ExamGecko
Search Search Login
Home Home / ISC / CISSP-ISSAP

ISC CISSP-ISSAP Practice Test - Questions Answers, Page 14

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You work as a Network Administrator for McRoberts Inc. You are expanding your company's network. After you have implemented the network, you test the connectivity to a remote host by using the PING command. You get the ICMP echo reply message from the remote host. Which of the following layers of the OSI model are tested through this process? Each correct answer represents a complete solution. Choose all that apply.
You have decided to implement video surveillance in your company in order to enhance network security. Which of the following locations must have a camera in order to provide the minimum level of security for the network resources? Each correct answer represents a complete solution. Choose two.
Which of the following encryption methods does the SSL protocol use in order to provide communication privacy, authentication, and message integrity? Each correct answer represents a part of the solution. Choose two.
John works as an Ethical Hacker for company Inc. He wants to find out the ports that are open in company's server using a port scanner. However, he does not want to establish a full TCP connection. Which of the following scanning techniques will he use to accomplish this task?
Which of the following protocols is used to compare two values calculated using the Message Digest (MD5) hashing function?
Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?
In which of the following Person-to-Person social engineering attacks does an attacker pretend to be an outside contractor, delivery person, etc., in order to gain physical access to the organization?
You are the Security Administrator for a consulting firm. One of your clients needs to encrypt traffic. However, he has specific requirements for the encryption algorithm. It must be a symmetric key block cipher. Which of the following should you choose for this client?
Which of the following is the process of finding weaknesses in cryptographic algorithms and obtaining the plaintext or key from the ciphertext?
Which of the following protocols work at the Network layer of the OSI model?

Question 131

Report
Export
Collapse

Which of the following attacks allows the bypassing of access control lists on servers or routers, and helps an attacker to hide? Each correct answer represents a complete solution. Choose two.

A.
DNS cache poisoning
A.
DNS cache poisoning
Answers
B.
MAC spoofing
B.
MAC spoofing
Answers
C.
IP spoofing attack
C.
IP spoofing attack
Answers
D.
DDoS attack
D.
DDoS attack
Answers
Suggested answer: B, C

Question 132

Report
Export
Collapse

You are the Network Administrator at a large company. Your company has a lot of contractors and other outside parties that come in and out of the building. For this reason you are concerned that simply having usernames and passwords is not enough and want to have employees use tokens for authentication. Which of the following is not an example of tokens?

A.
Smart card
A.
Smart card
Answers
B.
USB device with cryptographic data
B.
USB device with cryptographic data
Answers
C.
CHAP
C.
CHAP
Answers
D.
Key fob
D.
Key fob
Answers
Suggested answer: C

Question 133

Report
Export
Collapse

Which of the following LAN protocols use token passing for exchanging signals among various stations on the network? Each correct answer represents a complete solution. Choose two.

A.
Ethernet (IEEE 802.3)
A.
Ethernet (IEEE 802.3)
Answers
B.
Token ring (IEEE 802.5)
B.
Token ring (IEEE 802.5)
Answers
C.
Fiber Distributed Data Interface (FDDI)
C.
Fiber Distributed Data Interface (FDDI)
Answers
D.
Wireless LAN (IEEE 802.11b)
D.
Wireless LAN (IEEE 802.11b)
Answers
Suggested answer: B, C

Question 134

Report
Export
Collapse

Which of the following components come under the network layer of the OSI model? Each correct answer represents a complete solution. Choose two.

A.
Routers
A.
Routers
Answers
B.
MAC addresses
B.
MAC addresses
Answers
C.
Firewalls
C.
Firewalls
Answers
D.
Hub
D.
Hub
Answers
Suggested answer: A, C

Question 135

Report
Export
Collapse

Which of the following are examples of physical controls used to prevent unauthorized access to sensitive materials?

A.
Thermal alarm systems
A.
Thermal alarm systems
Answers
B.
Security Guards
B.
Security Guards
Answers
C.
Closed circuit cameras
C.
Closed circuit cameras
Answers
D.
Encryption
D.
Encryption
Answers
Suggested answer: A, B, C

Question 136

Report
Export
Collapse

At which of the following layers of the Open System Interconnection (OSI) model the Internet Control Message Protocol (ICMP) and the Internet Group

Management Protocol (IGMP) work?

A.
The Physical layer
A.
The Physical layer
Answers
B.
The Data-Link layer
B.
The Data-Link layer
Answers
C.
The Network layer
C.
The Network layer
Answers
D.
The Presentation layer
D.
The Presentation layer
Answers
Suggested answer: C

Question 137

Report
Export
Collapse

Which of the following two cryptography methods are used by NTFS Encrypting File System (EFS) to encrypt the data stored on a disk on a file-by-file basis?

A.
Twofish
A.
Twofish
Answers
B.
Digital certificates
B.
Digital certificates
Answers
C.
Public key
C.
Public key
Answers
D.
RSA
D.
RSA
Answers
Suggested answer: B, C

Question 138

Report
Export
Collapse

Which of the following statements about Discretionary Access Control List (DACL) is true?

A.
It specifies whether an audit activity should be performed when an object attempts to access a resource.
A.
It specifies whether an audit activity should be performed when an object attempts to access a resource.
Answers
B.
It is a unique number that identifies a user, group, and computer account.
B.
It is a unique number that identifies a user, group, and computer account.
Answers
C.
It is a list containing user accounts, groups, and computers that are allowed (or denied) access to the object.
C.
It is a list containing user accounts, groups, and computers that are allowed (or denied) access to the object.
Answers
D.
It is a rule list containing access control entries.
D.
It is a rule list containing access control entries.
Answers
Suggested answer: C

Question 139

Report
Export
Collapse

Which of the following methods will allow data to be sent on the Internet in a secure format?

A.
Serial Line Interface Protocol
A.
Serial Line Interface Protocol
Answers
B.
Point-to-Point Protocol
B.
Point-to-Point Protocol
Answers
C.
Browsing
C.
Browsing
Answers
D.
Virtual Private Networks
D.
Virtual Private Networks
Answers
Suggested answer: D

Question 140

Report
Export
Collapse

Which of the following are used to suppress electrical and computer fires? Each correct answer represents a complete solution. Choose two.

A.
Halon
A.
Halon
Answers
B.
Water
B.
Water
Answers
C.
CO2
C.
CO2
Answers
D.
Soda acid
D.
Soda acid
Answers
Suggested answer: A, C
Total 237 questions
Go to page: of 24
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms