D430 Fundamentals of Information Security – Review Exam
Questions with 100% Satisfaction Guarantee Answers
2025/2026
Which two principles of the CIA triad can be violated by an interruption attack? - correct
answer Integrity and availability
Some standards are not mandated by law but are managed and enforced by the
industry, often via a council or committee. Which of the options below is an example of
this industry compliance? - correct answer PCI DSS
A badge or token is considered what type of authentication? - correct answer
Something you have
Controls that protect the systems, networks, and environments that process, transmit,
and store our data are called? - correct answer Logical controls
Which of the options below demonstrates all three types of physical security controls:
deterrent, detective, and preventive? - correct answer guard dog
Which two principles of the CIA triad can be violated by a fabrication attack? - correct
answer Integrity and availability
A military installation is evaluating backup solutions for its critical data. This installation
operates in a harsh environment that is subjected to heat, humidity, and magnetic fields.
Which physical media should be selected to ensure the integrity of backups is
preserved given these harsh operating conditions? - correct answer Flash Drives
Which Microsoft fuzzing tool examines source code for general good practices? -
correct answer BinScope Binary Analyzer
, Attack is similar to XSS, in a general sense. In this type of attack, the attacker places a
link, or links, on a Web page in such a way that they will be automatically executed, in
order to initiate a particular activity on another Web page or application where the user
is currently authenticated. For instance, such a link might cause the browser to add
items to our shopping cart on Amazon or transfer money from one bank account to
another. - correct answer cross-site request forgery (XSRF)
_____ protects the privacy of students and their parents. - correct answer FERPA
An organization plans to encrypt data in transit on a network.
Which aspect of data is the organization attempting to protect? - correct answer
Integrity
A file is stored in a marketing folder and is accessible only to members of the marketing
group. An attacker uses a phishing scam to gain the credentials of a user who is a
member of the marketing group, and then reads the file.
Which leg of the CIA triad is being targeted? - correct answer Confidentiality
key phrase: "reads the file"
VPN is for.. - correct answer data in motion
Authenticity - correct answer Proper attribution to the owner or creator of the data.
_____________ are based on rules, laws, policies, procedures, guidelines, and other
items that are "paper" in nature.
An example is one that requires us to change our password every 90 days. One
important concept when we discuss this type of control is the ability to enforce
compliance with them. If we do not have the authority or the ability to ensure that our
Questions with 100% Satisfaction Guarantee Answers
2025/2026
Which two principles of the CIA triad can be violated by an interruption attack? - correct
answer Integrity and availability
Some standards are not mandated by law but are managed and enforced by the
industry, often via a council or committee. Which of the options below is an example of
this industry compliance? - correct answer PCI DSS
A badge or token is considered what type of authentication? - correct answer
Something you have
Controls that protect the systems, networks, and environments that process, transmit,
and store our data are called? - correct answer Logical controls
Which of the options below demonstrates all three types of physical security controls:
deterrent, detective, and preventive? - correct answer guard dog
Which two principles of the CIA triad can be violated by a fabrication attack? - correct
answer Integrity and availability
A military installation is evaluating backup solutions for its critical data. This installation
operates in a harsh environment that is subjected to heat, humidity, and magnetic fields.
Which physical media should be selected to ensure the integrity of backups is
preserved given these harsh operating conditions? - correct answer Flash Drives
Which Microsoft fuzzing tool examines source code for general good practices? -
correct answer BinScope Binary Analyzer
, Attack is similar to XSS, in a general sense. In this type of attack, the attacker places a
link, or links, on a Web page in such a way that they will be automatically executed, in
order to initiate a particular activity on another Web page or application where the user
is currently authenticated. For instance, such a link might cause the browser to add
items to our shopping cart on Amazon or transfer money from one bank account to
another. - correct answer cross-site request forgery (XSRF)
_____ protects the privacy of students and their parents. - correct answer FERPA
An organization plans to encrypt data in transit on a network.
Which aspect of data is the organization attempting to protect? - correct answer
Integrity
A file is stored in a marketing folder and is accessible only to members of the marketing
group. An attacker uses a phishing scam to gain the credentials of a user who is a
member of the marketing group, and then reads the file.
Which leg of the CIA triad is being targeted? - correct answer Confidentiality
key phrase: "reads the file"
VPN is for.. - correct answer data in motion
Authenticity - correct answer Proper attribution to the owner or creator of the data.
_____________ are based on rules, laws, policies, procedures, guidelines, and other
items that are "paper" in nature.
An example is one that requires us to change our password every 90 days. One
important concept when we discuss this type of control is the ability to enforce
compliance with them. If we do not have the authority or the ability to ensure that our
