File Info
| Exam | Certified Information Systems Security Professional |
| Number | CISSP |
| File Name | ISC.CISSP.PremDumps.2019-03-29.101q.vcex |
| Size | 115 KB |
| Posted | Mar 29, 2019 |
| Downloads: | 3 |
| Download | ISC.CISSP.PremDumps.2019-03-29.101q.vcex |
How to open VCEX & EXAM Files?
Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.
Coupon: MASTEREXAM
With discount: 20%
Demo Questions
Question 1
When assessing an organization’s security policy according to standards established by the International Organization for Standardization (ISO) 27001 and 27002, when can management responsibilities be defined?
- Only when assets are clearly defined
- Only when standards are defined
- Only when controls are put in place
- Only procedures are defined
Correct answer: A
Question 2
Which of the following types of technologies would be the MOST cost-effective method to provide a reactive control for protecting personnel in public areas?
- Install mantraps at the building entrances
- Enclose the personnel entry area with polycarbonate plastic
- Supply a duress alarm for personnel exposed to the public
- Hire a guard to protect the public area
Correct answer: D
Question 3
Intellectual property rights are PRIMARY concerned with which of the following?
- Owner’s ability to realize financial gain
- Owner’s ability to maintain copyright
- Right of the owner to enjoy their creation
- Right of the owner to control delivery method
Correct answer: D
Question 4
Which of the following mobile code security models relies only on trust?
- Code signing
- Class authentication
- Sandboxing
- Type safety
Correct answer: A
Explanation:
Reference: https://csrc.nist.gov/csrc/media/publications/conference-paper/1999/10/21/proceedings-of-the-22nd-nissc-1999/documents/papers/t09.pdf (11) Reference: https://csrc.nist.gov/csrc/media/publications/conference-paper/1999/10/21/proceedings-of-the-22nd-nissc-1999/documents/papers/t09.pdf (11)
Question 5
Which technique can be used to make an encryption scheme more resistant to a known plaintext attack?
- Hashing the data before encryption
- Hashing the data after encryption
- Compressing the data after encryption
- Compressing the data before encryption
Correct answer: A
Question 6
What is the second phase of Public Key Infrastructure (PKI) key/certificate life-cycle management?
- Implementation Phase
- Initialization Phase
- Cancellation Phase
- Issued Phase
Correct answer: D
Question 7
Which component of the Security Content Automation Protocol (SCAP) specification contains the data required to estimate the severity of vulnerabilities identified automated vulnerability assessments?
- Common Vulnerabilities and Exposures (CVE)
- Common Vulnerability Scoring System (CVSS)
- Asset Reporting Format (ARF)
- Open Vulnerability and Assessment Language (OVAL)
Correct answer: B
Question 8
What is the purpose of an Internet Protocol (IP) spoofing attack?
- To send excessive amounts of data to a process, making it unpredictable
- To intercept network traffic without authorization
- To disguise the destination address from a target’s IP filtering devices
- To convince a system that it is communicating with a known entity
Correct answer: D
Question 9
At what level of the Open System Interconnection (OSI) model is data at rest on a Storage Area Network (SAN) located?
- Link layer
- Physical layer
- Session layer
- Application layer
Correct answer: D
Question 10
In a Transmission Control Protocol/Internet Protocol (TCP/IP) stack, which layer is responsible for negotiating and establishing a connection with another node?
- Transport layer
- Application layer
- Network layer
- Session layer
Correct answer: A
