All About 100% Correct CISSP-ISSAP Test

NEW QUESTION 1
Which of the following authentication protocols sends a user certificate inside an encrypted tunnel?

• A. PEAP
• B. EAP-TLS
• C. WEP
• D. EAP-FAST

Answer: B

NEW QUESTION 2
Which of the following types of ciphers are included in the historical ciphers? Each correct answer represents a complete solution. Choose two.

• A. Block ciphers
• B. Transposition ciphers
• C. Stream ciphers
• D. Substitution ciphers

Answer: BD

NEW QUESTION 3
You are responsible for security at a defense contracting firm. You are evaluating various possible encryption algorithms to use. One of the algorithms you are examining is not integer based, uses shorter keys, and is public key based. What type of algorithm is this?

• A. Symmetric
• B. None - all encryptions are integer base
• C. Elliptic Curve
• D. RSA

Answer: C

NEW QUESTION 4
You work as an Incident handler in Mariotrixt.Inc. You have followed the Incident handling process to handle the events and incidents. You identify Denial of Service attack (DOS) from a network linked to your internal enterprise network. Which of the following phases of the Incident handling process should you follow next to handle this incident?

• A. Containment
• B. Preparation
• C. Recovery
• D. Identification

Answer: A

NEW QUESTION 5
Mark works as a Network Administrator for NetTech Inc. He wants users to access only those resources that are required for them. Which of the following access control models will he use?

• A. Policy Access Control
• B. Mandatory Access Control
• C. Discretionary Access Control
• D. Role-Based Access Control

Answer: D

NEW QUESTION 6
Fill in the blank with the appropriate security device. ____ is a device that contains a physical mechanism or electronic sensor that quantifies motion that can be either integrated with or connected to other devices that alert the user of the presence of a moving object within the field of view.

• A. Motion detector

Answer: A

NEW QUESTION 7
Access control systems enable an authority to control access to areas and resources in a given physical facility or computer-based information system. Which of the following services provided by access control systems is used to determine what a subject can do?

• A. Authentication
• B. Authorization
• C. Accountability
• D. Identification

Answer: B

NEW QUESTION 8
In which of the following network topologies does the data travel around a loop in a single direction and pass through each device?

• A. Ring topology
• B. Tree topology
• C. Star topology
• D. Mesh topology

Answer: A

NEW QUESTION 9
Which of the following are the countermeasures against a man-in-the-middle attack? Each correct answer represents a complete solution. Choose all that apply.

• A. Using public key infrastructure authenticatio
• B. Using basic authenticatio
• C. Using Secret keys for authenticatio
• D. Using Off-channel verificatio

Answer: ACD

NEW QUESTION 10
Which of the following is a correct sequence of different layers of Open System Interconnection (OSI) model?

• A. Physical layer, data link layer, network layer, transport layer, presentation layer, session layer, and application layer
• B. Physical layer, network layer, transport layer, data link layer, session layer, presentation layer, and application layer
• C. application layer, presentation layer, network layer, transport layer, session layer, data link layer, and physical layer
• D. Physical layer, data link layer, network layer, transport layer, session layer, presentation layer, and application layer

Answer: D

NEW QUESTION 11
Which of the following terms refers to a mechanism which proves that the sender really sent a particular message?

• A. Integrity
• B. Confidentiality
• C. Authentication
• D. Non-repudiation

Answer: D

NEW QUESTION 12
Which of the following are used to suppress paper or wood fires? Each correct answer represents a complete solution. Choose two.

• A. Soda acid
• B. Kerosene
• C. Water
• D. CO2

Answer: AC

NEW QUESTION 13
Which of the following are natural environmental threats that an organization faces? Each correct answer represents a complete solution. Choose two.

• A. Strikes
• B. Floods
• C. Accidents
• D. Storms

Answer: BD

NEW QUESTION 14
The IPSec protocol is configured in an organization's network in order to maintain a complete infrastructure for secured network communications. IPSec uses four components for this. Which of the following components reduces the size of data transmitted over congested network connections and increases the speed of such networks without losing data?

• A. AH
• B. ESP
• C. IPcomp
• D. IKE

Answer: C

NEW QUESTION 15
Which of the following disaster recovery tests includes the operations that shut down at the primary site, and are shifted to the recovery site according to the disaster recovery plan?

• A. Structured walk-through test
• B. Simulation test
• C. Full-interruption test
• D. Parallel test

Answer: C

NEW QUESTION 16
You work as a Network Administrator for NetTech Inc. When you enter http://66.111.64.227 in the browser's address bar, you are able to access the site. But, you are unable to access the site when you enter http://www.company.com. What is the most likely cause?

• A. The site's Web server is offlin
• B. The site's Web server has heavy traffi
• C. WINS server has no NetBIOS name entry for the serve
• D. DNS entry is not available for the host nam

Answer: D

NEW QUESTION 17
Which of the following electrical events shows a sudden drop of power source that can cause a wide variety of problems on a PC or a network?

• A. Blackout
• B. Power spike
• C. Power sag
• D. Power surge

Answer: A

NEW QUESTION 18
Which of the following protocols provides connectionless integrity and data origin authentication of IP packets?

• A. ESP
• B. AH
• C. IKE
• D. ISAKMP

Answer: B

NEW QUESTION 19
The service-oriented modeling framework (SOMF) provides a common modeling notation to address alignment between business and IT organizations. Which of the following principles does the SOMF concentrate on? Each correct answer represents a part of the solution. Choose all that apply.

• A. Disaster recovery planning
• B. SOA value proposition
• C. Software assets reuse
• D. Architectural components abstraction
• E. Business traceability

Answer: BCDE

NEW QUESTION 20
The network you administer allows owners of objects to manage the access to those objects via access control lists. This is an example of what type of access control?

• A. RBAC
• B. MAC
• C. CIA
• D. DAC

Answer: D

NEW QUESTION 21
You are the Network Administrator for a college. You watch a large number of people (some not even students) going in and out of areas with campus computers (libraries, computer labs, etc.). You have had a problem with laptops being stolen. What is the most cost effective method to prevent this?

• A. Smart card access to all areas with computer
• B. Use laptop lock
• C. Video surveillance on all areas with computer
• D. Appoint a security guar

Answer: B

NEW QUESTION 22
Which of the following can be configured so that when an alarm is activated, all doors lock and the suspect or intruder is caught between the doors in the dead-space?

• A. Man trap
• B. Biometric device
• C. Host Intrusion Detection System (HIDS)
• D. Network Intrusion Detection System (NIDS)

Answer: A

NEW QUESTION 23
You work as a Network Administrator for NetTech Inc. You want to have secure communication on the company's intranet. You decide to use public key and private key pairs. What will you implement to accomplish this?

• A. Microsoft Internet Information Server (IIS)
• B. VPN
• C. FTP server
• D. Certificate server

Answer: D

NEW QUESTION 24
A digital signature is a type of public key cryptography. Which of the following statements are true about digital signatures? Each correct answer represents a complete solution. Choose all that apply.

• A. In order to digitally sign an electronic record, a person must use his/her public ke
• B. In order to verify a digital signature, the signer's private key must be use
• C. In order to digitally sign an electronic record, a person must use his/her private ke
• D. In order to verify a digital signature, the signer's public key must be use

Answer: CD

NEW QUESTION 25
You work as a Security Manager for Tech Perfect Inc. The management tells you to implement a hashing method in the organization that can resist forgery and is not open to the man-in-the- middle attack. Which of the following methods will you use to accomplish the task?

• A. MD
• B. NTLM
• C. MAC
• D. SHA

Answer: C

NEW QUESTION 26
You work as a CSO (Chief Security Officer) for Tech Perfect Inc. You have a disaster scenario and you want to discuss it with your team members for getting appropriate responses of the disaster. In which of the following disaster recovery tests can this task be performed?

• A. Full-interruption test
• B. Parallel test
• C. Simulation test
• D. Structured walk-through test

Answer: C

NEW QUESTION 27
You are the Security Consultant advising a company on security methods. This is a highly secure location that deals with sensitive national defense related data. They are very concerned about physical security as they had a breach last month. In that breach an individual had simply grabbed a laptop and ran out of the building. Which one of the following would have been most effective in preventing this?

• A. Not using laptop
• B. Keeping all doors locked with a guar
• C. Using a man-tra
• D. A sign in lo

Answer: C

NEW QUESTION 28
Kerberos is a computer network authentication protocol that allows individuals communicating over a non-secure network to prove their identity to one another in a secure manner. Which of the following statements are true about the Kerberos authentication scheme? Each correct answer represents a complete solution. Choose all that apply.

• A. Kerberos requires continuous availability of a central serve
• B. Dictionary and brute force attacks on the initial TGS response to a client may reveal the subject's password
• C. Kerberos builds on Asymmetric key cryptography and requires a trusted third part
• D. Kerberos requires the clocks of the involved hosts to be synchronize

Answer: ABD

NEW QUESTION 29
......