CPSC 4581 CHAP 6-7 EXAM QUESTIONS WITH
VERIFIED ANSWERS 5 out of 5 points
• Question 1
A security blueprint is the outline of the more thorough security framework.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 2
5 out of 5 points
Separation of duties is the principle by which members of the
organization can access the minimum amount of information for the
minimum amount of time necessary to perform their required duties.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 3
5 out of 5 points
Lattice-based access control specifies the level of access each subject
has to each object, if any.
Selected Tru
Answer: e
Answers: Tru
e
False
• Question 4
5 out of 5 points
Using a practice called benchmarking, you are able to develop an
acceptable use policy based on the typical practices of the industry in
which you are working.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 5
5 out of 5 points
A company deemed to be using ‘best security practices’ establishes
high-quality security in every area of their security program.
Selected Fals
, Answer: e
Answers: True
Fals
e
• Question 6
5 out of 5 points
One question you should ask when choosing among recommended
practices is “Can your organization afford to implement the
recommended practice?”
Selected Tru
Answer: e
Answers: Tru
e
False
• Question 7
5 out of 5 points
Attaining certification in security management is a long and difficult
process, but once attained, an organization remains certified for the
life of the organization.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 8
5 out of 5 points
Which access control principle specifies that members of the
organization can access the minimum amount of information for the
minimum amount of time necessary to perform their required duties?
Selected b.
Answer: least privilege
Answers: a.
eyes only
b.
least privilege
c.
separation of
duties
d.
need-to-know
• Question 9
5 out of 5 points
VERIFIED ANSWERS 5 out of 5 points
• Question 1
A security blueprint is the outline of the more thorough security framework.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 2
5 out of 5 points
Separation of duties is the principle by which members of the
organization can access the minimum amount of information for the
minimum amount of time necessary to perform their required duties.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 3
5 out of 5 points
Lattice-based access control specifies the level of access each subject
has to each object, if any.
Selected Tru
Answer: e
Answers: Tru
e
False
• Question 4
5 out of 5 points
Using a practice called benchmarking, you are able to develop an
acceptable use policy based on the typical practices of the industry in
which you are working.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 5
5 out of 5 points
A company deemed to be using ‘best security practices’ establishes
high-quality security in every area of their security program.
Selected Fals
, Answer: e
Answers: True
Fals
e
• Question 6
5 out of 5 points
One question you should ask when choosing among recommended
practices is “Can your organization afford to implement the
recommended practice?”
Selected Tru
Answer: e
Answers: Tru
e
False
• Question 7
5 out of 5 points
Attaining certification in security management is a long and difficult
process, but once attained, an organization remains certified for the
life of the organization.
Selected Fals
Answer: e
Answers: True
Fals
e
• Question 8
5 out of 5 points
Which access control principle specifies that members of the
organization can access the minimum amount of information for the
minimum amount of time necessary to perform their required duties?
Selected b.
Answer: least privilege
Answers: a.
eyes only
b.
least privilege
c.
separation of
duties
d.
need-to-know
• Question 9
5 out of 5 points