• Home
  • Blogs
  • Best Quality CISSP Exam Questions ISC Test To Gain Brilliante Result! [Q150-Q173]

Best Quality CISSP Exam Questions ISC Test To Gain Brilliante Result! [Q150-Q173]

Share

Best Quality CISSP Exam Questions  ISC Test To Gain Brilliante Result!

Preparations of CISSP Exam 2021 ISC Certification Unlimited 990 Questions

NEW QUESTION 150
Which of the following algorithms is used today for encryption in PGP?

  • A. RSA
  • B. IDEA
  • C. RC5
  • D. Blowfish

Answer: B

Explanation:
The Pretty Good Privacy (PGP) email encryption system was developed by
Phil Zimmerman. For encrypting messages, it actually uses AES with up to 256-bit keys,
CAST, TripleDES, IDEA and Twofish. RSA is also used in PGP, but only for symmetric key exchange and for digital signatures, but not for encryption.
Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the
Ten Domains of Computer Security, John Wiley & Sons, 2001, Chapter 4: Cryptography
(pages 154, 169).
More info on PGP can be found on their site at
http://www.pgp.com/display.php?pageID=29.

 

NEW QUESTION 151
What attack involves actions to mimic one's identity?

  • A. Brute force
  • B. Exhaustive
  • C. Spoofing
  • D. Social engineering

Answer: C

Explanation:
Spoofing is an attack in which one person or process pretends to be a person or process that has more privileges. For example, user A can mimic behavior to make process B believe user A is user C.
In the absence of any other controls, B may be duped into giving to user A the data and privileges that were intended for user C.

 

NEW QUESTION 152
There are parallels between the trust models in Kerberos and Public Key Infrastructure (PKI). When we compare them side by side, Kerberos tickets correspond most closely to which of the following?

  • A. public keys
  • B. private-key certificates
  • C. public-key certificates
  • D. private keys

Answer: C

Explanation:
Explanation/Reference:
Explanation:
Public Key describes a system that uses certificates or the underlying public key cryptography on which the system is based.
In the traditional public key model, clients are issued credentials or "certificates" by a Certificate Authority (CA). The CA is a trusted third party. Public key certificates contain the user's name, the expiration date of the certificate etc. The most common certificate format is X.509. Public key credentials in the form of certificates and public-private key pairs can provide a strong distributed authentication system.
The Kerberos and public key trust models are very similar. A Kerberos ticket is analogous to a public key certificate (a Kerberos ticket is supplied to provide access to resources). However, Kerberos tickets usually have lifetimes measured in days or hours rather than months or years.
Incorrect Answers:
A: Kerberos tickets do not actually contain public keys. They use symmetric cryptography which uses one shared key instead of asymmetric cryptography which uses public-private key pairs.
B: Kerberos tickets do not contain private keys. They use symmetric cryptography which uses one shared key instead of asymmetric cryptography which uses public-private key pairs.
D: Private-key certificates are always kept by the authentication provider; they are never distributed to subjects that require access to resources. The public key is given to the subject to provide access to a resource in a similar way to a Kerberos ticket.
References:
Tipton, Harold F. and Micki Krause, Information Security Management Handbook, 5th Edition, Auerbach Publications, Boca Raton, 2006, p. 1438

 

NEW QUESTION 153
Which service usually runs on port 25?

  • A. File Transfer Protocol (FTP)
  • B. Domain Name Service (DNS)
  • C. Simple Mail Transfer Protocol (SMTP)
  • D. Telnet

Answer: C

Explanation:
Explanation/Reference:
Explanation:
SMTP uses port 25.
Incorrect Answers:
A: FTP uses port 21.
B: Telnet uses port 23.
D: DNS uses port 53.
References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 1289

 

NEW QUESTION 154
A company seizes a mobile device suspected of being used in committing fraud.
What would be the BEST method used by a forensic examiner to isolate the powered-on device from the network and preserve the evidence?

  • A. Turn the device off
  • B. Put the device in airplane mode
  • C. Remove the SIM card
  • D. Suspend the account with the telecommunication provider

Answer: B

 

NEW QUESTION 155
Which choice below is NOT an element of proper media control?

  • A. Accurately and promptly marking all data storage media
  • B. The safe and clean handling of the media
  • C. Assuring the accuracy of the backup data
  • D. The proper environmental storage of the media

Answer: C

Explanation:
"Assuring the accuracy of the backup data" is an example of a software
integrity control, although the other three elements of media control
listed apply to the backup tapes themselves.

 

NEW QUESTION 156
Configuration management control best refers to:

  • A. Implementing resource protection schemes for hardware control.
  • B. Ensuring that changes to the system do not unintentionally diminish security.
  • C. The concept of least control in operations.
  • D. The use of privileged-entity controls for system administrator functions.

Answer: B

Explanation:
The correct answer is "Ensuring that changes to the system do not unintentionally diminish security". Configuration Management Control (and Change Control) are processes to ensure that any changes to the system are managed properly and do not inordinately affect either the availability or security of the system.

 

NEW QUESTION 157
What is an important characteristic of Role Based Access Control (RBAC)?

  • A. Relies on rotation of duties
  • B. Simplifies the management of access rights
  • C. Requires two factor authentication
  • D. Supports Mandatory Access Control (MAC)

Answer: B

 

NEW QUESTION 158
Which choice below is NOT a generally accepted benefit of security
awareness, training, and education?

  • A. A security education program can help system administrators
    recognize unauthorized intrusion attempts.
  • B. A security awareness program can help operators understand the
    value of the information.
  • C. A security awareness and training program will help prevent
    natural disasters from occurring.
  • D. A security awareness and training program can help an organization
    reduce the number and severity of errors and omissions.

Answer: C

Explanation:
An effective computer security awareness and training program
requires proper planning, implementation, maintenance, and periodic
evaluation.
In general, a computer security awareness and training program
should encompass the following seven steps:
1 . Identify program scope, goals, and objectives.
2 Identify training staff.
3 . Identify target audiences.
4 . Motivate management and employees.
5 . Administer the program.
6 . Maintain the program.
7 . Evaluate the program.
Source: NIST Special Publication 800-14, Generally Accepted Principles
and Practices for Securing Information Technology Systems.

 

NEW QUESTION 159
Which of the following would BEST be defined as an absence or weakness of safeguard that could be exploited?

  • A. An exposure.
  • B. A threat.
  • C. A vulnerability.
  • D. A risk.

Answer: C

Explanation:
Explanation/Reference:
Explanation:
A vulnerability is defined as "the absence or weakness of a safeguard that could be exploited".
A vulnerability is a lack of a countermeasure or a weakness in a countermeasure that is in place. It can be a software, hardware, procedural, or human weakness that can be exploited. A vulnerability may be a service running on a server, unpatched applications or operating systems, an unrestricted wireless access point, an open port on a firewall, lax physical security that allows anyone to enter a server room, or unenforced password management on servers and workstations.
Incorrect Answers:
A: A threat is any potential danger that is associated with the exploitation of a vulnerability.
C: A risk is the likelihood of a threat agent exploiting a vulnerability and the corresponding business impact.
D: An exposure is an instance of being exposed to losses. A vulnerability exposes an organization to possible damages.
References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 26

 

NEW QUESTION 160
When submitting a passphrase for authentication, the passphrase is converted into ...

  • A. a new passphrase by the system.
  • B. a virtual password by the system.
  • C. a real password by the system which can be used forever.
  • D. a new passphrase by the encryption technology

Answer: B

Explanation:
Passwords can be compromised and must be protected. In the ideal case, a password should only be used once. The changing of passwords can also fall between these two extremes. Passwords can be required to change monthly, quarterly, or at other intervals, depending on the criticality of the information needing protection and the password's frequency of use. Obviously, the more times a password is used, the more chance there is of it being compromised. It is recommended to use a passphrase instead of a password. A passphrase is more resistant to attacks. The passphrase is converted into a virtual password by the system. Often time the passphrase will exceed the maximum length supported by the system and it must be trucated into a Virtual Password.
Reference(s) used for this question: http://www.itl.nist.gov/fipspubs/fip112htm and KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, 2001, John Wiley & Sons, Page 36 & 37

 

NEW QUESTION 161
Which of the following is NOT a common integrity goal?

  • A. Maintain internal and external consistency.
  • B. Prevent paths that could lead to inappropriate disclosure.
  • C. Prevent authorized users from making improper modifications.
  • D. Prevent unauthorized users from making modifications.

Answer: B

Explanation:
Inappropriate disclosure is a confidentiality, not an integrity goal.
All of the other choices above are integrity goals addressed by the Clark-Wilson integrity model.
The Clark-Wilson model is an integrity model that addresses all three integrity goals:
1. prevent unauthorized users from making modifications,
2. prevent authorized users from making improper modifications, and
3. maintain internal and external consistency through auditing.
NOTE: Biba address only the first goal of integrity above
Reference(s) used for this question:
Harris, Shon (2012-10-18). CISSP All-in-One Exam Guide, 6th Edition (p. 1384). McGraw-
Hill. Kindle Edition.

 

NEW QUESTION 162
Which of the following offers security to wireless communications?

  • A. WDP
  • B. S-WAP
  • C. WTLS
  • D. WSP

Answer: C

Explanation:
Wireless Transport Layer Security (WTLS) is a communication protocol that allows wireless devices to send and receive encrypted information over the Internet. S-
WAP is not defined. WSP (Wireless Session Protocol) and WDP (Wireless Datagram
Protocol) are part of Wireless Access Protocol (WAP).
Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the
Ten Domains of Computer Security, John Wiley & Sons, 2001, Chapter 4: Cryptography
(page 173).

 

NEW QUESTION 163
You've decided to authenticate the source who initiated a particular transfer while ensuring integrity of the data being transferred. You can do this by:

  • A. having the sender encrypt the message with his symmetric key.
  • B. having the sender encrypt the message with his private key.
  • C. having the sender encrypt the hash with his public key.
  • D. having the sender encrypt the hash with his private key.

Answer: D

Explanation:
Explanation/Reference:
A hash will ensure the integrity of the data being transferred. A private key will authenticate the source (sender). Only the sender has a copy of the private key. If the recipient is able to decrypt the hash with the public key, then the recipient will know that the hash was encrypted with the private key of the sender.
A cryptographic hash function is a hash function which is considered practically impossible to invert, that is, to recreate the input data from its hash value alone. The input data is often called the message, and the hash value is often called the message digest or simply the digest.
The ideal cryptographic hash function has four main properties:

it is easy to compute the hash value for any given message

it is infeasible to generate a message from its hash

it is infeasible to modify a message without changing the hash

it is infeasible to find two different messages with the same hash.

Incorrect Answers:
A: Having the sender encrypt the message with his private key would authenticate the sender. However, is would not ensure the integrity of the message. A hash is required to ensure the integrity of the message.
C: Having the sender encrypt the message with his symmetric key will not authenticate the sender or ensure the integrity of the message. A hash is required to ensure the integrity of the message and the hash should be encrypted with the sender's private key.
D: Having the sender encrypt the hash with his public key will not authenticate the sender. Anyone could have a copy of the sender's public key. The hash should be encrypted with the sender's private key as the sender is the only person in possession of the private key.
References:
https://en.wikipedia.org/wiki/Cryptographic_hash_function

 

NEW QUESTION 164
Which of the following alarm systems is recommended to detect intrusions through windows in a high-noise, occupied environment?

  • A. Acoustic sensor
  • B. Photoelectric sensor
  • C. Shock sensor
  • D. Motion sensor

Answer: C

 

NEW QUESTION 165
Which of the following activities BEST identifies operational problems, security misconfigurations, and malicious attacks?

  • A. Periodic log reviews
  • B. Interface testing
  • C. Policy documentation review
  • D. Authentication validation

Answer: A

 

NEW QUESTION 166
Which of the following is a potential risk when a program runs in privileged mode?

  • A. It may create unnecessary application hardening
  • B. It may serve to create unnecessary code complexity
  • C. It may not enforce job separation duties
  • D. It may allow malicious code to be inserted

Answer: D

 

NEW QUESTION 167
When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?

  • A. Report findings to the business to determine security gaps.
  • B. Approve the application that best meets security requirements.
  • C. Quantify the risk to the business for product selection.
  • D. Accept the risk on behalf of the organization.

Answer: C

Explanation:
Section: Software Development Security

 

NEW QUESTION 168
Which backup method is additive because the time and tape space required for each night's backup grows during the week as it copies the day's changed files and the previous days' changed files up to the last full backup?

  • A. The differential backup method.
  • B. The tape backup method.
  • C. The full backup method.
  • D. The incremental backup method.

Answer: A

Explanation:
Explanation/Reference:
Explanation:
The Differential Backup Method is additive because the time and tape space required for each night's backup grows during the week as it copies the day's changed files and the previous days' changed files up to the last full backup.
Archive bits let the backup software know what needs to be backed up. The differential and incremental backup types rely on the archive bit to direct them.
Incorrect Answers:
B: Full backups back up all files. Full backups are not additive.
C: Incremental backups are not additive because they reset the archive bit so the file is not backed up again next day (unless the file was changed again).
D: The tape backup method is not a method that determines whether the archive bit is reset or not; it just specifies that the files are backed up to tape.
References:
Krutz, Ronald L. and Russel Dean Vines, The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, John Wiley & Sons, New York, 2001, p. 69
http://www.brighthub.com/computing/windows-platform/articles/24531.aspx

 

NEW QUESTION 169
Why are coaxial cables called "coaxial"?

  • A. it includes two physical channels that carries the signal surrounded (after a layer of insulation) by another concentric physical channel, both running along the same axis.
  • B. it includes one physical channel that carries the signal surrounded (after a layer of insulation) by another concentric physical channel, both running along the same axis
  • C. it includes two physical channels that carries the signal surrounded (after a layer of insulation) by another two concentric physical channels, both running along the same axis.
  • D. it includes one physical channel that carries the signal surrounded (after a layer of insulation) by another concentric physical channel, both running perpendicular and along the different axis

Answer: B

Explanation:
Coaxial cable is called "coaxial" because it includes one physical channel that carries the signal surrounded (after a layer of insulation) by another concentric physical channel, both running along the same axis.
The outer channel serves as a ground. Many of these cables or pairs of coaxial tubes can be placed in a single outer sheathing and, with repeaters, can carry information for a great distance.
Source: STEINER, Kurt, Telecommunications and Network Security, Version 1, May 2002,
CISSP Open Study Group (Domain Leader: skottikus), Page 14.

 

NEW QUESTION 170
Which of the following is a security weakness in the evaluation of common criteria (CC) products?

  • A. The manufacturer can state what configuration of the product is to be evaluated.
  • B. The product can be evaluated by labs m other countries.
  • C. The Target of Evaluation's (TOE) testing environment is identical to the operating environment
  • D. The evaluations are expensive and time-consuming to perform.

Answer: A

 

NEW QUESTION 171
Complete the following sentence. A digital signature is a ____

  • A. hash value that has been encrypted with the senders Session key
  • B. it is senders signature signed and scanned in a digital format
  • C. hash value that has been encrypted with the senders private key
  • D. hash value that has been encrypted with the senders public key

Answer: C

Explanation:
A digital signature is a hash value that has been encrypted with the senders private key. The act of signing means encrypting the messages hash value with the sender private key.
The following answers are incorrect:
hash value that has been encrypted with the senders public key Encrypting with a public key provide only one service, it is confidentiality. Only the receiver using the matching private key could get access to the clear text.
hash value that has been encrypted with the senders Session key Session keys are
Symmetric keys that have a short lifespan, they are used to encrypt the data while a session is ongoing and then destroyed.
it is senders signature signed and scanned in a digital format This is only a distractor
The following reference(s) were/was used to create this question:
Harris, Shon (2012-10-18). CISSP All-in-One Exam Guide, 6th Edition (p. 829). McGraw-
Hill . Kindle Edition.

 

NEW QUESTION 172
Which of the following phases of a system development life-cycle is most concerned with maintaining proper authentication of users and processes to ensure appropriate access control decisions?

  • A. Implementation
  • B. Initiation
  • C. Operation/Maintenance
  • D. Development/acquisition

Answer: C

Explanation:
Explanation/Reference:
Explanation:
In the Operation/maintenance phase the system is used and cared for. Proper authentication of the users and processes must be developed in this phase.
Incorrect Answers:
A: In the Acquisition/development the new system is either created or purchased. The main concern of this phase is not the authentication of users and processes.
B: In the implementation phase the new system is installed into production environment. The main concern of this phase is not the authentication of users and processes.
D: In the Initiation phase the need for a new system is defined. Authentication of users and processes is not a major concern of this phase.
References:
Conrad, Eric, Seth Misenar and Joshua Feldman, CISSP Study Guide, 2nd Edition, Syngress, Waltham,
2012, p. 1087

 

NEW QUESTION 173
......

Focus on CISSP All-in-One Exam Guide For Quick Preparation: https://www.lead1pass.com/ISC/CISSP-practice-exam-dumps.html

CISSP All-in-One Exam Guide For Quick Preparation: https://drive.google.com/open?id=1Tvu2nAFKMFWtEqv3Rjio90kGQ1NRzs6_

Related Blogs

more
ISC CISSP Certification Practice Exam