CompTIA Security+ (2008 Edition) Set 7

1.

In a secure environment, which authentication mechanism performs better?

RADIUS because it is a remote access authentication service. TACACS because it encrypts client-server negotiation dialogs. RADIUS because it encrypts client-server passwords. TACACS because it is a remote access authentication service.

2.

Which of the following common attacks would the attacker capture the user's login information and replay it again later?

Back Door Attacks Replay Attack Spoofing Man In The Middle

3.

After auditing file, which log will show unauthorized usage attempts?

Application Performance Security System

4.

Which of the following encryption algorithms relies on the inability to factor large prime numbers?

Elliptic Curve AES256 RSA SHA-1

5.

While monitoring application activity and modification, which system should be used?

NIDS RADIUS HIDS OVAL

6.

The difference between identification and authentication is that:

Authentication verifies a set of credentials while identification verifies the identity of the network. Authentication verifies a user ID belongs to a specific user while identification verifies theidentity of a user group. Authentication verifies a set of credentials while identification verifies the identity of a userrequesting credentials. Authentication verifies the identity of a user requesting credentials while identification verifies aset of credentials.

7.

The main objective of risk management in an organization is to reduce risk to a level:

Where the ALE is lower than the SLE. Where the ARO equals the SLE. The organization will mitigate. The organization will accept.

8.

Following a disaster, which of the following functions should be returned FIRST from the backup facility to the primary facility?

Web services Systems functions Executive functions Least critical functions

9.

The Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, and procedures needed to create, manage, store, distribute, and revoke digital certificates. An executive uses PKI to encrypt sensitive emails sent to an assistant. In addition to encrypting the body of the email, the executive wants to encrypt the signature so that the assistant can verify that the email actually came from the executive. Which asymmetric key should be used by the executive to encrypt the signature?

Shared Private Hash Public

10.

Which of the following is a reason to use a vulnerability scanner?

To identify open ports on a system To assist with protocol analyzing To identify remote access policies To assist with PKI implementation

CompTIA Security+ (2008 Edition) Set 7

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

CompTIA Security+ (2008 Edition) Set 7

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner