BR0-001 Exam Questions

A company's new employees are asked to sign a document that describes the methods of and purposes for accessing the company's IT systems. Which of the following BEST describes this...

Which item can reduce the attack surface of an operating system?

A company has a complex multi-vendor network consisting of UNIX, Windows file servers and database applications. Users report having too many passwords and that access is too diffi...

After the maximum number attempts have failed, which of the following could set an account to lockout for 30 minutes?

Which of the following is the BEST place to obtain a hotfix or patch for an application or system?

Which algorithms can best encrypt large amounts of data?

Which of the following is a suppression method for a Class C fire?

Look at the following items carefully, which one is a cryptographic representation of non- repudiation?

Which of the following can be used by an attacker to footprint a system?

Choose the terminology or concept which best describes a (Mandatory Access Control) model.

You work as a network administrator for your company. Your company requires you to improve the physical security of a data center located inside the office building. The data cente...

After analyzing vulnerability and applying a security patch, which non-intrusive action should be taken to verify that the vulnerability was truly removed?

Which of the following sequences is correct regarding the flow of the CHAP system?

Communication is important to maintaining security because communication keeps:

To aid in preventing the execution of malicious code in email clients, which of the following should be done by the email administrator?

Which security applications require frequent signature updates? (Select TWO).

A user receives an email asking the user to reset the online banking username and password. The email contains a link and when the user accesses the link, the URL that appears in t...

Which method is LEAST intrusive to check the environment for known software flaws?

John works as a network administrator for his company. He uses a tool to check SMTP, DNS, POP3, and ICMP packets on the network. This is an example of which of the following?

Who is responsible for establishing access permissions to network resources in the DAC access control model?

Which one of the following options is a vulnerability assessment tool?

Which access control system allows the owner of a resource to establish access permissions to that resource?

You are a network technician of your company. You have just detected an intrusion on your company's network from the Internet. What should be checked FIRST?

The Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, and procedures needed to create, manage, store, distribute, and revoke digital certificates. A...

Which one of the following items will permit an administrator to find weak passwords on the network?

Choose the access control model that allows access control determinations to be performed based on the security labels associated with each user and each data item.

A programmer plans to change the server variable in the coding of an authentication function for a proprietary sales application. Which process should be followed before implementi...

A company has implemented a policy stating that users will only receive access to the systems needed to perform their job duties. This is an example of:

Which item will MOST likely permit an attacker to make a switch function like a hub?

Why implement security logging on a DNS server?

Who is responsible for establishing access permissions to network resources in the MAC access control model?

In computing, promiscuous mode is a configuration of a network card that makes the card pass all traffic it receives to the central processing unit rather than just packets address...

Which of the following access control models uses roles to determine access permissions?

In computer networking, network address translation (NAT) is the process of modifying network address information in datagram packet headers while in transit across a traffic routi...

A programmer plans to change the server variable in the coding of an authentication function for a proprietary sales application. Which process must be followed before implementing...

Which of the following protects the confidentiality of data by making the data unreadable to those who don't have the correct key?

Which item best describes an instance where a biometric system identifies legitimate users as being unauthorized?

What is the objective of using a password cracker?

Which authentication method does the following sequence: Logon request, encrypts value response, server, challenge, compare encrypts results, authorize or fail referred to?

A protocol analyzer will most likely detect which security related anomalies?

Which of the following can be used by an administrator to proactively collect information on attackers and their attempted methods of gaining access to the internal network?

Which of the following statements is TRUE regarding the CHAP authentication system?

Which description is true about how to accomplish steganography in graphic files?

Identify the service provided by message authentication code (MAC) hash:

Which of the following statements is TRUE regarding the Security Token system?

Which item will allow for fast, highly secure encryption of a USB flash drive?

Look at the following scenarios, which one would a penetration test BEST be used for?

For the following items, which is a security limitation of virtualization technology?

The IPSec Security Association is managed by

Which of the following types of cryptography is typically used to provide an integrity check?