|
Latest itcertkeys required... ad it thanks
|
Question 1. Which of the following elements of PKI are found in a browser's trusted root CA? A. Private key B. Symmetric key C. Recovery key D. Public key Answer: D Explanation: Question 2. Which of the following protocols only encrypts password packets from client to server? A. XTACACS B. TACACS C. RADIUS D. TACACS+ Answer: C Explanation: Question 3. Where are revoked certificates stored? A. Recovery agent B. Registration C. Key escrow D. CRL Answer: D Explanation: Question 4. DRPs should contain which of the following? A. Hierarchical list of non-critical personnel B. Hierarchical list of critical systems C. Hierarchical access control lists D. Identification of single points of failure Answer: B Explanation: Question 5. A system administrator could have a user level account and an administrator account to prevent: A. password sharing. B. escalation of privileges. C. implicit deny. D. administrative account lockout. Answer: B Explanation: Question 6. Which of the following is the BEST way to mitigate data loss if a portable device is compromised? A. Full disk encryption B. Common access card C. Strong password complexity D. Biometric authentication Answer: A Explanation: Question 7. Which of the following protocols should be blocked at the network perimeter to prevent host enumeration by sweep devices? A. HTTPS B. SSH C. IPv4 D. ICMP Answer: D Explanation: Question 8. Which of the following is specific to a buffer overflow attack? A. Memory addressing B. Directory traversal C. Initial vector D. Session cookies Answer: C Explanation: Question 9. Which of the following asymmetric encryption keys is used to encrypt data to ensure only the intended recipient can decrypt the ciphertext? A. Private B. Escrow C. Public D. Preshared Answer: C Explanation: Question 10. Which of the following should a security administrator implement to prevent users from disrupting network connectivity, if a user connects both ends of a network cable to different switch ports? A. VLAN separation B. Access control C. Loop protection D. DMZ Answer: C Explanation: Question 11. A new enterprise solution is currently being evaluated due to its potential to increase the company's profit margins. The security administrator has been asked to review its security implications. While evaluating the product, various vulnerability scans were performed. It was determined that the product is not a threat but has the potential to introduce additional vulnerabilities. Which of the following assessment types should the security administrator also take into consideration while evaluating this product? A. Threat assessment B. Vulnerability assessment C. Code assessment D. Risk assessment Answer: D Explanation:
Copyright © 2004 CertsBraindumps.com Inc. All rights reserved.