CISSP For Dummies

Question 1

What is the longest period of time that a business can survive without a critical function?

Answer 1

Maximum tolerable downtime

Question 2

To be admissible in a court of law, evidence must be ________________________.

Answer 2

relevant

Question 3

____________ monitoring records every key press and mouse movement on a system.

Answer 3

Keystroke

Question 4

A ________________ is useful in safeguard selection for determining cost-effectiveness.

Answer 4

cost-benefit analysis

Question 5

The process of wrapping protocol information from one layer in the data section of another layer describes .

Answer 5

encapsulation

Question 6

Name a type of extinguishing agent that fights fires by separating the elements of the fire triangle rather than simply removing one element.

Answer 6

FM-200

Question 7

A system that accumulates knowledge by observing events’ inputs and outcomes is known as a ________________.

Answer 7

neural network

Question 8

An IPsec SA consists of what three parameters to uniquely identify it in an IPsec session?

Answer 8

Destination IP address, Security Protocol ID (SPID), Security Parameter Index (SPI)

Question 9

Name three VPN protocol standards.

Answer 9

IPsec, PPTP, SSL/TLS

Question 10

Name the four main components of a Public Key Infrastructure (PKI).

Answer 10

Certificate Authority (CA), Registration Authority (RA), Repository, Archive

Question 11

What type of firewall architecture employs external and internal routers, as well as a bastion host?

Answer 11

Screened-subnet

Question 12

What is the required operating state of a network interface on a system running a sniffer?

Answer 12

Promiscuous mode

Question 13

Name four Wi-Fi access point infrastructure modes of operation.

Answer 13

Root, repeater, bridge, mesh

Question 14

A third-party inspection of a system is known as ________________

Answer 14

an audit

Question 15

What is the formula for calculating Annualized Loss Expectancy (ALE)?

Answer 15

SLE x ARO = ALE, where SLE is the Single Loss Expectancy and ARO is the Annualized Rate of Occurrence

Question 16

PCI DSS is applicable to organizations that ______________________.

Answer 16

transmit, process, or store payment card information

Question 17

What are the four main functions of the operating system?

Answer 17

Process management, I/O device management, memory management, file management

Question 18

The decision whether to purchase an emergency generator should be based on the _________________ of electrical power outages.

Answer 18

average and worst-case duration

Question 19

The minimum number of SAs required for a two-way IPSec session between two communicating hosts using both AH and ESP is ____________.

Answer 19

four

Question 20

An alternative information-processing facility where all systems, patches, and data are mirrored from live production systems is known as a _______________.

Answer 20

hot site

Question 21

What is the purpose of a Business Impact Assessment (BIA)?

Answer 21

To describe the impact that an event or disaster will have on business operations

Question 22

Masquerading is a ___________ technique.

Answer 22

social engineering

Question 23

In a civil case, the court may issue an order, known as a _________________ , allowing a law-enforcement official to seize specific evidence.

Answer 23

writ of possession

Question 24

What are two types of risk analysis?

Answer 24

Quantitative, qualitative

Question 25

Name four examples of packet-switched WAN protocols.

Answer 25

IP, X.25, Frame Relay, SMDS

Question 26

Name three types of possible damages in a civil case.

Answer 26

Compensatory, punitive, statutory

Question 27

A ________________ model ensures that the actions of different objects and subjects aren’t seen by (and don’t interfere with) other objects and subjects on the same system.

Answer 27

noninterference

Question 28

A prolonged drop in voltage describes what electrical anomaly?

Answer 28

Brownout

Question 29

What type of water sprinkler system initially has no water present in the pipes and, at activation, delivers a large volume of water?

Answer 29

Deluge

Question 30

A developer, suspecting that he may be fired soon, modifies an important program that will corrupt payroll files long after he is gone. The developer has created a _________________.

Answer 30

logic bomb

Question 31

A SYN flood is an example of what type of attack?

Answer 31

Denial-of-service (DoS)

Question 32

The simple integrity property and star integrity property are defined in which integrity model?

Answer 32

Biba

Question 33

Name two protocols that can be used to implement one-time passwords.

Answer 33

S/Key and Diameter

Question 34

Wardriving and port scanning are examples of ___________ tests.

Answer 34

penetration

Question 35

192.167.4.1 is an example of what class of IP address?

Answer 35

C

Question 36

A baseline is what type of governance?

Answer 36

Standard

Question 37

Viruses, rootkits, and Trojan horses are broadly defined as ______________.

Answer 37

malware

Question 38

Which Internet specification provides secure e-commerce by using symmetric key systems, asymmetric key systems, and dual signatures?

Answer 38

Secure Electronic Transaction (SET)

Question 39

Who is the individual responsible for assigning information classification levels to assigned information assets?

Answer 39

Information owner

Question 40

A system used to monitor and control end -user access to cloud-based services is known as a ________________.

Answer 40

cloud access security broker (CASB)

Question 41

What are the four basic control requirements identified in the Orange Book?

Answer 41

Discretionary access control, mandatory access control, object reuse, labels

Question 42

An attacker has placed a URL on a website that, if clicked, will cause malicious JavaScript to execute in victims’ browsers. This attack is known as a ___________ attack.

Answer 42

cross-site scripting

Question 43

True or false: A signature-based IDS generally reports a high number of false positives.

Answer 43

False

Question 44

True or false: Bell-LaPadula, Biba, and Clark-Wilson all address availability issues.

Answer 44

False

Question 45

Filling a system’s hard drive so that it can no longer record data is a type of __________ attack.

Answer 45

denial-of-service (DOS)

Question 46

Authentication can be based on any combination of what three factors?

Answer 46

Something you know, something you have, something you are

Question 47

Sensitivity labels are a fundamental component of which type of access control system?

Answer 47

Mandatory

Question 48

Antimalware software that watches for anomalous behavior uses what technique?

Answer 48

Heuristics

Question 49

Name three types of intrusion detection systems used for physical security.

Answer 49

Photoelectric sensors, dry contact switches, motion detectors

Question 50

Which U.S. government data classification level describes information that, if compromised, could cause grave damage to national security?

Answer 50

Top Secret

Question 51

Most security policies are categorized as what type?

Answer 51

Advisory

Question 52

To deter casual trespassers, fencing should be a minimum height of ______________ feet.

Answer 52

3

Question 53

Name three methods of attack against access control systems

Answer 53

Brute-force, dictionary, buffer overflow

Question 54

The two types of host or network intrusion detection are ______________ and ________________ .

Answer 54

signature-based systems, anomaly-based systems

Question 55

Name the four layers of the TCP/IP Protocol Model.

Answer 55

Application, Transport, Internet, Link (or Network)

Question 56

Name the three elements of the fire triangle necessary for a fire to burn.

Answer 56

Fuel, oxygen, heat

Question 57

The Ethernet protocol is defined at what layer of the OSI model and in which IEEE standard?

Answer 57

Data Link, 802.3

Question 58

Which ITSEC classification level is equivalent to TCSEC level B3?

Answer 58

E5

Question 59

The process of reviewing and approving proposed changes to systems is known as ________________.

Answer 59

change management

Question 60

What type of cabling should be used below raised floors and above drop ceilings?

Answer 60

Plenum

Question 61

What is the main reason for establishing an asset classification program?

Answer 61

It isn’t practical to protect all data equally.

Question 62

What is the main reason for establishing an asset classification program?

Answer 62

It isn’t practical to protect all data equally.

Question 63

Portable CO2 fire extinguishers are classified as what type of extinguishing system?

Answer 63

Gas-discharge

Question 64

Electrical fires are classified as what type of fire and use what extinguishing methods?

Answer 64

Class C; CO2 or FM-200

Question 65

When should management be notified of a computer crime?

Answer 65

As soon as the crime is detected

Question 66

The LLC and MAC are sublayers of which OSI model layer?

Answer 66

Data Link

Question 67

A ______________ conveys information by altering stored system data.

Answer 67

covert storage channel

Question 68

A ___________ conveys information by altering a system resource’s performance or timing.

Answer 68

covert timing channel

Question 69

Which U.S. government data classification level describes information that, if compromised, could cause serious damage to national security?

Answer 69

Secret

Question 70

Which PPP authentication protocol transmits passwords in clear text?

Answer 70

Password Authentication Protocol (PAP)

Question 71

What are the three elements of the C-I-A triad?

Answer 71

Confidentiality, integrity, availability

Question 72

A system that continues to operate following the failure of a network component describes which type of system?

Answer 72

Fault-tolerant

Question 73

What term describes the legal evidence-gathering technique of luring an individual toward certain evidence after that individual has already committed a crime?

Answer 73

Enticement

Question 74

Name three factors that are used to determine data classification.

Answer 74

Value, regulations, policy

Question 75

True or false: Risk avoidance is considered to be a general remedy for risk.

Answer 75

False

Question 76

A computer system that alternates execution of multiple subprograms on a single processor describes what type of system?

Answer 76

Multitasking

Question 77

Name three asymmetric key systems based on discrete logarithms.

Answer 77

Diffie-Hellman, Elliptic Curve, ElGamal

Question 78

Name four types of intellectual property.

Answer 78

Patents, trademarks, copyrights, trade secrets

Question 79

Name five protocols that can be used to secure email communication.

Answer 79

SMTP over TLS, S/MIME, MOSS, PEM, PGP

Question 80

What type of network attack sends TCP packets from a spoofed source address with the SYN bit set?

Answer 80

SYN flood

Question 81

The Advanced Encryption Standard (AES) is based on what symmetric key algorithm?

Answer 81

Rijndael

Question 82

The restricted environment that Java applets occupy is known as a _______________.

Answer 82

sandbox

Question 83

Violation reports and audit trails are examples of what type of control?

Answer 83

Detective technical

Question 84

A type of cipher that replaces bits, characters, or character blocks with alternate bits, characters, or character blocks to produce cipher text is known as a ______________.

Answer 84

substitution cipher

Question 85

Name three types of general-purpose controls.

Answer 85

Detective, preventive, corrective

Question 86

Data on backup media being sent by courier to an off-site storage location is known as what?

Answer 86

Data in transit

Question 87

The ____________ protocol is used to facilitate user authentication across systems and among organizations through the exchange of authentication and authorization information among organizations.

Answer 87

Security Assertion Markup Language (SAML)

Question 88

True or false: Failure to implement a safeguard may result in legal liability if the cost of implementing the safeguard is less than the cost of the associated loss.

Answer 88

True

Question 89

The Clark-Wilson integrity model is based on the concept of a ___________, in which a transaction is sufficiently ordered and controlled that it maintains internal and external consistency.

Answer 89

well-formed transaction

Question 90

The logic present in an object is known as a ____________ .

Answer 90

method

Question 91

“A user cannot deny an action” describes the concept of _____________

Answer 91

nonrepudiation

Question 92

A data network that operates across a large geographic area defines what type of network?

Answer 92

WAN

Question 93

In biometric systems, what is a False Accept Rate (Type II) error?

Answer 93

Unauthorized users are incorrectly granted access.

Question 94

Name five types of attacks against voice communication systems.

Answer 94

Identity fraud, toll fraud, eavesdropping, denial-of-service (DoS), Spam over Internet Telephony (SPIT)

Question 95

The practice of regularly transferring personnel to different positions or departments within an organization is known as ___________.

Answer 95

job rotation

Question 96

The purpose of session management in a web application is to ________________.

Answer 96

protect sessions from unauthorized access

Question 97

The total combination of protection mechanisms within a computer system (including hardware, firmware, and software) that’s responsible for enforcing a security policy defines a ______________.

Answer 97

Trusted Computing Base

Question 98

An address used as the origin for calculating other addresses describes ________________.

Answer 98

base addressing

Question 99

What is a primary technical concern with long-term audit log retention?

Answer 99

Whether any tape or disk drives will be available to read the media

Question 100

The most extensive type of disaster recovery plan test is ______________.

Answer 100

an interruption test

Question 101

Name the four CPU operating states.

Answer 101

Operating (or run), problem (or application), supervisory, wait