QUESTION 181 Which of the following can use RC4 for encryption? (Select TWO). A.    CHAP B.    SSL C.    WEP D.    AES E.    3DES Answer: BC

QUESTION 171 In which of the following scenarios is PKI LEAST hardened? A.    The CRL is posted to a publicly accessible location. B.    The recorded time offsets are developed with symmetric keys. C.    A malicious CA certificate is loaded on all the clients. D.    All public keys are accessed by an unauthorized user. Answer: C

QUESTION 161 Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server? A.    SSLv2 B.    SSHv1 C.    RSA D.    TLS Answer: D

QUESTION 151 Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware? A.    Logic bomb B.    Worm C.    Trojan D.    Adware Answer: C

QUESTION 141 Which of the following BEST describes a protective countermeasure for SQL injection? A.    Eliminating cross-site scripting vulnerabilities B.    Installing an IDS to monitor network traffic C.    Validating user input in web applications D.    Placing a firewall between the Internet and database servers Answer: C

QUESTION 131 Which of the following solutions provides the most flexibility when testing new security controls prior to implementation? A.    Trusted OS B.    Host software baselining C.    OS hardening D.    Virtualization Answer: D

QUESTION 121 Which of the following protocols is used to validate whether trust is in place and accurate by returning responses of either "good", "unknown", or "revoked"? A.    CRL B.    PKI C.    OCSP D.    RA Answer: C

QUESTION 111 Human Resources suspects an employee is accessing the employee salary database. The administrator is asked to find out who it is. In order to complete this task, which of the following is a security control that should be in place? A.    Shared accounts should be prohibited. B.    Account lockout should be enabled C.    […]

QUESTION 101 Ann, a security administrator, has concerns regarding her company’s wireless network. The network is open and available for visiting prospective clients in the conference room, but she notices that many more devices are connecting to the network than should be. Which of the following would BEST alleviate Ann’s concerns with minimum disturbance of […]

QUESTION 91 The security team would like to gather intelligence about the types of attacks being launched against the organization. Which of the following would provide them with the MOST information? A.    Implement a honeynet B.    Perform a penetration test C.    Examine firewall logs D.    Deploy an IDS Answer: A

QUESTION 81 Users are encouraged to click on a link in an email to obtain exclusive access to the newest version of a popular Smartphone. This is an example of. A.    scarcity. B.    familiarity. C.    intimidation. D.    trust. Answer: A

QUESTION 71 A computer is suspected of being compromised by malware. The security analyst examines the computer and finds that a service called Telnet is running and connecting to an external website over port 443. This Telnet service was found by comparing the system’s services to the list of standard services on the company’s system […]

QUESTION 61 An administrator wants to establish a WiFi network using a high gain directional antenna with a narrow radiation pattern to connect two buildings separated by a very long distance. Which of the following antennas would be BEST for this situation? A.    Dipole B.    Yagi C.    Sector D.    Omni Answer: B

QUESTION 51 A security administrator is reviewing the company’s continuity plan. The plan specifies an RTO of six hours and RPO of two days. Which of the following is the plan describing? A.    Systems should be restored within six hours and no later than two days after the incident. B.    Systems should be restored within […]

QUESTION 41 A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario? A.    Content filtering B.    IDS C.    Audit logs D.    DLP Answer: D

QUESTION 31 An administrator discovers that many users have used their same passwords for years even though the network requires that the passwords be changed every six weeks. Which of the following, when used together, would BEST prevent users from reusing their existing password? (Select TWO). A.    Length of password B.    Password history C.    Minimum […]

QUESTION 21 Which of the following is true about input validation in a client-server architecture, when data integrity is critical to the organization? A.    It should be enforced on the client side only. B.    It must be protected by SSL encryption. C.    It must rely on the user’s knowledge of the application. D.    It should […]

QUESTION 1 Which of the following protocols operates at the HIGHEST level of the OSI model? A.    ICMP B.    IPSec C.    SCP D.    TCP Answer: C

QUESTION 1 Which of the following protocols operates at the HIGHEST level of the OSI model? A.    ICMP B.    IPSec C.    SCP D.    TCP Answer: C