Maintaining System Integrity and Availability, Exams of Computer Science

Various security measures and best practices to ensure the integrity, availability, and confidentiality of computer systems and networks. It covers topics such as contingency planning, access control, authentication, environmental controls, and secure network design. Insights into how to protect user credentials, credit card information, and other sensitive data, as well as how to configure access control and implement security principles like least privilege and separation of duties. It also discusses different types of security testing, cryptographic algorithms, and wireless security protocols. The document touches on incident detection, monitoring, and risk mitigation strategies to reduce network outages and unauthorized changes. Overall, the document presents a comprehensive overview of security concepts and techniques that can be applied to safeguard it systems and data.

Typology: Exams

2024/2025

Available from 09/28/2024

premium-essay
premium-essay šŸ‡ŗšŸ‡ø

5

(2)

1.4K documents

1 / 26

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Sec+ 401 Guaranteed to Improve Your Academic
Performance Structured for Success in Every
Examination Superior Questions with Expert
Solutions Customized for Top Academic
Performance
Joe, the system administrator, is performing an overnight system refresh of hundreds of
user
computers. The refresh has a strict timeframe and must have zero downtime during
business
hours. Which of the following should Joe take into consideration?
A. A disk-based image of every computer as they are being replaced.
B. A plan that skips every other replaced computer to limit the area of affected users.
C. An offsite contingency server farm that can act as a warm site should any issues appear.
D. A back-out strategy planned out anticipating any unforeseen problems that may arise. - -
correct ans- -Answer: D
A program displays:
ERROR: this program has caught an exception and will now terminate.
Which of the following is MOST likely accomplished by the program's behavior?
A. Operating system's integrity is maintained
B. Program's availability is maintained
C. Operating system's scalability is maintained
D. User's confidentiality is maintained - -correct ans- -Answer: A
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a

Partial preview of the text

Download Maintaining System Integrity and Availability and more Exams Computer Science in PDF only on Docsity!

Sec+ 401 Guaranteed to Improve Your Academic

Performance Structured for Success in Every

Examination Superior Questions with Expert

Solutions Customized for Top Academic

Performance

Joe, the system administrator, is performing an overnight system refresh of hundreds of user computers. The refresh has a strict timeframe and must have zero downtime during business hours. Which of the following should Joe take into consideration? A. A disk-based image of every computer as they are being replaced. B. A plan that skips every other replaced computer to limit the area of affected users. C. An offsite contingency server farm that can act as a warm site should any issues appear. D. A back-out strategy planned out anticipating any unforeseen problems that may arise. - - correct ans- - Answer: D A program displays: ERROR: this program has caught an exception and will now terminate. Which of the following is MOST likely accomplished by the program's behavior? A. Operating system's integrity is maintained B. Program's availability is maintained C. Operating system's scalability is maintained D. User's confidentiality is maintained - - correct ans- - Answer: A

A security administrator wants to deploy a physical security control to limit an individual's access into a sensitive area. Which of the following should be implemented? A. Guards B. CCTV C. Bollards D. Spike strip - - correct ans- - Answer: A A network administrator uses an RFID card to enter the datacenter, a key to open the server rack, and a username and password to logon to a server. These are examples of which of the following? A. Multifactor authentication B. Single factor authentication C. Separation of duties D. Identification - - correct ans- - Answer: B Which of the following results in datacenters with failed humidity controls? (Select TWO). A. Excessive EMI B. Electrostatic charge C. Improper ventilation D. Condensation E. Irregular temperature - - correct ans- - Answer: BD An online store wants to protect user credentials and credit card information so that customers

Joe, a user, in a coffee shop is checking his email over a wireless network. An attacker records the temporary credentials being passed to Joe's browser. The attacker later uses the credentials to impersonate Joe and creates SPAM messages. Which of the following attacks allows for this impersonation? A. XML injection B. Directory traversal C. Header manipulation D. Session hijacking - - correct ans- - Answer: D A security architect wishes to implement a wireless network with connectivity to the company's internal network. Before they inform all employees that this network is being put in place, the architect wants to roll it out to a small test segment. Which of the following allows for greater secrecy about this network during this initial phase of implementation? A. Disabling SSID broadcasting B. Implementing WPA2 - TKIP C. Implementing WPA2 - CCMP D. Filtering test workstations by MAC address - - correct ans- - Answer: A Digital certificates can be used to ensure which of the following? (Select TWO). A. Availability B. Confidentiality

C. Verification D. Authorization E. Non-repudiation - - correct ans- - Answer: BE A network administrator is looking for a way to automatically update company browsers so they import a list of root certificates from an online source. This online source will then be responsible for tracking which certificates are to be trusted or not trusted. Which of the following BEST describes the service that should be implemented to meet these requirements? A. Trust model B. Key escrow C. OCSP D. PKI - - correct ans- - Answer: A A security administrator has concerns about new types of media which allow for the mass distribution of personal comments to a select group of people. To mitigate the risks involved with this media, employees should receive training on which of the following? A. Peer to Peer B. Mobile devices C. Social networking D. Personally owned devices - - correct ans- - Answer: C A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other

D. Separation of duties - - correct ans- - Answer: B A quality assurance analyst is reviewing a new software product for security, and has complete access to the code and data structures used by the developers. This is an example of which of the following types of testing? A. Black box B. Penetration C. Gray box D. White box - - correct ans- - Answer: D The security consultant is assigned to test a client's new software for security, after logs show targeted attacks from the Internet. To determine the weaknesses, the consultant has no access to the application program interfaces, code, or data structures. This is an example of which of the following types of testing? A. Black box B. Penetration C. Gray box D. White box - - correct ans- - Answer: A Which of the following types of cryptography should be used when minimal overhead is necessary for a mobile device? A. Block cipher

B. Elliptical curve cryptography C. Diffie-Hellman algorithm D. Stream cipher - - correct ans- - Answer: B The server administrator has noted that most servers have a lot of free disk space and low memory utilization. Which of the following statements will be correct if the server administrator migrates to a virtual server environment? A. The administrator will need to deploy load balancing and clustering. B. The administrator may spend more on licensing but less on hardware and equipment. C. The administrator will not be able to add a test virtual environment in the data center. D. Servers will encounter latency and lowered throughput issues. - - correct ans- - Answer: B Which of the following implementation steps would be appropriate for a public wireless hotspot? A. Reduce power level B. Disable SSID broadcast C. Open system authentication D. MAC filter - - correct ans- - Answer: C Configuring key/value pairs on a RADIUS server is associated with deploying which of the following? A. WPA2-Enterprise wireless network B. DNS secondary zones C. Digital certificates D. Intrusion detection system - - correct ans- - Answer: A

An administrator needs to segment internal traffic between layer 2 devices within the LAN. Which of the following types of network design elements would MOST likely be used? A. Routing B. DMZ C. VLAN D. NAT - - correct ans- - Answer: C The security administrator needs to restrict traffic on a layer 3 device to support FTP from a new remote site. Which of the following secure network administration principles will need to be implemented? A. Implicit deny B. VLAN management C. Port security D. Access control lists - - correct ans- - Answer: D QUESTION 393 After a network outage, a PC technician is unable to ping various network devices. The network administrator verifies that those devices are working properly and can be accessed securely. Which of the following is the MOST likely reason the PC technician is unable to ping those devices? A. ICMP is being blocked B. SSH is not enabled

C. DNS settings are wrong D. SNMP is not configured properly - - correct ans- - Answer: A QUESTION 394 Which of the following ports is used for SSH, by default? A. 23 B. 32 C. 12 D. 22 - - correct ans- - Answer: D The security administrator has been tasked to update all the access points to provide a more secure connection. All access points currently use WPA TKIP for encryption. Which of the following would be configured to provide more secure connections? A. WEP B. WPA2 CCMP C. Disable SSID broadcast and increase power levels D. MAC filtering - - correct ans- - Answer: B After a recent security breach, the network administrator has been tasked to update and backup all router and switch configurations. The security administrator has been tasked to enforce stricter security policies. All users were forced to undergo additional user awareness training. All of these actions are due to which of the following types of risk mitigation strategies? A. Change management

A. Symmetric encryption B. Non-repudiation C. Steganography D. Hashing - - correct ans- - Answer: C Which of the following concepts describes the use of a one way transformation in order to validate the integrity of a program? A. Hashing B. Key escrow C. Non-repudiation D. Steganography - - correct ans- - Answer: A A network administrator has been tasked with securing the WLAN. Which of the following cryptographic products would be used to provide the MOST secure environment for the WLAN? A. WPA2 CCMP B. WPA C. WPA with MAC filtering D. WPA2 TKIP - - correct ans- - Answer: A Recent data loss on financial servers due to security breaches forced the system administrator to harden their systems. Which of the following algorithms with transport encryption would be implemented to provide the MOST secure web connections to manage and access these servers? A. SSL B. TLS

C. HTTP

D. FTP - - correct ans- - Answer: B Which of the following provides a static record of all certificates that are no longer valid? A. Private key B. Recovery agent C. CRLs D. CA - - correct ans- - Answer: C A company requires that a user's credentials include providing something they know and something they are in order to gain access to the network. Which of the following types of authentication is being described? A. Biometrics B. Kerberos C. Token D. Two-factor - - correct ans- - Answer: D A company wants to ensure that all credentials for various systems are saved within a central database so that users only have to login once for access to all systems. Which of the following would accomplish this? A. Multi-factor authentication B. Smart card access C. Same Sign-On D. Single Sign-On - - correct ans- - Answer: D

Which of the following protocols is vulnerable to man-in-the-middle attacks by NOT using end to end TLS encryption? A. HTTPS B. WEP C. WPA D. WPA 2 - - correct ans- - Answer: C A security administrator has been tasked with setting up a new internal wireless network that must use end to end TLS. Which of the following may be used to meet this objective? A. WPA B. HTTPS C. WEP D. WPA 2 - - correct ans- - Answer: D QUESTION 411 After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points: Corpnet Coffeeshop FreePublicWifi Using this information the attacker spoofs a response to make nearby laptops connect back to a malicious device. Which of the following techniques are used above? (Select TWO).

A. Blue snarfing B. Evil twin C. Packet sniffing D. War dialing E. Rogue access point - - correct ans- - Answer: BC QUESTION 412 A server administrator notes that a legacy application often stops running due to a memory error. When reviewing the debugging logs, they notice code being run calling an internal process to exploit the machine. Which of the following attacks does this describe? A. Zero-day B. Buffer overflow C. Cross site scripting D. Malicious add-on - - correct ans- - Answer: B QUESTION 413 Key cards at a bank are not tied to individuals, but rather to organizational roles. After a break in, it becomes apparent that extra efforts must be taken to successfully pinpoint who exactly enters secure areas. Which of the following security measures can be put in place to mitigate the issue until a new key card system can be installed? A. Bollards B. Video surveillance

C. Public key verification D. Certificate revocation list - - correct ans- - Answer: D QUESTION 417 After encrypting all laptop hard drives, an executive officer's laptop has trouble booting to the operating system. Now that it is successfully encrypted the helpdesk cannot retrieve the data. Which of the following can be used to decrypt the information for retrieval? A. Recovery agent B. Private key C. Trust models D. Public key - - correct ans- - Answer: A Jane, an IT security technician, needs to create a way to secure company mobile devices. Which of the following BEST meets this need? A. Implement voice encryption, pop-up blockers, and host-based firewalls. B. Implement firewalls, network access control, and strong passwords. C. Implement screen locks, device encryption, and remote wipe capabilities. D. Implement application patch management, antivirus, and locking cabinets. - - correct ans- - Answer: C Which of the following should a security technician implement to identify untrusted certificates? A. CA B. PKI

C. CRL

D. Recovery agent - - correct ans- - Answer: C Pete, an employee, needs a certificate to encrypt data. Which of the following would issue Pete a certificate? A. Certification authority B. Key escrow C. Certificate revocation list D. Registration authority - - correct ans- - Answer: A Sara, a security engineer, is testing encryption ciphers for performance. Which of the following ciphers offers strong encryption with the FASTEST speed? A. 3DES B. Blowfish C. Serpent D. AES256 - - correct ans- - Answer: B Which of the following is an authentication method that can be secured by using SSL? A. RADIUS B. LDAP C. TACACS+ D. Kerberos - - correct ans- - Answer: B The Chief Security Officer (CSO) is concerned about misuse of company assets and wishes to