A customer purchases an item from an e-commerce site. The e-commerce site must maintain proof that the data exchange took place between the site and the customer. Which feature of…
A company implements a security policy that ensures that a file sent from the headquarters office to the branch office can only be opened with a predetermined code. This code…
What is the purpose of the DH algorithm? to provide nonrepudiation support to support email data confidentiality to encrypt data traffic after a VPN is established to generate a shared…
Which type of attack does the use of HMACs protect against? DoS DDoS brute force man-in-the-middle Answers Explanation & Hints: Because only the sender and receiver know the secret key,…
Which objective of secure communications is achieved by encrypting data? authentication availability confidentiality integrity Answers Explanation & Hints: When data is encrypted, it is scrambled to keep the data private…
What is block listing? This is a network process list to stop a listed process from running on a computer. This is an application list that can dictate which user…
Which technique could be used by security personnel to analyze a suspicious file in a safe environment? baselining blacklisting sandboxing whitelisting Answers Explanation & Hints: Sandboxing allows suspicious files to…
On a Windows host, which tool can be used to create and maintain block lists and allow lists? Task Manager Group Policy Editor Computer Management Local Users and Groups Answers…
What is a feature of distributed firewalls? They all use an open sharing standard platform. They combine the feature of host-based firewalls with centralized management. They use only iptables to…
A security professional is making recommendations to a company for enhancing endpoint security. Which security endpoint technology would be recommended as an agent-based system to protect hosts against malware? baselining…
What does the telemetry function provide in host-based security software? It enables host-based security programs to have comprehensive logging functions. It enables updates of malware signatures. It blocks the passage…
Which technology is used by Cisco Advanced Malware Protection (AMP) in defending and protecting against known and emerging threats? network admission control website filtering and blacklisting network profiling threat intelligence…
What does the incident handling procedures security policy describe? It describes the procedure for auditing the network after a cyberattack. It describes the procedure for mitigating cyberattacks. It describes how…
Which two options are security best practices that help mitigate BYOD risks? (Choose two.) Use wireless MAC address filtering. Decrease the wireless antenna gain level. Keep the device OS and…
Match the type of business policy to the description. Explanation & Hint: Security Policy: This policy usually defines system requirements and objectives, rules, and requirements for users when they attach…
What is a characteristic of the security artichoke, defense-in-depth approach? Each layer has to be penetrated before the threat actor can reach the target data or system. Threat actors no…
Why is asset management a critical function of a growing organization against security threats? It serves to preserve an audit trail of all new purchases. It identifies the ever increasing…
What is the first line of defense when an organization is using a defense-in-depth approach to network security? IPS edge router firewall proxy server Answers Explanation & Hints: A defense-in-depth…
What is a characteristic of a layered defense-in-depth security approach? Three or more devices are used. Routers are replaced with firewalls. When one device fails, another one takes over. One…
In a defense-in-depth approach, which three options must be identified to effectively defend a network against attacks? (Choose three.) assets that need protection location of attacker or attackers threats to…