GISF Exam Questions

Rick is the project manager of a construction project. He is in a process to procure someconstruction equipments. There are four vendors available for supplying the equipments. Ric...

The Information assurance pillars provide the surety of data availability to the users of an Informationsystem. Which of the following network infrastructure techniques accomplishe...

Adam works as a Professional Penetration Tester for Umbrella Inc. A project has been assigned to himto carry out a Black Box penetration testing as a regular evaluation of the syst...

Which of the following are the levels of public or commercial data classification system? Each correct answer represents a complete solution. Choose all that apply.

Part of your change management plan details what should happen in the change control system foryour project. Theresa, a junior project manager, asks what the configuration manageme...

Which of the following can be used to prevent routing loops in distance vector routing protocols? Each correct answer represents a complete solution. Choose two.

Which of the following firewalls operates at three layers- Layer3, Layer4, and Layer5?

How should you configure USSOWA1 and USSTIME1 to allow secure access for remote employees? (Click the Exhibit button on the toolbar to see the case study.) Each correct answer repr...

You work as a Network administrator for Infonet Inc. The company has 135 Windows XPProfessional computers and twenty Windows 2003 Server computers. You want to specify thenumber of...

Which of the following federal laws are related to hacking activities? Each correct answer represents a complete solution. Choose three.

Which of the following refers to the process of verifying the identity of a person, network host, orsystem process?

You are concerned about possible hackers doing penetration testing on your network as a prelude to an attack. What would be most helpful to you in finding out if this is occurring?

Adam, a novice Web user is getting large amount of unsolicited commercial emails on his email address. Hesuspects that the emails he is receiving are the Spam. Which of the followi...

Peter is a merchant. He uses symmetric encryption to send confidential messages to different users ofhis Web site. Which of the following is the other name for asymmetric encryptio...

You are concerned about an attacker being able to get into your network. You want to make surethat you are informed of any network activity that is outside normal parameters. What...

Sam works as a Web Developer for McRobert Inc. He wants to control the way in which a Web browser receivesinformation and downloads content from Web sites. Which of the following b...

Which of the following is NOT a phase of the OODA Loop strategy?

Which term best describes an e-mail that contains incorrect and misleading information orwarnings about viruses?

Which of the following U.S.C. laws is governs the fraudulent activities associated with computers?

Which of the following is a technique of attacks in which the attacker secretly listens to the privateconversation between victims?

Your computer continues to operate even if its disk drive has failed. This ability is known as_____.

Which of the following factors determine the strength of the encryption?

Which of the following types of cipher encrypts alphabetic text by using a series of differentCaesar ciphers based on the letters of a keyword?

Which of the following is the maximum variable key length for the Blowfish encryption algorithm?

Cryptography is the science of ?

Which U.S. government agency is responsible for establishing standards concerning cryptographyfor nonmilitary use?

Which of the following service provider classes is used to create a digital signature?

Which of the following is an examination of the controls within an Information technology (IT)infrastructure?

Which of the following authentication methods uses MD5 hash encoding while transferringcredentials over a network?

Which of the following policies define how Identification and Authorization occur and determineaccess control, audits, and network connectivity?

Which of the following encryption techniques does digital signatures use?

What is VeriSign?

Each time you start your computer, you receive an error message that your TCP/IP address is inuse. Which of the following attacks is this?

At which OSI layer does UDP operate?

The TCP/IP protocol suite uses ____ to identify which service a certain packet is destined for.

Which of the following IDS/IPS detection methods do the URLs use to detect and prevent anattack?

Which of the following is the process of making additional copies of data so that they may be usedto restore the original after a data loss event?

Which of the following security applications is used to secure a database from unauthorizedaccesses in a network infrastructure?

Which of the following is an information gathering technique that is used to identify risks?

Key Distribution Center is used in which authentication method?

Which of the following is the phase of Incident handling process in which the distinction betweenan event and an incident is made?

Which of the following is the best approach to conflict resolution?

You want to install a server that can be accessed by external users. You also want to ensure thatthese users cannot access the rest of the network. Where will you place the server?

Which of the following evidences is NOT the potential evidence for Routers?

Which of the following is the purpose of employing DMZ (Demilitarized zone) in a network?

Which of the following is most useful against DOS attacks?

Which of the following protocols provides connectionless integrity and data origin authentication of IPpackets?

NIST Special Publication 800-50 is a security awareness program. It is designed for those people whoare currently working in the information technology field and want to the inform...

You work as a professional Computer Hacking Forensic Investigator for DataEnet Inc. You want toinvestigate e-mail information of an employee of the company. The suspected employee...

Which of the following tools is an open source protocol analyzer that can capture traffic in realtime?