Exam Computer Science & Information Technology - Computer Security

1

A company wants to ensure that the validity of publicly trusted certificates used by its web server can be determined even during an extended internet outage.Which of the following should be implemented?

2

A security administrator is developing training for corporate users on basic security principles for personal email accounts.Which of the following should be mentioned as the MOST secure way for password recovery?

3

A company wants to host a publicly available server that performs the following functions:-> Evaluates MX record lookup-> Can perform authenticated requests for A and AAA records-> Uses RRSIGWhich of the following should the company use to fulfill the above requirements?

4

A security administrator receives notice that a third-party certificate authority has been compromised, and new certificates will need to be issued.Which of the following should the administrator submit to receive a new certificate?

5

Which of the following would verify that a threat does exist and security controls can easily be bypassed without actively testing an application?

6

Which of the following technologies would be MOST appropriate to utilize when testing a new software patch before a company-wide deployment?

7

A system administrator needs to implement 802.1x whereby when a user logs into the network, the authentication server communicates to the network switch and assigns the user to the proper VLAN.Which of the following protocols should be used?

8

An administrator discovers the following log entry on a server:Nov 12 2013 00:23:45 httpd[2342]: GET/app2/prod/proc/process.php?input=change;cd%20../../../etc;cat%20shadowWhich of the following attacks is being attempted?

9

A security team wants to establish an Incident Response plan. The team has never experienced an incident.Which of the following would BEST help them establish plans and procedures?

10

Anne, the Chief Executive Officer (CEO), has reported that she is getting multiple telephone calls from someone claiming to be from the helpdesk. The caller is asking to verify her network authentication credentials because her computer is broadcasting across the network.This is MOST likely which of the following types of attacks?

11

New magnetic locks were ordered for an entire building. In accordance with company policy, employee safety is the top priority.In case of a fire where electricity is cut, which of the following should be taken into consideration when installing the new locks?

12

Phishing emails frequently take advantage of high-profile catastrophes reported in the news.Which of the following principles BEST describes the weakness being exploited?

13

A network operations manager has added a second row of server racks in the datacenter. These racks face the opposite direction of the first row of racks.Which of the following is the reason the manager installed the racks this way?

14

A system administrator is configuring a site-to-site VPN tunnel.Which of the following should be configured on the VPN concentrator during the IKE phase?

15

A security guard has informed the Chief Information Security Officer that a person with a tablet has been walking around the building. The guard also noticed strange white markings in different areas of the parking lot.The person is attempting which of the following types of attacks?

16

An auditor has identified an access control system that can incorrectly accept an access attempt from an unauthorized user. Which of the following authentication systems has the auditor reviewed?

17

The Chief Technology Officer (CTO) of a company, Ann, is putting together a hardware budget for the next 10 years. She is asking for the average lifespan of each hardware device so that she is able to calculate when she will have to replace each device.Which of the following categories BEST describes what she is looking for?

18

Joe, the security administrator, sees this in a vulnerability scan report:"The server 10.1.2.232 is running Apache 2.2.20 which may be vulnerable to a mod_cgi exploit.â€Joe verifies that the mod_cgi module is not enabled on 10.1.2.232. This message is an example of:

19

An employee uses RDP to connect back to the office network.If RDP is misconfigured, which of the following security exposures would this lead to?

20

Which of the following is the LEAST secure hashing algorithm?

21

Joe is exchanging encrypted email with another party. Joe encrypts the initial email with a key. When Joe receives a response, he is unable to decrypt the response with the same key he used initially.Which of the following would explain the situation?

22

Recently several employees were victims of a phishing email that appeared to originate from the company president. The email claimed the employees would be disciplined if they did not click on a malicious link in the message.Which of the following principles of social engineering made this attack successful?

23

A software development company needs to share information between two remote servers, using encryption to protect it. A programmer suggests developing a new encryption protocol, arguing that using an unknown protocol with secure, existing cryptographic algorithm libraries will provide strong encryption without being susceptible to attacks on other known protocols.Which of the following summarizes the BEST response to the programmer's proposal?

24

A security technician would like to obscure sensitive data within a file so that it can be transferred without causing suspicion.Which of the following technologies would BEST be suited to accomplish this?

25

An organization relies heavily on an application that has a high frequency of security updates. At present, the security team only updates the application on the first Monday of each month, even though the security updates are released as often as twice a week.Which of the following would be the BEST method of updating this application?

26

A Security Officer on a military base needs to encrypt several smart phones that will be going into the field.Which of the following encryption solutions should be deployed in this situation?

27

Which of the following is the GREATEST risk to a company by allowing employees to physically bring their personal smartphones to work?

28

A network administrator is attempting to troubleshoot an issue regarding certificates on a secure website. During the troubleshooting process, the network administrator notices that the web gateway proxy on the local network has signed all of the certificates on the local machine.Which of the following describes the type of attack the proxy has been legitimately programmed to perform?

29

A security administrator is tasked with conducting an assessment made to establish the baseline security posture of the corporate IT infrastructure. The assessment must report actual flaws and weaknesses in the infrastructure. Due to the expense of hiring outside consultants, the testing must be performed using in-house or cheaply available resource. There cannot be a possibility of any requirement being damaged in the test.Which of the following has the administrator been tasked to perform?

30

An attacker wearing a building maintenance uniform approached a company's receptionist asking for access to a secure area. The receptionist asks for identification, a building access badge and checks the company's list approved maintenance personnel prior to granting physical access to the secure are.The controls used by the receptionist are in place to prevent which of the following types of attacks?

31

A security analyst has been asked to perform a review of an organization's software development lifecycle. The analyst reports that the lifecycle does not contain a phase in which team members evaluate and provide critical feedback of another developer's code.Which of the following assessment techniques is BEST described in the analyst's report?

32

A security engineer is faced with competing requirements from the networking group and database administrators. The database administrators would like ten application servers on the same subnet for ease of administration, whereas the networking group would like to segment all applications from one another.Which of the following should the security administrator do to rectify this issue?

33

A member of a digital forensics team, Joe arrives at a crime scene and is preparing to collect system data. Before powering the system off, Joe knows that he must collect the most volatile date first.Which of the following is the correct order in which Joe should collect the data?

34

An organization has hired a penetration tester to test the security of its ten web servers. The penetration tester is able to gain root/administrative access in several servers by exploiting vulnerabilities associated with the implementation of SMTP, POP, DNS, FTP, Telnet, and IMAP.Which of the following recommendations should the penetration tester provide to the organization to better protect their web servers in the future?

35

A mobile device user is concerned about geographic positioning information being included in messages sent between users on a popular social network platform.The user turns off the functionality in the application, but wants to ensure the application cannot re-enable the setting without the knowledge of the user.Which of the following mobile device capabilities should the user disable to achieve the stated goal?

36

A user of the wireless network is unable to gain access to the network. The symptoms are:1.) Unable to connect to both internal and Internet resources2.) The wireless icon shows connectivity but has no network accessThe wireless network is WPA2 Enterprise and users must be a member of the wireless security group to authenticate.Which of the following is the MOST likely cause of the connectivity issues?

37

While reviewing the monthly internet usage it is noted that there is a large spike in traffic classified as "unknown" and does not appear to be within the bounds of the organizations Acceptable Use Policy.Which of the following tool or technology would work BEST for obtaining more information on this traffic?

38

A network administrator wants to ensure that users do not connect any unauthorized devices to the company network. Each desk needs to connect a VoIP phone and computer.Which of the following is the BEST way to accomplish this?

39

The Chief Security Officer (CISO) at a multinational banking corporation is reviewing a plan to upgrade the entire corporate IT infrastructure. The architecture consists of a centralized cloud environment hosting the majority of data, small server clusters at each corporate location to handle the majority of customer transaction processing, ATMs, and a new mobile banking application accessible from smartphones, tablets, and the Internet via HTTP. The corporation does business having varying data retention and privacy laws.Which of the following technical modifications to the architecture and corresponding security controls should be implemented to provide the MOST complete protection of data?

in Computer Science & Information Technology

A. Revoke exiting root certificates, re-issue new customer certificates, and ensure all transactions are digitally signed to minimize fraud, implement encryption for data in-transit between data centers
B. Ensure all data is encryption according to the most stringent regulatory guidance applicable, implement encryption for data in-transit between data centers, increase data availability by replicating all data, transaction data, logs between each corporate location
C. Store customer data based on national borders, ensure end-to end encryption between ATMs, end users, and servers, test redundancy and COOP plans to ensure data is not inadvertently shifted from one legal jurisdiction to another with more stringent regulations
D. Install redundant servers to handle corporate customer processing, encrypt all customer data to ease the transfer from one country to another, implement end- to-end encryption between mobile applications and the cloud.

40

A technician has installed new vulnerability scanner software on a server that is joined to the company domain. The vulnerability scanner is able to provide visibility over the patch posture of all company's clients.Which of the following is being used?

41

A portable data storage device has been determined to have malicious firmware.Which of the following is the BEST course of action to ensure data confidentiality?

Find your answers, solutions and more...

We made it much easier for you to find exactly what you're looking for on Sciemce. Enjoy our search engine "Clutch."

Save a GPA. Donate your notes with us.

Exam Computer Science & Information Technology - Computer Security

Recent Packs