ExamGecko
Search Search Login
Home Home / ISC / CISSP-ISSAP

ISC CISSP-ISSAP Practice Test - Questions Answers, Page 6

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You work as a Network Administrator for McRoberts Inc. You are expanding your company's network. After you have implemented the network, you test the connectivity to a remote host by using the PING command. You get the ICMP echo reply message from the remote host. Which of the following layers of the OSI model are tested through this process? Each correct answer represents a complete solution. Choose all that apply.
You have decided to implement video surveillance in your company in order to enhance network security. Which of the following locations must have a camera in order to provide the minimum level of security for the network resources? Each correct answer represents a complete solution. Choose two.
Which of the following encryption methods does the SSL protocol use in order to provide communication privacy, authentication, and message integrity? Each correct answer represents a part of the solution. Choose two.
John works as an Ethical Hacker for company Inc. He wants to find out the ports that are open in company's server using a port scanner. However, he does not want to establish a full TCP connection. Which of the following scanning techniques will he use to accomplish this task?
Which of the following protocols is used to compare two values calculated using the Message Digest (MD5) hashing function?
Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?
In which of the following Person-to-Person social engineering attacks does an attacker pretend to be an outside contractor, delivery person, etc., in order to gain physical access to the organization?
You are the Security Administrator for a consulting firm. One of your clients needs to encrypt traffic. However, he has specific requirements for the encryption algorithm. It must be a symmetric key block cipher. Which of the following should you choose for this client?
Which of the following is the process of finding weaknesses in cryptographic algorithms and obtaining the plaintext or key from the ciphertext?
Which of the following protocols work at the Network layer of the OSI model?

Question 51

Report
Export
Collapse

Which of the following protocols uses the Internet key Exchange (IKE) protocol to set up security associations (SA)?

A.
IPSec
A.
IPSec
Answers
B.
L2TP
B.
L2TP
Answers
C.
LEAP
C.
LEAP
Answers
D.
ISAKMP
D.
ISAKMP
Answers
Suggested answer: D

Question 52

Report
Export
Collapse

Sam is creating an e-commerce site. He wants a simple security solution that does not require each customer to have an individual key. Which of the following encryption methods will he use?

A.
Asymmetric encryption
A.
Asymmetric encryption
Answers
B.
Symmetric encryption
B.
Symmetric encryption
Answers
C.
S/MIME
C.
S/MIME
Answers
D.
PGP
D.
PGP
Answers
Suggested answer: B

Question 53

Report
Export
Collapse

Computer networks and the Internet are the prime mode of Information transfer today. Which of the following is a technique used for modifying messages, providing Information and Cyber security, and reducing the risk of hacking attacks during communications and message passing over the Internet?

A.
Risk analysis
A.
Risk analysis
Answers
B.
Firewall security
B.
Firewall security
Answers
C.
Cryptography
C.
Cryptography
Answers
D.
OODA loop
D.
OODA loop
Answers
Suggested answer: C

Question 54

Report
Export
Collapse

An organization wants to allow a certificate authority to gain access to the encrypted data and create digital signatures on behalf of the user. The data is encrypted using the public key from a user's certificate. Which of the following processes fulfills the above requirements?

A.
Key escrow
A.
Key escrow
Answers
B.
Key storage
B.
Key storage
Answers
C.
Key revocation
C.
Key revocation
Answers
D.
Key recovery
D.
Key recovery
Answers
Suggested answer: A

Question 55

Report
Export
Collapse

Which of the following are the primary components of a discretionary access control (DAC) model? Each correct answer represents a complete solution. Choose two.

A.
User's group
A.
User's group
Answers
B.
File and data ownership
B.
File and data ownership
Answers
C.
Smart card
C.
Smart card
Answers
D.
Access rights and permissions
D.
Access rights and permissions
Answers
Suggested answer: B, D

Question 56

Report
Export
Collapse

Which of the following encryption modes can make protocols without integrity protection even more susceptible to replay attacks, since each block gets decrypted in exactly the same way?

A.
Cipher feedback mode
A.
Cipher feedback mode
Answers
B.
Cipher block chaining mode
B.
Cipher block chaining mode
Answers
C.
Output feedback mode
C.
Output feedback mode
Answers
D.
Electronic codebook mode
D.
Electronic codebook mode
Answers
Suggested answer: D

Question 57

Report
Export
Collapse

You work as a technician for Trade Well Inc. The company is in the business of share trading. To enhance security, the company wants users to provide a third key (apart from ID and password) to access the company's Web site. Which of the following technologies will you implement to accomplish the task?

A.
Smart cards
A.
Smart cards
Answers
B.
Key fobs
B.
Key fobs
Answers
C.
VPN
C.
VPN
Answers
D.
Biometrics
D.
Biometrics
Answers
Suggested answer: B

Question 58

Report
Export
Collapse

Which of the following layers of the OSI model corresponds to the Host-to-Host layer of the TCP/IP model?

A.
The transport layer
A.
The transport layer
Answers
B.
The presentation layer
B.
The presentation layer
Answers
C.
The session layer
C.
The session layer
Answers
D.
The application layer
D.
The application layer
Answers
Suggested answer: A

Question 59

Report
Export
Collapse

You are the Network Administrator for a college. You watch a large number of people (some not even students) going in and out of areas with campus computers (libraries, computer labs, etc.). You have had a problem with laptops being stolen. What is the most cost effective method to prevent this?

A.
Smart card access to all areas with computers.
A.
Smart card access to all areas with computers.
Answers
B.
Use laptop locks.
B.
Use laptop locks.
Answers
C.
Video surveillance on all areas with computers.
C.
Video surveillance on all areas with computers.
Answers
D.
Appoint a security guard.
D.
Appoint a security guard.
Answers
Suggested answer: B

Question 60

Report
Export
Collapse

The ATM of a bank is robbed by breaking the ATM machine. Which of the following physical security devices can now be used for verification and historical analysis of the ATM robbery?

A.
Key card
A.
Key card
Answers
B.
Biometric devices
B.
Biometric devices
Answers
C.
Intrusion detection systems
C.
Intrusion detection systems
Answers
D.
CCTV Cameras
D.
CCTV Cameras
Answers
Suggested answer: D
Total 237 questions
Go to page: of 24
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms