SECURITY + PRACTICE EXAM
QUESTIONS AND ANSWERS WITH
COMPLETE SOLUTIONS 100%
CORRECT!!!
Question 1: Under which type of cryptographic architecture falls the responsibility
of generating both the private and public key pairs directly onto the individual user?
A. Decentralized key management
B. Centralized key management
C. Revocation key management
D. Multilevel key management
Answer: ✔✔ A. Decentralized key management
Question 2: Which security standard provides cryptographic privacy for data
transmissions between web applications and clients, and was explicitly developed
as the modern successor to replace SSL?
A. Secure Sockets Layer 4
B. Point-to-Point Tunneling Protocol
C. Transport Layer Security
D. Internet Protocol Security
Answer: ✔✔ C. Transport Layer Security
3. Lynn needs access to the Accounting order-entry application but keeps getting an
error that indicates inadequate access permissions. Bob assigns Lynn's account to
the Administrator's group to overcome the error until he can work on the problem.
Which access control constraint was violated by this action?
A. Implicit denial
,B. Least privilege
C. Separation of duties
D. Account expiration -ANSWER ✔✔B
4. An authentication system relies on an RFID chip embedded in a plastic key
together with the pattern of blood vessels in the back of an authorized user's hand.
What types of authentication are being employed in this system?
A. Something you have and something you are
B. Something you do and something you know
C. Something you know and something you are
D. Somewhere you are and something you have -ANSWER ✔✔A
5. Which of the following is a commonly applied principle for fault tolerance
against accidental faults designed into critical facilities planning?
A. Firmware version control
B. Wrappers
C. Manual updates
D. Control redundancy -ANSWER ✔✔D
6. Which of the following methods can be used to locate a device in the event it is
lost or stolen?
A. GPS tracking
B. Voice encryption
, C. Remote wipe
D. Passcode policy -ANSWER ✔✔A
7. Which of the following is a security concern when implementing NoSQL
databases?
A. NoSQL databases do not provide any authentication mechanisms.
B. The NoSQL design uses server-side validation.
C. NoSQL databases lack confidentiality and integrity.
D. NoSQL databases are lacking in areas of scalability and performance. -
ANSWER ✔✔C
8. Which one of the following is a holding area between two entry points that gives
security personnel time to view a person before allowing him into the internal
building?
A. Mantrap
B. Biometric
C. Honeypot
D. Honeynet -ANSWER ✔✔A
9. Bluejacking and bluesnarfing make use of which wireless technology?
A. Wi-Fi
B. Bluetooth
C. Blu-Fi
QUESTIONS AND ANSWERS WITH
COMPLETE SOLUTIONS 100%
CORRECT!!!
Question 1: Under which type of cryptographic architecture falls the responsibility
of generating both the private and public key pairs directly onto the individual user?
A. Decentralized key management
B. Centralized key management
C. Revocation key management
D. Multilevel key management
Answer: ✔✔ A. Decentralized key management
Question 2: Which security standard provides cryptographic privacy for data
transmissions between web applications and clients, and was explicitly developed
as the modern successor to replace SSL?
A. Secure Sockets Layer 4
B. Point-to-Point Tunneling Protocol
C. Transport Layer Security
D. Internet Protocol Security
Answer: ✔✔ C. Transport Layer Security
3. Lynn needs access to the Accounting order-entry application but keeps getting an
error that indicates inadequate access permissions. Bob assigns Lynn's account to
the Administrator's group to overcome the error until he can work on the problem.
Which access control constraint was violated by this action?
A. Implicit denial
,B. Least privilege
C. Separation of duties
D. Account expiration -ANSWER ✔✔B
4. An authentication system relies on an RFID chip embedded in a plastic key
together with the pattern of blood vessels in the back of an authorized user's hand.
What types of authentication are being employed in this system?
A. Something you have and something you are
B. Something you do and something you know
C. Something you know and something you are
D. Somewhere you are and something you have -ANSWER ✔✔A
5. Which of the following is a commonly applied principle for fault tolerance
against accidental faults designed into critical facilities planning?
A. Firmware version control
B. Wrappers
C. Manual updates
D. Control redundancy -ANSWER ✔✔D
6. Which of the following methods can be used to locate a device in the event it is
lost or stolen?
A. GPS tracking
B. Voice encryption
, C. Remote wipe
D. Passcode policy -ANSWER ✔✔A
7. Which of the following is a security concern when implementing NoSQL
databases?
A. NoSQL databases do not provide any authentication mechanisms.
B. The NoSQL design uses server-side validation.
C. NoSQL databases lack confidentiality and integrity.
D. NoSQL databases are lacking in areas of scalability and performance. -
ANSWER ✔✔C
8. Which one of the following is a holding area between two entry points that gives
security personnel time to view a person before allowing him into the internal
building?
A. Mantrap
B. Biometric
C. Honeypot
D. Honeynet -ANSWER ✔✔A
9. Bluejacking and bluesnarfing make use of which wireless technology?
A. Wi-Fi
B. Bluetooth
C. Blu-Fi
