401 SEC+ Exam Guaranteed Pass: Complete
Solutions & Graded Questions with Correct
Answers Tailored for Top Grades
Which of the following protocols uses an asymmetric key to open a session and then establishes
a symmetric key for the remainder of the session?
A. SFTP
B. HTTPS
C. TFTP
D. TLS - -correct ans- -Answer: D
Explanation:
SSL establishes a session using asymmetric encryption and maintains the session using
symmetric encryption.
A company uses PGP to ensure that sensitive email is protected. Which of the following types of
cryptography is being used here for the key exchange?
A. Symmetric
B. Session-based
C. Hashing
D. Asymmetric - -correct ans- -Answer: A
Explanation:
PGP combines symmetric-key encryption and public-key encryption. The message is encrypted
using a symmetric encryption algorithm, which requires a symmetric key. Each symmetric key is
used only once and is also called a session key.
,Which of the following is true about asymmetric encryption?
A. A message encrypted with the private key can be decrypted by the same key
B. A message encrypted with the public key can be decrypted with a shared key.
C. A message encrypted with a shared key, can be decrypted by the same key.
D. A message encrypted with the public key can be decrypted with the private key. - correct ans-
-Answer: D
Explanation:
Asymmetric algorithms use two keys to encrypt and decrypt data. These asymmetric keys are
referred to as the public key and the private key. The sender uses the public key to encrypt a
message, and the receiver uses the private key to decrypt the message; what one key does, the
other one undoes
Account lockout is a mitigation strategy used by Jane, the administrator, to combat which of the
following attacks? (Select TWO).
A. Spoofing
B. Man-in-the-middle
C. Dictionary
D. Brute force
E. Privilege escalation - -correct ans- -
A file on a Linux server has default permissions of rw-rw-r--. The system administrator has
verified that Ann, a user, is not a member of the group owner of the file. Which of the following
should be modified to assure that Ann has read access to the file?
A. User ownership information for the file in question
B. Directory permissions on the parent directory of the file in question
C. Group memberships for the group owner of the file in question
D. The file system access control list (FACL) for the file in question - -correct ans- -Answer: C
, Explanation:
The file permissions according to the file system access control list (FACL) are rw-rw-r--.
The first 'rw-' are the file owner permissions (read and write).
The second 'rw-' are the group permissions (read and write) for the group that has been
assigned the file.
The third 'r--' is the All Users permissions; in this case read only.
To enable Ann to access the file, we should add Ann to the group that has been assigned to the
file.
Topic 6, Cryptography
Encryption used by RADIUS is BEST described as:
A. Quantum
B. Elliptical curve
C. Asymmetric
D. Symmetric - -correct ans- -Answer: D
Explanation:
The RADIUS server uses a symmetric encryption method.
Note: Symmetric algorithms require both ends of an encrypted message to have the same key
and processing algorithms. Symmetric algorithms generate a secret key that must be protected.
Symmetric encryption utilizes __________, while asymmetric encryption utilizes _________.
A. Public keys, one time
B. Shared keys, private keys
C. Private keys, session keys
D. Private keys, public keys - -correct ans- -Answer: D
Solutions & Graded Questions with Correct
Answers Tailored for Top Grades
Which of the following protocols uses an asymmetric key to open a session and then establishes
a symmetric key for the remainder of the session?
A. SFTP
B. HTTPS
C. TFTP
D. TLS - -correct ans- -Answer: D
Explanation:
SSL establishes a session using asymmetric encryption and maintains the session using
symmetric encryption.
A company uses PGP to ensure that sensitive email is protected. Which of the following types of
cryptography is being used here for the key exchange?
A. Symmetric
B. Session-based
C. Hashing
D. Asymmetric - -correct ans- -Answer: A
Explanation:
PGP combines symmetric-key encryption and public-key encryption. The message is encrypted
using a symmetric encryption algorithm, which requires a symmetric key. Each symmetric key is
used only once and is also called a session key.
,Which of the following is true about asymmetric encryption?
A. A message encrypted with the private key can be decrypted by the same key
B. A message encrypted with the public key can be decrypted with a shared key.
C. A message encrypted with a shared key, can be decrypted by the same key.
D. A message encrypted with the public key can be decrypted with the private key. - correct ans-
-Answer: D
Explanation:
Asymmetric algorithms use two keys to encrypt and decrypt data. These asymmetric keys are
referred to as the public key and the private key. The sender uses the public key to encrypt a
message, and the receiver uses the private key to decrypt the message; what one key does, the
other one undoes
Account lockout is a mitigation strategy used by Jane, the administrator, to combat which of the
following attacks? (Select TWO).
A. Spoofing
B. Man-in-the-middle
C. Dictionary
D. Brute force
E. Privilege escalation - -correct ans- -
A file on a Linux server has default permissions of rw-rw-r--. The system administrator has
verified that Ann, a user, is not a member of the group owner of the file. Which of the following
should be modified to assure that Ann has read access to the file?
A. User ownership information for the file in question
B. Directory permissions on the parent directory of the file in question
C. Group memberships for the group owner of the file in question
D. The file system access control list (FACL) for the file in question - -correct ans- -Answer: C
, Explanation:
The file permissions according to the file system access control list (FACL) are rw-rw-r--.
The first 'rw-' are the file owner permissions (read and write).
The second 'rw-' are the group permissions (read and write) for the group that has been
assigned the file.
The third 'r--' is the All Users permissions; in this case read only.
To enable Ann to access the file, we should add Ann to the group that has been assigned to the
file.
Topic 6, Cryptography
Encryption used by RADIUS is BEST described as:
A. Quantum
B. Elliptical curve
C. Asymmetric
D. Symmetric - -correct ans- -Answer: D
Explanation:
The RADIUS server uses a symmetric encryption method.
Note: Symmetric algorithms require both ends of an encrypted message to have the same key
and processing algorithms. Symmetric algorithms generate a secret key that must be protected.
Symmetric encryption utilizes __________, while asymmetric encryption utilizes _________.
A. Public keys, one time
B. Shared keys, private keys
C. Private keys, session keys
D. Private keys, public keys - -correct ans- -Answer: D
