cissp英文题练习卷含答案（一）

第页cissp英文题练习卷含答案1.

Laurenusesthepingutilitytocheckwhetheraremotesystemisupaspartofapenetrationtestingexercise.Ifshedoesnotwanttoseeherownpingpackets,whatprotocolshouldshefilteroutfromherpacketsniffer'slogs?A、UDPB、TCPC、IPD、ICMP【正确答案】：D解析：

PingusesICMP,theInternetControlMessageProtocol,todeterminewhetherasystemrespondsandhowmanyhopstherearebetweentheoriginatingsystemandtheremotesystem.LaurensimplyneedstofilteroutICMPtonotseeherpings2.

IfAlexhiresanewemployeeandtheemployee'saccountisprovisionedafterHRmanuallyinputsinformationintotheprovisioningsystembasedondataAlexprovidesviaaseriesofforms,whattypeofprovisioninghasoccurred?A、DiscretionaryaccountprovisioningB、Workflow-basedaccountprovisioningC、AutomatedaccountprovisioningD、Self-serviceaccountprovisioning【正确答案】：B解析：

Provisioningthatoccursthroughanestablishedworkflow,suchasthroughanHRprocess,isworkflow-basedaccountprovisioning.IfAlexhadsetupaccountsforhisnewhireonthesystemshemanages,hewouldhavebeenusingdiscretionaryaccountprovisioning.Iftheprovisioningsystemallowedthenewhiretosignupforanaccountontheirown,theywouldhaveusedselIf-serviceaccountprovisioning,andiftherewasacentral,software-drivenprocess,ratherthanHRforms,itwouldhavebeenautomatedaccountprovisioning3.1分

Jimwantstoimplementanaccesscontrolschemethatwillensurethatuserscannotdelegateaccess.Healsowantstoenforceaccesscontrolattheoperatingsystemlevel.Whataccesscontrolmechanismbestfitstheserequirements?A、Role-basedaccesscontrolB、DiscretionaryaccesscontrolC、MandatoryaccesscontrolD、Attribute-basedaccesscontrol【正确答案】：C解析：

Inamandatoryaccesscontrolsystem,theoperatingaccessanduserscannotdelegaterights.Discretionaryaccesscontrolallowsuserstodelegaterights,andneitherattributenorrole-basedaccesscontrolspecificallymeetstheserequirements.4.1417Topic1

Question#130

Anorganizationwantstodefineasphysicalperimeter.Whatprimarydeviceshouldbeusedtoaccomplishthisobjectiveiftheorganization'sperimeterMUSTcost-efficientlydetercasualtrespassers?A、FencesthreetofourfeethighwithaturnstileB、FencessixtosevenfeethighwithapaintedgateC、FencesaccompaniedbypatrollingsecurityguardsD、Fenceseightormorefeethighwiththreestrandsofbarbedwire【正确答案】：A5.

InaresponsetoaRequestforProposal,SusanreceivesanSSAE18SOC1report.Ifshewantsareportthatincludesoperatingeffectivenessdetail,whatshouldSusanaskforasfollow-upandwhy?A、aSOC2TypeIIreport,becauseTypeIdoesnotcoveroperatingeffectivenessB、aSOC1Type|report,becauseSOC2doesnotcoveroperatingeffectivenessC、aSOC2TypeIreport,becauseSOC2TypelldoesnotcoveroperatingeffectivenessD、aSOC3report,becauseSOC1andSOC2reportsareoutdated【正确答案】：A解析：

ServiceOrganizationControl(SOC)reportsreplacedSAS-70reportsin2010.ATypeIreportonlycoversapointintime,soSusanneedsanSOCTypeIIreporttohavetheinformationsherequirestomakeadesignandoperatingeffectivenessdecisionbasedonthereport6.1417Topic1Question#455Anorganizationisbuildinganenterprisesystemusingattribute-basedaccesscontrol(ABAC).Toavoidinadvertentexposure,whatshouldorganizationsdotoensuretheproperhandlingofpersonallyidentifiableinformation(PII)andenforcementofPIIregulationsacrosstheEnterprise?A、Employtrustagent.B、Employtrustagreements.C、Employtrainingprogram.D、Employregulationsfromleadership.【正确答案】：C7.

MikehasbeentaskedwithpreventinganoutbreakofmalwarelikeMirai,Whattypeofsystemsshouldbeprotectedinhisorganization?A、ServersB、SCADAC、MobiledevicesD、InternetofThings(loT)devices【正确答案】：D解析：

Miraitargeted"InternetofThings"devices,includingrouters,cameras,andDVRs.Asorganizationsbringanincreasingnumberofdevicesliketheseintotheircorporatenetworks,protectingbothinternalandexternaltargetsfrominsecure,infrequentlyupdated,andoftenvulnerableloTdevicesisincreasingimportant8.1417Topic1

Question#83

Asadesignprinciple,whichoneofthefollowingactorsisresponsibleforidentifyingandapprovingdatasecurityrequirementinacloudecosystem?A、CloudauditorB、CloudbrokerCloudproviderD、Cloudconsumer【正确答案】：D9.

Chriswantstousealow-power,personalareanetworkwirelessprotocolforadeviceheisdesigning.Whichofthefollowingwirelessprotocolsisbestsuitedtocreatingsmall,low-powerdevicesthatcanconnecttoeachotheratrelativelyshortdistancesacrossbuildingsorrooms?A、WiFiB、ZigbeeC、NFCD、Infrared【正确答案】：B解析：

Zigbeeisdesignedforthistypeoflow-power,InternetofThingsnetwork,andwouldbethebestoptionforChrisSomeversionsofBluetootharedesignedtooperateinlow-powermodeaswell,butBluetoothisn'tinthislistofanswers.WiFirequiresmorepower,NFCisveryshortrangeandwouldnotworkacrossabuildingorroom,andinfraredrequireslineofsightandisrarelyusedforthatreason10.

Richardisexperiencingissueswiththequalityofnetworkserviceonhisorganization’snetwork.Theprimarysymptomisthatpacketsareconsistentlytakingtoolongtotravelfromtheirsourcetotheirdestination.WhattermdescribestheissueRichardisfacing?A、JitterB、PacketlossC、InterferenceD、Latency【正确答案】：D解析：

Latencyisadelayinthedeliveryofpacketsfromtheirsourcetotheirdestination.Jitterisavariationinthelatencyfordifferentpackets.Packetlossisthedisappearanceofpacketsintransitthatrequiresretransmission,Interferenceiselectricalnoiseorotherdisruptionsthatcorruptthecontentsofpacket11.1417Topic1

Question#196

WhatHypertextTransferProtocol(HTTP)responseheadercanbeusedtodisabletheexecutionofinlineJavaScriptandtheexecutionofeval()-typefunctions?A、X-XSS-ProtectionB、Content-Security-PolicyC、X-Frame-OptionsD、Strict-Transport-Security【正确答案】：B12.1分

Whichofthefollowingisbestdescribedasanaccesscontrolmodelthatfocusesonsubjectsandidentifiestheobjectsthateachsubjectcanaccess?AnaccesscontrollistB、AnimplicitdeniallistC、AcapabilitytableD、Arightsmanagementmatrix【正确答案】：C解析：

Capabilitytableslisttheprivilegesassignedtosubjectsandidentifytheobjectsthatsubjectscanaccess.Accesscontrollistsareobject-focusedratherthansubject-focused.Implicitdenyisaprinciplethatstatesthatanythingthatisnotexplicitlyallowedisdeniedandarightsmanagedisnotanaccesscontrolmodel.13.

Whichoneofthefollowingchangemanagementprocessesisinitiatedbyusersratherthandevelopers?A、ChangecontrolB、ChangecontrolChangecontrolDesignreview【正确答案】：A解析：

Therequestprocessbeginswithauser-initiatedrequestforafeature.Changeandreleasecontrolareinitiatedbydevelopersseekingtoimplementchanges.Designreviewisaphaseofthechangeapprovalprocessinitiatedbydeveloperswhentheyhaveacompleteddesign.14.1417Topic1

Question#292

Whatisauseformandatoryaccesscontrol(MAC)?AllowsformandatoryuseridentityandpasswordsbasedonsensitivityB、AllowsformandatorysystemadministratoraccesscontroloverobjectsC、AllowsforlabelingofsensitiveuseraccountsforaccesscontrolD、Allowsforobjectsecuritybasedonsensitivityrepresentedbyalabel【正确答案】：C15.

Tonyisdevelopingabusinesscontinuityplanandishavingdifficultyprioritizingresourcesbecauseofthedifficultyofcombininginformationabouttangibleandintangibleassets.Whatwouldbethemosteffectiveriskassessmentapproachforhimtouse?A、QuantitativeriskassessmentB、QualitativeriskassessmentC、NeitherquantitativenorqualitativeriskassessmentD、Combinationofquantitativeandqualitativeriskassessment【正确答案】：D解析：

Tonywouldseethebestresultsbycombiningelementsofquantitativeandqualitativeriskassessment.Quantitativeriskassessmentexcelsatanalyzingfinancialrisk,whilequalitativeriskassessmentisagoodtoolforintangiblerisks.Combiningthetwotechniquesprovidesawell-roundedriskpicture.16.

Whichmappingcorrectlymatchesdataclassificationsbetweennongovernmentandgovernmentclassificationschemes?A、TopSecret-Confidential.ProprietarySecret-PrivateConfidential-SensitiveB、Secret-BusinessconfidentialClassified-ProprietaryConfidential-BusinessinternalC、TopSecret-BusinesssensitiveSecret-BusinessinternalConfidential-BusinessproprietaryD、Secret-ProprietaryClassified-PrivateUnclassified-Public【正确答案】：A解析：

Whilemanynongovernmentorganizationscreatetheirownclassificationschemes,acommonmodelwithleveisthatalignwiththeUSgovernment'sclassificationlabelsisshownhere.Inthegivenoptions,BandDdonotmatchtheUSgovernment'sTopSecret,Secret,Confidentialscheme,andCincorrectlymatchesbusinessproprietarydatawithconfidentialdataaswellasTopSecretdatawithbusinesssensitivedata.BusinessinternalisoftenanothertermforbusinessSensitive,meaningthatitisusedtomatchtwoclassifications17.

Chrisisresponsibleforworkstationsthroughouthiscompanyandknowsthatsomeofthecompany'sworkstationsareusedtohandlebothproprietaryinformationandhighlysensitivetradesecrets.Whichoptionbestdescribeswhatshouldhappenattheendoftheirlife(EOL)forworkstationsheisresponsiblefor?A、ErasingB、ClearingC、SanitizationDestruction【正确答案】：D解析：

Destructionisthemostcompletemethodofensuringthatdatacannotbeexposed,andorganizationsoftenopttodestroyeitherthedriveortheentireworkstationordevicetoensurethatdatacannotberecoveredorexposed.Sanitizationisacombinationofprocessesthatensurethatdatafromasystemcannotberecoveredbyanymeans.Erasingandclearingandtomistakesandtechnicalproblemsthatcanresultinremnantdataanddon'tmakesenseforsystemsthathandledproprietaryinformation18.

IfAlicewishestosendBobanencryptedmessage,whatkeydoessheusetoencryptthemessage?Alice'spublickeyB、Alice'sprivatekeyC、Bob'spublickeyD、Bob'sprivatekey【正确答案】：C解析：

YourorganizationregularlyhandlesthreetypesofdatainformationthatitShareswithcustomers,informationthatitusesinternallytoconductbusiness,andtradesecretinformationthatofferstheorganizationsignificantcompetitiveadvantages.Informationsharedwithcustomersisusedandstoredonwebservers,whileboththeinternalbusinessdataandthetradesecretinformationarestoredoninternalfileserversandemployeeworkstations.19.

Whattechnologyensuresthatanoperatingsystemallocatesseparatememoryspacesusedbyeachapplicationonasystem?AbstractionB、LayeringC、DatahidingD、Processisolation【正确答案】：D解析：

Processisolationensuresthattheoperatingsystemallocatesaseparateareaofmemoryforeachprocess,preventingprocessesfromseeingeachother'sdata.Thisisarequirementformultilevelsecuritysystems.20.1417Topic1

Question#312

WhichofthefollowingactivitiesshouldaforensicexaminerperformFIRSTwhendeterminingthepriorityofdigitalevidencecollectionatacrimescene?A、Gatherphysicalevidence.B、Assignresponsibilitiestopersonnelonthescene.C、Establishalistoffilestoexamine.D、Establishorderofvolatility.【正确答案】：D21.

Susan’sorganizationperformsazerofillonharddrivesbeforetheyaresenttoathird-partyorganizationtobeshredded.Whatissueisherorganizationattemptingtoavoid?A、Dataremanencewhileatthethird-partysiteB、MishandlingofdrivesbythethirdpartyClassificationmistakesDatapermanence【正确答案】：B解析：

Susan'sorganizationislimitingitsriskbysendingdrivesthathavebeensanitizedbeforetheyaredestroyed.Thislimitsthepossibilityofadatabreachifdrivesaremishandledbythethirdparty,allowingthemtobestolen,resold,orsimplycopied.Thedestructionofthedriveswillhandleanyissueswithdataremanence,whileclassificationmistakesarenotimportantifthedriveshavebeendestroyed.Datapermanenceandthelifespanofthedataarenotimportantonadestroyeddrive22.1分

SessionIDlengthandsessionIDentropyarebothimportanttopreventtopressionIDattack?A、DenialofserviceB、CookietheftC、SessionguessingD、Man-in-the-middleattacks【正确答案】：C解析：

BestpracticesforsessionmanagementinvolvealongsessionID(often128bitsorlonger)andenoughrandomnessorentropytomakeithardtoguesssessionIDs.Thismakesbrute-forceoralgorithmicguessingattacksunlikelyunlessthereisaflawintheimplementation.Thesedonotpreventdenial-of-serviceorman-in-the-middleattacks,andcookieattacksarefocusedonacquiringandreadingorreusingcookiesinmostscenarios23.

JohnsonWidgetsstrictlylimitsaccesstototalsalesvolumeinformation,classifyingitasacompetitivesecret.However,shippingclerkshaveunrestrictedaccesstoorderrecordstofacilitatetransactioncompletion.Ashippingclerkrecentlypulledalloftheindividualsalesrecordsforaquarterandtotaledthemuptodeterminethetotalsalesvolume.Whattypeofattackoccurred?A、SocialengineeringB、InferenceC、AggregationDatadiddling【正确答案】：C解析：

Inanaggregationattack,individual(s)usetheiraccesstospecificpiecesofinformationtopiecetogetheralargerpicturethattheyarenotauthorizedtoaccess24.

Lauren'steamconductsregressiontestingoneachpatchthattheyrelease.Whatkeyperformancemeasureshouldtheymaintaintomeasuretheeffectivenessoftheirtesting?A、TimetoremediatevulnerabilitiesB、AmeasureoftherateofdefectrecurrenceC、AweightedrisktrendD、Ameasureofthespecificcoverageoftheirtesting【正确答案】：B解析：

Lauren'steamisusingregressiontesting,whichisintendedtopreventtherecurrenceofissues.Thismeansthatmeasuringtherateofdefectrecurrenceisanappropriatemeasurefortheirwork.Timetoremediatevulnerabilitiesisassociatedwithactivitieslikepatching,ratherthanpreparingthepatch,whereasaweightedrisktrendisusedtomeasureriskovertimetoanorganization.Finally,specificcoveragemaybeusefultodetermineiftheyarefullytestingtheireffort,butregressiontestingismorespecificallycoveredbydefectrecurrencerates.25.

JenniferneedstoensurethatallWindowssystemsprovideidenticallogginginformationtotheSIEM.HowcanshebestensurethatallWindowsdesktopshavethesamelogsettings?A、Performperiodicconfigurationaudits.B、UseGroupPolicyC、UseLocalPolicyDeployaWindowssyslogclient.【正确答案】：B解析：

GroupPolicyenforcedbyActiveDirectorycanensureconsistentloggingsettingsandcanprovideregularenforcementofpolicyonsystems.Periodicconfigurationauditswon'tcatchchangesmadebetweenaudits,andlocalpoliciescandriftduetolocalchangesordifferencesindeployments.AWindowssyslogclientwillenabletheWindowssystemstosendsyslogtotheSIEMappliancebutwon'tensureconsistentloggingofevents.Forquestions,pleaserefertothefollowingscenario:Ben'sorganizationhasbeguntouseSTRIDEtoassessitssoftwareandhasidentifiedthreatagentsandthebusinessimpactsthatthesethreatscouldhave.Nowtheyareworkingtoidentifyappropriatecontrolsfortheissuestheyhaveidentified26.

Whichoneofthefollowingagreementstypicallyrequiresthatavendornotdiscloseconfidentialinformationlearnedduringthescopeofanengagement?A、NCAB、SLAC、NDAD、RTO【正确答案】：C解析：

Nondisclosureagreements(NDAs)typicallyrequireeithermutualorone-wayconfidentialityinabusinessrelationship.Service-levelagreements(SLAs)specifyserviceuptimeandotherperformancemeasures.Noncompeteagreements(NCAS)limitthefutureemploymentpossibilitiesofemployees.Recoverytimeobjectives(RTOS)areusedinbusinesscontinuityplanning.27.

Whatbusinessprocesstypicallyrequiressign-offfromamanagerbeforemodificationsaremadetoasystem?A、SDNB、ReleasemanagementChangemanagementD、Versioning【正确答案】：C解析：

Changemanagementtypicallyrequiressign-offfromamanagerorsupervisorbeforechangesaremade.Thishelpstoensureproperawarenessandcommunication.SDNstandsforsoftware-definednetworking,releasemanagementistheprocessthatnewsoftwarereleasesgothroughtobeaccepted,andversioningisusedtodifferentiateversionsofsoftware,code,orotherobjects.28.

Kenisdesigningatestingprocessforsoftwaredevelopedbyhisteam.Heisdesigningatestthatverifiesthateverylineofcodewasexecutedduringthetest.WhattypeofanalysisisKenperforming?A、BranchcoverageB、ConditioncoverageC、FunctioncoverageD、Statementcoverage【正确答案】：D解析：

StatementcoveragetestsverifythateverylineofcodewasexecutedduringthetestBranchcoverageverifiesthateveryifstatementwasexecutedunderallifandelseconditions.Conditioncoverageverifiesthateverylogicaltestinthecodewasexecutedunderallsetsofinputs.Functioncoverageverifiesthateveryfunctioninthecodewascalledandreturnsresults.29.1分

Voicepatternrecognitioniswhattypeofauthenticationfactor?A、SomethingyouknowB、SomethingyouhaveC、SomethingyouareD、Somewhereyouare【正确答案】：C解析：

Voicepatternrecognitionis"somethingyouare,"abiometricauthenticationfactor,becauseitmeasuresaphysicalcharacteristicoftheindividualauthenticating30.

Whatciviliandataclassificationsbestfitthisdata?A、Unclassified,confidential,topsecretB、Public,sensitive,privateC、Public,sensitive,proprietaryD、Public,confidential,private【正确答案】：C解析：

Informationsharedwithcustomersispublic,internalbusinesscouldbesensitiveorprivate,andtradesecretsareproprietary.Thus,public,sensitive,proprietarymatchesthismostcloselyConfidentialisamilitaryclassification,whichremovestwooftheremainingoptions,andtradesecretsaremoredamagingtolosethanaprivateclassificationwouldallow.31.1417Topic1

Question#370

Whywouldasystembestructuredtoisolatedifferentclassesofinformationfromoneanotherandsegregatethembyuserjurisdiction?A、Theorganizationisrequiredtoprovidedifferentservicestovariousthird-partyorganizations.B、Theorganizationcanavoide-discoveryprocessesintheeventoflitigation.C、Theorganization'sinfrastructureisclearlyarrangedandscopeofresponsibilityissimplified.D、Theorganizationcanvaryitssystempoliciestocomplywithconflictingnationallaws.【正确答案】：D32.

SusanprovidesapublicRESTfulAPIforherorganization'sdatabutwantstolimititsusetotrustedpartners.SheintendstouseAPIkeys.WhatotherrecommendationwouldyougiveSusantolimitthepotentialabuseoftheservice?A、LimitrequestratesB、ForceHTTP-onlyrequestsC、AvoidtokensduetobandwidthconstraintsD、BlacklistHTTPmethodssuchasGET,POST,andPUT【正确答案】：A解析：

LimittherequestratecanlimittheAPIabusedescribedintheexample.Theotheroptionsareallbadadvice.Ingeneral,requestsshouldrequireHTTPS,andatokensimilartoJSONwebtokens(JWT)canbeusedtoenhancebusinesssecurity,andfinallyHTTPmethodscanberestrictedforbusinesssecurity,however,GET,POST,PUTandothermethodsarecommonmethodsofAPIaccess,usuallyrequiredtowhitelist.33.1分

Jimwantstoallowcloud—basedapplicationstoactonhisbehalftoaccessinformationfromothersites.Whichofthefollowingtoolscanallowthat?A、KerberosB、OAuthC、OpenIDD、LDAP【正确答案】：B解析：

OAuthprovidestheabilitytoaccessresourcesfromanotherserviceandwouldmeetJim'sneeds.OpenIDwouldallowhimtouseanaccountfromanotherservicewithhisapplication,andKerberosandLDAPareusedmorefrequentlyforin-houseservices.34.

Alaninterceptsanencryptedmessageandwantstodeterminewhattypeofalgorithmwasusedtocreatethemessage.HefirstperformsafrequencyanalysisandnotesthatthefrequencyoflettersinthemessagecloselymatchesthedistributionoflettersintheEnglishLanguage.Whattypeofcipherwasmostlikelyusedtocreatethismessage?A、SubstitutioncipherB、AESC、TranspositioncipherD、3DES【正确答案】：C解析：

Thismessagewasmostlikelyencryptedwithatranspositioncipher.Theuseofasubstitutioncipher,acategorythatincludesAESand3DES,wouldchangethefrequencydistributionsothatitdidnotmirrorthatoftheEnglishlanguage.35.1417Topic1

Question#104

Whichorganizationaldepartmentisultimatelyresponsibleforinformationgovernancerelatedtoe-mailandothere-records?A、LegalB、AuditComplianceD、Security【正确答案】：C36.1417Topic1

Question#399

Anorganizationhasapproveddeploymentofavirtualenvironmentforthedevelopmentserversandhasestablishedcontrolsforrestrictingaccesstoresources.Inordertoimplementbestsecuritypracticesforthevirtualenvironment,thesecurityteamMUSTalsoimplementwhichofthefollowingsteps?A、Implementadedicatedmanagementnetworkforthehypervisor.B、DeployTerminalAccessControllerAccessControlSystemPlus(TACACS+)forauthentication.C、ImplementcomplexpasswordsusingPrivilegedAccessManagement(PAM).D、Capturenetworktrafficforthenetworkinterface.【正确答案】：A37.

Whichoneofthefollowingcombinationsofcontrolsbestembodiesthedefenseindepthprinciple?A、EncryptionofemailandnetworkintrusiondetectionB、Cloudaccesssecuritybrokers(CASB)andsecurityawarenesstrainingC、DatalosspreventionandmultifactorauthenticationD、Networkfirewallandhostfirewall【正确答案】：D解析：

Thedefense-in-depthprinciplesuggestsusingmultipleoverlappingsecuritycontrolstoachievethesamecontrolobjective.Networkandhostfirewallsarebothdesignedtolimitnetworktrafficandthereforeareanexampleofdefenseindepth.Theencryptionofemailandnetworkintrusiondetectionareunrelatedcontrolsanddonotsatisfythesameobjective.ThesameistrueforthecombinationofCASBandsecurityawarenesstrainingandthecombinationofDLPandmultifactorauthentication.38.1417Topic1

Question#119

WhatistheFIRSTstepwhendevelopinganInformationSecurityContinuousMonitoring(ISCM)program?A、Collectthesecurity-relatedinformationrequiredformetrics,assessments,andreporting.B、EstablishanISCMprogramdeterminingmetrics,statusmonitoringfrequencies,andcontrolassessmentfrequencies.C、DefineanISCMstrategybasedonrisktolerance.D、EstablishanISCMtechnicalarchitecture.【正确答案】：C39.

Kenishavingdifficultycorrelatinginformationfromdifferentsecurityteamsinhisorganization.Specifically,hewouldliketofindawaytodescribeoperatingsystemsinaconsistentfashion.WhatSCAPcomponentcanassisthim?A、CVEB、CPECWED、OVAL【正确答案】：B解析：

TheCommonPlatformEnumeration(CPE)componentofSCAPprovidesaconsistentwaytorefertooperatingsystemsandothersystemcomponents.TheCommonVulnerabilitiesandExposures(CVE)componentprovidesaconsistentwaytorefertosecurityvulnerabilities.TheCommonWeaknessesEnumeration(CWE)componenthelpsdescribetherootcausesofsoftwareflaws.TheOpenVulnerabilityandAssessmentLanguage(OVAL)standardizesstepsofthevulnerabilityassessmentprocess40.1417Topic1

Question#180

Whatisconsideredacompensatingcontrolfornothavingelectricalsurgeprotectorsinstalled?A、HavingduallinestonetworkserviceprovidersbuilttothesiteB、Havingahotdisasterrecovery(DR)environmentforthesiteC、Havingnetworkequipmentinactive-activeclustersatthesiteD、Havingbackupdieselgeneratorsinstalledtothesite【正确答案】：B41.

DatastoredinRAMisbestcharacterizedaswhattypeofdata?A、DataatrestB、DatainuseC、DataintransitDataatlarge【正确答案】：B解析：

DatainuseisdatathatisinatemporarystoragelocationwhileanapplicationorprocessisusingitThus,datainmemoryisbestdescribedasdatainuseorephemeraldata.Dataatrestisinstoragewhiledataintransitistravelingoveranetworkorotherchannel.Dataatlargeisamade-upterm42.

Hunterisreviewinghisorganization'smonitoringstrategyandidentifyingnewtechnologiesthattheymightdeploy.Hisassessmentrevealsthatthefirmisnotdoingenoughtomonitoremployeeactivityonendpointdevices.Whichoneofthefollowingtechnologieswouldbestmeethisneeds?A、EDRB、IPSC、IDSD、UEBA【正确答案】：D解析：

Allofthesetechnologieshavethepotentialtomonitoruserbehavioronendpointdevices.Thekeytoansweringthisquestioncorrectlyisrealizingtheemphasisontheuser.Intrusiondetectionandpreventionsystems(IDSS.IPSs)focusonnetworkandhostbehavior.Endpointdetectionandresponse(EDR)systemsfocusonendpointdevices.Userandentitybehavioranalytics(UEBA)solutionsfocusontheuserand,therefore,wouldbethebestwaytomeetHunter'srequirement.43.1417Topic1

Question#185

Whichofthefollowingrolesisresponsibleforensuringthatimportantdatasetsaredeveloped,maintained,andareaccessiblewithintheirdefinedspecifications?A、DataCustodianB、DataReviewerC、DataUserDataOwner【正确答案】：A44.1分

TheaccesscontrolsystemforNaomi'sorganizationchecksifhercomputerisfullypatched,ifithasasuccessfulcleananti-malwarescan,andifthefirewallisturnedonamongothersecurityvalidationsbeforeitallowshertoconnecttothenetwork.Iftherearepotentialissues,sheisnotpermittedtoconnectandmustcontactsupport.Whattypeofaccesscontrolschemebestdescribesthistypeofprocess?A、MACB、Rule-basedaccesscontrolC、Role-basedaccesscontrolD、Risk-basedaccesscontrol【正确答案】：D解析：

Risk-basedaccesscontrolmodelsriskusinginformationthatisavailablewhentheaccessrequestiscreated.Informationabouttherequestandtheriskitmaycreateiscalculatedbasedonriskvaluesandcomparedtoaccesspolicies.Iftheriskvalueisacceptable,accessisgranted.OneofthemostcommonexamplesofthisinorganizationsisNAC,ornetworkaccesscontrol,whereasystemisprofiledtodeterminesecurityriskandcompliancebeforeadmissiontoanetwork.Thiscanbeseenasamorespecificexampleofrule-basedaccesscontrol.Role-basedaccesscontrolbasesitsdecisionsontherolesoftheindividuals,whereasmandatoryaccesscontrolisenforcedbytheoperatingsystem45.1417Topic1

Question#263

Aninformationsecurityadministratorwishestoblockpeer-to-peer(P2P)trafficoverHypertextTransferProtocol(HTTP)tunnels.WhichofthefollowinglayersoftheOpenSystemsInterconnection(OSI)modelrequiresinspection?ApplicationB、TransportC、SessionD、Presentation【正确答案】：A46.

Whichoneofthefollowingtoolshelpssystemadministratorsbyprovidingastandard,securetemplateofconfigurationsettingsforoperatingsystemsandapplications?A、SecurityguidelinesB、SecuritypolicyC、BaselineconfigurationD、Runningconfiguration【正确答案】：C解析：

Baselineconfigurationsserveasthestartingpointforconfiguringsecuresystemsandapplications.Theycontainthesecuritysettingsnecessary