nerdexam
ExamsSSCPQuestions#1328
(ISC)2(ISC)2

SSCP · Question #1328

SSCP Question #1328: Real Exam Question with Answer & Explanation

The correct answer is C: Covert channel. A covert channel is an unapproved and hidden communication pathway within a computer system that operates outside of normal communication protocols and security controls.

Submitted by ahmad_uae· Apr 18, 2026Security Concepts and Practices

Question

A _________ is an information path that is not normally used for communication within a computer system. It is not protected by the any of the systems security mechanisms.

Options

  • ATrojaned program
  • BBackdoor
  • CCovert channel
  • DHijacked session
  • EBack-path

Explanation

A covert channel is an unapproved and hidden communication pathway within a computer system that operates outside of normal communication protocols and security controls.

Common mistakes.

  • A. A Trojaned program is a type of malicious software disguised as legitimate, not an information path.
  • B. A backdoor is a secret method of bypassing normal authentication, not an information path itself.
  • D. A hijacked session is when an attacker takes over an authenticated user's active session, which is an attack technique, not a type of information path.
  • E. "Back-path" is not a standard computer security term for an unprotected information path.

Concept tested. Covert channel definition

Reference. https://csrc.nist.gov/glossary/term/covert_channel

Topics

#Covert channel#Information leakage#Security mechanisms bypass

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SSCP PracticeBrowse All SSCP Questions