New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 ISSEP Exam - Topic 2 Question 72 Discussion

Actual exam question for ISC2's ISSEP exam
Question #: 72
Topic #: 2
[All ISSEP Questions]

Which of the following are the phases of the Certification and Accreditation (C&A) process Each correct answer represents a complete solution. Choose two.

Show Suggested Answer Hide Answer
Suggested Answer: B

The types of cryptography defined by FIPS 185 are as follows:

Type I cryptography: It describes a cryptographic algorithm or a tool accepted by the National

Security Agency for protecting classified

information.

Type II cryptography: It describes a cryptographic algorithm or a tool accepted by the National

Security Agency for protecting

sensitive, unclassified information in the systems as stated in Section 2315 of Title 10, United States

Code, or Section 3502(2) of Title

44, United States Code.

Type III cryptography: It describes a cryptographic algorithm or a tool accepted as a Federal

Information Processing Standard.

Type III (E) cryptography: It describes a Type III algorithm or a tool that is accepted for export from

the United States.


by Cordelia at Aug 08, 2023, 03:07 PM

Limited Time Offer

25%

Off

Get Premium ISSEP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Jaime
3 months ago
Really? I’m surprised that Detection isn’t one of the main phases!
upvoted 0 times
...
My
3 months ago
I thought Auditing was a phase too, but I guess not.
upvoted 0 times
...
Orville
4 months ago
Wait, isn't Continuous Monitoring just part of the process?
upvoted 0 times
...
Veda
4 months ago
Totally agree, B and C make sense!
upvoted 0 times
...
Alverta
4 months ago
I think B and C are the right phases.
upvoted 0 times
...
Kara
4 months ago
I’m leaning towards Continuous Monitoring and Initiation, but I could be mixing it up with another framework.
upvoted 0 times
...
Lonna
4 months ago
I practiced a similar question, and I think Auditing might be part of the process too, but I’m not entirely confident.
upvoted 0 times
...
Margurite
5 months ago
I remember studying the phases, and I feel like Initiation was one of them. It sounds familiar, but I can't recall the details.
upvoted 0 times
...
Jutta
5 months ago
I think the C&A process definitely includes Continuous Monitoring, but I'm not sure about the second option.
upvoted 0 times
...
Lenna
5 months ago
This is a good question to test our understanding of Android app security. I'll use the process of elimination to narrow down the options and make an educated guess if I'm not completely sure.
upvoted 0 times
...
Iraida
5 months ago
Hmm, I'm a bit unsure about this one. I know SIP is a common VoIP protocol, but I'm not sure if it's the one specifically used between a SIP server and softswitch. I'll have to think this through carefully.
upvoted 0 times
...
Gladys
5 months ago
This seems similar to a practice question we did where focusing on link failure detection was key. I think BFD could be the best option here.
upvoted 0 times
...
Phillip
9 months ago
I'm pretty sure the C&A process is more like a spy thriller than an audit. Initiation, continuous monitoring, and a healthy dose of paranoia.
upvoted 0 times
...
Herschel
10 months ago
Ah, the C&A process - a never-ending dance of forms, signatures, and approvals. B and C are the steps, the rest are just side-steps.
upvoted 0 times
Thad
8 months ago
Yes, it's important to remember that auditing and detection are also crucial components of the C&A process.
upvoted 0 times
...
Tequila
8 months ago
D) Detection
upvoted 0 times
...
Lucia
8 months ago
A) Auditing
upvoted 0 times
...
Kaycee
8 months ago
I know, the C&A process can be quite tedious. But B and C are definitely the main steps to focus on.
upvoted 0 times
...
Otis
8 months ago
C) Continuous Monitoring
upvoted 0 times
...
Jaclyn
9 months ago
B) Initiation
upvoted 0 times
...
...
Elza
10 months ago
Auditing? Really? That's not a phase of the C&A process. I'd stick with the classic initiation and continuous monitoring.
upvoted 0 times
Thad
9 months ago
Detection is also a key phase in the C&A process.
upvoted 0 times
...
Dexter
9 months ago
I agree, initiation and continuous monitoring are important phases.
upvoted 0 times
...
Tamekia
9 months ago
Auditing is actually one of the phases of the C&A process.
upvoted 0 times
...
...
Aleisha
10 months ago
Hmm, I'm not sure about D - detection doesn't really fit with the other phases. I'd go with B and C.
upvoted 0 times
Kris
8 months ago
Initiation and Continuous Monitoring are key steps in C&A.
upvoted 0 times
...
Juliann
8 months ago
Auditing and Continuous Monitoring are essential in the process.
upvoted 0 times
...
Alana
9 months ago
I agree, detection doesn't seem to fit in the C&A process.
upvoted 0 times
...
Yuette
9 months ago
I think B and C are the correct phases.
upvoted 0 times
...
Hillary
9 months ago
Initiation is crucial to kick off the process.
upvoted 0 times
...
Lavonne
10 months ago
Auditing and Continuous Monitoring are definitely important.
upvoted 0 times
...
Tori
10 months ago
I agree, detection doesn't seem to fit in the C&A process.
upvoted 0 times
...
Refugia
10 months ago
I think B and C are the correct phases.
upvoted 0 times
...
...
Sena
10 months ago
B and C seem like the right answers here. The C&A process definitely involves initiation and continuous monitoring.
upvoted 0 times
...
Gary
10 months ago
I'm not sure about Detection. I think Continuous Monitoring is also a phase in the C&A process.
upvoted 0 times
...
Vilma
11 months ago
I agree with Thad. Auditing and Initiation make sense for the C&A process.
upvoted 0 times
...
Thad
11 months ago
I think A) Auditing and B) Initiation are the phases of the C&A process.
upvoted 0 times
...

Save Cancel