SET 4 SSCP practice WGU
C845 QUESTIONS AND
VERIFIED CORRECT
ANSWERS GRADED A+
LATEST 100% GUARANTEED
PASS
What is the act of obtaining information of a higher sensitivity by combining information from
lower levels of sensitivity?
A. Polyinstantiation
B. Inference
C. Aggregation
D. Data mining - CORRECT ANSWER-C. Aggregation
Which expert system operating mode allows determining if a given hypothesis is valid?
A. Blackboard
B. Lateral chaining
C. Forward chaining
D. Backward chaining - CORRECT ANSWER-D. backward chaining
Why does compiled code pose more of a security risk than interpreted code?
A. Because malicious code can be embedded in compiled code and be difficult to detect.
B. If the executed compiled code fails, there is a chance it will fail insecurely.
C. Because compilers are not reliable.
,D. There is no risk difference between interpreted code and compiled code. - CORRECT
ANSWER-A. Because malicious code can be embedded in compiled code and be difficult to
detect.
Which software development model is actually a meta-model that incorporates a number of the
software development models?
A. The Waterfall model
B. The modified Waterfall model
C. The Spiral model
D. The Critical Path Model (CPM) - CORRECT ANSWER-C. the spiral model
Which of the following is used in database information security to hide information?
A. Inheritance
B. Polyinstantiation
C. Polymorphism
D. Delegation - CORRECT ANSWER-B. polyinstantiation
Which of the following computer design approaches is based on the fact that in earlier
technologies, the instruction fetch was the longest part of the cycle?
A. Pipelining
B. Reduced Instruction Set Computers (RISC)
C. Complex Instruction Set Computers (CISC)
D. Scalar processors - CORRECT ANSWER-C. complex instruction set computers CISC
What is used to protect programs from all unauthorized modification or executional
interference?
A. A protection domain
B. A security perimeter
, C. Security labels
D. Abstraction - CORRECT ANSWER-A. a protection domain
What is called a system that is capable of detecting that a fault has occurred and has the ability
to correct the fault or operate around it?
A. A fail safe system
B. A fail soft system
C. A fault-tolerant system
D. A failover system - CORRECT ANSWER-C. a fault tolerant system
What is defined as the hardware, firmware and software elements of a trusted computing base
that implement the reference monitor concept?
A. The reference monitor
B. Protection rings
C. A security kernel
D. A protection domain - CORRECT ANSWER-C. a security kernal
Which of the following rules is least likely to support the concept of least privilege?
A. The number of administrative accounts should be kept to a minimum.
B. Administrators should use regular accounts when performing routine operations like reading
mail.
C. Permissions on tools that are likely to be used by hackers should be as restrictive as possible.
D. Only data to and from critical systems and applications should be allowed through the
firewall. - CORRECT ANSWER-D. Only data to and from critical systems and applications should
be allowed through the firewall.
Which of the following is an unintended communication path that is NOT protected by the
system's normal security mechanisms?
C845 QUESTIONS AND
VERIFIED CORRECT
ANSWERS GRADED A+
LATEST 100% GUARANTEED
PASS
What is the act of obtaining information of a higher sensitivity by combining information from
lower levels of sensitivity?
A. Polyinstantiation
B. Inference
C. Aggregation
D. Data mining - CORRECT ANSWER-C. Aggregation
Which expert system operating mode allows determining if a given hypothesis is valid?
A. Blackboard
B. Lateral chaining
C. Forward chaining
D. Backward chaining - CORRECT ANSWER-D. backward chaining
Why does compiled code pose more of a security risk than interpreted code?
A. Because malicious code can be embedded in compiled code and be difficult to detect.
B. If the executed compiled code fails, there is a chance it will fail insecurely.
C. Because compilers are not reliable.
,D. There is no risk difference between interpreted code and compiled code. - CORRECT
ANSWER-A. Because malicious code can be embedded in compiled code and be difficult to
detect.
Which software development model is actually a meta-model that incorporates a number of the
software development models?
A. The Waterfall model
B. The modified Waterfall model
C. The Spiral model
D. The Critical Path Model (CPM) - CORRECT ANSWER-C. the spiral model
Which of the following is used in database information security to hide information?
A. Inheritance
B. Polyinstantiation
C. Polymorphism
D. Delegation - CORRECT ANSWER-B. polyinstantiation
Which of the following computer design approaches is based on the fact that in earlier
technologies, the instruction fetch was the longest part of the cycle?
A. Pipelining
B. Reduced Instruction Set Computers (RISC)
C. Complex Instruction Set Computers (CISC)
D. Scalar processors - CORRECT ANSWER-C. complex instruction set computers CISC
What is used to protect programs from all unauthorized modification or executional
interference?
A. A protection domain
B. A security perimeter
, C. Security labels
D. Abstraction - CORRECT ANSWER-A. a protection domain
What is called a system that is capable of detecting that a fault has occurred and has the ability
to correct the fault or operate around it?
A. A fail safe system
B. A fail soft system
C. A fault-tolerant system
D. A failover system - CORRECT ANSWER-C. a fault tolerant system
What is defined as the hardware, firmware and software elements of a trusted computing base
that implement the reference monitor concept?
A. The reference monitor
B. Protection rings
C. A security kernel
D. A protection domain - CORRECT ANSWER-C. a security kernal
Which of the following rules is least likely to support the concept of least privilege?
A. The number of administrative accounts should be kept to a minimum.
B. Administrators should use regular accounts when performing routine operations like reading
mail.
C. Permissions on tools that are likely to be used by hackers should be as restrictive as possible.
D. Only data to and from critical systems and applications should be allowed through the
firewall. - CORRECT ANSWER-D. Only data to and from critical systems and applications should
be allowed through the firewall.
Which of the following is an unintended communication path that is NOT protected by the
system's normal security mechanisms?
