CISSP-ISSAP Information Systems Security Architecture Exam Set 1

You are the Security Consultant advising a company on security methods. This is a highly secure

location that deals with sensitive national defense related data. They are very concerned about

physical security as they had a breach last month. In that breach an individual had simply grabbed

a laptop and ran out of the building. Which one of the following would have been most effective in

preventing this?


Options are :

  • Keeping all doors locked with a guard.
  • Not using laptops.
  • A sign in log.
  • Using a man-trap.

Answer : Using a man-trap.

CISSP - Software Development Security Mock Questions

You work as a Network Administrator for NetTech Inc. You want to have secure communication on

the company's intranet. You decide to use public key and private key pairs. What will you

implement to accomplish this?


Options are :

  • Microsoft Internet Information Server (IIS)
  • Certificate server
  • FTP server
  • VPN

Answer : Certificate server

Which of the following types of firewall functions at the Session layer of OSI model?


Options are :

  • Packet filtering firewall
  • Switch-level firewall
  • Application-level firewall
  • Circuit-level firewall

Answer : Circuit-level firewall

IPsec VPN provides a high degree of data privacy by establishing trust points between

communicating devices and data encryption. Which of the following encryption methods does

IPsec VPN use? Each correct answer represents a complete solution. Choose two.

A. MD5

B. LEAP

C. AES

D. 3DES


Options are :

  • A,B
  • B,C
  • D,A
  • C,D

Answer : C,D

CISSP - Security Engineering Mock Questions

Which of the following authentication methods prevents unauthorized execution of code on remote

systems?


Options are :

  • TACACS
  • S-RPC
  • RADIUS
  • CHAP

Answer : S-RPC

A user is sending a large number of protocol packets to a network in order to saturate its

resources and to disrupt connections to prevent communications between services. Which type of

attack is this?


Options are :

  • Impersonation attack
  • Social Engineering attack
  • Denial-of-Service attack
  • Vulnerability attack

Answer : Denial-of-Service attack

Which of the following security devices is presented to indicate some feat of service, a special

accomplishment, a symbol of authority granted by taking an oath, a sign of legitimate employment

or student status, or as a simple means of identification?


Options are :

  • Motion detector
  • Sensor
  • Alarm
  • Badge

Answer : Badge

CISSP (Information Systems Security) Practice Tests 2019 Set 7

Which of the following types of attacks cannot be prevented by technical measures only?


Options are :

  • Brute force
  • Social engineering
  • Smurf DoS
  • Ping flood attack

Answer : Social engineering

Which of the following electrical events shows a sudden drop of power source that can cause a

wide variety of problems on a PC or a network?


Options are :

  • Power surge
  • Blackout
  • Power sag
  • Power spike

Answer : Blackout

John works as a professional Ethical Hacker. He has been assigned the project of testing the

security of www.we-are-secure.com. John notices that the We-are-secure network is vulnerable to

a man-in-the-middle attack since the key exchange process of the cryptographic algorithm it is

using does not thenticate participants. Which of the following cryptographic algorithms is being

used by the We-are-secure server?


Options are :

  • RSA
  • Twofish
  • Blowfish
  • Diffie-Hellman

Answer : Diffie-Hellman

CISSP - Mock Questions with all domains

You want to implement a network topology that provides the best balance for regional topologies

in terms of the number of virtual circuits, redundancy, and performance while establishing a WAN

network. Which of the following network topologies will you use to accomplish the task?


Options are :

  • Star topology
  • Fully meshed topology
  • Partially meshed topology
  • Bus topology

Answer : Partially meshed topology

Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to

implement two-factor authentication for the employees to access their networks. He has told him

that he would like to use some type of hardware device in tandem with a security or identifying pin

number. Adam decides to implement smart cards but they are not cost effective. Which of the

following types of hardware devices will Adam use to implement two-factor authentication?


Options are :

  • Security token
  • One Time Password
  • Biometric device
  • Proximity cards

Answer : Security token

Which of the following protocols is used to compare two values calculated using the Message

Digest (MD5) hashing function?


Options are :

  • CHAP
  • EAP-TLS
  • EAP
  • PEAP

Answer : CHAP

CISSP - Software Development Security Mock Questions

Which of the following is a method for transforming a message into a masked form, together with a

way of undoing the transformation to recover the message?


Options are :

  • Cipher
  • CrypTool
  • Steganography
  • MIME

Answer : Cipher

Which of the following attacks can be overcome by applying cryptography?


Options are :

  • DoS
  • Web ripping
  • Buffer overflow
  • Sniffing

Answer : Sniffing

Which of the following are the examples of technical controls? Each correct answer represents a

complete solution. Choose three.

A. Auditing

B. Network acchitecture

C. System access

D. Data backups


Options are :

  • A,B,C
  • D,C,B
  • B,C,D
  • A,C,D

Answer : A,B,C

CISSP Security Engineering Certification Practice Exam Set 5

Which of the following statements about a stream cipher are true? Each correct answer represents

a complete solution. Choose three.

A. It typically executes at a higher speed than a block cipher.

B. It divides a message into blocks for processing.

C. It typically executes at a slower speed than a block cipher.

D. It divides a message into bits for processing.

E. It is a symmetric key cipher.


Options are :

  • B,CD
  • A,B,C
  • E,D,A
  • A,D,E

Answer : A,D,E

Which of the following types of attack can be used to break the best physical and logical security

mechanism to gain access to a system?


Options are :

  • Social engineering attack
  • Mail bombing
  • Cross site scripting attack
  • Password guessing attack

Answer : Social engineering attack

Which of the following types of halon is found in portable extinguishers and is stored as a liquid?


Options are :

  • Halon-f
  • Halon 11
  • Halon 1211
  • Halon 1301

Answer : Halon 1211

CISSP - Security and Risk Management Pratice Questions

Which of the following is a technique used for modifying messages, providing Information and

Cyber security, and reducing the risk of hacking attacks during communications and message

passing over the Internet?


Options are :

  • Firewall security
  • OODA loop
  • Cryptography
  • Risk analysis

Answer : Cryptography

Which of the following cryptographic system services ensures that information will not be disclosed

to any unauthorized person on a local network?


Options are :

  • Authentication
  • Integrity
  • Non-repudiation
  • Confidentiality

Answer : Confidentiality

You work as an Incident handler in Mariotrixt.Inc. You have followed the Incident handling process

to handle the events and incidents. You identify Denial of Service attack (DOS) from a network

linked to your internal enterprise network. Which of the following phases of the Incident handling

process should you follow next to handle this incident?


Options are :

  • Identification
  • Preparation
  • Recovery
  • Containment

Answer : Containment

CISSP - Software Development Security Mock Questions

You work as a Network Administrator for NetTech Inc. The company wants to encrypt its e-mails.

Which of the following will you use to accomplish this?


Options are :

  • PGP
  • NTFS
  • IPSec
  • PPTP

Answer : PGP

Mark works as a Network Administrator for NetTech Inc. He wants users to access only those

resources that are required for them. Which of the following access control models will he use?


Options are :

  • Discretionary Access Control
  • Mandatory Access Control
  • Policy Access Control
  • Role-Based Access Control

Answer : Role-Based Access Control

Which of the following terms refers to a mechanism which proves that the sender really sent a

particular message?


Options are :

  • Non-repudiation
  • Confidentiality
  • Authentication
  • Integrity

Answer : Non-repudiation

CISSP Security Engineering Certification Practice Exam Set 7

The simplest form of a firewall is a packet filtering firewall. Typically a router works as a packet-

filtering firewall and has the capability to filter on some of the contents of packets. On which of the


following layers of the OSI reference model do these routers filter information? Each correct

answer represents a complete solution. Choose all that apply.

A. Transport layer

B. Physical layer

C. Data Link layer

D. Network layer


Options are :

  • A,B
  • A,D
  • B,C
  • D,C

Answer : A,D

Which of the following protocols multicasts messages and information among all member devices

in an IP multicast group?


Options are :

  • ARP
  • TCP
  • IGMP
  • ICMP

Answer : IGMP

Andrew works as a Network Administrator for Infonet Inc. The company's network has a Web

server that hosts the company's Web site. Andrew wants to increase the security of the Web site

by implementing Secure Sockets Layer (SSL). Which of the following types of encryption does

SSL use? Each correct answer represents a complete solution. Choose two.

A. Synchronous

B. Secret

C. Asymmetric

D. Symmetric


Options are :

  • B,C
  • C,D
  • B,D
  • A,B

Answer : C,D

CISSP Security Engineering Certification Practice Exam Set 8

Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the

authenticity of a certificate to be immediately verified?


Options are :

  • SKIP
  • HTTP
  • OCSP
  • RSTP

Answer : OCSP

You have decided to implement video surveillance in your company in order to enhance network

security. Which of the following locations must have a camera in order to provide the minimum

level of security for the network resources? Each correct answer represents a complete solution.

Choose two.


A. Parking lot

B. All hallways

C. Server Rooms

D. All offices

E. All entrance doors


Options are :

  • B,C
  • C,D
  • A,B
  • C,E

Answer : C,E

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions