CISSP-ISSAP : Information Systems Security Architecture Professional : Part 12

CISSP-ISSAP : Information Systems Security Architecture Professional : Part 12

  1. Which of the following statements best describes a certification authority?

    • A certification authority is a technique to authenticate digital documents by using computer cryptography.
    • A certification authority is a type of encryption that uses a public key and a private key pair for data encryption.
    • A certification authority is an entity that issues digital certificates for use by other parties. 
    • A certification authority is a type of encryption that uses a single key to encrypt and decrypt data.

  2. Which of the following protocols is designed to efficiently handle high-speed data over wide area networks (WANs)?

    • PPP
    • X.25
    • Frame relay 
    • SLIP

  3. A helpdesk technician received a phone call from an administrator at a remote branch office. The administrator claimed to have forgotten the password for the root account on UNIX servers and asked for it. Although the technician didn’t know any administrator at the branch office, the guy sounded really friendly and since he knew the root password himself, he supplied the caller with the password. What type of attack has just occurred?

    • Social Engineering attack 
    • Brute Force attack
    • War dialing attack
    • Replay attack

  4. In which of the following access control models can a user not grant permissions to other users to see a copy of an object marked as secret that he has received, unless they have the appropriate permissions?

    • Discretionary Access Control (DAC)
    • Role Based Access Control (RBAC)
    • Mandatory Access Control (MAC) 
    • Access Control List (ACL)

  5. You work as an Incident handling manager for Orangesect Inc. You detect a virus attack incident in the network of your company. You develop a signature based on the characteristics of the detected virus. Which of the following phases in the Incident handling process will utilize the signature to resolve this incident?

    • Eradication 
    • Identification
    • Recovery
    • Containment

  6. An authentication method uses smart cards as well as usernames and passwords for authentication. Which of the following authentication methods is being referred to?

    • Mutual
    • Anonymous
    • Multi-factor 
    • Biometrics

  7. Which of the following protocols provides connectionless integrity and data origin authentication of IP packets?

    • ESP
    • AH 
    • IKE
    • ISAKMP

  8. Which of the following devices is a least expensive power protection device for filtering the electrical stream to control power surges, noise, power sags, and power spikes?

    • Line Conditioner
    • Surge Suppressor
    • Uninterrupted Power Supply (UPS) 
    • Expansion Bus

  9. Which of the following processes is used to identify relationships between mission critical applications, processes, and operations and all supporting elements?

    • Critical path analysis 
    • Functional analysis
    • Risk analysis
    • Business impact analysis

  10. The network you administer allows owners of objects to manage the access to those objects via access control lists. This is an example of what type of access control?

    • RBAC
    • MAC
    • CIA
    • DAC

  11. You work as a CSO (Chief Security Officer) for Tech Perfect Inc. You want to perform the following tasks: Develop a risk-driven enterprise information security architecture. Deliver security infrastructure solutions that support critical business initiatives. Which of the following methods will you use to accomplish these tasks?

    • Service-oriented architecture
    • Sherwood Applied Business Security Architecture 
    • Service-oriented modeling framework
    • Service-oriented modeling and architecture

  12. The IPSec protocol is configured in an organization’s network in order to maintain a complete infrastructure for secured network communications. IPSec uses four components for this. Which of the following components reduces the size of data transmitted over congested network connections and increases the speed of such networks without losing data?

    • AH
    • ESP
    • IPcomp 
    • IKE

  13. You work as a Network Administrator of a TCP/IP network. You are having DNS resolution problem. Which of the following utilities will you use to diagnose the problem?

    • TRACERT
    • PING
    • IPCONFIG
    • NSLOOKUP

  14. A network is configured on a Bus topology. Which of the following conditions could cause a network failure? Each correct answer represents a complete solution. Choose all that apply.

    • A break in a network cable 
    • 75 ohm terminators at open ends 
    • A powered off workstation
    • An open-ended cable without terminators

  15. A digital signature is a type of public key cryptography. Which of the following statements are true about digital signatures? Each correct answer represents a complete solution. Choose all that apply.

    • In order to digitally sign an electronic record, a person must use his/her public key.
    • In order to verify a digital signature, the signer’s private key must be used.
    • In order to digitally sign an electronic record, a person must use his/her private key. 
    • In order to verify a digital signature, the signer’s public key must be used.

  16. Which of the following types of attacks is often performed by looking surreptitiously at the keyboard or monitor of an employee’s computer?

    • Buffer-overflow attack
    • Man-in-the-middle attack
    • Shoulder surfing attack 
    • Denial-of-Service (DoS) attack

  17. Which of the following is an input device that is used for controlling machines such as cranes, trucks, underwater unmanned vehicles, wheelchairs, surveillance cameras, and zero turning radius lawn mowers?

    • PS/2
    • Joystick 
    • Microphone
    • AGP
Subscribe
Notify of
guest
0 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments