BSI_question_answer_only.csv - BSI_question_answer_only.csv Flashcards by Andrii Kovalchuk

A risk is the likelihood of a threat source taking advantage of a vulnerability to an information system. Risks left over after implementing safeguards is known as:

Residual risks.

How well did you know this?

Not at all

Perfectly

Protects the right of an author to prevent unauthorized use of his/her works.

How well did you know this?

Not at all

Perfectly

As an information systems security professional, what is the highest amount would you recommend to a corporation to invest annually on a countermeasure for protecting their assets valued at $1 million from a potential threat that has an annualized rate of occurrence (ARO) of once every five years and an exposure factor (EF) of 10% :

$20,000.00

How well did you know this?

Not at all

Perfectly

Which of the following describes the first step in establishing an encrypted session using a Data Encryption Standard (DES) key?

Key exchange

How well did you know this?

Not at all

Perfectly

In a typical information security program, what is the primary responsibility of information (data) owner?

Determine the information sensitivity or classification level.

How well did you know this?

Not at all

Perfectly

Which of the following is not a component of â€œchain of evidenceâ€:

Identification of person who left the evidence.

How well did you know this?

Not at all

Perfectly

When an employee transfers within an organization â€¦

All access permission should be reviewed.

How well did you know this?

Not at all

Perfectly

A system security engineer is evaluation methods to store user passwords in an information system, so what may be the best method to store user passwords and meeting the confidentiality security objective?

One-way encrypted file

How well did you know this?

Not at all

Perfectly

What is the inverse of confidentiality, integrity, and availability (C.I.A.) triad in risk management?

disclosure, alteration, destruction

How well did you know this?

Not at all

Perfectly

A CISSP may face with an ethical conflict between their companyâ€™s policies and the (ISC)2 Code of Ethics. According to the (ISC)2 Code of Ethics, in which order of priority should ethical conflicts be resolved?

Duty to public safety, principals, individuals, and profession.

How well did you know this?

Not at all

Perfectly

Company X is planning to implement rule based access control mechanism for controlling access to its information assets, what type of access control is this usually related to?

Discretionary Access Control

How well did you know this?

Not at all

Perfectly

In the Common Criteria Evaluation and Validation Scheme (CCEVS), requirements for future products are defined by:

Protection Profile.

How well did you know this?

Not at all

Perfectly

As an information systems security manager (ISSM), how would you explain the purpose for a system security policy?

A brief, high-level statement defining what is and is not permitted during the operation of the system

How well did you know this?

Not at all

Perfectly

Configuration management provides assurance that changesâ€¦?

do not adversely affect implementation of the security policy.

How well did you know this?

Not at all

Perfectly

Under what circumstance might a certification authority (CA) revoke a certificate?

The certificate ownerâ€™ private key has been compromised.

How well did you know this?

Not at all

Perfectly

Which of the following entity is ultimately responsible for information security within an organization?

Senior Management

How well did you know this?

Not at all

Perfectly

What type of cryptanalytic attack where an adversary has the least amount of information to work with?

Ciphertext-only

How well did you know this?

Not at all

Perfectly

In business continuity planning, which of the following is an advantage of a â€œhot siteâ€ over a â€œcold siteâ€

A&C

How well did you know this?

Not at all

Perfectly

Which of the following is the most effective method for reducing security risks associated with building entrances?

Minimize the number of entrances

How well did you know this?

Not at all

Perfectly

All of the following methods ensure the stored data are unreadable except…?

removing the volume header information.

How well did you know this?

Not at all

Perfectly

Prior to installation of an intrusion prevention system (IPS), a network engineer would place a packet sniffer on the network, what is the purpose for using a packet sniffer?

It monitors network traffic.

How well did you know this?

Not at all

Perfectly

What determines the assignment of data classifications in a mandatory access control(MAC) philosophy?

The organizationâ€™s published security policy for data classification

How well did you know this?

Not at all

Perfectly

A type cryptographic attack where it is based on the probability of two different messages using the same hash function to produce the same message digest is?

Birthday attack

How well did you know this?

Not at all

Perfectly

An access control system that grants users only those rights necessary for them to perform their work is operating on which security principle?

Least Privilege

How well did you know this?

Not at all

Perfectly

Which of the following is the primary goal of a security awareness program?

It provides a clear understanding of potential risk and exposure.

Which of the following evidence collection method is most likely accepted in a court case?

Provide a mirror image of the hard drive.

Which of the following characteristics is not of a good stream cipher?

Statistically predictable.

When a security administrator wants to conduct regular test on the strength of user passwords, what may be the best setup for this test?

A standalone workstation with Rainbow table and a copied password database.

When engaging an external contractor for a software development project, source code escrow can be used to protect against...?

vendor bankruptcy.

Which answer lists the proper steps required to develop a disaster recovery andbusiness continuity plan (DRP/BCP)?

Project initiation, business impact analysis, strategy development, plan development, testing, maintenance.

Which of the followings is an example of simple substitution algorithm?

Caesar cipher

An information security program should include the following elements:

Security policy implementation, assignment of roles and responsibilities, and

Which of the following refers to a series of characters used to verify a userâ€™s identity?

Password

Which e-mail standard relies on "Web of Trust"?

Pretty Good Privacy (PGP)

Security of an automated information system is most effective and economical if the system is...?

designed originally to meet the information protection needs.

Act of obtaining information of a higher level of sensitivity by combining information from lower level of sensitivity is called?

Aggregation

Which of the following virus types changes its characteristics as it spreads?

Polymorphic

It is important that information about an ongoing computer crime investigation be...?

limited to as few people as possible.

Which answer is not true for Diffie-Hellman algorithm?

Security stems from the difficulty of calculating the product of two large prime numbers.

After signing out a laptop computer from the company loaner pool, you discovered there is a memorandum stored in the loaner laptop written to a competitor containing sensitive information about a new product your company is about to release. Based on the (ISC)Â² Code of Ethics, what is the first action you should take?

Immediately inform your companyâ€™s management of your findings and its potential ramifications.

Job rotation...?

requires that more than one person fulfill the tasks of one position within the company, thereby providing both backup and redundancy.

Which of the following is the least important information to record when logging a security violation?

Userâ€™s name

Which of the following mechanism is used to achieve non-repudiation of a message delivery?

Sender gets a digitally signed acknowledgment from the recipient containing a copy or digest of the message.

What is the trusted registry that guarantees the authenticity of client and server public keys?

Certification authority.

The concept that all accesses must be mediated, protected from unauthorized modification, and verifiable as correct is implemented through what?

A security kernel.

For what reason would a network administrator leverages promiscuous mode on a network interface?

To monitor the network to gain a complete statistical picture of activity.

Which has the flag used for a TCP 3-way handshake?

Syn -\>: Syn-Ack

During a disaster or emergency, how does a closed-circuit television (CCTV) help management and security to minimize loss?

It helps the management to direct resources to the hardest hit area.

The goal of cryptanalysis is to...?

forge coded signals that will be accepted as authentic.

Which one of the followings cannot be identified by a business impact analysis(BIA)?

Determining team members associated with disaster planning.

The three primary methods for authenticating users to a system or network are...?

passwords, tokens, and biometrics.

Pretty Good Privacy (PGP) provides...?

confidentiality, integrity, and authenticity.

Which of the following can be identified when exceptions occur using operations security detective controls?

Authorized operations people performing unauthorized functions.

When downloading software from Internet, why do vendors publish MD5 hash values when they provide software to customers?

Recipients can verify the softwareâ€™s integrity after downloading.

From a legal perspective, which rule must be addressed when investigating a computer crime?

Evidence

Before powering off a computer system, a computer crime investigator should record contents of the monitor and...?

dump the memory contents to a disk.

Which of the following transaction processing properties ensures once a transaction completes successfully (commits), the updates survive even if there is a system failure?

Durability.

Which of the following is not a symmetric key algorithm?

RSA.

A security planning process must defines: how security will be managed, who will be responsible, and...?

what practices are reasonable and prudent for the enterprise.

A security policy provides a way to...?

identify and clarify security goals and objectives.

Which of the following feature does a digital signature provide?

It identifies the source and verifies the integrity of data.

Computer security is generally considered to be the responsibility of...?

everyone in the organization.

The practice of embedding a message in a document, image, video or sound recording so that its very existence is hidden is called?

Steganography.

What characteristic of Digital Encryption Standard (DES) used in Electronic Code Book (ECB) mode makes it unsuitable for long messages?

Repeated message blocks produce repeated cipher text blocks.

Separation of duties should be...?

cost justified for the potential for loss.

What is the advantage of Rivest, Shamir, Adelman (RSA) public key system over the Digital Signature Algorithm (DSA)?

It can be used for encryption.

In IPsec, what is the standard format that helps to establish and manage the security association (SA) between two internetworking entities?

Internet Key Exchange (IKE)

When securing Internet connections which of the following should be used to protect internal routing and labeling schemes?

Network Address Translation (NAT)

Which of the following describes the step prior to an encrypted session using Data Encryption Standard (DES)?

Key exchange

What is a set of step-by-step instructions used to satisfy control requirements called?

Procedure

The accounting branch of a large organization requires an application to process expense vouchers. Each voucher must be input by one of many accounting clerks, verified by the clerkâ€™s applicable supervisor, then reconciled by an auditor before the reimbursement check is produced. Which access control technique should be built into the application to best serve these requirements?

Role-based Access Control (RBAC)

What principle recommends division of responsibilities so that one person cannot commit an undetected fraud?

Separation of duties

In what situation would TEMPEST risks and technologies be of most interest?

Where the consequences of disclosure are very high

Which of the following is true about information that is designated with the highest level of confidentiality in a private sector organization?

It is limited to named individuals and creates an audit trail.

When verifying key control objectives of a system design, the security specialist should ensure that the...?

vulnerability assessment has been completed.

What type of controls is not utilized to achieve management directives to protect company assets?

Financial controls

All of the followings are hashing algorithms except...?

IDEA

Security management practice focuses on the continual protection of:

Company assets

The likelihood of a threat source taking advantage of a vulnerability is called?

Risk

An instance of being exposed to losses is called?

Exposure

Reference monitor requires which of the following conditions?

Isolation, completeness and verifiability

A person in possession of a sample of ciphertext and corresponding plaintext is capable of what type of attack?

Known-plaintext

Methods of handling risk include all of the followings except:

Selling risk

Which of the following is not true regarding security policy?

It is promulgated by senior IT security staff

Which of the following describes the activities that assure protection mechanisms are maintained and operational?

Due diligence

When there is a â€œseparation of dutiesâ€, parts of tasks are assigned to different people so that:

Collusion is required to perform an unauthorized act.

Which of the following is not a generally accepted benefit of security awareness, training and education?

A security awareness and training program will help prevent natural disasters from occurring.

Which statement below is an incorrect description of a security control?

Corrective controls reduce the likelihood of a deliberate attack

Physical security is accomplished through proper facility construction, fire and water protection, anti-theft mechanisms, intrusion detection systems, and security procedures that are adhered to and enforced. Which of the following is not a component that achieves this type of security?

Integrity control mechanisms

In a typical information security program, who would be responsible for providing reports to the corporate executives and senior management on the effectiveness of the instituted program controls?

Auditors

What is the difference between quantitative and qualitative risk analysis?

Quantitative analysis provides formal cost/benefit information while qualitative analysis does not.

If risk is defined as â€œthe potential that a given threat will exploit vulnerabilities of an asset or group of assets to cause loss or damage to the assetsâ€ the risk has all of the following elements except?

Controls addressing the threats.

Which statement below most accurately reflects the goal of risk mitigation?

Defining the acceptable level of risk the organization can tolerate, then reduce risk to that level.

Risk analysis allows you to do all of the following except:

Prevent risk

Which of the following is not true with respect to qualitative risk analysis?

Results in concrete probability percentages.

Which choice below is an accurate statement about standards?

Standards are the first element created in an effective security policy program.

A memory address location specified in a program instruction that contains the address of final memory location is known as:

Indexed addressing.

Which one of the following hardware devices can be re-programmed? 1 Read Only Memory (ROM). 2 Programmable Read Only Memory (PROM). 3 Erasable Programmable Read Only Memory (EPROM). 4 Electrically Erasable Programmable Read Only Memory (EEPROM).

3 and 4

A processing methodology that executes two or more tasks on a single processor is known as:

Multitasking.

Which of the following is a high-level language?

BASIC

Which of the followings are security concerns with distributed systems?

A, B, and C.

Trusted Computing Base (TCB) is comprised of what combination of system components? 1 Hardware 2 Firmware 3 Software

All of the above.

Reference monitor \_\_\_\_\_\_\_.

controls objects access by subjects.

Which security mode best defines where users have both the required clearance and the need-to-know for all data on a system?

Dedicated.

Otherwise known as a â€œtrap doorâ€, this vulnerability is often built into a system.

Maintenance hook.

What criteria went into the Common Criteria standard?

All of the above.

Which of the following is the European evaluation criteria standard?

B. ITSEC.

In the following top-down Common Criteria evaluation process, what is the missing component: Protection Profile ïƒ Target of Evaluation ïƒ ??\> ïƒ Security Functionality/Assurance Requirements ïƒ Evaluation ïƒ Evaluation Assurance Level

Security Target.

A cipher that scrambles letters into different positions is referred to as what?

Transposition

The HAVAL algorithms perform what function?

Hashing

Which security model focuses on confidentiality only?

Bell-LaPadula.

Which of the following includes the definition of procedures for emergency response?

Business Continuity Planning

Which of the following team should be part of the disaster recovery procedures?

Salvage Team

A characteristic of security model that enforces information flow in only one direction is:

Star property.

The business continuity planning (BCP) project management and initiation phase does not involve?

Performing a business impact analysis (BIA).

In what way does the RSA algorithm differs from the Data Encryption Standard (DES)?

It uses a public key for encryption.

Information flow models:

Ensure that data moves in a way that does not violate security policy.

Which type of network is more likely to include Frame Relay, Switched Multi-megabit Data Services (SMDS), and X.25?

D. Internet

Which device can Forward, Filter, and Flood?

C. Hub

Which of the following is not a good description of Pretty Good Privacy (PGP)?

B. It uses a hierarchical trust model

Match the correct network connection speed to the correct standard. 802.11 - ? 802.11b - ? 802.11g - ? 1. 1 & 2 Mbps 2. 4 & 8 Mbps 3. 11 Mbps 4. 54 Mbps

A. 1-3-4

Which is not a type of service available with ATM?

A. MBR (Minimum Bit Rate)

MAC (Media Access Control) and LLC (Logical Link Control) have been designated to which layer by the IEEE?

B. Data-Link Layer

\_\_\_\_ is when a layer 3 packet is modified to fit into a layer 2 network with different characteristics.

B. Fragmentation

What is the role of asymmetric key cryptography in public key infrastructure (PKI) applications?

A. It is used for key management.

Which routing protocol is used to allow hosts to participate in multicasting?

B. IGMP (Internet Group Management Protocol)

ARP and RARP are used to map which?

B. MAC address to IP address

Use the unique response from a given system to identify the operating system running on a host is also known as \_\_\_\_\_.

B. OS fingerprinting

Which is the best defense against network sniffing?

D. Encryption

A Smurf attack takes advantage of which of the following?

A. ICMP messages to a networkâ€™s broadcast address.

Which is not true about fair cryptosystems?

D. It uses a tamper proof chip.

A system where a user authenticates, is disconnected, and the receiving system connects back to a number in a pre-defined database is also known as which?

A. Callback

What does Advanced Encryption Standard (AES) do?

C. It performs bulk data encryption

A Sockets (SOCKS) gateways can be classified as which type of firewall?

C. Circuit-level

RFC 1918 extended IPv4 with the introduction of non-routable addresses in support of which technology below?

B. NAT

In configuration management, a configuration item is?

B. A component whose state is to be recorded and against which changes are to be progressed.

In software development life cycle, the Waterfall Model assumes thatâ€¦?

B. Each step can be completed and finalized without any effect from the later stages that may require rework.

What does the Spiral SDLC Model depicts?

A. A spiral that incorporates various phases of software development

What can best be described as an abstract machine which it must mediate all access of subjects to objects?

A. The reference monitor

Which provides a physical connection between the network cabling and the computerâ€™s internal bus?

D. Network interface cards (NICs)

What is defined as the hardware, firmware and software elements of a trusted computing base that implement the reference monitor concept?

A. Protection rings

Critical areas should be lighted:

D. Eight feet high and two feet out.

The percentage of loss a realized threat could have on a certain asset is known as the:

C. Exposure factor (EF)

Why does buffer overflow happen?

C. Because input data is not checked for appropriate length at time of input

Referential integrity requires that for any foreign key attribute, the referenced relation must have a tuple with the same value for which of the following?

D. primary key

What type of malware is self-contained and it does not need to be part of another computer program to propagate?

C. Computer worm

Which of the following represents a prolonged high voltage?

A. A power surge

What type of malware that is capable of infect a file with an encrypted copy of itself, then modify itself when decoded to make almost impossible to detect by signature-based virus scanner?

D. Polymorphic virus

A timely review of system access records would be an example of which basic security function?

C. Prevention

Which of the following is a reasonable response from the intrusion detection system when it detects Internet Protocol (IP) packets where the IP source address is the same as the IP destination address?

B. Record selected information about the item and delete the packet

A major disadvantage of single sign-on (SSO) is:

B. A compromised password exposes all authorized resources.

Which of the following can be identified when exceptions occur using operations security detective controls?

C. Authorized operations people performing unauthorized functions.

An access system that grants users only those rights necessary for them to perform their work is operating on follows which security principle?

B. Least Privilege

Three principal schemes that provide a framework for managing access control are

A. Discretionary Access Control (DAC), Mandatory Access Control (MAC), and Role Based Access Control (RBAC).

When a communication link is subject to monitoring, what is the advantage for using an end-to-end encryption solution over link encryption solution?

A. Cleartext is only available to the sending and receiving entities.

To which form of access control is a rule based control mechanism usually related?

A. Discretionary Access Control

Which of the following does a digital signature provide?

C. It identifies the source and verifies the integrity of data.

What role does biometrics have in logical access control?

C. Authentication

When establishing a violation tracking and analysis process, which one of the following parameters is used to keep the quantity of data to manageable levels?

D. Clipping levels

The accounting branch of a large organization requires an application to process expense vouchers. Each voucher must be input by one of many accounting clerks, verified by the clerkâ€™s applicable supervisor, then reconciled by an auditor before the reimbursement check is produced. What access control technique should be built into the application to meet the information protection needs?

C. Role-based Access Control (RBAC)

What best describes two-factor authentication?

D. A combination of two listed above

A timely review of system access records would be an example of which basic security function?

D. Detection

Which protocol makes use of an electronic wallet on a customer's PC and sends encrypted credit card information to merchant's Web server, which digitally signs it and sends it on to its processing bank?

D. SET

Risk management helps you do all of the followings except:

D. Completely avoid risk

Which of the following identifies the encryption algorithm selected by NIST for the new Advanced Encryption Standard (AES)?

C. Rijndael

What is the role of internet key exchange (IKE) within the IPsec protocol?

D. Peer authentication and key exchange.

Which type of attack is based on the probability of two different messages using the same hash function producing a common message digest?

D. Birthday attack

Which of the following encryption methods is considered unbreakable?

B. One-time pads

The Clipper Chip utilizes which concept in public key cryptography?

A. Key Escrow

Public Key algorithms are:

C. 1,000 to 10,000 times slower than secret key algorithms

Cryptography does not concern itself with:

A. Availability

Which of the following protects Kerberos against replay attacks?

C. Time stamps

Which network topology offers the highest reliability and availability?

D. Mesh

A public key algorithm that does both encryption and digital signature is which of the following?

A. RSA

Which of the following is the correct calculation?

B. Asset value ($) x exposure factor (%) = single loss expectancy ($)

Copies of the original discs and other media are considered as what type of evidence?

C. Hearsay evidence

Which of the following statement is most accurate of digital signature?

A. It allows the recipient of data to prove the source and integrity of data.

The Diffie-Hellman algorithm is primarily used to provide which of the following?

A. Key exchange

Of the following, which is most true?

B. El Gamal gets its strength from the complexity of using discrete logarithms in a finite field

Which security model addresses integrity? 1. Bell-LaPadula. 2. Clark-Wilson. 3. Biba. 4. Chinese Wall.

C. 2 and 3.

Of the followings, which is the best description of a digital signature?

B. The sender encrypts a message digest with his/her private key

What encryption operation is used when AES uses S-boxes during the process of encryption?

A. Substitution

Which item is the responsibility of key management?

A. Key generation and destruction

How many bits make up the effective Data Encryption Standard (DES) key?

A. 56

The estimated frequency a threat will occur within a year is known as the:

B. Annualized rate of occurrence (ARO)

What is the Clipper Chip key size?

A. 80 bit

When an organization is determining which data is sensitive, it must consider all of the following except:

C. Quantity of data

Data Encryption Standard (DES) uses which algorithm?

C. Lucifer

To speed up RAID disk access, an organization can:

B. Stripe the data across several drives.

Which choice below most accurately describes the organizationâ€™s responsibilities during an unfriendly termination?

A. System access should be removed as quickly as possible after termination.

The concept of least privilegeâ€¦?

D. assures that individuals only have the permissions and rights necessary for them to do their job.

Which is most likely to help a company detect fraudulent activity:

A. Mandatory vacations

Clipping level is all of the followings except:

D. Recorded for further review once they have been exceeded.

Proper change control management involves:

B. Having a well-structured change management process.

All of the followings are acceptable for sanitizing data except:

A. Deleting it.

Trusted recovery may be defined as:

A. Procedures that restore a system and its data in a trusted manner after the system was disrupted or a system failure occurred.

Which of the following is incorrect with respect to a system cold start:

B. Occurs when recovery procedure cannot recover the system to a more consistent state.

Which of the following statements is incorrect:

B. Fax machines are more secure than fax servers.

\_\_\_\_ tunnels NetBEUI and IPX protocols.

A. PPTP

Which of the following statements regarding session hijacking is incorrect:

Cannot be safeguarded against, not even through mutual authentication using protocols such as IPsec.

Separation of duty can be defeated by:

Collusion

Recovery controls attempt to:

Return to normal operations

Which of the following questions is less likely to help in assessing physical and environmental protection?

Are there processes to ensure that unauthorized individuals cannot read, copy, alter, or steal printed or electronic information?

Security guards are appropriate whenever the function required by the security program involves which of the following?

The use of discriminating judgment.

\_\_\_\_\_\_ communications rely on clocking systems at the sending and receiving ends to sync, rather than stop and start bits.

Synchronous

Which of the following is a â€œClass Aâ€ fire?

Common combustibles

This IPsec mode encapsulates the entire IP packet between IPsec nodes. A. Transport

Tunnel

A momentary power outage is a:

Fault

Which security measure would be the best deterrent to the theft of corporate information from a laptop which was left in a hotel room?

Remove the batteries and power supply from the laptop and store them separately from the computer.

Which of the following is not EPA-approved replacements for Halon?

Bromine

Which of the following statements pertaining to fire suppression systems is true?

CO2 systems are effective because they suppress the oxygen supply required to sustain the fire.

Which of the following suppresses combustion through a chemical reaction that kills the fire?

Halon

Which of the following is a â€œClass Câ€ fire?

electrical

When handling electronic evidence, what is the implementation principle for chain of custody that documents the evidence life cycle?

Must account for everyone who had access to the evidence.

Which of the following is a proximity identification device that does not require action by the user and works by responding with an access code to signals transmitted by a reader?

Atransponder

A momentary high voltage is a:

Spike

A device that supplies power when the commercial utility power system fails is called?

uninterruptible power supply (UPS)

The ideal operating humidity range is defined as 40 percent to 60 percent. Low humidity (less than 40 percent) can produce what type of problem on computer parts?

Static electricity

While referring to physical security, what does positive pressurization means?

The air goes out of a room when a door is opened and outside air does not go into the room.

Which of the following question is less likely to help in assessing physical access controls?

Is the operating system configured to prevent circumvention of the security

The National Institute of Standards and Technology (NIST) standard pertaining to perimeter protection states that critical areas should be illuminated up to?

Eight feet high and two feet out.

Which of the following is true about a "dry pipe" sprinkler system?

It minimizes chances of accidental discharge of water.

The followings are fire detector types except:

Acoustical-seismic detection system

Which of the following asymmetric encryption algorithm is based on the difficulty of factoring large numbers?

RSA

Under what conditions would the use of a Class C fire suppression system be preferable to the use of a Class A fire suppression system?

When the fire involves electrical equipment.

Which of the following recovery issue must be considered in disaster recovery planning (DRP)?

PublicRelations

A business continuity plan (BCP) should have a structure that includes:

What should take place in order to restore a server, its files and data after a major system failure?

Restore from storage media backup

It is recommended that your disaster recovery plan (DRP) and business continuity plan (BCP) be tested at a minimum of what intervals?

One year

In addition to preventing loss of life and further injury, what other reason is there to immediately initiate an emergency plan after a disaster?

Secure the area to prevent any looting, fraud or vandalism.

When shopping for an off-site backup facility that will ultimately be used to store all your backup media, what is the most important factor to consider?

The facility should protect against unauthorized access and entry.

What is the primary reason for using one-way hashing algorithms on user passwords?

It prevents people from seeing the passwords in clear text

What is the most critical factor in the development of a disaster recovery plan (DRP)?

Business impact analysis (BIA)

What is the best description of a structured walk through test?

All departments receive a copy of the disaster recovery plan and walk through it.

Which of the following backup facility is most expensive?

Hot

A business impact analysis would not likely include which of the following tasks?

Identifying critical functions of the company

What is the effective length of a secret key in the Data Encryption Standard (DES) algorithm?

56-bit

If a site needed sporadic access to another network, which would be the best choice?

SVC (switched virtual circuit)

Resuming critical business functions includes:

Establishing the command center

The admissibility rule requires that evidence must be excluded if:

It is not legally obtained.

Chain of custody is primarily used to:

Protect and account for evidence.

A unique packaging method or symbol is a:

Trademark.

Why is computer crime difficult to investigate:

Criminals can spoof their address.

Privacy laws generally include which of the following provisions:

Government agencies may not use data for a purpose other than that for which it was initially collected.

What is the minimum and customary practice of responsible protection of assets that affects a community or societal norm?

Due care

What is the best description of a stream cipher?

The cipher uses a key to create a keystream and XOR's the result with the message

Evidence may be not detected through:

Accidental discovery

Which of the following is not a valid X.509 V.3 certificate field?

Subjectâ€™s digital signature

Which network protocol uses a â€œconnectedâ€ session?

Transmission Control Protocol (TCP)

What are the objectives of emergency actions taken at the beginning stage of a disaster? Preventing injuries, loss of life, and ...

mitigating damage

BSI_question_answer_only.csv - BSI_question_answer_only.csv Flashcards

(250 cards)