Which of the following least aligns with the concept of Zero Trust? (Wentz QOTD)
A. Record network traffic for visibility
B. Encrypt traffic over LAN using IPSec
C. Dynamically open ports using port knocking
D. Implement multi-tier firewalls as part of the defense-in-depth strategy
Your organization implemented an anomaly-based Intrusion Detection System (IDS) designed to optimize false-negative probability and minimize potential losses. However, the IDS triggered too many false alarms. As the IDS administrator, you are evaluating the configuration change to reduce the number of false alarms. Which of the following is the least likely ramification of the change? (Wentz QOTD)
A. Zero-day exploits might increase
B. Investigation workload might decrease
C. The sensitivity of the IDS might be lowered
D. The detection threshold of IDS might be enlarged
A tunnel is a logical link or point-to-point connection, established through tunneling protocols, that encapsulates payloads between two nodes over a public or shared network. Still, other security services or protocols protect data transmitted through the tunnel. Which of the following is not a tunneling protocol? (Wentz QOTD)
A. Virtual Extensible LAN (VXLAN)
B. Layer 2 Forwarding Protocol (L2F)
C. Generic Routing Encapsulation (GRE)
D. Encapsulating Security Payload (ESP)
When it comes to the Data Link layer of the ISO OSI Reference Model, which of the following is least likely to be used for logic link control? (Wentz QOTD)
A. Sliding Window
B. Retransmission
C. Cyclic Redundancy Check (CRC)
D. Carrier-sense multiple access with collision detection (CSMA/CD)
Which of the following is the best cryptographic function used to enforce confidentiality? (Wentz QOTD)
A. One-time pad (OTP)
B. RSA Digital Signature Algorithm
C. Time-based One-Time Password (TOTP)
D. Hash-based Message Authentication Codes (HMAC)
A France computer manufacturer submits a trusted computer system for the Common Criteria evaluation and receives an EAL 7. The system supports the security policy that allows a user cleared as confidential to prepare reports to the supervisor at the secret level. Which of the following is least likely to be used in the design as a formal model? (Wentz QOTD)
A. Finite state machine
B. Information flow model
C. Non-interference model
D. Mandatory access control
According to Dorothy E. Denning, “the lattice properties permit concise formulations of the security requirements of different existing systems and facilitate the construction of mechanisms that enforce security.” Which of the following is not a lattice-based access control model? (Wentz QOTD)
A. Biba model
B. Clark-Wilson model
C. Brewer and Nash model
D. Bell-LaPadula (BLP) model
A trusted computer system is typically designed based on a formal model. Which of the following is incorrect about the Trusted Computer System Evaluation Criteria (TCSEC)? (Wentz QOTD)
A. TCSEC is developed based on the Bell-LaPadula Model (BLP).
B. The clearance/classification scheme is expressed in terms of a lattice.
C. A trusted path ensures recovery without a compromise if secure state transitions fail.
D. Discretionary access control enables objects sharing by named individuals or groups, or both.
A software developer checked in new code and pushed it into the remote code repository. Which of the following activities is most likely to happen immediately after the push? (Wentz QOTD)
A. Unit testing
B. Integration testing
C. Regression testing
D. Management acceptance of residual risk
When it comes to software test coverage analysis, which of the following has the finest granularity of testing? (Wentz QOTD)
A. Use cases
B. Test scenarios
C. Lines of code (LOC)
D. Expressions and decision structures