SSCP by ISC Actual Free Exam Questions And Answers

Question 1

Which of the following test makes sure the modified or new system includes appropriate access controls and does not introduce any security holes that might compromise other systems?

A. Security testing

B. Stress/volume testing

C. Recovery testing

D. Interface testing

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 2

The RSA algorithm is an example of what type of cryptography?

A. Private Key.

B. Symmetric Key.

C. Secret Key.

D. Asymmetric Key.

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 3

________ attacks generally prevent valid authorized users from gaining access to system resources.

Discussion 0

Correct Answer:

Denial of Service

Question 4

What uses a key of the same length as the message where each bit or character from the plaintext is encrypted by a modular addition?

A. Cipher block chaining

B. Steganography

C. One-time pad

D. Running key cipher

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 5

Which of the following is NOT a property of a one-way hash function?

A. It is computationally infeasible to construct two different messages with the same digest.

B. It converts a message of arbitrary length into a message digest of a fixed length.

C. Given a digest value, it is computationally infeasible to find the corresponding message.

D. It converts a message of a fixed length into a message digest of arbitrary length.

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 6

What is the role of IKE within the IPsec protocol?

A. peer authentication and key exchange

B. enforcing quality of service

C. data signature

D. data encryption

Discussion 0

Correct Answer: A Vote an answer

Question 7

Which of the following is NOT a technical control?

A. Intrusion Detection Systems

B. Monitoring for physical intrusion

C. Password and resource management

D. Identification and authentication methods

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 8

Much like the layers of an onion, ______________ is a comprehensive set of security solutions layered to provide the best protection.

A. Risk Assessment

B. Vulnerability Assessment

C. Defense in Depth

D. Security policy

E. Firewall Penetration Testing

Discussion 0

Correct Answer: C Vote an answer

Question 9

What layer of the OSI/ISO model does Point-to-point tunnelling protocol (PPTP) work at?

A. Network layer

B. Transport layer

C. Session layer

D. Data link layer

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 10

Which of the following biometric devices offers the LOWEST CER?

A. Keystroke dynamics

B. Fingerprint

C. Voice verification

D. Iris scan

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 11

Which of the following is best defined as an administrative declaration by a designated authority that an information system is approved to operate in a particular security configuration with a prescribed set of safeguards?

A. Certification

B. Accreditation

C. Declaration

D. Audit

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 12

When preparing a business continuity plan, who of the following is responsible for identifying and prioritizing time-critical systems?

A. Executive management staff

B. Functional business units

C. Senior business unit management

D. BCP committee

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 13

One of the following assertions is NOT a characteristic of Internet Protocol Security (IPsec)

A. Data cannot be read by unauthorized parties

B. Data is delivered in the exact order in which it is sent

C. The number of packets being exchanged can be counted.

D. The identity of all IPsec endpoints are confirmed by other endpoints

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 14

Which of the following classes is the first level (lower) defined in the TCSEC (Orange Book) as mandatory protection?

A. A

B. B

C. D

D. C

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

ISC System Security Certified Practitioner (SSCP) - SSCP Exam Practice Test

Contact Us

Useful Links

Latest Updated