COMPTIA Certification
Quiz yourself by thinking what should be in
each of the black spaces below before clicking
on it to display the answer.
Help!
|
|
||||
|---|---|---|---|---|---|
| show | SSL
🗑
|
||||
| show | USB token and PIN
🗑
|
||||
| QUESTION NO: 3 Which of the following can a security administrator implement on mobile devices that will help prevent unwanted people from viewing the data if the device is left unattended? | show 🗑
|
||||
| show | Protocol analyzer
🗑
|
||||
| show | False positives
🗑
|
||||
| QUESTION NO: 6 A security administrator wants to perform routine tests on the network during working hours when certain applications are being accessed by the most people. Which of the following would allow the security administrator to test the lack of | show 🗑
|
||||
| QUESTION NO: 6 certain applications are being accessed by the most people. Which of the following would allow the security administrator to test the lack of security controls for those applications with the least | show 🗑
|
||||
| QUESTION NO: 7 Which of the following risk concepts requires an organization to determine the number of failures per year? | show 🗑
|
||||
| QUESTION NO: 8 A system security analyst using an enterprise monitoring tool notices an unknown internal host exfiltrating files to several foreign IP addresses. Which of the following would be an appropriate mitigation technique? | show 🗑
|
||||
| show | Operational, technical, and management.
🗑
|
||||
| QUESTION NO: 10 The helpdesk reports increased calls from clients reporting spikes in malware infections on their systems. Which of the following phases of incident response is MOST appropriate as a FIRST response? | show 🗑
|
||||
| QUESTION NO: 11 Which of the following protocols operates at the HIGHEST level of the OSI model? | show 🗑
|
||||
| show | $5,000
🗑
|
||||
| show | Honeypot
🗑
|
||||
| show | Web Application Firewall
🗑
|
||||
| QUESTION NO: 15 Which of the following means of wireless authentication is easily vulnerable to spoofing? | show 🗑
|
||||
| show | -Validate and filter input on the server side and client side.
-Restrict and sanitize use of special characters in input and URLs.
🗑
|
||||
| QUESTION NO: 17 Jane, a security administrator, needs to implement a secure wireless authentication method that uses a remote RADIUS server for authentication. Which of the following is an authentication method Jane should use? | show 🗑
|
||||
| QUESTION NO: 18 Computer evidence at a crime scene is documented with a tag stating who had possession of the evidence at a given time. Which of the following does this illustrate? | show 🗑
|
||||
| show | Group based privileges
🗑
|
||||
| QUESTION NO: 20 Which of the following is being tested when a company’s payroll server is powered off for eight hours? | show 🗑
|
||||
| show | Zero-day
🗑
|
||||
| QUESTION NO: 22 A security administrator has concerns about new types of media which allow for the mass distribution of personal comments to a select group of people. To mitigate the risks involved with this media, employees should receive training on | show 🗑
|
||||
| QUESTION NO: 23 A network administrator is responsible for securing applications against external attacks. Every month, the underlying operating system is updated. There is no process in place for other software updates. Which of the following process | show 🗑
|
||||
| show | Job rotation
🗑
|
||||
| show | IPsec
🗑
|
||||
| show | Open system authentication
🗑
|
||||
| show | Install a digital certificate on the authentication server
🗑
|
||||
| QUESTION NO: 28 Which of the following controls would allow a company to reduce the exposure of sensitive systems from unmanaged devices on internal networks? | show 🗑
|
||||
| QUESTION NO: 29 Which of the following preventative controls would be appropriate for responding to a directive to | show 🗑
|
||||
| show | Establishing baseline reporting
🗑
|
||||
| show | Reduce the certificate management burden.
🗑
|
||||
| show | Access control lists
🗑
|
||||
| QUESTION NO: 33 Which of the following ports is used for SSH, by default? | show 🗑
|
||||
| QUESTION NO: 34 A network administrator has been tasked with securing the WLAN. Which of the following cryptographic products would be used to provide the MOST secure environment for the WLAN? | show 🗑
|
||||
| show | DDoS
🗑
|
||||
| QUESTION NO: 36 Which of the following ciphers would be BEST used to encrypt streaming video? | show 🗑
|
||||
| show | Single factor authentication
🗑
|
||||
| show | Advanced persistent threat
🗑
|
||||
| show | It should be performed on the server side.
🗑
|
||||
| QUESTION NO: 40 A merchant acquirer has the need to store credit card numbers in a transactional database in a high performance environment. Which of the following BEST protects the credit card data? | show 🗑
|
||||
| QUESTION NO: 41 A bank has a fleet of aging payment terminals used by merchants for transactional processing. The terminals currently support single DES but require an upgrade in order to be compliant with security standards. Which of the following is | show 🗑
|
||||
| show | WAF
🗑
|
||||
| show | Protocol analyzer
🗑
|
||||
| show | Information Security Awareness
🗑
|
||||
| QUESTION NO: 45 Which of the following functions provides an output which cannot be reversed and converts data into a string of characters? | show 🗑
|
||||
| show | Stream cipher
🗑
|
||||
| show | SHA
🗑
|
||||
| show | SCP
SSH
SFTP
🗑
|
||||
| QUESTION NO: 49 Access mechanisms to data on encrypted USB hard drives must be implemented correctly otherwise: | show 🗑
|
||||
| show | Packet sniffing
🗑
|
||||
| QUESTION NO: 51 A security administrator is segregating all web-facing server traffic from the internal network and restricting it to a single interface on a firewall. Which of the following BEST describes this new network? | show 🗑
|
||||
| QUESTION NO: 52 Which of the following was based on a previous X.500 specification and allows either unencrypted authentication or encrypted authentication through the use of TLS? | show 🗑
|
||||
| QUESTION NO: 53 The Quality Assurance team is testing a new third party developed application. The Quality team does not have any experience with the application. Which of the following is the team performing? | show 🗑
|
||||
| show | TPM
🗑
|
||||
| show | RFID
🗑
|
||||
| QUESTION NO: 56 A malicious person gained access to a datacenter by ripping the proximity badge reader off the wall near the datacenter entrance. This caused the electronic locks on the datacenter door to release because the: | show 🗑
|
||||
| QUESTION NO: 57 The concept of rendering data passing between two points over an IP based network impervious to all but the most sophisticated advanced persistent threats is BEST categorized as which of the following? | show 🗑
|
||||
| show | The Remote Authentication Dial-In User Service server certificate has expired.
🗑
|
||||
| QUESTION NO: 59 Which of the following would BEST deter an attacker trying to brute force 4-digit PIN numbers to access an account at a bank teller machine? | show 🗑
|
||||
| QUESTION NO: 60 An administrator discovers that many users have used their same passwords for years even though the network requires that the passwords be changed every six weeks. Which of the following, when used together, would BEST prevent users fro | show 🗑
|
||||
| show | Password age
Password history
🗑
|
||||
| show | LDAP
🗑
|
||||
| QUESTION NO: 63 In Kerberos, the Ticket Granting Ticket (TGT) is used for which of the following? | show 🗑
|
||||
| show | PAT
🗑
|
||||
| QUESTION NO: 65 Which of the following components of an all-in-one security appliance would MOST likely be configured in order to restrict access to peer-to-peer file sharing websites? | show 🗑
|
||||
| QUESTION NO: 66 When considering a vendor-specific vulnerability in critical industrial control systems which of the following techniques supports availability? | show 🗑
|
||||
| show | Matrix of job titles with required access privileges
🗑
|
||||
| QUESTION NO: 68 The Chief Technical Officer (CTO) has been informed of a potential fraud committed by a database administrator performing several other job functions within the company. Which of the following is the BEST method to prevent such activiti | show 🗑
|
||||
| QUESTION NO: 69 Ann would like to forward some Personal Identifiable Information to her HR department by email, but she is worried about the confidentiality of the information. Which of the following will accomplish this task securely? | show 🗑
|
||||
| QUESTION NO: 70 A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario? | show 🗑
|
||||
| show | Hardware locks
🗑
|
||||
| QUESTION NO: 72 A company’s employees were victims of a spear phishing campaign impersonating the CEO. The company would now like to implement a solution to improve the overall security posture by assuring their employees that email originated from the | show 🗑
|
||||
| show | Disabling unnecessary services
🗑
|
||||
| show | Remote wiping
🗑
|
||||
| QUESTION NO: 75 Which of the following is the primary security concern when deploying a mobile device on a network? | show 🗑
|
||||
| QUESTION NO: 76 Which of the following technical controls is BEST used to define which applications a user can install and run on a company issued mobile device? | show 🗑
|
||||
| show | Patch management system
🗑
|
||||
| QUESTION NO: 78 A security administrator discovers an image file that has several plain text documents hidden in the file. Which of the following security goals is met by camouflaging data inside of other files? | show 🗑
|
||||
| show | 802.1x
🗑
|
||||
| QUESTION NO: 80 A company is preparing to decommission an offline, non-networked root certificate server. Before sending the server’s drives to be destroyed by a contracted company, the Chief Security Officer (CSO) wants to be certain that the data wil | show 🗑
|
||||
| QUESTION NO: 81 During the analysis of a PCAP file, a security analyst noticed several communications with a remote server on port 53. Which of the following protocol types is observed in this traffic? | show 🗑
|
||||
| QUESTION NO: 82 A compromised workstation utilized in a Distributed Denial of Service (DDOS) attack has been removed from the network and an image of the hard drive has been created. However, the system administrator stated that the system was left una | show 🗑
|
||||
| QUESTION NO: 83 During which of the following phases of the Incident Response process should a security administrator define and implement general defense against malware? | show 🗑
|
||||
| show | WPA-TKIP
🗑
|
||||
| QUESTION NO: 85 Joe, a user, wants to send an encrypted email to Ann. Which of the following will Ann need to use to verify that the email came from Joe and decrypt it? (Select TWO). | show 🗑
|
||||
| QUESTION NO: 86 Joe, a user, wants to send an encrypted email to Ann. Which of the following will Ann need to use to verify the validity’s of Joe’s certificate? (Select TWO). | show 🗑
|
||||
| QUESTION NO: 87 A technician wants to implement a dual factor authentication system that will enable the organization to authorize access to sensitive systems on a need-to-know basis. Which of the following should be implemented during the authorizatio | show 🗑
|
||||
| QUESTION NO: 88 A security researcher wants to reverse engineer an executable file to determine if it is malicious. The file was found on an underused server and appears to contain a zero-day exploit. Which of the following can the researcher do to det | show 🗑
|
||||
| QUESTION NO: 89 A recent spike in virus detections has been attributed to end-users visiting www.compnay.com. The business has an established relationship with an organization using the URL of www.company.com but not with the site that has been causing | show 🗑
|
||||
| QUESTION NO: 90 A company has proprietary mission critical devices connected to their network which are configured remotely by both employees and approved customers. The administrator wants to monitor device security without changing their baseline con | show 🗑
|
||||
| show | Configure the switch to allow only traffic from computers based upon their physical address.
🗑
|
||||
| show | Lack of controls in place to ensure that the devices have the latest system patches and
signature files
🗑
|
||||
| show | Place a guard at the entrance to approve access.
🗑
|
||||
| show | Configure the devices so that removable media use is disabled
🗑
|
||||
| QUESTION NO: 95 Identifying residual risk is MOST important to which of the following concepts? | show 🗑
|
||||
| QUESTION NO: 96 The information security technician wants to ensure security controls are deployed and functioning as intended to be able to maintain an appropriate security posture. Which of the following security techniques is MOST appropriate to do | show 🗑
|
||||
| QUESTION NO: 97 A small company can only afford to buy an all-in-one wireless router/switch. The company has 3 wireless BYOD users and 2 web servers without wireless access. Which of the following should the company configure to protect the servers fro | show 🗑
|
||||
| QUESTION NO: 98 Users can authenticate to a company's web applications using their credentials from a popular social media site. Which of the following poses the greatest risk with this integration? | show 🗑
|
||||
| QUESTION NO: 99 A security team has established a security awareness program. Which of the following would BEST prove the success of the program? | show 🗑
|
||||
| show | SSH
PGP/GPG
🗑
|
Review the information in the table. When you are ready to quiz yourself you can hide individual columns or the entire table. Then you can click on the empty cells to reveal the answer. Try to recall what will be displayed before clicking the empty cell.
To hide a column, click on the column name.
To hide the entire table, click on the "Hide All" button.
You may also shuffle the rows of the table by clicking on the "Shuffle" button.
Or sort by any of the columns using the down arrow next to any column heading.
If you know all the data on any row, you can temporarily remove it by tapping the trash can to the right of the row.
To hide a column, click on the column name.
To hide the entire table, click on the "Hide All" button.
You may also shuffle the rows of the table by clicking on the "Shuffle" button.
Or sort by any of the columns using the down arrow next to any column heading.
If you know all the data on any row, you can temporarily remove it by tapping the trash can to the right of the row.
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.
Normal Size Small Size show me how
Normal Size Small Size show me how
Created by:
erma8585
Popular Computers sets