Question 1

A spiked collar that extends horizontally for up to 3 feet from the pole is an example of what kind of technology?&#10;A)Anti-climb&#10;B)Spiked barrier&#10;C)Roller barrier&#10;D)Rotating spikes

Accepted Answer

Anti-climb technology includes measures like spiked collars to prevent unauthorized climbing of structures such as poles or walls.

Question 2

What type of video surveillance is typically used by banks, casinos, airports, and military installations, and commonly employs guards who actively monitor the surveillance?&#10;A)CCTV&#10;B)ICTV&#10;C)IPTV&#10;D)ITV

Accepted Answer

CCTV (Closed Circuit Television) is the type of video surveillance typically used by banks, casinos, airports, and military installations. CCTV systems are designed for private use and employ guards who actively monitor the surveillance. ICTV (Internet Protocol Television), IPTV (Internet Protocol Television), and ITV (Interactive Television) are not typically used for video surveillance in these types of facilities.

Question 3

What is the maximum effective range of a typical passive RFID tag?&#10;A)12&#10;B)15&#10;C)19&#10;D)25

Accepted Answer

The maximum effective range of a typical passive RFID tag is 19 feet.

Question 4

Most portable devices, and some computer monitors, have a special steel bracket security slot built into the case, which can be used in conjunction with a:&#10;A)U-lock&#10;B)safe lock&#10;C)shield lock&#10;D)cable lock

Accepted Answer

The best choice is a cable lock, as it can be easily attached to the security slot and looped around a fixed object for added security. A U-lock may not fit through the slot, a safe lock would require drilling into the device or monitor, and a shield lock is not a common type of locking mechanism.

Question 5

Proximity readers utilize a special type of tag that can be affixed to the inside of an ID badge. What is the name for this type of tag?&#10;A)&#8203;Remote Read Tag (RRT)&#10;B)&#8203;Radio Frequency Identification tag (RFID)&#10;C)&#8203;Barcode tag (BT)&#10;D)&#8203;Magnetic tag (MT)

Accepted Answer

The type of tag used for proximity readers is called a Radio Frequency Identification (RFID) tag. This tag can be affixed to the inside of an ID badge and allows the reader to wirelessly communicate with it to verify access. The other options such as Remote Read Tag (RRT), Barcode tag (BT), and Magnetic tag (MT) do not accurately describe the type of tag used for proximity readers.

Question 6

DLP agent sensors are installed on each host device, and monitor for actions such as printing, copying to a USB flash drive, and burning to a CD or DVD.

Accepted Answer

DLP agent sensors are installed on each host device and monitor for actions like printing, copying to a USB flash drive, and burning to a CD or DVD.

Question 7

Keyed entry locks are much more difficult to defeat than deadbolt locks.

Accepted Answer

This statement is incorrect. Deadbolt locks are generally considered more secure than keyed entry locks because they require a separate key to unlock the bolt. Keyed entry locks, on the other hand, can often be defeated by picking or bumping the lock. It is important to note that the level of security also depends on the specific brand and quality of the lock, as well as proper installation and use.

Question 8

Select the tool below that consists of a system of security tools that is used to recognize and identify data that is critical to an organization and ensure that it is protected:&#10;A)Information Detection System&#10;B)Automated Data Policy&#10;C)Local Loss Prevention&#10;D)Data Loss Prevention

Accepted Answer

The tool described in the question is Data Loss Prevention (DLP), which is a system of security tools used to identify and protect critical data within an organization. A is not a commonly used term, B is not specific to data protection and C is not a well-known security tool identifier.

Question 9

What type of device, sometimes called a packet filter, is designed to prevent malicious network packets from entering or leaving computers or networks?&#10;A)IPS&#10;B)scanner&#10;C)firewall&#10;D)honeypot

Accepted Answer

A firewall is a device that analyzes network traffic and blocks packets that do not meet certain security criteria. It is designed to prevent unauthorized access to or from a private network. Firewalls can be hardware or software-based and may be configured to block specific types of traffic, applications, or websites.

Option A (IPS) is incorrect because Intrusion Prevention Systems are designed to detect and prevent intrusions on a network or system.

Option B (scanner) is incorrect because scanners are generally used to scan for vulnerabilities or open ports on a network or system.

Option D (honeypot) is incorrect because honeypots are designed to lure attackers into a trap, whereas firewalls are designed to prevent attackers from accessing a system or network in the first place.

Question 10

Securing the host involves protecting the physical device itself, securing the operating system software on the system, using security-based software applications, and monitoring logs.

Accepted Answer

Securing the host involves all these measures to ensure the physical device, software and data are protected against cyber threats.

Question 11

&#8203;What type of filtering utilizes a an analysis of the content of spam messages in comparison to neutral / non-spam messages in order to make intelligent decisions as to what should be considered spam?&#10;A)&#8203;Blacklist filtering&#10;B)&#8203;Whitelist filtering&#10;C)&#8203;Bayesian filtering&#10;D)&#8203;Extension filtering

Accepted Answer

The answer of &#8203;What type of filtering utilizes a an...

Question 12

What is the best way to prevent data input by a user from having potentially malicious effects on software?&#8203;&#10;A)&#8203;Client-side validation&#10;B)&#8203;Server-side validation&#10;C)&#8203;Escaping user responses&#10;D)&#8203;SQL validation

Accepted Answer

The answer of What is the best way to prevent...

Question 13

Cipher locks are sometimes combined with what type of sensor, which uses infrared beams that are aimed across a doorway?&#10;A)Lockout sensors&#10;B)Engineering sensors&#10;C)Tailgate sensors&#10;D)Proximity sensors

Accepted Answer

The answer of Cipher locks are sometimes combined with what...

Question 14

Instead of trying to make a match, modern AV techniques are beginning to use a type of detection that attempts to identify the characteristics of a virus. What is the name for this technique?&#10;A)heuristic detection&#10;B)pattern detection&#10;C)hybrid detection&#10;D)combination detection

Accepted Answer

The answer of Instead of trying to make a match,...

Question 15

A system such as a printer, smart TV, or HVAC controller, typically uses an operating system on what is called a:&#10;A)&#8203;Mainframe&#10;B)&#8203;Integrated system&#10;C)&#8203;Embedded system&#10;D)&#8203;Internal system

Accepted Answer

The answer of A system such as a printer, smart...

Question 16

Combination padlocks consist of buttons that must be pushed in the proper sequence in order to be unlocked.

Accepted Answer

The answer of Combination padlocks consist of buttons that must...

Question 17

DLP agent sensors are unable to read inside compressed files and binary files.&#8203;

Accepted Answer

The answer of DLP agent sensors are unable to read...

Question 18

Which of the following is not one of the types of settings that would be included in a Microsoft Windows security template?&#10;A)Account policies&#10;B)User rights&#10;C)System services&#10;D)Resolution settings

Accepted Answer

The answer of Which of the following is not one...

Question 19

An independently rotating large cup affixed to the top of a fence prevents the hands of intruders from gripping the top of a fence to climb over it. What is the name for this technology?&#10;A)bollard&#10;B)fence&#10;C)roller barrier&#10;D)top hat

Accepted Answer

The answer of An independently rotating large cup affixed to...

Question 20

Most DLP systems make use of what method of security analysis below?&#10;A)Content aggregation&#10;B)Content inspection&#10;C)Content delivery&#10;D)Content management

Accepted Answer

The answer of Most DLP systems make use of what...

Question 21

____________________ security is the physical security that specifically involves protecting the hardware of the host system, particularly portable laptops, netbooks, and tablet computers that can easily be stolen.

Accepted Answer

The answer of ____________________ security is the physical security that...

Question 22

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
A software testing technique that deliberately provides invalid, unexpected, or random data as inputs to a computer program.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 23

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
An operating system for Google Android smartphones and other devices.

فتح الحزمة

افتح القفل للوصول البطاقات البالغ عددها 50 في هذه المجموعة.

فتح الحزمة

k this deck

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 24

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
An operating system for Google Android smartphones and other devices.

فتح الحزمة

افتح القفل للوصول البطاقات البالغ عددها 50 في هذه المجموعة.

فتح الحزمة

k this deck

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 25

A(n) ____________________ is a record or list of individuals who have permission to enter a secure area, the time that they entered, and the time they left the area.

Accepted Answer

The answer of A(n) ____________________ is a record or list...

Question 26

How can an area be made secure from a non-secured area via two interlocking doors to a small room?&#10;A)Using a lockout&#10;B)Using a mantrap&#10;C)Using a closet&#10;D)Using a pit

Accepted Answer

The answer of How can an area be made secure...

Question 27

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
A software testing technique that deliberately provides invalid, unexpected, or random data as inputs to a computer program.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 28

Instead of using a key or entering a code to open a door, a user can use an object, such as an ID badge, to identify themselves in order to gain access to a secure area. What term describes this type of object?

A)logical token
B)physical sensor
C)physical token
D)hybrid sensor

Accepted Answer

The answer of Instead of using a key or entering...

Question 29

What is the name for a cumulative package of all patches and hotfixes as well as additional features up to a given point?&#10;A)feature pack&#10;B)roll-up&#10;C)service pack&#10;D)patch

Accepted Answer

The answer of What is the name for a cumulative...

Question 30

____________________ locks keep a record of when the door was opened and by which code.

Accepted Answer

The answer of ____________________ locks keep a record of when...

Question 31

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
A paper or electronic record of individuals who have permission to enter a secure area, the time that they entered, and the time they left the area

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 32

____________________ paint is a nontoxic petroleum gel-based paint that is thickly applied and does not harden, making any coated surface very difficult to climb.
Match the following terms to the appropriate definitions.

Accepted Answer

The answer of ____________________ paint is a nontoxic petroleum gel-based...

Question 33

A _____________ is a document or series of documents that clearly defines the defense mechanisms an organization will employ in order to keep information secure.&#8203;

Accepted Answer

The answer of A _____________ is a document or series...

Question 34

Anti-virus products typically utilize what type of virus scanning analysis?&#8203;&#10;A)&#8203;Static analysis&#10;B)&#8203;Wildcard scanning analysis&#10;C)&#8203;Heuristic detection analysis&#10;D)&#8203;String scanning&#8203; analysis

Accepted Answer

The answer of Anti-virus products typically utilize what type of...

Question 35

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
Subtypes of security controls, classified as deterrent, preventive, detective, compensation, or corrective.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 36

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
A paper or electronic record of individuals who have permission to enter a secure area, the time that they entered, and the time they left the area

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 37

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
Subtypes of security controls, classified as deterrent, preventive, detective, compensation, or corrective.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 38

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
Subtypes of security controls, classified as deterrent, preventive, detective, compensation, or corrective.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 39

What is the name for a standard or checklist against which systems can be evaluated and audited for their level of security (security posture)?&#10;A)reference&#10;B)baseline&#10;C)profile&#10;D)minimum

Accepted Answer

The answer of What is the name for a standard...

Question 40

Match the following terms to the appropriate definitions.
a. Access list
b. Activity phase controls
c. Android
d. Barricade
e. Bayesian filtering
f. Cross-site request forgery (XSRF)
g. Fuzz testing
h. iOS
i. NoSQL
j. Supervisory control and data acquisition (SCADA)
A software testing technique that deliberately provides invalid, unexpected, or random data as inputs to a computer program.

Accepted Answer

The answer of Match the following terms to the appropriate...

Question 41

What are the five steps that can be used to ensure the security of an OS?&#8203;

Accepted Answer

The answer of What are the five steps that can...

Question 42

Describe a mantrap.

Accepted Answer

The answer of Describe a mantrap....

Question 43

What are the three states of data that DLP typically examines?

Accepted Answer

The answer of What are the three states of data...

Question 44

How does DLP index matching work?

Accepted Answer

The answer of How does DLP index matching work?...

Question 45

Describe how a DLP can be configured.

Accepted Answer

The answer of Describe how a DLP can be configured....

Question 46

What can be a time consuming drawback to the use of traditional ID badges? How can this issue be avoided?

Accepted Answer

The answer of What can be a time consuming drawback...

Question 47

How does an RFID tag embedded into an ID badge function without a power supply?&#8203;

Accepted Answer

The answer of How does an RFID tag embedded into...

Question 48

What is the difference between deterrent controls and preventive controls?&#8203;

Accepted Answer

The answer of What is the difference between deterrent controls...

Question 49

How can cable conduits that run between two secure areas be protected?

Accepted Answer

The answer of How can cable conduits that run between...

Question 50

Explain how tailgate sensors work.

Accepted Answer

The answer of Explain how tailgate sensors work....

Deck 4: Host, Application, and Data Security