Free ISC2 CISSP Exam Dumps and CISSP Exam Questions

Question No: 31

MultipleChoice

Match the types of e-authentication tokens to their description.

Options

ADrag each e-authentication token on the left to its corresponding description on the right.

BLook-up secret token - A physical or electronic token that stores a set of secrets between the claimant and the credential service provider

COut-of-Band Token - A physical token that is uniquely addressable and can receive a verifier-selected secret for one-time use

DPre-registered Knowledge Token - A series of responses to a set of prompts or challenges established by the subscriber and credential service provider during the registration process
Memorized Secret Token - A secret shared between the subscriber and credential service provider that is typically character strings

Question No: 32

MultipleChoice

Which of the following would be the FIRST step to take when implementing a patch management program?

Options

APerform automatic deployment of patches.

BMonitor for vulnerabilities and threats.

CPrioritize vulnerability remediation.

DCreate a system inventory.

Question No: 33

MultipleChoice

Which of the following is strategy of grouping requirements in developing a security Test and Evaluation (ST&E)?

Options

AStandards, policies, and procedures

BDocumentation, observation, and manual

CTactical, strategic, and financial

DManagement, operational, and technical

Question No: 34

MultipleChoice

Which of the following should be included a hardware retention policy?

Options

AA plan to retain date required only for business purposes and a retention schedule

BRetention of all sensitive data on media and hardware

CThe use of encryption technology to encrypt sensitive data prior to retention

DRetention of data for only one week and outsourcing the retention to a third-party vendor

Question No: 35

MultipleChoice

Which of the following is a method of attacking internet protocol (IP) v6 Layer 3 and Layer 4?

Options

AInternet Control Message Protocol (ICMP) flooding

BMedia Access Control (MAC) flooding

CDomain Name Server (DNS) cache poisoning

DSynchronize sequence numbers (SYN) flooding

Question No: 36

MultipleChoice

Which of the following is the GREATEST security risk associated with the use of identity as a service (IDaaS) when an organization is developing its own software?

Options

AIncreased likelihood of confidentiality breach

BDenial of access due to reduced availability

CSecurity Assertion Markup Language (SAML) integration

DIncompatibility with Federated Identity Management (FIM)

Question No: 37

MultipleChoice

Why are mobile devices sometimes difficult to investigate in a forensic examination?

Options

AThere are no forensic tools available for examination.

BThey may have proprietary software installed to protect them.

CThey have password-based security at logon.

DThey may contain cryptographic protection.

Question No: 38

MultipleChoice

A user downloads a file from the Internet, then applies the Secure Hash Algorithm 3 (SHA-3) to it. Which of the following is the MOST likely reason for doing so?

Options

AIt verifies the integrity of the file.

BIt checks the file for malware.

CIt ensures the entire file downloaded.

DIt encrypts the entire file.

Question No: 39

MultipleChoice

Directive controls are a form of change management policy and procedures. Which of the following subsections are recommended as part of the change management process?

Options

ABuild and test

BImplement security controls

CCategorize Information System (IS)

DSelect security controls

Question No: 40

MultipleChoice

Which of the following is the BEST reason to apply patches manually instead of automated patch management?

Options

AThe cost required to install patches will be reduced.

BThe time during which systems will remain vulnerable to an exploit will be decreased.

CThe target systems reside within isolated networks.

DThe ability to cover large geographic areas is increased.

Free ISC2 CISSP Exam Dumps - Page 4