All domains should be grouped into a single forest, regardless of their DNS namespaces. Which of the following statements is correct?

Domains with the same contiguous DNS namespaces should be grouped into a tree, and all trees should be grouped into a forest.

Domains with different DNS namespaces should be grouped into a tree, and all trees should be grouped into a forest.

Domains with the same contiguous DNS namespaces should be grouped into a forest, and all forests should be grouped into a tree.

Which of the following are advantages of using hierarchical databases like Active Directory? (Select two.)

They enable replication of the database to other systems.

They allow for decentralized security and management.

They require manual recreation of user accounts on every system a user may need to access.

Given the scenario, which actions will maximize the effectiveness of security guards and cameras in enhancing the organization's physical security? (Select two.)

Position cameras to monitor critical access points and sensitive areas.

Implement security guard rotations and unannounced spot checks.

Place two cameras on the locations where there are security guards positioned.

Place cameras in highly visible areas, but do not connect them to any recording device.

Allow security guards to monitor camera feeds only during break times.

You are the Chief Information Security Officer (CISO) at a tech company. Your company is facing issues with silos between the development and operations teams, leading to inefficiencies and security vulnerabilities. Which approach should you adopt to encourage collaboration and integrate security considerations at every stage of software development and deployment?

Adopting a Development and Operations (DevOps) approach

Implementing a new security policy

Establishing a Security Operations Center (SOC)

Outsourcing security to a third-party vendor

What is the purpose of identity and access management (IAM) automation in the onboarding process for new employees in an organization?

To automate the provisioning and access management tasks associated with new employees.

To establish the rules for the acceptable ways in which network and computer systems may be used by defining acceptable behavior by users.

To carefully plan and assess the implementation of changes in the IT system.

To facilitate knowledge sharing and continuity as employees move into new roles.

Which of the following security challenges refers to the rapid and broad spread of an attack, often affecting a large number of computers in a relatively short amount of time?

Proliferation of attack software

A network administrator responsible for managing the encryption keys used in the organization's secure communications had a new key management policy implemented by the organization, which included a provision for key escrow. The administrator understands the role of key escrows in relation to private keys. Which of the following BEST describes the purpose of key escrow in the context of private keys?

Key escrow refers to the process of encrypting the private key to prevent unauthorized access and protect it from disclosure.

Key escrow involves periodically rotating the private key to maintain data integrity and prevent cryptographic attacks.

Key escrow enables the distribution of private keys to multiple users within the organization to enhance key redundancy and security.

As a cybersecurity expert, you are tasked with implementing a secure enclave in your company's new mobile banking application. Which of the following statements best describes the primary function and benefit of a secure enclave in this context?

A secure enclave is a separate, isolated environment within the device's processor where sensitive data can be securely stored and processed.

A secure enclave is a protected area within the application's code that prevents users from making unauthorized transactions.

A secure enclave is a cloud-based storage system where encrypted data is stored and can only be accessed with the correct decryption key.

A secure enclave is a network security tool that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Which of the following is an example of a preventative control type?

Network monitoring applications

Which action is taken when the private key associated with a digital certificate becomes compromised?

The compromised digital certificate is added to the certificate revocation list (CRL).

The compromised digital certificate is ignored and continues to be used.

The compromised digital certificate is deleted from the system.

The compromised digital certificate is reissued with the same private key.

The success of asymmetric encryption is MOST dependent upon which of the following?

The complexity of the ciphertext

The integrity of the individuals who created the cryptosystem

When using SSL authentication, what does the client verify first when checking a server's identity?

The current date and time must fall within the server's certificate-validity period.

All DNS resolutions must point to the corporate intranet routers.

You are a cybersecurity analyst at a large corporation. Your team has been tasked with securing sensitive data within the company's database. One of the strategies you are considering is obfuscation. Which of the following scenarios would be the most appropriate application of obfuscation?

You use obfuscation to hide employee personal data within a database field by substituting character strings with x.

You use obfuscation to hide the company's financial data within an image file on the company's public website.

You use obfuscation to hide the company's network architecture within a PDF document.

You use obfuscation to hide the source code of the company's proprietary software within a text document.

Which of the following BEST describes the Active Directory component that the new administrator needs to understand?

The administrator needs to understand the organizational unit, as it subdivides and organizes network resources within a domain.

The administrator needs to understand the forest, as it is the highest level of the organization hierarchy.

The administrator needs to understand the replication process, as it copies changes to Active Directory between the domain controllers.

The administrator needs to understand the domain controller, as it manages the Active Directory database.

The administrator needs to understand the schema, as it identifies the object classes and their attributes in the tree.

A manufacturing company is looking to enhance its security measures by implementing deterrent controls in its facility, specifically the server room. Which of the following options would be MOST effective?

Placing visible signs indicating surveillance and severe penalties for unauthorized entry.

Installing a network-connected smoke detector system in the server room.

Applying reflective window film to the server room windows.

Introducing a key control system for office desks.

Security+ Domain 1 Quiz

1.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following statements about honeyfiles are true? (Select two.)

Honeyfiles work with network intrusion detection systems (NIDs) and can help prevent false positives.

Honeyfiles can only be created by system administrators.

Honeyfiles are designed to provide real data to the attacker.

Honeyfiles are named in a way that makes them attractive to hackers, enticing them to open or execute them.

Honeyfiles are used to block all types of malicious traffic.

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which kind of access control technology allows more than just the identity of an individual to be transmitted wirelessly to either allow or deny access?

Smart card

Keypad locks

Proximity card

Biometric locks

3.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are control categories? (Select three.)

Preventative

Operational

Managerial

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You are a system administrator at a software company. You have been tasked with verifying the integrity of a large software update file that has been downloaded from the internet. The software provider has provided a SHA256 hash of the file for verification purposes. You decide to use the Get-FileHash command in PowerShell to calculate the hash of the downloaded file. Which of the following scenarios best demonstrates the correct use of the Get-FileHash command for this purpose?

You use the Get-FileHash command to calculate the hash of the downloaded file and send it to the software provider for verification.

You use the Get-FileHash command to calculate the hash of the downloaded file and compare it with the hash provided by the software provider. If the hashes match, you assume the file has not been tampered with.

You use the Get-FileHash command to calculate the hash of the downloaded file and compare it with the hash of another file downloaded from the internet. If the hashes match, you assume the file has not been tampered with.

You use the Get-FileHash command to calculate the hash of the downloaded file and compare it with the hash of the original file on your system. If the hashes match, you assume the file has not been tampered with.

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is the term for the process of validating a subject's identity?

Authorization

Authentication

Auditing

Identification

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a message authentication code that allows a user to verify that a file or message is legitimate?

MD5

SHA

RIPEMD

HMAC

7.

OPEN ENDED QUESTION

3 mins • 1 pt

A newly launched online store wants to secure transactions between the store and customers. The store must guarantee the authenticity of transactions, provide confidentiality, and ensure that only authorized recipients can access the purchase details.

Evaluate responses using AI:

OFF

8.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which cryptographic technique would best meet these requirements?

Hybrid encryption

Hashing techniques

Symmetric encryption

Asymmetric encryption

9.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You are a security analyst at a large corporation. The corporation is implementing a new system that requires secure logon credential exchange between different departments. The corporation decides to use a cryptographic hashing algorithm for this purpose. Which of the following scenarios best demonstrates the correct use of hashing for secure logon credential exchange?

Each department sends their password to the other departments. The receiving department calculates a hash of the received password and compares it with the hash of the sending department's password they have on file. If the hashes match, the receiving department assumes the sending department has authenticated itself.

Each department shares their passwords with each other, calculates the hash of their own password, and if the hashes match, they assume they have authenticated each other.

Each department calculates a hash of their password and sends the actual password along with the hash to the other departments. The receiving department then verifies the password by comparing it with the hash.

Each department calculates a hash of their password and sends it to the other departments. The receiving department compares this hash with the hash of the sending department's password they have on file. If the hashes match, the receiving department assumes the sending department has authenticated itself.

10.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Your computer system is a participant in an asymmetric cryptography system. You've created a message to send to another user. Before transmission, you hash the message and encrypt the hash using your private key. You then attach this encrypted hash to your message as a digital signature before sending it to the other user. In this example, which protection does the hashing activity provide?

Confidentiality

Availability

Non-repudiation

Integrity

Security+ Domain 1

49 questions

Which of the following statements about honeyfiles are true? (Select two.)

Which kind of access control technology allows more than just the identity of an individual to be transmitted wirelessly to either allow or deny access?

Which of the following are control categories? (Select three.)

Which of the following is the term for the process of validating a subject's identity?

Which of the following is a message authentication code that allows a user to verify that a file or message is legitimate?

A newly launched online store wants to secure transactions between the store and customers. The store must guarantee the authenticity of transactions, provide confidentiality, and ensure that only authorized recipients can access the purchase details.

Which cryptographic technique would best meet these requirements?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers