ExamGecko
Search Search Login
Home Home / ISC / CISSP-ISSAP

ISC CISSP-ISSAP Practice Test - Questions Answers, Page 19

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You work as a Network Administrator for McRoberts Inc. You are expanding your company's network. After you have implemented the network, you test the connectivity to a remote host by using the PING command. You get the ICMP echo reply message from the remote host. Which of the following layers of the OSI model are tested through this process? Each correct answer represents a complete solution. Choose all that apply.
You have decided to implement video surveillance in your company in order to enhance network security. Which of the following locations must have a camera in order to provide the minimum level of security for the network resources? Each correct answer represents a complete solution. Choose two.
Which of the following encryption methods does the SSL protocol use in order to provide communication privacy, authentication, and message integrity? Each correct answer represents a part of the solution. Choose two.
John works as an Ethical Hacker for company Inc. He wants to find out the ports that are open in company's server using a port scanner. However, he does not want to establish a full TCP connection. Which of the following scanning techniques will he use to accomplish this task?
Which of the following protocols is used to compare two values calculated using the Message Digest (MD5) hashing function?
Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?
In which of the following Person-to-Person social engineering attacks does an attacker pretend to be an outside contractor, delivery person, etc., in order to gain physical access to the organization?
You are the Security Administrator for a consulting firm. One of your clients needs to encrypt traffic. However, he has specific requirements for the encryption algorithm. It must be a symmetric key block cipher. Which of the following should you choose for this client?
Which of the following is the process of finding weaknesses in cryptographic algorithms and obtaining the plaintext or key from the ciphertext?
Which of the following protocols work at the Network layer of the OSI model?

Question 181

Report
Export
Collapse

You are the Security Administrator for a consulting firm. One of your clients needs to encrypt traffic. However, he has specific requirements for the encryption algorithm. It must be a symmetric key block cipher. Which of the following should you choose for this client?

A.
PGP
A.
PGP
Answers
B.
SSH
B.
SSH
Answers
C.
DES
C.
DES
Answers
D.
RC4
D.
RC4
Answers
Suggested answer: C

Question 182

Report
Export
Collapse

You work as an administrator for Techraft Inc. Employees of your company create 'products', which are supposed to be given different levels of access. You need to configure a security policy in such a way that an employee (producer of the product) grants accessing privileges (such as read, write, or alter) for his product. Which of the following access control models will you use to accomplish this task?

A.
Discretionary access control (DAC)
A.
Discretionary access control (DAC)
Answers
B.
Role-based access control (RBAC)
B.
Role-based access control (RBAC)
Answers
C.
Mandatory access control (MAC)
C.
Mandatory access control (MAC)
Answers
D.
Access control list (ACL)
D.
Access control list (ACL)
Answers
Suggested answer: A

Question 183

Report
Export
Collapse

Which of the following decides access control on an object in the mandatory access control (MAC) environment?

A.
Sensitivity label
A.
Sensitivity label
Answers
B.
Event log
B.
Event log
Answers
C.
System Access Control List (SACL)
C.
System Access Control List (SACL)
Answers
D.
Security log
D.
Security log
Answers
Suggested answer: A

Question 184

Report
Export
Collapse

Which of the following protocols should a Chief Security Officer configure in the network of his company to protect sessionless datagram protocols?

A.
SWIPE
A.
SWIPE
Answers
B.
S/MIME
B.
S/MIME
Answers
C.
SKIP
C.
SKIP
Answers
D.
SLIP
D.
SLIP
Answers
Suggested answer: C

Question 185

Report
Export
Collapse

Which of the following protocols supports encapsulation of encrypted packets in secure wrappers that can be transmitted over a TCP/IP connection?

A.
PPTP
A.
PPTP
Answers
B.
UDP
B.
UDP
Answers
C.
IPSec
C.
IPSec
Answers
D.
PAP
D.
PAP
Answers
Suggested answer: A

Question 186

Report
Export
Collapse

You work as a remote support technician. A user named Rick calls you for support. Rick wants to connect his LAN connection to the Internet. Which of the following devices will you suggest that he use?

A.
Hub
A.
Hub
Answers
B.
Repeater
B.
Repeater
Answers
C.
Bridge
C.
Bridge
Answers
D.
Switch
D.
Switch
Answers
E.
Router
E.
Router
Answers
Suggested answer: E

Question 187

Report
Export
Collapse

Which of the following user authentications are supported by the SSH-1 protocol but not by the SSH-2 protocol? Each correct answer represents a complete solution. Choose all that apply.

A.
TIS authentication
A.
TIS authentication
Answers
B.
Rhosts (rsh-style) authentication
B.
Rhosts (rsh-style) authentication
Answers
C.
Kerberos authentication
C.
Kerberos authentication
Answers
D.
Password-based authentication
D.
Password-based authentication
Answers
Suggested answer: A, B, C

Question 188

Report
Export
Collapse

SIMULATION

Fill in the blank with the appropriate encryption system. The ______ encryption system is an asymmetric key encryption algorithm for the public-key cryptography, which is based on the Diffie- Hellman key agreement.

A.
ElGamal
A.
ElGamal
Answers
Suggested answer: A

Question 189

Report
Export
Collapse

You are the Network Administrator for a large corporate network. You want to monitor all network traffic on your local network for suspicious activities and receive a notification when a possible attack is in process. Which of the following actions will you take for this?

A.
Install a network-based IDS
A.
Install a network-based IDS
Answers
B.
Install a host-based IDS
B.
Install a host-based IDS
Answers
C.
Install a DMZ firewall
C.
Install a DMZ firewall
Answers
D.
Enable verbose logging on the firewall
D.
Enable verbose logging on the firewall
Answers
Suggested answer: A

Question 190

Report
Export
Collapse

You work as a Network Administrator for McRoberts Inc. You are expanding your company's network. After you have implemented the network, you test the connectivity to a remote host by using the PING command. You get the ICMP echo reply message from the remote host. Which of the following layers of the

OSI model are tested through this process? Each correct answer represents a complete solution. Choose all that apply.

A.
Layer 3
A.
Layer 3
Answers
B.
Layer 2
B.
Layer 2
Answers
C.
Layer 4
C.
Layer 4
Answers
D.
Layer 1
D.
Layer 1
Answers
Suggested answer: A, B, D
Total 237 questions
Go to page: of 24
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms