Are you preparing to take the Security+ exam? See if you can answer this sample practice test question?
Q. Users in your organization sign their emails with digital signatures. What provides integrity for these certificates?
A. Hashing
B. Encryption
C. Non-repudiation
D. Private key
See if you're correct (and view the full explanation) here.
Monday, July 31, 2017
Monday, July 24, 2017
Security+ and Door Access System
Are you planning to take the Security+ exam? If so, make sure you understand physical security concepts. For example, Can you answer this sample Security+ question?
Q. You need to secure access to a data center. Which of the following choices provides the BEST physical security to meet this need? (Select THREE.)
A. Biometrics
B. Cable locks
C. CCTV
D. Mantrap
See if you're correct and view the full explanation here.
Q. You need to secure access to a data center. Which of the following choices provides the BEST physical security to meet this need? (Select THREE.)
A. Biometrics
B. Cable locks
C. CCTV
D. Mantrap
See if you're correct and view the full explanation here.
Friday, July 21, 2017
Security+ and VPN Authentication Services
Are you planning to take the Security+ exam? If so, make sure you understand some basic VPN authentication services. As an example, see if you can answer this practice test question.
Q. Which of the following choices provide authentication services for remote users and devices? (Select TWO.)
A. Kerberos
B. RADIUS
C. Secure LDAP
D. Diameter
Check out the answer (and the full explanation here).
Q. Which of the following choices provide authentication services for remote users and devices? (Select TWO.)
A. Kerberos
B. RADIUS
C. Secure LDAP
D. Diameter
Check out the answer (and the full explanation here).
Monday, July 17, 2017
Protecting Against Attacks
Are you planning to take the Security+ exam? See if you can you answer this practice test question.
Q. Social engineers have launched several successful phone-based attacks against your organization resulting in several data leaks. Which of the following would be the MOST effective at reducing the success of these attacks?
A. Implement a BYOD policy.
B. Update the AUP.
C. Provide training on data handling.
D. Implement a program to increase security awareness.
Q. Social engineers have launched several successful phone-based attacks against your organization resulting in several data leaks. Which of the following would be the MOST effective at reducing the success of these attacks?
A. Implement a BYOD policy.
B. Update the AUP.
C. Provide training on data handling.
D. Implement a program to increase security awareness.
Monday, July 10, 2017
Authentication Mechanisms and Security+
Are you planning to take the Security+ exam? See if you can you answer this Security+ practice test question?
Q. You are logging on to your bank’s web site using your email address and a password. What is the purpose of the email address in this example?
A. Identification
B. Authentication
C. Authorization
D. Availability
Check out the answer (and full explanation) here.
Q. You are logging on to your bank’s web site using your email address and a password. What is the purpose of the email address in this example?
A. Identification
B. Authentication
C. Authorization
D. Availability
Check out the answer (and full explanation) here.
Thursday, July 6, 2017
Security+ and Cloud Computing
Are you planning to take the Security+ exam? If so, make sure you understand some basics on cloud computing.
See if you can answer this sample question.
Q. Of the following choices, which one is a cloud computing option that allows customers to apply patches to the operating system?
A. Hybrid cloud
B. Software as a Service
C. Infrastructure as a Service
D. Private
You can view the answer (and the full explanation) here.
See if you can answer this sample question.
Q. Of the following choices, which one is a cloud computing option that allows customers to apply patches to the operating system?
A. Hybrid cloud
B. Software as a Service
C. Infrastructure as a Service
D. Private
You can view the answer (and the full explanation) here.
Monday, July 3, 2017
Security+ and Penetration Testing
Are you planning to take the Security+ exam? See if you can answer this sample question related to penetration testing.
Q. During a penetration test, a tester injected extra input into an application causing the application to crash. What does this describe?
A. SQL injection
B. Fuzzing
C. Transitive access
D. XSRF
You can view the answer and the full explanation here.
Q. During a penetration test, a tester injected extra input into an application causing the application to crash. What does this describe?
A. SQL injection
B. Fuzzing
C. Transitive access
D. XSRF
You can view the answer and the full explanation here.
Subscribe to:
Posts (Atom)