Quiz about CISSP-3-3

Question 1

2. (3.5.15) What is VM sprawl?

Accepted Answer

B. A situation where an administrator loses control of VM machines on a network

Answer

A. A large collection of virtualized environments

Answer

C. A virtualized infrastructure

Answer

D. Cold VM

Question 2

When comparing the NIST and ISO cloud characteristics, the ISO/IEC 17788 adds an additional essential cloud characteristic that NIST does not list. Which one of these does ISO include?

Accepted Answer

D. Multi-tenancy

Answer

A. Measured service

Answer

B. Pooling

Answer

C. Network access

Question 3

Which statement about embedded systems best describes their security risks?

Accepted Answer

B. Their use of proprietary technologies and designs makes them higher risk

Answer

A. Because they use industry-standard processors, software, and communications systems, they are usually low risk.

Answer

. C. They have low physical security risks. .

Answer

D. Their use of proprietary technologies and designs makes it harder for attackers to discover and exploit their vulnerabilities

Question 4

Cloud computing has many advantages but can introduce latency; to reduce this, edge and fog computing architectures can be used. Which statement best describes the difference between edge and fog computing architectures?

Accepted Answer

B. Edge computing occurs directly onto the sensor-attached devices.

Answer

A. Fog computing occurs directly onto the sensor-attached devices.

Answer

C. Edge computing decouples hardware and applications.

Answer

D. Essentially, they are the same.

Question 5

Which statement is true?

Accepted Answer

B. Encoding converts plaintext to another commonly (publicly) known format.

Answer

A. Encryption converts plaintext to ciphertext using a commonly (publicly) known system and requires a key.

Answer

C. Enciphering converts plaintext to ciphertext using a commonly (publicly) known system and requires a key

Answer

. D. Steganography converts plaintext to ciphertext using a commonly (publicly) known system

Question 6

In a symmetric key system where an organization has 20,000 users, how many keys need to be generated?

Accepted Answer

D. 199,990,000

Answer

A. 20,000

Answer

B. 40,000

Answer

C. 200,000

Question 7

Which asymmetrical encryption has the highest strength per bit of key length?

Accepted Answer

C. ECC (Elliptical Curve Cryptography)

Answer

A. Diffie-Hellman-Merkle

Answer

B. ElGamal

Answer

D. RSA (Rivest-Shamir-Adleman)

Question 8

The X.509 v3 standard introduced support for extensions. What benefit do extensions provide?

Accepted Answer

C. A way to allow user defined extensions for certificates

Answer

A. A way to identify the public key owner

Answer

B. A way to include the X.500 name

Answer

D. A way to provide a unique identifier

Question 9

Which of the following cryptanalytic attacks is considered the most successful in practice?

Accepted Answer

A. Social engineering

Answer

B. Side-channel attacks

Answer

C. Linear cryptanalysis

Answer

D. Chosen ciphertext attack

Popular Resources on Wayground

Discover more resources for Mathematics