ISC-System Security Certified Practitioner (SSCP) Set 15

1.

Who can best decide what are the adequate technical security controls in a computer-based application system in regards to the protection of the data being used, the criticality of the data, and it's sensitivity level ?

System Auditor Data or Information Owner System Manager Data or Information user

2.

Attributable data should be:

always traced to individuals responsible for observing and recording the data sometimes traced to individuals responsible for observing and recording the data never traced to individuals responsible for observing and recording the data often traced to individuals responsible for observing and recording the data

3.

Which of the following best describes signature-based detection?

Compare source code, looking for events or sets of events that could cause damage to a system or network. Compare system activity for the behaviour patterns of new attacks. Compare system activity, looking for events or sets of events that match a predefined pattern of events that describe a known attack. Compare network nodes looking for objects or sets of objects that match a predefined pattern of objects that may describe a known attack.

4.

Which of the following is used to monitor network traffic or to monitor host audit logs in real time to determine violations of system security policy that have taken place?

Intrusion Detection System Compliance Validation System Intrusion Management System (IMS) Compliance Monitoring System

5.

Which of the following monitors network traffic in real time?

network-based IDS host-based IDS application-based IDS firewall-based IDS

6.

A host-based IDS is resident on which of the following?

On each of the critical hosts decentralized hosts central hosts bastion hosts

7.

Which of the following usually provides reliable, real-time information without consuming network or host resources?

network-based IDS host-based IDS application-based IDS firewall-based IDS

8.

The fact that a network-based IDS reviews packets payload and headers enable which of the following?

Detection of denial of service Detection of all viruses Detection of data corruption Detection of all password guessing attacks

9.

Which of the following reviews system and event logs to detect attacks on the host and determine if the attack was successful?

host-based IDS firewall-based IDS bastion-based IDS server-based IDS

10.

What would be considered the biggest drawback of Host-based Intrusion Detection systems (HIDS)?

It can be very invasive to the host operating system Monitors all processes and activities on the host system only Virtually eliminates limits associated with encryption They have an increased level of visibility and control compared to NIDS

ISC-System Security Certified Practitioner (SSCP) Set 15

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

ISC-System Security Certified Practitioner (SSCP) Set 15

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner