CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA Security+ Certification Exam Questions and answer - Part 44
1. A security analyst is working on a project that requires the implementation of a stream cipher. Which of the following should the analyst use?
A) Hash function
B) Elliptic curve
C) Symmetric algorithm
D) Public key cryptography
2. A security administrator installed a new network scanner that identifies new host systems on the network. Which of the following did the security administrator install?
A) Rogue system detection
B) Network-based IDS
C) Vulnerability scanner
D) Configuration compliance scanner
3. A security analyst wants to harden the company - s VoIP PBX. The analyst is worried that credentials may be intercepted and compromised when IP phones authenticate with the BPX. Which of the following would best prevent this from occurring?
A) Require SIPS on connections to the PBX.
B) Place the phones and PBX in their own VLAN.
C) Restrict the phone connections to the PBX.
D) Implement SRTP between the phones and the PBX.
4. A security analyst is assessing a small company - s internal servers against recommended security practices. Which of the following should the analyst do to conduct the assessment? (Choose two.)(Select 2answers)
A) Verify alignment with policy related to regulatory compliance
B) Run an exploitation framework to confirm vulnerabilities
C) Compare configurations against platform benchmarks
D) Confirm adherence to the company - s industry-specific regulations
E) Review the company - s current security baseline
5. A security analyst accesses corporate web pages and inputs random data in the forms. The response received includes the type of database used and SQL commands that the database accepts. Which of the following should the security analyst use to prevent this vulnerability?
A) Pointer dereference
B) Input validation
C) Application fuzzing
D) Error handling
A) Hash function
B) Elliptic curve
C) Symmetric algorithm
D) Public key cryptography
2. A security administrator installed a new network scanner that identifies new host systems on the network. Which of the following did the security administrator install?
A) Rogue system detection
B) Network-based IDS
C) Vulnerability scanner
D) Configuration compliance scanner
3. A security analyst wants to harden the company - s VoIP PBX. The analyst is worried that credentials may be intercepted and compromised when IP phones authenticate with the BPX. Which of the following would best prevent this from occurring?
A) Require SIPS on connections to the PBX.
B) Place the phones and PBX in their own VLAN.
C) Restrict the phone connections to the PBX.
D) Implement SRTP between the phones and the PBX.
4. A security analyst is assessing a small company - s internal servers against recommended security practices. Which of the following should the analyst do to conduct the assessment? (Choose two.)(Select 2answers)
A) Verify alignment with policy related to regulatory compliance
B) Run an exploitation framework to confirm vulnerabilities
C) Compare configurations against platform benchmarks
D) Confirm adherence to the company - s industry-specific regulations
E) Review the company - s current security baseline
5. A security analyst accesses corporate web pages and inputs random data in the forms. The response received includes the type of database used and SQL commands that the database accepts. Which of the following should the security analyst use to prevent this vulnerability?
A) Pointer dereference
B) Input validation
C) Application fuzzing
D) Error handling
1. Right Answer: C
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: B,E
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: B,E
Explanation:
5. Right Answer: B
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment