CompTIA Security+ Certification Exam
Questions With Correct Answers (Verified
Answers) Plus Rationales 2026 Q&A | Instant
Download Pdf
Question 1
Which security principle ensures that users are granted only the
minimum level of access necessary to perform their job functions?
A. Defense in depth
B. Separation of duties
C. Least privilege
D. Job rotation
Correct Answer: C
The principle of least privilege limits user access rights to only what is
required, reducing the attack surface and potential damage from
compromised accounts.
Question 2
Which type of malware disguises itself as legitimate software but
performs malicious actions once installed?
A. Worm
B. Trojan
C. Rootkit
D. Spyware
,Correct Answer: B
A Trojan appears legitimate to trick users into installing it, after which it
executes malicious activities without the user’s knowledge.
Question 3
What is the PRIMARY purpose of a firewall?
A. Encrypt network traffic
B. Detect intrusions
C. Filter network traffic based on rules
D. Authenticate users
Correct Answer: C
A firewall enforces security policies by allowing or blocking network
traffic based on predefined rules such as IP addresses, ports, and
protocols.
Question 4
Which encryption type uses the same key for both encryption and
decryption?
A. Asymmetric encryption
B. Hashing
C. Symmetric encryption
D. Tokenization
Correct Answer: C
Symmetric encryption relies on a shared secret key, making it fast but
requiring secure key distribution.
,Question 5
Which authentication factor is represented by a fingerprint scan?
A. Something you know
B. Something you have
C. Something you are
D. Somewhere you are
Correct Answer: C
Biometric identifiers like fingerprints fall under “something you are,”
based on unique physical characteristics.
Question 6
Which attack involves sending fraudulent emails to trick users into
revealing sensitive information?
A. Pharming
B. Phishing
C. Tailgating
D. Spoofing
Correct Answer: B
Phishing relies on social engineering techniques to deceive users into
providing credentials or personal data.
Question 7
Which protocol provides secure remote administrative access to a
system?
A. Telnet
B. FTP
, C. SSH
D. SNMP
Correct Answer: C
SSH encrypts sessions, making it a secure alternative to Telnet for
remote administration.
Question 8
What does CIA represent in the CIA triad?
A. Control, Integrity, Authorization
B. Confidentiality, Integrity, Availability
C. Compliance, Inspection, Auditing
D. Confidentiality, Identification, Authentication
Correct Answer: B
The CIA triad is the foundational model of information security,
balancing confidentiality, integrity, and availability.
Question 9
Which technology allows multiple virtual machines to run on a single
physical host?
A. Containerization
B. Virtualization
C. Clustering
D. Load balancing
Correct Answer: B
Virtualization uses a hypervisor to run multiple isolated operating
systems on one physical machine.
Questions With Correct Answers (Verified
Answers) Plus Rationales 2026 Q&A | Instant
Download Pdf
Question 1
Which security principle ensures that users are granted only the
minimum level of access necessary to perform their job functions?
A. Defense in depth
B. Separation of duties
C. Least privilege
D. Job rotation
Correct Answer: C
The principle of least privilege limits user access rights to only what is
required, reducing the attack surface and potential damage from
compromised accounts.
Question 2
Which type of malware disguises itself as legitimate software but
performs malicious actions once installed?
A. Worm
B. Trojan
C. Rootkit
D. Spyware
,Correct Answer: B
A Trojan appears legitimate to trick users into installing it, after which it
executes malicious activities without the user’s knowledge.
Question 3
What is the PRIMARY purpose of a firewall?
A. Encrypt network traffic
B. Detect intrusions
C. Filter network traffic based on rules
D. Authenticate users
Correct Answer: C
A firewall enforces security policies by allowing or blocking network
traffic based on predefined rules such as IP addresses, ports, and
protocols.
Question 4
Which encryption type uses the same key for both encryption and
decryption?
A. Asymmetric encryption
B. Hashing
C. Symmetric encryption
D. Tokenization
Correct Answer: C
Symmetric encryption relies on a shared secret key, making it fast but
requiring secure key distribution.
,Question 5
Which authentication factor is represented by a fingerprint scan?
A. Something you know
B. Something you have
C. Something you are
D. Somewhere you are
Correct Answer: C
Biometric identifiers like fingerprints fall under “something you are,”
based on unique physical characteristics.
Question 6
Which attack involves sending fraudulent emails to trick users into
revealing sensitive information?
A. Pharming
B. Phishing
C. Tailgating
D. Spoofing
Correct Answer: B
Phishing relies on social engineering techniques to deceive users into
providing credentials or personal data.
Question 7
Which protocol provides secure remote administrative access to a
system?
A. Telnet
B. FTP
, C. SSH
D. SNMP
Correct Answer: C
SSH encrypts sessions, making it a secure alternative to Telnet for
remote administration.
Question 8
What does CIA represent in the CIA triad?
A. Control, Integrity, Authorization
B. Confidentiality, Integrity, Availability
C. Compliance, Inspection, Auditing
D. Confidentiality, Identification, Authentication
Correct Answer: B
The CIA triad is the foundational model of information security,
balancing confidentiality, integrity, and availability.
Question 9
Which technology allows multiple virtual machines to run on a single
physical host?
A. Containerization
B. Virtualization
C. Clustering
D. Load balancing
Correct Answer: B
Virtualization uses a hypervisor to run multiple isolated operating
systems on one physical machine.
