Section 1 Part 3

When an automated process for creating user accounts also generates records of these actions in a main log, which aspect of access control is being performed?

Following a wireless network security incident, technicians separated the network access for internet-connected devices, visitors, and company users. Which Zero Trust strategy does this action align with?

To defend against overwhelming traffic attacks, a business uses a service at its network border that redirects malicious traffic to a specialized cleaning facility. What kind of control is this?

A task for a software update includes the instruction that the program must be restarted afterwards. What technical consideration is this related to?

If a mobile phone employs a protected hardware area to create temporary, single-use encryption keys for individual operations, what is this component called?

If a network security setting stops all communication channels except for standard web traffic (ports 80 and 443), what kind of firewall policy is this?

If a finance application records the user and timestamp for each transaction, which security control principle is responsible for this?

When a business changes its encryption keys every month and records these changes in a key management system, what change management technique is this?

A compromised interface for software communication was identified when a decoy access key, intentionally placed, was used and set off an alarm. What kind of deceptive measure was this?

If a security card at a branch location doesn't record when someone tries to use it to enter, what type of security oversight does this indicate?