Friday, October 20, 2017

Certificate Revocation Lists

Are you planning to take the Security+ exam? If so, make sure you understand PKI concepts. See if you can answer this practice test question.

Q. Your organization is planning to implement an internal PKI. What is required to ensure users can validate certificates?

A. An intermediate CA

B. CSR

C. Wildcard certificates

D. CRL


See if you're correct (and see the full explanation) here.

Monday, October 2, 2017

Security+ and Unauthorized System Access

Are you preparing to take the Security+ exam? If so make sure you understand some of the methods attackers use to gain unauthorized access to systems. See if you can answer this sample question.

Q. A recent antivirus scan on a server detected a Trojan. A technician removed the Trojan, but a security administrator expressed concern that unauthorized personnel might be able to access data on the server. The security administrator decided to check the server further. Of the following choices, what is the administrator MOST likely looking for on this server?

A. Backdoor

B. Logic bomb

C. Rootkit

D. Botnet

Check out the answer (and full explanation) here.