An information system is categorized as a high-impact level system. Which of the following actions should be taken next?
A. Develop the business case
B. Implement security controls
C. Determine the scope of safeguards
D. Apply emergent patches to fix high-priority vulnerabilities.
The 802.11i (WPA2) WLAN security standard was approved in June 2004, which fixes WEP and WPA flaws. Which of the following is not correct about 802.11i?
A. A block cipher with counter mode replaces the stream cipher.
B. The cryptographic key can be cached to enable fast and secure roaming.
C. Hash-based message authentication code is added to enforce frame authenticity.
D. 802.1X is used for authentication relying on Extensible Authentication Protocol (EAP).
The Extensible Authentication Protocol (EAP) is not a wire protocol; instead, it only defines message formats and typically runs directly over data link layers. Which of the following protocols is not used to encapsulate EAP messages?
A. PPP (Point-to-Point Protocol)
B. PEAP (Protected Extensible Authentication Protocol)
C. LEAP (Lightweight Extensible Authentication Protocol)
D. EAPoL (EAP over LAN)
The head of the customer service department reports that the workload of customer requests for resetting passwords overwhelms customer service representatives (CSRs) and suggests the system in question, supported by a Linux shadow file, shall allow customers to retrieve their passwords through email or short message notification. Which of the following is the best solution that meets the requirement?
A. MD5
B. Blowfish
C. SHA-256
D. Multi-factor authentication (MFA)
As a CISO, which of the following should you consider first?
A. Develop information security policies
B. Conduct business continuous planning
C. Formulate information security strategy
D. Implement information security programs
After vulnerability assessment, you are moving on to exploit an E-Commerce website’s prioritized vulnerabilities in a well-planned penetration testing project. As a penetration tester, which of the following risk should you consider foremost for the customer’s sake?
A. Failure of the target
B. Lack of the get-out-of-jail-free card
C. Detailed documentation of the exploitation
D. Objectivity of the evaluation of exploitation endeavor
Which of the following best describes a chronological record that reconstructs and examines the sequence of activities surrounding or leading to a specific operation, procedure, or event in a security-relevant transaction from inception to the final result?
A. Audit trail
B. Accountability
C. User and Entity Behavior Analytics
D. Security information and event management (SIEM)
Your company implemented a couple of private branch exchanges (PBXs) connected through ISDN trunks for voice communication. As a system architect, you are designing a SIP-based system that incorporates VoIP and web conferencing and provides end-to-end encryption. To prevent cooperating entities from exfiltrating data, which of the following intra system flaws should be verified and mitigated?
A. D channel
B. Side channel
C. Covert channel
D. Out-of-band overt channel
You are conducting penetration testing against a website supported by a relational database by creating an identity equation as a login input to manipulate and bypass the authentication procedure. Which of the following tactics, techniques, and procedures (TTP) you most likely used?
A. Polyinstantiation
B. Reflected cross-site scripting
C. Data manipulation language
D. Noise and perturbation data
You are learning about IPv6 addressing. Which of the following is not correct?
A. There are no broadcast addresses in IPv6.
B. IPv6 nodes boot with the default address (::0) and use multicast to contact the DHCP server.
C. An anycast must not be used as the source address and can be assigned only to a router.
D. A link-local address is automatically configured using the prefix FE80::/10 and the modified EUI-64 format.