In network security assessments, which type of test employs software to scan internal networks and Internet facing servers for various types of vulnerabilities? risk analysis penetration testing vulnerability assessment strength…
Which two statements correctly describe certificate classes used in the PKI? (Choose two.) A class 0 certificate is for testing purposes. A class 0 certificate is more trusted than a…
What technology has a function of using trusted third-party protocols to issue credentials that are accepted as an authoritative identity? PKI certificates symmetric keys hashing algorithms digital signatures Answers Explanation…
In a hierarchical CA topology, where can a subordinate CA obtain a certificate for itself? from the root CA only from the root CA or from self-generation from the root…
What is the purpose for using digital signatures for code signing? to generate a virtual ID to establish an encrypted connection to exchange confidential data with a vendor website to…
A customer purchases an item from an e-commerce site. The e-commerce site must maintain proof that the data exchange took place between the site and the customer. Which feature of…
A company implements a security policy that ensures that a file sent from the headquarters office to the branch office can only be opened with a predetermined code. This code…
What is the purpose of the DH algorithm? to provide nonrepudiation support to support email data confidentiality to encrypt data traffic after a VPN is established to generate a shared…
Which type of attack does the use of HMACs protect against? DoS DDoS brute force man-in-the-middle Answers Explanation & Hints: Because only the sender and receiver know the secret key,…
Which objective of secure communications is achieved by encrypting data? authentication availability confidentiality integrity Answers Explanation & Hints: When data is encrypted, it is scrambled to keep the data private…
What is block listing? This is a network process list to stop a listed process from running on a computer. This is an application list that can dictate which user…
Which technique could be used by security personnel to analyze a suspicious file in a safe environment? baselining blacklisting sandboxing whitelisting Answers Explanation & Hints: Sandboxing allows suspicious files to…
On a Windows host, which tool can be used to create and maintain block lists and allow lists? Task Manager Group Policy Editor Computer Management Local Users and Groups Answers…
What is a feature of distributed firewalls? They all use an open sharing standard platform. They combine the feature of host-based firewalls with centralized management. They use only iptables to…
A security professional is making recommendations to a company for enhancing endpoint security. Which security endpoint technology would be recommended as an agent-based system to protect hosts against malware? baselining…
What does the telemetry function provide in host-based security software? It enables host-based security programs to have comprehensive logging functions. It enables updates of malware signatures. It blocks the passage…
Which technology is used by Cisco Advanced Malware Protection (AMP) in defending and protecting against known and emerging threats? network admission control website filtering and blacklisting network profiling threat intelligence…
What does the incident handling procedures security policy describe? It describes the procedure for auditing the network after a cyberattack. It describes the procedure for mitigating cyberattacks. It describes how…
Which two options are security best practices that help mitigate BYOD risks? (Choose two.) Use wireless MAC address filtering. Decrease the wireless antenna gain level. Keep the device OS and…
Match the type of business policy to the description. Explanation & Hint: Security Policy: This policy usually defines system requirements and objectives, rules, and requirements for users when they attach…