ISC-System Security Certified Practitioner (SSCP) Set 4

1.

Which of the following offers advantages such as the ability to use stronger passwords, easier password administration, one set of credential, and faster resource access?

Smart cards Single Sign-On (SSO) Symmetric Ciphers Public Key Infrastructure (PKI)

2.

Which of the following describes the major disadvantage of many Single Sign-On (SSO) implementations?

Once an individual obtains access to the system through the initial log-on, they have access to all resources within the environment that the account has access
to. The initial logon process is cumbersome to discourage potential intruders. Once a user obtains access to the system through the initial log-on, they only need to logon to some applications. Once a user obtains access to the system through the initial log-on, he has to logout from all other systems

3.

Which of the following is implemented through scripts or smart agents that replays the users multiple log-ins against authentication servers to verify a user's identity which permit access to system services?

Single Sign-On Dynamic Sign-On Smart cards Kerberos

4.

Which of the following is a trusted, third party authentication protocol that was developed under Project Athena at MIT?

Kerberos SESAME KryptoKnight NetSP

5.

Which of the following is NOT true of the Kerberos protocol?

Only a single login is required per session. The initial authentication steps are done using public key algorithm. The KDC is aware of all systems in the network and is trusted by all of them It performs mutual authentication

6.

Which of the following is addressed by Kerberos?

Confidentiality and Integrity Authentication and Availability Validation and Integrity Auditability and Integrity

7.

Kerberos is vulnerable to replay in which of the following circumstances?

When a private key is compromised within an allotted time window. When a public key is compromised within an allotted time window. When a ticket is compromised within an allotted time window. When the KSD is compromised within an allotted time window.

8.

Like the Kerberos protocol, SESAME is also subject to which of the following?

timeslot replay password guessing symmetric key guessing asymmetric key guessing

9.

RADIUS incorporates which of the following services?

Authentication server and PIN codes. Authentication of clients and static passwords generation. Authentication of clients and dynamic passwords generation. Authentication server as well as support for Static and Dynamic passwords.

10.

Which of the following protects a password from eavesdroppers and supports the encryption of communication?

Challenge Handshake Authentication Protocol (CHAP) Challenge Handshake Identification Protocol (CHIP) Challenge Handshake Encryption Protocol (CHEP) Challenge Handshake Substitution Protocol (CHSP)

ISC-System Security Certified Practitioner (SSCP) Set 4

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

ISC-System Security Certified Practitioner (SSCP) Set 4

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner