单选题Different countries have different legal systems. Which of the following correctly describes customary law?
单选题Device backup and other availability solutions are chosen to balance the value of having information available against the cost of keeping that information available. Which of the following best describes fault-tolerant technologies?
单选题The following scenario applies to questions 30, 31, and 32.Operating systems have evolved and changed over the years. The earlier operating systems were monolithic and did not segregate critical processes from noncritical processes. As time went on operating system vendors started to reduce the amount of programming code that ran in kernel mode. Only the absolutely necessary code ran in kernel mode, and the remaining operating system code ran in user mode. This architecture introduced performance issues, which required the operating system vendors to reduce the critical operating system functionality to microkernels and allow the remaining operating system functionality to run in client/server models within kernel mode.
单选题Fred has been told he needs to test a component of the new content management application under development to validate its data structure, logic, and boundary conditions. What type of testing should he carry out?
单选题Several different tunneling protocols can be used in dial-up situations. Which of the following would be best to use as a VPN tunneling solution?
单选题What of the following allows security personnel to change the field of view of a CCTV lens to different angles and distances?
单选题Bob is a new security administrator at a financial institution. The organization has experienced some suspicious activity on one of the critical servers that contain customer data. When reviewing how the systems are administered, he uncovers some concerning issues pertaining to remote administration. Which of the following should not be put into place to reduce these concerns?i. Commands and data should not be sent in cleartext.ii. SSH should be used, not Telnet.iii. Truly critical systems should be administered locally instead of remotely.iv. Only a small number of administrators should be able to carry out remote functionality.v. Strong authentication should be in place for any administration activities.
单选题Thereareseveraldifferenttypesofsinglesign-onprotocolsandtechnologiesinusetoday.Whattypeoftechnologyisillustratedinthegraphicthatfollows?
单选题The following scenario will be used for questions 29 and 30.John is a network administrator and has been told by one of his network staff members that two servers on the network have recently had suspicious traffic traveling to them and then from them in a sporadic manner. The traffic has been mainly ICMP, but the patterns were unusual compared to other servers over the last 30 days. John lists the directories and subdirectories on the systems and finds nothing unusual. He inspects the running processes and again finds nothing suspicious. He sees that the systems' NICs are not in promiscuous mode, so he is assured that sniffers have not been planted.
单选题Which of the following correctly describes Direct Access and Sequential Access storage devices?
单选题Which of the following best describes why e-mail spoofing is easily executed?
单选题The importance of protecting audit logs generated by computers and network devices is highlighted by the fact that it is required by many of today"s regulations. Which of the following does not explain why audit logs should be protected?
单选题Emily is listening to network traffic and capturing passwords as they are sent to the authentication server. She plans to use the passwords as part of a future attack. What type of attack is this?
单选题Which organization has been developed to deal with economic, social, and governance issues, and with how sensitive data is transported over borders?
单选题Whattypeofsecurityencryptioncomponentismissingfromthetablethatfollows?
单选题Which of the following is not true of a forensics investigation?
单选题Which of the following is not a reason to develop and implement a disaster recovery plan?
单选题Which of the following is not included in a risk assessment?
单选题IP telephony networks require the same security measures as those implemented on an IP data network. Which of the following is unique to IP telephony?
单选题Thereareseveraldifferenttypesofsinglesign-onprotocolsandtechnologiesinusetoday.Whattypeoftechnologyisillustratedinthegraphicthatfollows?