401_1

Question 1 of 118

Medal-premium 1

A distributed denial of service attack can BEST be described as:

Select one or more of the following:

  • invalid characters being entered into a field in a database application

  • users attempting to input random or invalid data into fields within a web browser application

  • multiple computers attacking a single target in an organized attempt to deplete its resources

  • multiple attackers attempting to gain elevated privileges on a target system

Question 2 of 118

Medal-premium 1

Joe analyzed the following log and determined the security team should implement which of the following as a mitigation method against further attempts?
Host 192.168.1.123 [00: 00: 01]Successful Login: 015 192.168.1.123 : local [00: 00: 03]Unsuccessful Login: 022 214.34.56.006 : RDP 192.168.1.124 [00: 00: 04]UnSuccessful Login: 010 214.34.56.006 : RDP 192.168.1.124 [00: 00: 07]UnSuccessful Login: 007 214.34.56.006 : RDP 192.168.1.124 [00: 00: 08]UnSuccessful Login: 003 214.34.56.006 : RDP 192.168.1.124

Select one or more of the following:

  • Reporting

  • IDS

  • Monitor system logs

  • Hardening

Question 3 of 118

Medal-premium 1

A computer supply company is located in a building with three wireless networks. The system security team implemented a quarterly security scan and saw the following. SSID State Channel Level Computer AreUs1 connected 1 70dbm Computer AreUs2 connected 5 80dbm Computer AreUs3 connected 3 75dbm Computer AreUs4 connected 6 95dbm
Which of the following is this an example of?

Select one or more of the following:

  • Rogue access point

  • Near field communication

  • Jamming

  • Packet sniffing

Question 4 of 118

Medal-premium 1

A systems administrator has implemented PKI on a classified government network. In the event that a disconnect occurs from the primary CA, which of the following should be accessible locally from every site to ensure users with bad certificates cannot gain access to the network?

Select one or more of the following:

  • A CRL

  • Make the RA available

  • A verification authority

  • A redundant CA

Question 5 of 118

Medal-premium 1

While configuring a new access layer switch, the administrator, Joe, was advised that he needed to make sure that only devices authorized to access the network would be permitted to login and utilize resources. Which of the following should the administrator implement to ensure this happens?

Select one or more of the following:

  • Log Analysis

  • VLAN Management

  • Network separation

  • 802.1x

Question 6 of 118

Medal-premium 1

A vulnerability assessment indicates that a router can be accessed from default port 80 and default port 22. Which of the following should be executed on the router to prevent access via these ports? (Select TWO)

Select one or more of the following:

  • FTP service should be disabled

  • HTTPS service should be disabled

  • SSH service should be disabled

  • HTTP service should disabled

  • Telnet service should be disabled

Question 7 of 118

Medal-premium 1

Results from a vulnerability analysis indicate that all enabled virtual terminals on a router can be accessed using the same password. The company's network device security policy mandates that at least one virtual terminal have a different password than the other virtual terminals. Which of the following sets of commands would meet this requirement?

Select one or more of the following:

  • line vty 0 6 P@s5W0Rd password line vty 7 Qwer++!Y password

  • line console 0 password password line vty 0 4 password P@s5W0Rd

  • line vty 0 3 password Qwer++!Y line vty 4 password P@s5W0Rd

  • line vty 0 3 password Qwer++!Y line console 0 password P@s5W0Rd

Question 8 of 118

Medal-premium 1

Joe, an employee, was escorted from the company premises due to suspicion of revealing trade secrets to a competitor. Joe had already been working for two hours before leaving the premises. A security technician was asked to prepare a report of files that had changed since last night's integrity scan. Which of the following could the technician use to prepare the report? (Select TWO)

Select one or more of the following:

  • PGP

  • MD5

  • ECC

  • AES

  • Blowfish

  • HMAC

Question 9 of 118

Medal-premium 1

Ann has read and write access to an employee database, while Joe has only read access. Ann is leaving for a conference. Which of the following types of authorization could be utilized to trigger write access for Joe when Ann is absent?

Select one or more of the following:

  • Mandatory access control

  • Role-based access control

  • Discretionary access control

  • Rule-based access control

Question 10 of 118

Medal-premium 1

Human Resources suspects an employee is accessing the employee salary database. The administrator is asked to find out who it is. In order to complete this task, which of the following is a security control that should be in place?

Select one or more of the following:

  • Shared accounts should be prohibited

  • Account lockout should be enabled

  • Privileges should be assigned to groups rather than individuals

  • Time of day restrictions should be in use

Question 11 of 118

Medal-premium 1

An administrator finds that non-production servers are being frequently compromised, production servers are rebooting at unplanned times and kernel versions are several releases behind the version with all current security fixes. Which of the following should the administrator implement?

Select one or more of the following:

  • Snapshots

  • Sandboxing

  • Patch management

  • Intrusion detection system

Question 12 of 118

Medal-premium 1

An auditor's report discovered several accounts with no activity for over 60 days. The accounts were later identified as contractors' accounts who would be returning in three months and would need to resume the activities. Which of the following would mitigate and secure the auditors finding?

Select one or more of the following:

  • Disable unnecessary contractor accounts and inform the auditor of the update

  • Reset contractor accounts and inform the auditor of the update

  • Inform the auditor that the accounts belong to the contractors

  • Delete contractor accounts and inform the auditor of the update

Question 13 of 118

Medal-premium 1

Ann, the security administrator, wishes to implement multifactor security. Which of the following should be implemented in order to compliment password usage and smart cards?

Select one or more of the following:

  • Hard tokens

  • Fingerprint readers

  • Swipe badge readers

  • Passphrases

Question 14 of 118

Medal-premium 1

Customers' credit card information was stolen from a popular video streaming company. A security consultant determined that the information was stolen, while in transit, from the gaming consoles of a particular vendor. Which of the following methods should the company consider to secure this data in the future?

Select one or more of the following:

  • Application firewalls

  • Manual updates

  • Firmware version control

  • Encrypted TCP wrappers

Question 15 of 118

Medal-premium 1

A new intern was assigned to the system engineering department, which consists of the system architect and system software developer's teams. These two teams have separate privileges. The intern requires privileges to view the system architectural drawings and comment on some software development projects. Which of the following methods should the system administrator implement?

Select one or more of the following:

  • Group based privileges

  • Generic account prohibition

  • User access review

  • Credential management

Question 16 of 118

Medal-premium 1

One of the system administrators at a company is assigned to maintain a secure computer lab. The administrator has rights to configure machines, install software, and perform user account maintenance. However, the administrator cannot add new computers to the domain, because that requires authorization from the Information Assurance Officer. This is an example of which of the following?

Select one or more of the following:

  • Mandatory access

  • Rule-based access control

  • Least privilege

  • Job rotation

Question 17 of 118

Medal-premium 1

A small business needs to incorporate fault tolerance into their infrastructure to increase data availability. Which of the following options would be the BEST solution at a minimal cost?

Select one or more of the following:

  • Clustering

  • Mirrored server

  • RAID

  • Tape backup

Question 18 of 118

Medal-premium 1

A new application needs to be deployed on a virtual server. The virtual server hosts a SQL server that is used by several employees. Which of the following is the BEST approach for implementation of the new application on the virtual server?

Select one or more of the following:

  • Take a snapshot of the virtual server after installing the new application and store the snapshot in a secure location

  • Generate a baseline report detailing all installed applications on the virtualized server after installing the new application

  • Take a snapshot of the virtual server before installing the new application and store the snapshot in a secure location

  • Create an exact copy of the virtual server and store the copy on an external hard drive after installing the new application

Question 19 of 118

Medal-premium 1

Ann wants to send a file to Joe using PKI. Which of the following should Ann use in order to sign the file?

Select one or more of the following:

  • Joe's public key

  • Joe's private key

  • Ann's public key

  • Ann's private key

Question 20 of 118

Medal-premium 1

Which of the following protocols is used to validate whether trust is in place and accurate by returning responses of either "good", "unknown", or "revoked"?

Select one or more of the following:

  • CRL

  • PKI

  • OCSP

  • RA

Question 21 of 118

Medal-premium 1

During a recent investigation, an auditor discovered that an engineer's compromised workstation was being used to connect to SCADA systems while the engineer was not logged in. The engineer is responsible for administering the SCADA systems and cannot be blocked from connecting to them. The SCADA systems cannot be modified without vendor approval which requires months of testing. Which of the following is MOST likely to protect the SCADA systems from misuse?

Select one or more of the following:

  • Update anti-virus definitions on SCADA systems

  • Audit accounts on the SCADA systems

  • Install a firewall on the SCADA network

  • Deploy NIPS at the edge of the SCADA network

Question 22 of 118

Medal-premium 1

A security administrator must implement a network authentication solution which will ensure encryption of user credentials when users enter their username and password to authenticate to the network. Which of the following should the administrator implement?

Select one or more of the following:

  • WPA2 over EAP-TTLS

  • WPA-PSK

  • WPA2 with WPS

  • WEP over EAP-PEAP

Question 23 of 118

Medal-premium 1

Several employees have been printing files that include personally identifiable information of customers. Auditors have raised concerns about the destruction of these hard copies after they are created, and management has decided the best way to address this concern is by preventing these files from being printed. Which of the following would be the BEST control to implement?

Select one or more of the following:

  • File encryption

  • Printer hardening

  • Clean desk policies

  • Data loss prevention

Question 24 of 118

Medal-premium 1

The company's sales team plans to work late to provide the Chief Executive Officer (CEO) with a special report of sales before the quarter ends. After working for several hours, the team finds they cannot save or print the reports. Which of the following controls is preventing them from completing their work?

Select one or more of the following:

  • Discretionary access control

  • Role-based access control

  • Time of Day access control

  • Mandatory access control

Question 25 of 118

Medal-premium 1

A security engineer is asked by the company's development team to recommend the most secure method for password storage. Which of the following provide the BEST protection against brute forcing stored passwords? (Select TWO).

Select one or more of the following:

  • PBKDF2

  • MD5

  • SHA2

  • Bcrypt

  • AES

  • CHAP

Question 26 of 118

Medal-premium 1

After entering the following information into a SOHO wireless router, a mobile device's user reports being unable to connect to the network:
PERMIT 0A: D1: FA. B1: 03: 37
DENY 01: 33: 7F: AB: 10: AB
Which of the following is preventing the device from connecting?

Select one or more of the following:

  • WPA2-PSK requires a supplicant on the mobile device

  • Hardware address filtering is blocking the device

  • TCP/IP Port filtering has been implemented on the SOHO router

  • IP address filtering has disabled the device from connecting

Question 27 of 118

Medal-premium 1

The call center supervisor has reported that many employees have been playing preinstalled games on company computers and this is reducing productivity. Which of the following would be MOST effective for preventing this behavior?

Select one or more of the following:

  • Acceptable use policies

  • Host-based firewalls

  • Content inspection

  • Application whitelisting

Question 28 of 118

Medal-premium 1

When creating a public / private key pair, for which of the following ciphers would a user need to specify the key strength?

Select one or more of the following:

  • SHA

  • AES

  • DES

  • RSA

Question 29 of 118

Medal-premium 1

A company has decided to move large data sets to a cloud provider in order to limit the costs of new infrastructure. Some of the data is sensitive and the Chief Information Officer wants to make sure both parties have a clear understanding of the controls needed to protect the data. Which of the following types of interoperability agreement is this?

Select one or more of the following:

  • ISA

  • MOU

  • SLA

  • BPA

Question 30 of 118

Medal-premium 1

Which of the following solutions provides the most flexibility when testing new security controls prior to implementation?

Select one or more of the following:

  • Trusted OS

  • Host software baselining

  • OS hardening

  • Virtualization

Question 31 of 118

Medal-premium 1

Which of the following authentication services requires the use of a ticket-granting ticket (TGT) server in order to complete the authentication process?

Select one or more of the following:

  • TACACS+

  • Secure LDAP

  • RADIUS

  • Kerberos

Question 32 of 118

Medal-premium 1

Which of the following is a hardware based encryption device?

Select one or more of the following:

  • EFS

  • TrueCrypt

  • TPM

  • SLE

Question 33 of 118

Medal-premium 1

Which of the following BEST describes a protective countermeasure for SQL injection?

Select one or more of the following:

  • Eliminating cross-site scripting vulnerabilities

  • Installing an IDS to monitor network traffic

  • Validating user input in web applications

  • Placing a firewall between the Internet and database servers

Question 34 of 118

Medal-premium 1

Which of the following MOST interferes with network-based detection techniques?

Select one or more of the following:

  • Mime-encoding

  • SSL

  • FTP

  • Anonymous email accounts

Question 35 of 118

Medal-premium 1

A certificate authority takes which of the following actions in PKI?

Select one or more of the following:

  • Signs and verifies all infrastructure messages

  • Issues and signs all private keys

  • Publishes key escrow lists to CRLs

  • Issues and signs all root certificates

Question 36 of 118

Medal-premium 1

Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks?

Select one or more of the following:

  • Malicious code on the local system

  • Shoulder surfing

  • Brute force certificate cracking

  • Distributed dictionary attacks

Question 37 of 118

Medal-premium 1

Separation of duties is often implemented between developers and administrators in order to separate which of the following?

Select one or more of the following:

  • More experienced employees from less experienced employees

  • Changes to program code and the ability to deploy to production

  • Upper level management users from standard development employees

  • The network access layer from the application access layer

Question 38 of 118

Medal-premium 1

A security administrator needs to update the OS on all the switches in the company. Which of the following MUST be done before any actual switch configuration is performed?

Select one or more of the following:

  • The request needs to be sent to the incident management team

  • The request needs to be approved through the incident management process

  • The request needs to be approved through the change management process

  • The request needs to be sent to the change management team

Question 39 of 118

Medal-premium 1

Jane, an individual, has recently been calling various financial offices pretending to be another person to gain financial information. Which of the following attacks is being described?

Select one or more of the following:

  • Phishing

  • Tailgating

  • Pharming

  • Vishing

Question 40 of 118

Medal-premium 1

A user in the company is in charge of various financial roles but needs to prepare for an upcoming audit. They use the same account to access each financial system. Which of the following security controls will MOST likely be implemented within the company?

Select one or more of the following:

  • Account lockout policy

  • Account password enforcement

  • Password complexity enabled

  • Separation of duties

Question 41 of 118

Medal-premium 1

A CRL is comprised of

Select one or more of the following:

  • Malicious IP addresses

  • Trusted CA's

  • Untrusted private keys

  • Public keys

Question 42 of 118

Medal-premium 1

Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware?

Select one or more of the following:

  • Logic bomb

  • Worm

  • Trojan

  • Adware

Question 43 of 118

Medal-premium 1

Which of the following may significantly reduce data loss if multiple drives fail at the same time?

Select one or more of the following:

  • Virtualization

  • RAID

  • Load balancing

  • Server clustering

Question 44 of 118

Medal-premium 1

Which of the following should be considered to mitigate data theft when using CAT5 wiring?

Select one or more of the following:

  • CCTV

  • Environmental monitoring

  • Multimode fiber

  • EMI shielding

Question 45 of 118

Medal-premium 1

To help prevent unauthorized access to PCs, a security administrator implements screen savers that lock the PC after five minutes of inactivity. Which of the following controls is being described in this situation?

Select one or more of the following:

  • Management

  • Administrative

  • Technical

  • Operational

Question 46 of 118

Medal-premium 1

Pete, a network administrator, is capturing packets on the network and notices that a large amount of the traffic on the LAN is SIP and RTP protocols. Which of the following should he do to segment that traffic from the other traffic?

Select one or more of the following:

  • Connect the WAP to a different switch.

  • Create a voice VLAN.

  • Create a DMZ.

  • Set the switch ports to 802.1q mode.

Question 47 of 118

Medal-premium 1

Which of the following IP addresses would be hosts on the same subnet given the subnet mask 255.255.255.224? (Select TWO).

Select one or more of the following:

  • 10.4.4.125

  • 10.4.4.158

  • 10.4.4.165

  • 10.4.4.189

  • 10.4.4.199

Question 48 of 118

Medal-premium 1

Which of the following algorithms has well documented collisions? (Select TWO).

Select one or more of the following:

  • AES

  • MD5

  • SHA

  • SHA-256

  • RSA

Question 49 of 118

Medal-premium 1

Which of the following is BEST used as a secure replacement for TELNET?

Select one or more of the following:

  • HTTPS

  • HMAC

  • GPG

  • SSH

Question 50 of 118

Medal-premium 1

An email client says a digital signature is invalid and the sender cannot be verified. The recipient is concerned with which of the following concepts?

Select one or more of the following:

  • Integrity

  • Availability

  • Confidentiality

  • Remediation

Question 51 of 118

Medal-premium 1

Which of the following is an effective way to ensure the BEST temperature for all equipment within a datacenter?

Select one or more of the following:

  • Fire suppression

  • Raised floor implementation

  • EMI shielding

  • Hot or cool aisle containment

Question 52 of 118

Medal-premium 1

Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server?

Select one or more of the following:

  • SSLv2

  • SSHv1

  • RSA

  • TLS

Question 53 of 118

Medal-premium 1

Developers currently have access to update production servers without going through an approval process. Which of the following strategies would BEST mitigate this risk?

Select one or more of the following:

  • Incident management

  • Clean desk policy

  • Routine audits

  • Change management

Question 54 of 118

Medal-premium 1

Which of the following is a difference between TFTP and FTP?

Select one or more of the following:

  • TFTP is slower than FTP

  • TFTP is more secure than FTP

  • TFTP utilizes TCP and FTP uses UDP

  • TFTP utilizes UDP and FTP uses TCP

Question 55 of 118

Medal-premium 1

Matt, an administrator, notices a flood fragmented packet and retransmits from an email server. After disabling the TCP offload setting on the NIC, Matt sees normal traffic with packets flowing in sequence again. Which of the following utilities was he MOST likely using to view this issue?

Select one or more of the following:

  • Spam filter

  • Protocol analyzer

  • Web application firewall

  • Load balancer

Question 56 of 118

Medal-premium 1

Which of the following is characterized by an attacker attempting to map out an organization's staff hierarchy in order to send targeted emails?

Select one or more of the following:

  • Whaling

  • Impersonation

  • Privilege escalation

  • Spear phishing

Question 57 of 118

Medal-premium 1

Which of the following would a security administrator implement in order to discover comprehensive security threats on a network?

Select one or more of the following:

  • Design reviews

  • Baseline reporting

  • Vulnerability scan

  • Code review

Question 58 of 118

Medal-premium 1

Which of the following is an example of a false positive?

Select one or more of the following:

  • Anti-virus identifies a benign application as malware

  • A biometric iris scanner rejects an authorized user wearing a new contact lens

  • A user account is locked out after the user mistypes the password too many times

  • The IDS does not identify a buffer overflow

Question 59 of 118

Medal-premium 1

Data execution prevention is a feature in most operating systems intended to protect against which type of attack?

Select one or more of the following:

  • Cross-site scripting

  • Buffer overflow

  • Header manipulation

  • SQL injection

Question 60 of 118

Medal-premium 1

Use of group accounts should be minimized to ensure which of the following?

Select one or more of the following:

  • Password security

  • Regular auditing

  • Baseline management

  • Individual accountability

Question 61 of 118

Medal-premium 1

Privilege creep among long-term employees can be mitigated by which of the following procedures?

Select one or more of the following:

  • User permission reviews

  • Mandatory vacations

  • Separation of duties

  • Job function rotation

Question 62 of 118

Medal-premium 1

In which of the following scenarios is PKI LEAST hardened?

Select one or more of the following:

  • The CRL is posted to a publicly accessible location

  • The recorded time offsets are developed with symmetric keys

  • A malicious CA certificate is loaded on all the clients

  • All public keys are accessed by an unauthorized user

Question 63 of 118

Medal-premium 1

Configuring the mode, encryption methods, and security associations are part of which of the following?

Select one or more of the following:

  • IPSec

  • Full disk encryption

  • 802.1x

  • PKI

Question 64 of 118

Medal-premium 1

Which of the following assessments would Pete, the security administrator, use to actively test that an application's security controls are in place?

Select one or more of the following:

  • Code review

  • Penetration test

  • Protocol analyzer

  • Vulnerability scan

Question 65 of 118

Medal-premium 1

A security administrator has just finished creating a hot site for the company. This implementation relates to which of the following concepts?

Select one or more of the following:

  • Confidentiality

  • Availability

  • Succession planning

  • Integrity

Question 66 of 118

Medal-premium 1

In the initial stages of an incident response, Matt, the security administrator, was provided the hard drives in question from the incident manager. Which of the following incident response procedures would he need to perform in order to begin the analysis? (Select TWO).

Select one or more of the following:

  • Take hashes

  • Begin the chain of custody paperwork

  • Take screen shots

  • Capture the system image

  • Decompile suspicious files

Question 67 of 118

Medal-premium 1

Which of the following is used to certify intermediate authorities in a large PKI deployment?

Select one or more of the following:

  • Root CA

  • Recovery agent

  • Root user

  • Key escrow

Question 68 of 118

Medal-premium 1

Which of the following components MUST be trusted by all parties in PKI?

Select one or more of the following:

  • Key escrow

  • CA

  • Private key

  • Recovery key

Question 69 of 118

Medal-premium 1

Which of the following should Matt, a security administrator, include when encrypting smartphones? (Select TWO).

Select one or more of the following:

  • Steganography images

  • Internal memory

  • Master boot records

  • Removable memory cards

  • Public keys

Question 70 of 118

Medal-premium 1

Which of the following is the below pseudo-code an example of?
IF VARIABLE (CONTAINS NUMBERS = TRUE) THEN EXIT

Select one or more of the following:

  • Buffer overflow prevention

  • Input validation

  • CSRF prevention

  • Cross-site scripting prevention

Question 71 of 118

Medal-premium 1

A system administrator is using a packet sniffer to troubleshoot remote authentication. The administrator detects a device trying to communicate to TCP port 49. Which of the following authentication methods is MOST likely being attempted?

Select one or more of the following:

  • RADIUS

  • TACACS+

  • Kerberos

  • LDAP

Question 72 of 118

Medal-premium 1

Which of the following can use RC4 for encryption? (Select TWO).

Select one or more of the following:

  • CHAP

  • SSL

  • WEP

  • AES

  • 3DES

Question 73 of 118

Medal-premium 1

Which of the following defines a business goal for system restoration and acceptable data loss?

Select one or more of the following:

  • MTTR

  • MTBF

  • RPO

  • Warn site

Question 74 of 118

Medal-premium 1

If Organization A trusts Organization B and Organization B trusts Organization C, then Organization A trusts Organization C. Which of the following PKI concepts is this describing?

Select one or more of the following:

  • Transitive trust

  • Public key trust

  • Certificate authority trust

  • Domain level trust

Question 75 of 118

Medal-premium 1

Which of the following concepts is BEST described as developing a new chain of command in the event of a contingency?

Select one or more of the following:

  • Business continuity planning

  • Continuity of operations

  • Business impact analysis

  • Succession planning

Question 76 of 118

Medal-premium 1

Which of the following allows a company to maintain access to encrypted resources when employee turnover is high?

Select one or more of the following:

  • Recovery agent

  • Certificate authority

  • Trust model

  • Key escrow

Question 77 of 118

Medal-premium 1

Which of the following devices will help prevent a laptop from being removed from a certain location?

Select one or more of the following:

  • Device encryption

  • Cable locks

  • GPS tracking

  • Remote data wipes

Question 78 of 118

Medal-premium 1

Which of the following is the MOST secure protocol to transfer files?

Select one or more of the following:

  • FTP

  • FTPS

  • SSH

  • TELNET

Question 79 of 118

Medal-premium 1

Suspicious traffic without a specific signature was detected. Under further investigation, it was determined that these were false indicators. Which of the following security devices needs to be configured to disable future false alarms?

Select one or more of the following:

  • Signature based IPS

  • Signature based IDS

  • Application based IPS

  • Anomaly based IDS

Question 80 of 118

Medal-premium 1

A company storing data on a secure server wants to ensure it is legally able to dismiss and prosecute staff who intentionally access the server via Telnet and illegally tamper with customer data. Which of the following administrative controls should be implemented to BEST achieve this?

Select one or more of the following:

  • Command shell restrictions

  • Restricted interface

  • Warning banners

  • Session output pipe to /dev/null

Question 81 of 118

Medal-premium 1

Which of the following protocols is used to authenticate the client and server's digital certificate?

Select one or more of the following:

  • PEAP

  • DNS

  • TLS

  • ICMP

Question 82 of 118

Medal-premium 1

Which of the following can be used to mitigate risk if a mobile device is lost?

Select one or more of the following:

  • Cable lock

  • Transport encryption

  • Voice encryption

  • Strong passwords

Question 83 of 118

Medal-premium 1

Which of the following security concepts would Sara, the security administrator, use to mitigate the risk of data loss?

Select one or more of the following:

  • Record time offset

  • Clean desk policy

  • Cloud computing

  • Routine log review

Question 84 of 118

Medal-premium 1

Which of the following is an example of multifactor authentication?

Select one or more of the following:

  • Credit card and PIN

  • Username and password

  • Password and PIN

  • Fingerprint and retina scan

Question 85 of 118

Medal-premium 1

After Matt, a user, enters his username and password at the login screen of a web enabled portal, the following appears on his screen:
`Please only use letters and numbers on these fields'
Which of the following is this an example of?

Select one or more of the following:

  • Proper error handling

  • Proper input validation

  • Improper input validation

  • Improper error handling

Question 86 of 118

Medal-premium 1

Which of the following should the security administrator implement to limit web traffic based on country of origin? (Select THREE)

Select one or more of the following:

  • Spam filter

  • Load balancer

  • Antivirus

  • Proxies

  • Firewall

  • NIDS

  • URL filtering

Question 87 of 118

Medal-premium 1

Several bins are located throughout a building for secure disposal of sensitive information. Which of the following does this prevent?

Select one or more of the following:

  • Dumpster diving

  • War driving

  • Tailgating

  • War chalking

Question 88 of 118

Medal-premium 1

Matt, a developer, recently attended a workshop on a new application. The developer installs the new application on a production system to test the functionality. Which of the following is MOST likely affected?

Select one or more of the following:

  • Application design

  • Application security

  • Initial baseline configuration

  • Management of interfaces

Question 89 of 118

Medal-premium 1

Sara, a company's security officer, often receives reports of unauthorized personnel having access codes to the cipher locks of secure areas in the building. Sara should immediately implement which of the following?

Select one or more of the following:

  • Acceptable Use Policy

  • Physical security controls

  • Technical controls

  • Security awareness training

Question 90 of 118

Medal-premium 1

Mike, a network administrator, has been asked to passively monitor network traffic to the company's sales websites. Which of the following would be BEST suited for this task?

Select one or more of the following:

  • HIDS

  • Firewall

  • NIPS

  • Spam filter

Question 91 of 118

Medal-premium 1

Mike, a security professional, is tasked with actively verifying the strength of the security controls on a company's live modem pool. Which of the following activities is MOST appropriate?

Select one or more of the following:

  • War dialing

  • War chalking

  • War driving

  • Bluesnarfing

Question 92 of 118

Medal-premium 1

Users at a company report that a popular news website keeps taking them to a web page with derogatory content. This is an example of which of the following?

Select one or more of the following:

  • Evil twin

  • DNS poisoning

  • Vishing

  • Session hijacking

Question 93 of 118

Medal-premium 1

An encrypted message is sent using PKI from Sara, a client, to a customer. Sara claims she never sent the message. Which of the following aspects of PKI BEST ensures the identity of the sender?

Select one or more of the following:

  • CRL

  • Non-repudiation

  • Trust models

  • Recovery agents

Question 94 of 118

Medal-premium 1

Jane, a security administrator, has observed repeated attempts to break into a server. Which of the following is designed to stop an intrusion on a specific server?

Select one or more of the following:

  • HIPS

  • NIDS

  • HIDS

  • NIPS

Question 95 of 118

Medal-premium 1

Matt, the IT Manager, wants to create a new network available to virtual servers on the same hypervisor, and does not want this network to be routable to the firewall. How could this BEST be accomplished?

Select one or more of the following:

  • Create a VLAN without a default gateway

  • Remove the network from the routing table

  • Create a virtual switch

  • Commission a stand-alone switch

Question 96 of 118

Medal-premium 1

A security administrator implements access controls based on the security classification of the data and need-to-know information. Which of the following BEST describes this level of access control?

Select one or more of the following:

  • Implicit deny

  • Role-based Access Control

  • Mandatory Access Controls

  • Least privilege

Question 97 of 118

Medal-premium 1

A security administrator has configured FTP in passive mode. Which of the following ports should the security administrator allow on the firewall by default?

Select one or more of the following:

  • 20

  • 21

  • 22

  • 23

Question 98 of 118

Medal-premium 1

Which of the following could cause a browser to display the message below?
"The security certificate presented by this website was issued for a different website's address."

Select one or more of the following:

  • The website certificate was issued by a different CA than what the browser recognizes in its trusted CAs

  • The website is using a wildcard certificate issued for the company's domain

  • HTTPS://127.0.01 was used instead of HTTPS://localhost

  • The website is using an expired self signed certificate

Question 99 of 118

Medal-premium 1

A company that purchased an HVAC system for the datacenter is MOST concerned with which of the following?

Select one or more of the following:

  • Availability

  • Integrity

  • Confidentiality

  • Fire suppression

Question 100 of 118

Medal-premium 1

Which of the following pseudocodes can be used to handle program exceptions?

Select one or more of the following:

  • If program detects another instance of itself, then kill program instance

  • If user enters invalid input, then restart program

  • If program module crashes, then restart program module

  • If user's input exceeds buffer length, then truncate the input

Question 101 of 118

Medal-premium 1

Which of the following functions provides an output which cannot be reversed and converts data into a string of characters?

Select one or more of the following:

  • Hashing

  • Stream ciphers

  • Steganography

  • Block ciphers

Question 102 of 118

Medal-premium 1

Which of the following encrypts data a single bit at a time?

Select one or more of the following:

  • Stream cipher

  • Steganography

  • 3DES

  • Hashing

Question 103 of 118

Medal-premium 1

Which of the following is used to verify data integrity?

Select one or more of the following:

  • SHA

  • 3DES

  • AES

  • RSA

Question 104 of 118

Medal-premium 1

By default, which of the following uses TCP port 22? (Select THREE).

Select one or more of the following:

  • FTPS

  • STELNET

  • TLS

  • SCP

  • SSL

  • HTTPS

  • SSH

  • SFTP

Question 105 of 118

Medal-premium 1

Access mechanisms to data on encrypted USB hard drives must be implemented correctly otherwise.

Select one or more of the following:

  • user accounts may be inadvertently locked out

  • data on the USB drive could be corrupted

  • data on the hard drive will be vulnerable to log analysis

  • the security controls on the USB drive can be bypassed

Question 106 of 118

Medal-premium 1

Maintenance workers find an active network switch hidden above a dropped-ceiling tile in the CEO's office with various connected cables from the office. Which of the following describes the type of attack that was occurring?

Select one or more of the following:

  • Spear phishing

  • Packet sniffing

  • Impersonation

  • MAC flooding

Question 107 of 118

Medal-premium 1

A security administrator is segregating all web-facing server traffic from the internal network and restricting it to a single interface on a firewall. Which of the following BEST describes this new network?

Select one or more of the following:

  • VLAN

  • Subnet

  • VPN

  • DMZ

Question 108 of 118

Medal-premium 1

Which of the following was based on a previous X.500 specification and allows either unencrypted authentication or encrypted authentication through the use of TLS?

Select one or more of the following:

  • Kerberos

  • TACACS+

  • RADIUS

  • LDAP

Question 109 of 118

Medal-premium 1

The Quality Assurance team is testing a new third party developed application. The Quality team does not have any experience with the application. Which of the following is the team performing?

Select one or more of the following:

  • Grey box testing

  • Black box testing

  • Penetration testing

  • White box testing

Question 110 of 118

Medal-premium 1

Which of the following has a storage root key?

Select one or more of the following:

  • HSM

  • EFS

  • TPM

  • TKIP

Question 111 of 118

Medal-premium 1

A security analyst, Ann, is reviewing an IRC channel and notices that a malicious exploit has been created for a frequently used application. She notifies the software vendor and asks them for remediation steps, but is alarmed to find that no patches are available to mitigate this vulnerability. Which of the following BEST describes this exploit?

Select one or more of the following:

  • Malicious insider threat

  • Zero-day

  • Client-side attack

  • Malicious add-on

Question 112 of 118

Medal-premium 1

A security administrator has concerns about new types of media which allow for the mass distribution of personal comments to a select group of people. To mitigate the risks involved with this media, employees should receive training on which of the following?

Select one or more of the following:

  • Peer to Peer

  • Mobile devices

  • Social networking

  • Personally owned devices

Question 113 of 118

Medal-premium 1

A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software updates. Which of the following processes could MOST effectively mitigate these risks?

Select one or more of the following:

  • Application hardening

  • Application change management

  • Application patch management

  • Application firewall review

Question 114 of 118

Medal-premium 1

A software developer is responsible for writing the code on an accounting application. Another software developer is responsible for developing code on a system in human resources. Once a year they have to switch roles for several weeks. Which of the following practices is being implemented?

Select one or more of the following:

  • Mandatory vacations

  • Job rotation

  • Least privilege

  • Separation of duties

Question 115 of 118

Medal-premium 1

A network engineer is designing a secure tunneled VPN. Which of the following protocols would be the MOST secure?

Select one or more of the following:

  • IPsec

  • SFTP

  • BGP

  • PPTP

Question 116 of 118

Medal-premium 1

Which of the following implementation steps would be appropriate for a public wireless hot- spot?

Select one or more of the following:

  • Reduce power level

  • Disable SSID broadcast

  • Open system authentication

  • MAC filter

Question 117 of 118

Medal-premium 1

Which of the following is a step in deploying a WPA2-Enterprise wireless network?

Select one or more of the following:

  • Install a token on the authentication server

  • Install a DHCP server on the authentication server

  • Install an encryption key on the authentication server

  • Install a digital certificate on the authentication server

Question 118 of 118

Medal-premium 1

Which of the following controls would allow a company to reduce the exposure of sensitive systems from unmanaged devices on internal networks?

Select one or more of the following:

  • 802.1x

  • Data encryption

  • Password strength

  • BGP

Icon_fullscreen
Martin Covill
Quiz by , created about 1 year ago

SEC PLUS

Eye 3
Pin 0
Balloon-left 0
Tags
maxwell3254
Created by maxwell3254 about 1 year ago
Martin Covill
Copied by Martin Covill about 1 year ago
Close