What type of certificate allows an organization to secure multiple subdomains under a single certificate?

Extended Validation certificate

11. The function of a Certificate Authority (CA) in the context of email encryption is to issue and manage digital certificates that authenticate the identity of email users, ensuring secure communication.

It issues and manages digital certificates for authenticating email identities.

It stores and archives emails securely.

It converts emails into encrypted messages automatically.

What is the primary purpose of a Certificate Authority (CA)?

Issue and manage digital certificates

Provide secure storage for private keys

What is the main function of a Hash-based Message Authentication Code (HMAC)?

Ensure data integrity and authenticity

Encrypt data during transmission

Provide confidentiality in communication

What does the process of "key stretching" help to improve?

The strength of stored passwords

The efficiency of encryption algorithms

The security of symmetric key encryption

Which of the following is NOT a typical use case for S/MIME?

Verifying email sender’s identity

What is the main purpose of a Service Level Agreement (SLA)?

Establishes expectations for service performance

Defines the terms of a partnership

What is the purpose of a Recovery Agent in the context of key escrow?

To recover encrypted data when a private key is lost

Which of the following is a characteristic of a Self-Signed Certificate?

It must be manually installed on each system.

It is issued by a trusted third-party CA.

It provides extended validation for secure websites.

It can be revoked by the issuing CA.

What is the role of an Incident Response Team (IRT)?

To detect and respond to security incidents

What is the purpose of a chain of custody in forensic procedures?

To prove the authenticity of the collected evidence

To prevent the loss of digital evidence

To encrypt sensitive data during transmission

To store the evidence in a secure location

Which of the following is an example of out-of-band key exchange?

Sharing the key over a secure channel

Exchanging the key over an insecure communication method

Generating the key using a shared secret

What is the function of a port scanner in network security?

To detect open ports and vulnerabilities

To establish secure communication channels

What is the primary goal of data classification?

To categorize data based on its level of sensitivity

To determine the most appropriate encryption method

To enforce access controls based on roles

Which of the following is a reason for revoking a digital certificate?

The private key has been compromised

What does "data wiping" refer to in security practices?

Deleting data without leaving a trace

Compressing data for efficient storage

Which of the following is an example of a "clean desk" policy requirement?

Sensitive information must be locked in filing cabinets when not in use.

Employees should keep only a single document on their desk at all times.

All files must be printed daily for security purposes.

Employees are required to log out of all devices after every task.

Which of the following is the purpose of a Business Partner Agreement (BPA)?

It outlines obligations between business partners.

It defines the relationship between users and administrators.

It sets service levels for network uptime.

It outlines acceptable use policies for email.

Which of the following best describes an Incident Response Plan (IRP)?

A set of guidelines to handle security breaches

A plan to monitor network activity

A system to manage digital certificates

A policy for password management

What does "least privilege" mean in the context of access control?

A) Users should have access only to the resources necessary for their job.

B) Users should be granted the highest level of access at all times.

C) Only administrators should have access to critical systems.

D) All users should share the same access level for simplicity.

Which of the following is an essential aspect of the Change Management Policy?

Ensuring changes do not disrupt system functionality

Monitoring user behavior after changes

Allowing untracked changes in critical systems

Limiting documentation and reviews of changes

What does the term "Data Loss Prevention" (DLP) refer to?

Policies and tools designed to prevent data from leaving an organization

Techniques for preventing unauthorized data access

A backup strategy for critical systems

Software that prevents the physical loss of hardware

What is the purpose of a "disaster recovery" plan in cybersecurity?

To ensure the restoration of systems after a breach or disaster

To identify critical system vulnerabilities

Which of the following is a best practice for handling Personally Identifiable Information (PII)?

Ensure PII is encrypted and access is restricted

Store PII in plain text for easy access

Share PII freely among employees for convenience

Regularly delete all PII from company systems

Which of the following is an example of two-factor authentication (2FA)?

Using a password and a one-time code sent to your phone

Using only a username and password

Using a single PIN code for login

Using a fingerprint scan and a password

What is a primary function of a Security Information and Event Management (SIEM) system?

To monitor and analyze security events in real time

What is the purpose of an Interconnection Security Agreement (ISA)?

To set security requirements for connecting networks or systems

To establish service levels between two parties

To define incident response procedures

To clarify user access policies between two systems

Which of the following is an example of "social engineering"?

Phishing email that asks for login credentials

Installing a firewall to block unauthorized traffic

Performing a vulnerability scan

Updating software to fix security flaws

Which type of attack aims to overload a system with excessive traffic to make it unavailable?

DDoS (Distributed Denial of Service)

What does a "business continuity plan" ensure during a disaster?

The business can continue operations with minimal disruption

The business can increase profits by cutting costs

All employees are retrained to avoid security issues

No external access to critical systems

CompTIA Security+ Certification Questions

Authored by kendrick Logan

Information Technology (IT)

University

Used 3+ times

CompTIA Security+ Certification Questions

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

77 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

What does a digital signature verify in an email?

Encryption

Authentication

Confidentiality

Integrity

MULTIPLE CHOICE QUESTION

1 min • 1 pt

In asymmetric encryption, which key is used to encrypt the data?

Public key

Private key

Symmetric key

Hashing key

MULTIPLE CHOICE QUESTION

1 min • 1 pt

What is the primary purpose of a Public Key Infrastructure (PKI)?

Secure email communication

Digital signatures and certificates management

Secure network authentication

Encrypting data at rest

OPEN ENDED QUESTION

1 min • 1 pt

Which of the following encryption methods uses both asymmetric and symmetric encryption?

Evaluate responses using AI:

OFF

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following is the purpose of hashing in digital signatures?

Encrypt the message content

Verify the integrity of the message

Create a public/private key pair

Authenticate the sender's identity

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following is a benefit of implementing a mandatory vacation policy?

Prevents unauthorized data access

Detects fraudulent activity or misconduct

Reduces the need for encryption

Ensures network uptime

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which policy helps to ensure that employees understand the organization's rules for using resources?

Acceptable Use Policy

Data Retention Policy

Incident Response Policy

Change Management Policy

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

72 questions

Basic Questions

Quiz

•

University

80 questions

Маркетинг бойынша сұрақтар 80-160

Quiz

•

University

76 questions

ÔN TẬP TIN HỌC CƠ SỞ

Quiz

•

University

76 questions

chapter 3 76

Quiz

•

University

Popular Resources on Wayground

20 questions

STAAR Review Quiz #3

Quiz

•

8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

6 questions

Marshmallow Farm Quiz

Quiz

•

2nd - 5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Information Technology (IT)

20 questions

Disney Trivia

Quiz

•

University

10 questions

GMAS ELA Review

Quiz

•

KG - University

9 questions

Week 9 Recitation

Quiz

•

University

26 questions

Customary Measurement

Quiz

•

KG - University

20 questions

Easter trivia

Quiz

•

12th Grade - Professi...

CompTIA Security+ Certification Questions

What does a digital signature verify in an email?

In asymmetric encryption, which key is used to encrypt the data?

What is the primary purpose of a Public Key Infrastructure (PKI)?

Which of the following encryption methods uses both asymmetric and symmetric encryption?

Which of the following is the purpose of hashing in digital signatures?

Which of the following is a benefit of implementing a mandatory vacation policy?

Which policy helps to ensure that employees understand the organization's rules for using resources?

Which of the following is an example of an asymmetric encryption algorithm?

What type of certificate allows an organization to secure multiple subdomains under a single certificate?

In a symmetric encryption system, what key is used for both encryption and decryption?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)