfer files to the FTP server. The security administrator has verified the ports are
open on the network firewall. Which of the following should the security administrator check?

A Human Resource manager is assigning access to users in their specific department performing the same job
function. This is an example of:

Which of the following BEST describes the process of key escrow?

Which of the following network devices would MOST likely be used to detect but not react to suspicious
behavior on the network?

Which of the following is an example of allowing a user to perform a self-service password reset?

Which of the following wireless attacks uses a counterfeit base station with the same SSID name as a nearby
intended wireless network?

A security administrator finished taking a forensic image of a computer's memory. Which of the following should
the administrator do to ensure image integrity?

Which of the following BEST explains the security benefit of a standardized server image?

Which of the following must a security administrator do when the private key of a web server has been
compromised by an intruder?

The security administrator often observes that an employee who entered the datacenter does not match the
owner of the PIN that was entered into the keypad. Which of the following would BEST prevent this situation?

A programmer allocates 16 bytes for a string variable, but does not adequately ensure that more than 16 bytes
cannot be copied into the variable. This program may be vulnerable to which of the following attacks?

An administrator is updating firmware on routers throughout the company. Where should the administrator
document this work?

The fundamental difference between symmetric and asymmetric key cryptographic systems is that symmetric
key cryptography uses:

Which of the following allows a user to have a one-time password?

Which of the following allows a security administrator to set device traps?

Which of the following is the BEST way to secure data for the purpose of retention?

In which of the following locations would a forensic analyst look to find a hooked process?

Several classified mobile devices have been stolen. Which of the following would BEST reduce the data
leakage threat?

Which of the following is an example of requiring users to have a password of 16 characters or more?

A small company needs to invest in a new expensive database. The company's budget does not include the
purchase of additional servers or personnel. Which of the following solutions would allow the small company to
save money on hiring additional personnel and minimize the footprint in their current datacenter?

A security administrator needs to implement a site-to-site VPN tunnel between the main office and a remote
branch. Which of the following protocols should be used for the tunnel?

When examining HTTP server logs the security administrator notices that the company's online store crashes
after a particular search string is executed by a single external user. Which of the following BEST describes this
type of attack?

Which of the following MUST a programmer implement to prevent cross-site scripting?