WILEY'S SECURITY+ PRACTICE
QUESTIONS AND ANSWERS WITH
VERIFIED SOLUTIONS 100% CORRECT
RATED A+
A. Privilege Audit
is used to determine that all groups, users, and other accounts have the appropriate
privileges assigned according to the policies of an organization. Chapter 11 -
ANSWER✔✔ Which type of audit can be used to determine whether accounts
have been established properly and verify that privilege creep isn't occurring?
A. Privilege audit
B. Usage audit
C. Escalation audit
D. Report audit
D. Mantrap
limits access to one individual at a time. It could be, for example, a small room.
Mantraps typically use electronic locks and other methods to control access.
Chapter 10 - ANSWER✔✔ What kind of physical access device restricts access to
a small number of individuals at one time?
A. Checkpoint
B. Perimeter security
C. Security zones
D. Mantrap
,B. Public Key Cryptography Standards (PKCS)
is a set of voluntary standards for public key cryptography. This set of standards is
coordinated by RSA. Chapter 8 - ANSWER✔✔ Which of the following is a set of
voluntary standards governing encryption?
A. PKI
B. PKCS
C. ISA
D. SSL
B. The Recovery Point Objective (RPO)
is the point of maximum tolerable loss for a system due to a major incident.
Chapter 1 - ANSWER✔✔ What is the acronym associated with the point of
maximum tolerable loss for a system due to a major incident?
A. ARO
B. RPO
C. RTP
D. WML
B. Tabletop
exercise involves sitting around the table and discussing (with the help of a
facilitator) possible security risks in a low-stress format. Chapter 12 -
,ANSWER✔✔ What type of exercise involves discussing possible security risks in
a low-stress
environment?
A. White box
B. Tabletop
C. Black hat
D. DHE
D. Hardware Security Module (HSM)
is a cryptoprocessor chip (or circuit mounted within the computer) that can be used
to enhance security, and it is commonly used with PKI systems. Chapter 3 -
ANSWER✔✔ You want to install a cryptoprocessor chip that can be used to
enhance security with the PKI systems. Which of the following is the one you are
looking for?
A. OCSP
B. HSM
C. MTU
D. PIV
A. Demilitarized Zone (DMZ)
is an read in a network that allows restrictive access to untrusted users and isolates
the internal network from access by external users and systems. It does so by using
routers and firewalls to limit access to sensitive network resources. Chapter 2 -
, ANSWER✔✔ Which design concept limits access to systems from outside users
while protecting users and systems inside the LAN?
A. DMZ
B. VLAN
C. I&A
D. Router
C. Previous Key
If the previous key can't be recovered, then all the information for which the key
was used will be irrecoverably lost. Chapter 8 - ANSWER✔✔ In the key recovery
process, which key must be recoverable?
A. Rollover key
B. Secret key
C. Previous key
D. Escrow key
D. Flooding
A flood attach is designed to overload a protocol or service by repeatedly initiating
a request for service. This type of attack usually results in a DoS (denial-of-
service) situation occurring because the protocol freezes or since excessive
bandwidth is used in the network as a result of the request. Chapter 3 -
ANSWER✔✔ Which kind of attack is designed to overload a particular protocol or
service?
QUESTIONS AND ANSWERS WITH
VERIFIED SOLUTIONS 100% CORRECT
RATED A+
A. Privilege Audit
is used to determine that all groups, users, and other accounts have the appropriate
privileges assigned according to the policies of an organization. Chapter 11 -
ANSWER✔✔ Which type of audit can be used to determine whether accounts
have been established properly and verify that privilege creep isn't occurring?
A. Privilege audit
B. Usage audit
C. Escalation audit
D. Report audit
D. Mantrap
limits access to one individual at a time. It could be, for example, a small room.
Mantraps typically use electronic locks and other methods to control access.
Chapter 10 - ANSWER✔✔ What kind of physical access device restricts access to
a small number of individuals at one time?
A. Checkpoint
B. Perimeter security
C. Security zones
D. Mantrap
,B. Public Key Cryptography Standards (PKCS)
is a set of voluntary standards for public key cryptography. This set of standards is
coordinated by RSA. Chapter 8 - ANSWER✔✔ Which of the following is a set of
voluntary standards governing encryption?
A. PKI
B. PKCS
C. ISA
D. SSL
B. The Recovery Point Objective (RPO)
is the point of maximum tolerable loss for a system due to a major incident.
Chapter 1 - ANSWER✔✔ What is the acronym associated with the point of
maximum tolerable loss for a system due to a major incident?
A. ARO
B. RPO
C. RTP
D. WML
B. Tabletop
exercise involves sitting around the table and discussing (with the help of a
facilitator) possible security risks in a low-stress format. Chapter 12 -
,ANSWER✔✔ What type of exercise involves discussing possible security risks in
a low-stress
environment?
A. White box
B. Tabletop
C. Black hat
D. DHE
D. Hardware Security Module (HSM)
is a cryptoprocessor chip (or circuit mounted within the computer) that can be used
to enhance security, and it is commonly used with PKI systems. Chapter 3 -
ANSWER✔✔ You want to install a cryptoprocessor chip that can be used to
enhance security with the PKI systems. Which of the following is the one you are
looking for?
A. OCSP
B. HSM
C. MTU
D. PIV
A. Demilitarized Zone (DMZ)
is an read in a network that allows restrictive access to untrusted users and isolates
the internal network from access by external users and systems. It does so by using
routers and firewalls to limit access to sensitive network resources. Chapter 2 -
, ANSWER✔✔ Which design concept limits access to systems from outside users
while protecting users and systems inside the LAN?
A. DMZ
B. VLAN
C. I&A
D. Router
C. Previous Key
If the previous key can't be recovered, then all the information for which the key
was used will be irrecoverably lost. Chapter 8 - ANSWER✔✔ In the key recovery
process, which key must be recoverable?
A. Rollover key
B. Secret key
C. Previous key
D. Escrow key
D. Flooding
A flood attach is designed to overload a protocol or service by repeatedly initiating
a request for service. This type of attack usually results in a DoS (denial-of-
service) situation occurring because the protocol freezes or since excessive
bandwidth is used in the network as a result of the request. Chapter 3 -
ANSWER✔✔ Which kind of attack is designed to overload a particular protocol or
service?