CISSP-ISSAP : Information Systems Security Architecture Professional : Part 09

CISSP-ISSAP : All Parts

CISSP-ISSAP : Information Systems Security Architecture Professional : All Parts
CISSP-ISSAP Part 01	CISSP-ISSAP Part 04	CISSP-ISSAP Part 07	CISSP-ISSAP Part 10
CISSP-ISSAP Part 02	CISSP-ISSAP Part 05	CISSP-ISSAP Part 08	CISSP-ISSAP Part 11
CISSP-ISSAP Part 03	CISSP-ISSAP Part 06	CISSP-ISSAP Part 09	CISSP-ISSAP Part 12

Which of the following is a method for transforming a message into a masked form, together with a way of undoing the transformation to recover the message?
- Cipher
- CrypTool
- Steganography
- MIME
Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?
- Sensor
- Alarm
- Motion detector
- Badge
Which of the following protocols multicasts messages and information among all member devices in an IP multicast group?
- ARP
- ICMP
- TCP
- IGMP
You are the Security Consultant advising a company on security methods. This is a highly secure location that deals with sensitive national defense related data. They are very concerned about physical security as they had a breach last month. In that breach an individual had simply grabbed a laptop and ran out of the building. Which one of the following would have been most effective in preventing this?
- Not using laptops.
- Keeping all doors locked with a guard.
- Using a man-trap.
- A sign in log.
Which of the following tenets does the CIA triad provide for which security practices are measured? Each correct answer represents a part of the solution. Choose all that apply.
- Integrity
- Accountability
- Availability
- Confidentiality
Which of the following are the examples of technical controls? Each correct answer represents a complete solution. Choose three.
- Auditing
- Network acchitecture
- System access
- Data backups
Which of the following cryptographic system services ensures that information will not be disclosed to any unauthorized person on a local network?
- Authentication
- Non-repudiation
- Integrity
- Confidentiality
Which of the following types of attacks cannot be prevented by technical measures only?
- Social engineering
- Brute force
- Smurf DoS
- Ping flood attack
The simplest form of a firewall is a packet filtering firewall. Typically a router works as a packet-filtering firewall and has the capability to filter on some of the contents of packets. On which of the following layers of the OSI reference model do these routers filter information? Each correct answer represents a complete solution. Choose all that apply.
- Transport layer
- Physical layer
- Data Link layer
- Network layer
Which of the following authentication methods prevents unauthorized execution of code on remote systems?
- TACACS
- S-RPC
- RADIUS
- CHAP
Which of the following attacks can be overcome by applying cryptography?
- Web ripping
- DoS
- Sniffing
- Buffer overflow
Which of the following does PEAP use to authenticate the user inside an encrypted tunnel? Each correct answer represents a complete solution. Choose two.
- GTC
- MS-CHAP v2
- AES
- RC4
Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the authenticity of a certificate to be immediately verified?
- RSTP
- SKIP
- OCSP
- HTTP
You want to implement a network topology that provides the best balance for regional topologies in terms of the number of virtual circuits, redundancy, and performance while establishing a WAN network. Which of the following network topologies will you use to accomplish the task?
- Bus topology
- Fully meshed topology
- Star topology
- Partially meshed topology
Which of the following terms refers to a mechanism which proves that the sender really sent a particular message?
- Integrity
- Confidentiality
- Authentication
- Non-repudiation
Which of the following protocols uses public-key cryptography to authenticate the remote computer?
- SSH
- Telnet
- SCP
- SSL
Maria works as a Network Security Officer for Gentech Inc. She wants to encrypt her network traffic. The specific requirement for the encryption algorithm is that it must be a symmetric key block cipher. Which of the following techniques will she use to fulfill this requirement?
- IDEA
- PGP
- DES
- AES
Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him that he would like to use some type of hardware device in tandem with a security or identifying pin number. Adam decides to implement smart cards but they are not cost effective. Which of the following types of hardware devices will Adam use to implement two-factor authentication?
- Biometric device
- One Time Password
- Proximity cards
- Security token
Which of the following protocols provides certificate-based authentication for virtual private networks (VPNs)?
- PPTP
- SMTP
- HTTPS
- L2TP
Which of the following is the technology of indoor or automotive environmental comfort?
- HIPS
- HVAC
- NIPS
- CCTV

CISSP-ISSAP : All Parts

CISSP-ISSAP : Information Systems Security Architecture Professional : All Parts
CISSP-ISSAP Part 01	CISSP-ISSAP Part 04	CISSP-ISSAP Part 07	CISSP-ISSAP Part 10
CISSP-ISSAP Part 02	CISSP-ISSAP Part 05	CISSP-ISSAP Part 08	CISSP-ISSAP Part 11
CISSP-ISSAP Part 03	CISSP-ISSAP Part 06	CISSP-ISSAP Part 09	CISSP-ISSAP Part 12

CISSP-ISSAP : Information Systems Security Architecture Professional : Part 09

Which of the following is a method for transforming a message into a masked form, together with a way of undoing the transformation to recover the message?

Which of the following security devices is presented to indicate some feat of service, a special accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment or student status, or as a simple means of identification?

Which of the following protocols multicasts messages and information among all member devices in an IP multicast group?

Which of the following tenets does the CIA triad provide for which security practices are measured? Each correct answer represents a part of the solution. Choose all that apply.

Which of the following are the examples of technical controls? Each correct answer represents a complete solution. Choose three.

Which of the following cryptographic system services ensures that information will not be disclosed to any unauthorized person on a local network?

Which of the following types of attacks cannot be prevented by technical measures only?

Which of the following authentication methods prevents unauthorized execution of code on remote systems?

Which of the following attacks can be overcome by applying cryptography?

Which of the following does PEAP use to authenticate the user inside an encrypted tunnel? Each correct answer represents a complete solution. Choose two.

Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the authenticity of a certificate to be immediately verified?

You want to implement a network topology that provides the best balance for regional topologies in terms of the number of virtual circuits, redundancy, and performance while establishing a WAN network. Which of the following network topologies will you use to accomplish the task?

Which of the following terms refers to a mechanism which proves that the sender really sent a particular message?

Which of the following protocols uses public-key cryptography to authenticate the remote computer?

Maria works as a Network Security Officer for Gentech Inc. She wants to encrypt her network traffic. The specific requirement for the encryption algorithm is that it must be a symmetric key block cipher. Which of the following techniques will she use to fulfill this requirement?

Which of the following protocols provides certificate-based authentication for virtual private networks (VPNs)?

Which of the following is the technology of indoor or automotive environmental comfort?