SSCP Exam Questions
1,274 real SSCP exam questions with expert-verified answers and explanations. Page 25 of 26.
- Question #1255Security Concepts and Practices
The difference between fraud and embezzlement is ________________-.
FraudEmbezzlementFinancial CrimeLegal Concepts - Question #1256Systems and Application Security
In order to use L0pht, the ___________ must be exported from Windows NT.
Password crackingSAM databaseWindows NT securitySecurity tools - Question #1257Incident Response and Recovery
A critical element for investigators is to:
Investigative proceduresIncident responseEvidence handling - Question #1258Incident Response and Recovery
Media that is the target of an investigation should be copied on to:
Digital ForensicsEvidence HandlingIncident ResponseMedia Preparation - Question #1260Risk Identification, Monitoring and Analysis
Tripwire is a ___________________-
TripwireFile Integrity Monitoring (FIM)Security ToolsIntegrity - Question #1261Cryptography
Some Unix systems use a very simple cipher called _________.
ROT13Simple CiphersUnix SecurityObfuscation - Question #1262Network and Communications Security
When packets are captured and converted to hexadecimal, _______ represents the ICMP protocol in the IP header.
Packet AnalysisIP HeaderICMP ProtocolProtocol Numbers - Question #1263Network and Communications Security
L2TP is considered to be a less secure protocol than PPTP.
VPN protocolsPPTPL2TPNetwork security - Question #1265Network and Communications Security
Which of the following is NOT an encryption method used by VPNs (Virtual Private Networks)?
VPNsEncryptionNetwork ProtocolsSecure Tunnels - Question #1267Access Controls
Define the acronym RBAC
RBACAccess Control ModelsSecurity Acronyms - Question #1269Security Concepts and Practices
A ___________ is a program that poses as a useful or legitimate program, but turns out to be malicious code.
MalwareTrojan HorseSecurity ThreatsMalware Types - Question #1270Cryptography
Select the major difference(s) between block and stream ciphers. (Choose all that apply)
CryptographyBlock CiphersStream CiphersEncryption Types - Question #1271Access Controls
_____________ states that users should only be given enough access to accomplish their jobs.
Least PrivilegeAccess ControlSecurity PrinciplesUser Permissions - Question #1272Network and Communications Security
SATAN stands for _______________________________________________
AcronymsNetwork security toolsVulnerability scanningTool identification - Question #1273Cryptography
PGP allows which of the following to be encrypted?
PGPEncryptionData confidentialityCryptographic applications - Question #1274Security Operations and Administration
A chronologically sorted record of all the activities on a system is known as an____________
AuditingLoggingSystem monitoring - Question #1275Security Concepts and Practices
Much like the layers of an onion, ______________ is a comprehensive set of security solutions layered to provide the best protection.
Defense in DepthLayered securitySecurity architectureSecurity strategy - Question #1276Risk Identification, Monitoring and Analysis
Threat assessment has four major components, name them. (Choose four)
Threat assessmentRisk componentsSecurity risk analysisThreat evaluation - Question #1277Security Concepts and Practices
A systems ability to identify a particular individual, track their actions, and monitor their behavior is known as:
AccountabilitySecurity PrinciplesIdentificationMonitoring - Question #1278Security Concepts and Practices
To meet SSCP certification requirements a candidate must _______ and __________. (Choose two)
certification requirements(ISC)2 Code of EthicsSSCPwork experience - Question #1279Access Controls
_________ is the act of a user professing an identity to a system.
IdentificationAccess Control FundamentalsSecurity Principles - Question #1280Access Controls
_______ and ________ are the primary controls of most access control systems.<br>(Choose two)
Access ControlIdentificationAuthenticationSecurity Concepts - Question #1281Access Controls
Authentication is based on which of the following:<br>(Choose three)
Authentication FactorsMulti-Factor AuthenticationSecurity PrinciplesIdentity Verification - Question #1282Access Controls
________ ___________ refers to the act of requiring more than on type of authentication to be used and is considered more secure than any single type of authentication.<br> (Choose...
AuthenticationMulti-factor authenticationTwo-factor authenticationAccess Control - Question #1283Access Controls
What system allows a user to provide one ID and password per work session and then is automatically logged-on to all the required applications?
SSOSingle Sign-OnAuthenticationAccess Management - Question #1284Access Controls
Name three SSO types? (Choose three)
Single Sign-On (SSO)Authentication ProtocolsKerberosSESAME - Question #1285Cryptography
Kerberos uses asymmetric encryption.(True / False)
KerberosSymmetric EncryptionAsymmetric EncryptionAuthentication Protocols - Question #1286Risk Identification, Monitoring and Analysis
Why are clipping levels used?
Clipping levelsSecurity monitoringThreat detectionLog analysis - Question #1287Access Controls
Which three things must be considered for the design, planning, and implementation of access control mechanisms? (Choose three)
Access Control DesignRisk ManagementThreatsVulnerabilities - Question #1288Access Controls
The Crossover Error Rate (CER) is a good measure of performance for:
BiometricsCrossover Error Rate (CER)Authentication PerformanceFalse Acceptance Rate (FAR)False Rejection Rate (FRR) - Question #1289Access Controls
What are the three performance measurements used in biometrics?<br>(Choose three)
BiometricsError ratesFalse Acceptance RateFalse Rejection Rate - Question #1290Access Controls
As telnet is widely know to be insecure, one time passwords (OPIE) offer a great alternative. After a user logs on remotely, OPIE will issue a challenge. What two elements will thi...
OPIEOne-Time PasswordsAuthentication ProtocolsAccess Control - Question #1291Security Concepts and Practices
Overloading or congesting a system's resources so that it is unable to provide required services is referred to as:
Denial of ServiceDoS attacksResource exhaustionAvailability - Question #1292Network and Communications Security
Spoofing is a sophisticated technique of authenticating one computer to another by forging IP packets from a trusted source address(True / False)
SpoofingIP SpoofingNetwork AttacksAuthentication Bypass - Question #1293Access Controls
Password crackers fall into two broad categories. What are they?<br>(Choose two)
Password crackingBrute-force attackDictionary attackAuthentication attacks - Question #1294Network and Communications Security
Sandra has used Ethereal, a packet sniffer, to listen in on network transmissions. She has captured several passwords. What type of attack has been performed on her network?
Packet sniffingMan-in-the-middleCredential theftNetwork attacks - Question #1295Network and Communications Security
Which of the following DoS attacks use ICMP? (Choose two)
DoS attacksICMP attacksNetwork securityAttack types - Question #1296Access Controls
The term "principle of least privilege" is best as:
Least PrivilegeAccess ControlSecurity PrinciplesAuthorization - Question #1297Security Concepts and Practices
What security control provides a method to insure that a transaction did or did not occur?
NonrepudiationSecurity ControlsAccountabilitySecurity Concepts - Question #1298Risk Identification, Monitoring and Analysis
The most common source of attack against companies comes from:
Insider threatsThreat sourcesRisk managementAttack vectors - Question #1299Risk Identification, Monitoring and Analysis
________, _________, and __________ are required to successfully complete a crime. (Choose three)
Threat Actor AnalysisRisk AssessmentSecurity FundamentalsIncident Planning - Question #1300Risk Identification, Monitoring and Analysis
Insiders have a clear advantage in committing computer crime. Which two of the following do they possess? (Choose two)
Insider ThreatsRisk FactorsComputer CrimePrivilege Abuse - Question #1301Security Concepts and Practices
Which of the following is considered the MOST secure?
Data classificationInformation security principlesData sensitivity - Question #1302Access Controls
Which of the following are valid modes of operation? (Choose all that apply)
Security modes of operationDedicated modeMultilevel modeAccess control models - Question #1303Security Concepts and Practices
Masquerading is synonymous with __________.
MasqueradingSpoofingAttack typesSecurity terminology - Question #1305Security Concepts and Practices
The principle of least privilege is effective in helping prevent security breaches, however, prevention works best when applied with _______ and ______. Together, these three compl...
Security triadPreventionDetectionResponseLeast Privilege - Question #1306Security Concepts and Practices
What are the three components of the AIC triad? (Choose three)
AIC TriadCIA TriadConfidentialityIntegrityAvailability - Question #1309Risk Identification, Monitoring and Analysis
________, _________, and __________ are required to successfully complete a crime.<br>(Choose three)
Motive Means OpportunityThreat analysisRisk management fundamentalsAttack preconditions - Question #1311Security Concepts and Practices
Which of the following is considered the MOST secure?
Data ClassificationData SecurityInformation Protection - Question #1315Security Operations and Administration
The change control process:
Change ControlIT GovernanceSecurity OperationsProcess Management