Question 1

What is the foundation of cryptographic functions?

Options :

A : Encryption

B : Cipher

C : Hash

D : Entropy

Answer: D

Question 2

A corporate security policy specifies that all devices on the network must have updated operating system patches and anti-malware software. Which technology should be used to enforce this policy?

Options :

A : Network Address Translation (NAT)

B : Stateful Inspection

C : Packet filtering

D : Network Access Control (NAC)

Answer: D

Question 3

Which of the following MUST be done before a digital forensics investigator may acquire digital evidence?

Options :

A : Inventory the digital evidence.

B : Isolate the digital evidence.

C : Verify that the investigator has the appropriate legal authority to proceed.

D : Perform hashing to verify the integrity of the digital evidence.

Answer: C

Question 4

When implementing a data classification program, why is it important to avoid too much granularity?

Options :

A : The process will require too many resources

B : It will be difficult to apply to both hardware and software

C : It will be difficult to assign ownership to the data

D : The process will be perceived as having value

Answer: C

Question 5

Users require access rights that allow them to view the average salary of groups of employees. Which control would prevent the users from obtaining an individual employee's salary?

Options :

A : Limit access to predefined queries

B : Segregate the database into a small number of partitions each with a separate security level

C : Implement Role Based Access Control (RBAC)

D : Reduce the number of people who have access to the system for statistical purposes

Answer: C

Higher Test Marks with Free Online CISSP Exam Practice

Buying Options: