ExamGecko
Search Search Login
Home Home / ISC / CCSP

ISC CCSP Practice Test - Questions Answers, Page 6

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Over time, what is a primary concern for data archiving?
Which of the following threat types involves the sending of untrusted data to a user's browser to be executed with their own credentials and access?
Which United States law is focused on accounting and financial practices of organizations?
Which type of testing uses the same strategies and toolsets that hackers would use?
Which of the cloud deployment models offers the most control and input to the cloud customer as to how the overall cloud environment is implemented and configured?
Which value refers to the percentage of production level restoration needed to meet BCDR objectives?
What concept does the "D" represent with the STRIDE threat model?
What is the data encapsulation used with the SOAP protocol referred to?
Which United States program was designed to enable organizations to bridge the gap between privacy laws and requirements of the United States and the European Union?
Which protocol does the REST API depend on?

Question 51

Report
Export
Collapse

Which of the following threat types can occur when encryption is not properly applied or insecure transport mechanisms are used?

A.
Security misconfiguration
A.
Security misconfiguration
Answers
B.
Insecure direct object references
B.
Insecure direct object references
Answers
C.
Sensitive data exposure
C.
Sensitive data exposure
Answers
D.
Unvalidated redirects and forwards
D.
Unvalidated redirects and forwards
Answers
Suggested answer: C

Explanation:

Sensitive data exposure occurs when information is not properly secured through encryption and secure transport mechanisms; it can quickly become an easy and broad method for attackers to compromise information. Web applications must enforce strong encryption and security controls on the application side, but secure methods of communications with browsers or other clients used to access the information are also required. Security misconfiguration occurs when applications and systems are not properly configured for security, often a result of misapplied or inadequate baselines. Insecure direct object references occur when code references aspects of the infrastructure, especially internal or private systems, and an attacker can use that knowledge to glean more information about the infrastructure. Unvalidated redirects and forwards occur when an application has functions to forward users to other sites, and these functions are not properly secured to validate the data and redirect requests, thus allowing spoofing for malware or phishing attacks.

Question 52

Report
Export
Collapse

What is the best approach for dealing with services or utilities that are installed on a system but not needed to perform their desired function?

A.
Remove
A.
Remove
Answers
B.
Monitor
B.
Monitor
Answers
C.
Disable
C.
Disable
Answers
D.
Stop
D.
Stop
Answers
Suggested answer: A

Explanation:

The best practice is to totally remove any unneeded services and utilities on a system to prevent any chance of compromise or use. If they are just disabled, it is possible for them to be inadvertently started again at any point, or another exploit could be used to start them again. Removing also negates the need to patch and maintain them going forward.

Question 53

Report
Export
Collapse

Which of the following actions will NOT make data part of the "create" phase of the cloud data lifecycle?

A.
Modifying metadata
A.
Modifying metadata
Answers
B.
Importing data
B.
Importing data
Answers
C.
Modifying data
C.
Modifying data
Answers
D.
Constructing new data
D.
Constructing new data
Answers
Suggested answer: A

Explanation:

Although the initial phase is called "create," it can also refer to modification. In essence, any time data is considered "new," it is in the create phase. This can come from data that is newly created, data that is imported into a system and is new to that system, or data that is already present and modified into a new form or value. Modifying the metadata does not change the actual data.

Question 54

Report
Export
Collapse

What are the two protocols that TLS uses?

A.
Handshake and record
A.
Handshake and record
Answers
B.
Transport and initiate
B.
Transport and initiate
Answers
C.
Handshake and transport
C.
Handshake and transport
Answers
D.
Record and transmit
D.
Record and transmit
Answers
Suggested answer: A

Explanation:

TLS uses the handshake protocol to establish and negotiate the TLS connection, and it uses the record protocol for the secure transmission of data.

Question 55

Report
Export
Collapse

Which type of cloud model typically presents the most challenges to a cloud customer during the "destroy" phase of the cloud data lifecycle?

A.
IaaS
A.
IaaS
Answers
B.
DaaS
B.
DaaS
Answers
C.
SaaS
C.
SaaS
Answers
D.
PaaS
D.
PaaS
Answers
Suggested answer: C

Explanation:

With many SaaS implementations, data is not isolated to a particular customer but rather is part of the overall application. When it comes to data destruction, a particular challenge is ensuring that all of a customer's data is completely destroyed while not impacting the data of other customers.

Question 56

Report
Export
Collapse

Which of the following may unilaterally deem a cloud hosting model inappropriate for a system or application?

A.
Multitenancy
A.
Multitenancy
Answers
B.
Certification
B.
Certification
Answers
C.
Regulation
C.
Regulation
Answers
D.
Virtualization
D.
Virtualization
Answers
Suggested answer: C

Explanation:

Some regulations may require specific security controls or certifications be used for hosting certain types of data or functions, and in some circumstances they may be requirements that are unable to be met by any cloud provider.

Question 57

Report
Export
Collapse

Which of the following is considered an internal redundancy for a data center?

A.
Power distribution units
A.
Power distribution units
Answers
B.
Network circuits
B.
Network circuits
Answers
C.
Power substations
C.
Power substations
Answers
D.
Generators
D.
Generators
Answers
Suggested answer: A

Explanation:

Power distribution units are internal to a data center and supply power to internal components such as racks, appliances, and cooling systems. As such, they are considered an internal redundancy.

Question 58

Report
Export
Collapse

Which of the following represents a control on the maximum amount of resources that a single customer, virtual machine, or application can consume within a cloud environment?

A.
Share
A.
Share
Answers
B.
Reservation
B.
Reservation
Answers
C.
Provision
C.
Provision
Answers
D.
Limit
D.
Limit
Answers
Suggested answer: D

Explanation:

Limits are put in place to enforce a maximum on the amount of memory or processing a cloud customer can use. This can be done either on a virtual machine or as a comprehensive whole for a customer, and is meant to ensure that enormous cloud resources cannot be allocated or consumed by a single host or customer to the detriment of other hosts and customers.

Question 59

Report
Export
Collapse

Which of the following roles is responsible for peering with other cloud services and providers?

A.
Cloud auditor
A.
Cloud auditor
Answers
B.
Inter-cloud provider
B.
Inter-cloud provider
Answers
C.
Cloud service broker
C.
Cloud service broker
Answers
D.
Cloud service developer
D.
Cloud service developer
Answers
Suggested answer: B

Explanation:

The inter-cloud provider is responsible for peering with other cloud services and providers, as well as overseeing and managing federations and federated services.

Question 60

Report
Export
Collapse

Which of the following does NOT relate to the hiding of sensitive data from data sets?

A.
Obfuscation
A.
Obfuscation
Answers
B.
Federation
B.
Federation
Answers
C.
Masking
C.
Masking
Answers
D.
Anonymization
D.
Anonymization
Answers
Suggested answer: B

Explanation:

Federation pertains to authenticating systems between different organizations.

Total 512 questions
Go to page: of 52
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms